Qualys SaaSDR 1.15.0 Release Updates

Shrikant Dhanawade

The Qualys SaaSDR release 1.15.0 introduces new capabilities, features, and updates. The releaseis expected to be available by the end of June 2026.

ScubaGear Support for Microsoft 365 is now Generally Available

Qualys SaaSDR now supports continuous assessment of Microsoft 365 environments against CISA’s Secure Cloud Business Applications (SCuBA) security baselines. This enhancement helps identify security misconfigurations, validate compliance with SCuBA baselines, and provide actionable recommendations for secure configuration and continuous monitoring.

The following ScubaGear policy packs are now available in SaaSDR:

  • SCuBA Security Baseline for Microsoft Entra ID
  • SCuBA Security Baseline for Microsoft Defender
  • SCuBA Security Baseline for Microsoft Exchange Online
  • SCuBA Security Baseline for Microsoft SharePoint Online and OneDrive
  • SCuBA Security Baseline for Microsoft Teams

Key Benefits:

  • Continuous Compliance, not point-in-time audits: Any configuration drift from SCuBA-mandated settings is detected immediately, replacing periodic manual checks with automated coverage across all five M365 baselines simultaneously.
  • Accelerated FedRAMP and CMMC compliance: Continuous SCuBA alignment directly supports FedRAMP authorization to operate and CMMC 2.0 certification efforts — cutting audit preparation from weeks to hours.

FedRAMP High Certified

Qualys SaaSDR now supports FedRAMP High-compliant deployments, enabling operation in U.S. federal and highly regulated environments. As an add-on to TotalCloud, the SaaSDR app now meets the required government security and communication standards, enabling it to be configured for secure, compliant use without separate builds or packages.

With FedRAMP High compliance, all SaaSDR communications are encrypted and use SSL-based authentication. All existing SaaSDR functionalities are fully supported under the FedRAMP High baseline.

Key Benefits:

  • Secure communication across all dependent services: All SaaSDR service communications are encrypted and SSL-authenticated, meeting the stringent data protection requirements of federal and highly regulated environments.
  • Alignment with government security requirements: Operate SaaSDR in FedRAMP High environments without separate builds or packages — the same platform, fully compliant, available immediately on the Qualys Government Platform.

Enhanced CSV Download Limits and Export Configuration

This release increases the supported inventory export capacity to 100,000 records from the previously supported 10,000. This now allows you to export multi-SaaS apps inventory with increased limits, giving security and compliance teams a complete, single-file view of Users, Groups, and Resources across all connected SaaS applications.

Key Benefits:

  • 10x larger exports: Export up to 100,000 records per CSV report, Users, Groups, and Resources, in a single operation, eliminating the need for multiple export cycles or custom API scripting.
  • Multi-SaaS apps export: Export a consolidated inventory across all connected SaaS applications in a single report, giving teams a unified, audit-ready view of identities and resources without stitching together separate per-app reports.

Resources

Share your Comments

Comments

Your email address will not be published. Required fields are marked *