Case Study: Oracle streamlines global vulnerability management and speeds remediation with Qualys (QualysGuard)

Oracle Global IT (GIT) Streamlined Security

Oracle Global IT (GIT) needed to secure a vast, global IT environment—supporting tens of thousands of employees and On Demand customers—while protecting highly sensitive vulnerability data and meeting regulatory requirements. The main challenge was scaling accurate, efficient vulnerability and compliance scanning across diverse assets (data centers, thousands of servers, hundreds of firewalls/load-balancers, and tens of thousands of endpoints) and minimizing costly analyst time spent vetting false positives.

Oracle implemented QualysGuard Enterprise and QualysGuard @Customer to centralize on-demand vulnerability and compliance management while keeping scan data under Oracle’s control. The solution delivered a large, accurate vulnerability knowledge base (six-sigma accuracy), streamlined asset discovery-to-remediation workflows, saved an estimated ~2,000 analyst work hours annually, enabled in-house PCI DSS compliance scans, and scaled to millions of scans per month.

Oracle

Leonid Stavnitser

Senior Manager for Oracles GIT Security Engineering Team