Qualys has added new functions to its QualysGuard cloud platform to offer a web application firewall and extended malware and zero-day detection and mitigation.

According to the company, these additions will extend the cloud platform's capabilities to help customers improve the security of their IT systems and applications, further automate their compliance initiatives for IT-GRC and provide online protection against cyber attacks.

The web application firewall (WAF) is a new cloud service and, according to Qualys, it protects websites from unwanted requests and a range of online threats, while providing increased website performance through caching, compression and content optimisation.

Also added is patent-pending technology for enterprise asset management that allows users to tag assets dynamically based on scan results, and categorise assets in a hierarchical manner to keep pace with changing environments. Those tags can then be used in all workflows including scanning, reporting or assigning security and access to assets.

Built on VeriSign's iDefense zero-day security intelligence services, the zero-day risk analyser module allows users to analyse zero-day threats and estimate their impact on their IT infrastructures and critical systems based on information collected from previous scan results. Also new is an enterprise edition of the free malware detection service, which allows users to track malware on multiple websites with advanced reporting and notification options.

Philippe Courtot, chairman and CEO of Qualys, said: “Our cloud platform allows us to bring new functionalities to our customers at a much faster pace than traditional enterprise software, and makes them accessible in a unified manner. As important, the cloud model permits us to correlate information more effectively and in near real time.”