Telus turns to SaaS platform for IT compliance offering

Telus on Tuesday announced it has chosen a U.S.-based vulnerability auditing provider’s software-as-a-service (SaaS) platform to help Canadian customers deal with new IT risk and compliance regulations.

As many Canadian retailers struggle to become compliant with global requirements such as the Payment Card Industry Data Security Standard (PCI DSS), which regulates the security practices organizations must use to engage in credit card transactions, Telus hopes its partnership with Redwood Shores, Calif.-based Qualys will attract interest in its security offerings.

Telus Security Solutions will use Qualys’ on demand security and compliance management platform, QualysGuard, to scan customer assets and detect threats in real-time.

In addition to helping with PCI DSS compliance, Telus also aims to provide Qualys’ assessment and reporting tools for standards such as C-Sox, enacted to improve the accuracy and reliability of corporate disclosures, as well as the Management of Information Technology Security (MITS), which define security requirements that federal departments must fulfill to ensure the security of their IT assets.

Telus said that because of the consolidation in the security industry, it chose to migrate to a SaaS platform as opposed to having to develop and integrate its own, potentially inferior software application.

Telus will launch what it calls its Proactive Vulnerability Management Service, utilizing Qualys’ products, next month.