Leen Partners with Qualys for Enhanced Vulnerability Management

We're excited to announce our new partnership with Qualys. This integration empowers development teams to seamlessly incorporate vulnerability management data into their workflows, dramatically improving remediation times and security posture.

About Qualys

For over 20 years, Qualys has been at the forefront of vulnerability management, offering comprehensive visibility across on-premises, cloud, and hybrid environments. Their Vulnerability Management solution helps organizations discover, assess, prioritize, and patch critical vulnerabilities in real-time.

The platform's continuous monitoring capabilities and accuracy in vulnerability detection have made it a trusted solution for security teams worldwide. However, bridging the gap between security findings and developer workflows has remained a challenge for many organizations.

Streamlining Vulnerability Management for Developers

At Leen, we're building a comprehensive platform that connects disparate security tools into a unified developer experience. Each new integration, like our partnership with Qualys, creates additional value for the entire security ecosystem.

For security vendors and developers, this partnership demonstrates our commitment to an open, interoperable security landscape where best-of-breed solutions can work seamlessly together.

New Opportunities for Security Vendors

Our Qualys integration provides a unified API that simplifies how security vendors can leverage vulnerability data. This opens up numerous opportunities across the security ecosystem:

• Security orchestration vendors can trigger automated workflows when new vulnerabilities are discovered
• GRC teams can map vulnerabilities directly to compliance frameworks, automating reporting
• Cyber insurance providers can enhance risk assessment models with real-time vulnerability data
• CTEM platforms can correlate external attack surface data with internal vulnerability findings
• Vulnerability prioritization engines can apply custom algorithms to determine true risk levels
• AI SOC automation platforms can train models on vulnerability data to predict attack paths
• Threat intelligence providers can contextualize vulnerabilities with attacker behavior
• Asset management vendors can correlate vulnerabilities with business impact
• Supply chain security tools can map vulnerabilities to dependencies and third-party components
• Risk management solutions can incorporate vulnerability metrics into comprehensive risk scores
• Security validation tools can generate attack simulations based on discovered vulnerabilities

By providing a standardized, reliable connection to Qualys data, Leen eliminates the complexity of maintaining custom integrations, allowing security vendors to focus on their core value proposition rather than API maintenance.

Easy Setup Process

Setting up the Qualys integration is straightforward and takes less than 15 minutes. Here's how to get started:

1. Create Dedicated API Credentials in Qualys

We recommend creating a dedicated API user in Qualys for proper auditing and access control:

1. Create a New User
   
   • Log into your Qualys console and navigate to the Vulnerability Management module
   • Click the "Users" tab, then select "New" → "User" in the top right
   • Name the user (e.g., "API User") and attach it to a valid email within your organization
2. Assign Appropriate Permissions
   
   • Set the user role to "Reader" with both GUI and API access
   • Assign relevant business units (often "Unassigned" is sufficient)
   • For Asset Groups, select all relevant groups (typically "All")
   • Ensure "Manage VM module" permission is checked
   • Disable all notifications and Symantec 2FA
3. Activate the Account
   
   • Follow the activation link sent to the provided email
   • Log in with the new user to complete activation
4. Verify CVSS Data is Enabled
   
   • In Vulnerability Management, navigate to "Reports" → "Setup"
   • Open the "CVSS" tile and confirm "Enable CVSS Scoring" is checked

2. Connect Qualys to Leen

Once your Qualys API user is set up:

1. Enter Credentials in Leen
   
   • Navigate to Integrations → Vulnerability Management via Leen API
   • Select Qualys and enter the username and password you created
   • The API URL will be automatically determined based on your credentials
2. Configure Data Synchronization
   
   • Set vulnerability synchronization frequency
   • Choose which severity levels to import
   • Define age thresholds for vulnerabilities
3. Map Assets to Teams
   
   • Configure routing rules to ensure vulnerabilities are sent to the right teams
   • Set up custom notification preferences based on severity

The integration requires minimal ongoing maintenance, with automatic synchronization keeping vulnerability data current in Leen’s API.

Get Started Today

Current Leen customers can enable the Qualys integration from their dashboard in just a few clicks. Not yet a Leen customer? Schedule a demo to see how our platform can transform your vulnerability management program.

For detailed configuration instructions, visit our documentation.

This integration is part of Leen's ongoing commitment to making security a seamless part of the development experience, enabling teams to build secure applications without sacrificing velocity.