Information Age: News, analysis & insight for IT & business leaders
 

SaaS security

9 October 2008  JJ Robinson

Sofware-as-a-service is the future of security, says Qualys CEO Philipe Courtot

Philippe Courtot, chairman and CEO of vulnerability testing company Qualys, is convinced software-as-a-service (SaaS) security offerings will disrupt both the security industry and the IT sector as a whole.

“Today, enterprise software is a losing prospect for vendors,” he says. “Quality assurance in a diverse environment [such as the security industry] has significant costs in terms of time and money, therefore the vendor has to pack enough features in to justify the cost of the QA. That’s why SaaS is such a disruptive technology – it’s an order of magnitude more cost effective to develop, deliver and update.”

Enterprise security, perhaps more than other IT sectors, requires constant innovation to keep ahead of attackers and vulnerabilities and thus a torrential stream of updates and patches. These must be rapidly developed and tested for different platforms and applications. In no other field is software updated a week ago or less considered a liability.

Courtot believes the flexibility of SaaS will simplify the way organisations view security.

“Attacks are becoming more sophisticated, innovation is accelerating and there is an ever-increasing set of data security and privacy regulations,” he says.

“At the same time, people need to communicate and security people can’t keep saying ‘no, you can’t do that.’ It is very clear that throwing hardware and software at the problem is no longer an option when 80% of the average IT budget is spent on maintaining legacy systems.”

The SaaS model could be the “paradigm shift” that challenges those legacy systems, he says, giving organisations a different view of their assets.

“SaaS is delivered instantly, it has to work – a new concept for those used to maintenance releases, which are a nightmare especially from a security standpoint.”

More from the Enterprise Security 08 conference

  • Compliance challenges
  • VeriSign's Jonathan Care shares his tips for effective IT security management
  •  
  • Messaging gap
  • Existing tools are inadequate for combatting Web 2.0-based security threats, says FaceTime's Nick Sears
  •  
  • Blended threats
  • The shift from email to web as an attack vector requires blended defence mechanisms, says Mark Murtagh of WebSense


Comments 

There are currently no comments on this article

People who read this also read...

Platform Computing - Category winner

Since 1992, Platform has established a reputation as an industry leader in High Performance Computing (HPC) management software, bringing the most powerful commercial HPC solutions to leading global enterprises.

 

Related articles

Women working and achieving in the UK’s technology profession.

The wisdom of clouds

A report from Information Age's Cloud Security 2011 conference, including three cloud security case studies

Is SaaS a threat to CIO control?

Can IT leaders maintain information strategy when business units procure their own applications?

Putting faith in Force.com

A handful of UK independent software vendors are betting their future on Salesforce.com's platform-as-a-service offering

Advertisement

White Papers

Read article

Developing ios Solutions for Business

Whitepapers

Quickly develop and deploy custom iPad and iPhone solutions. With FileMaker Pro, iPad and iPhone solutions can be prototyped and completed in hours or days versus weeks or months. No iOS application programming or design experience is required.

Read article

IDC Spotlight: Access Control and Certification

Whitepapers

Read this brief for best practices on managing user access compliance.

Read article

GPS World

Whitepapers

Is the PREMIER global media brand serving the exploding world of positioning and navigation for OEM, commercial and consumer applications.

More
div class="banner">