Case Study: Cartagena reduces IT risk and achieves regulatory compliance with Qualys

Cartagena - Customer Case Study

Cartagena, an Oslo-based IT services provider for small and mid-sized businesses, needed a more professional way to deliver accurate, on-demand vulnerability assessments and help clients meet regulatory requirements. With many customers lacking dedicated IT staff and Cartagena’s previous open-source tools proving either too shallow or too noisy (and hard to master), the company sought a trusted third-party solution that would fit tight onsite windows and provide clear, actionable results.

Cartagena implemented the Qualys Cloud Platform (Qualys Express) for automated, easy-to-deploy vulnerability and configuration scans with continuous updates and straightforward reporting. Ten clients now use the service; Cartagena can prioritize remediation, reduce time spent on false positives, support compliance (e.g., PCI, SOX), and deliver faster, cost-effective risk reduction—while planning to add Qualys Web Application Scanning for further protection.

Cartagena

Maurice Wornhard

Security Architect