Qualys Brings Predictive Precision to Cyber Risk in the Agentic AI Era

At its Risk Operations Conference (ROCon) in Houston, cybersecurity heavyweight Qualys unveiled a sweeping update to its Enterprise TruRisk Management (ETM) platform — a move that signals a turning point for risk management in an age increasingly defined by agentic AI and autonomous digital identities.

The new suite of capabilities — ETM Identity, TruLens, and TruConfirm — is designed to do more than just detect vulnerabilities. It’s built to predict them. By aligning identity posture, real-time threat intelligence, and exploit validation into a unified risk operations framework, Qualys is betting that security teams can finally move from reactive firefighting to measurable, proactive defense.

From Reactive to Predictive Risk Management

For most enterprises, AI has become both a competitive advantage and a liability. The explosion of non-human and autonomous identities — API keys, service accounts, and AI agents — has widened the attack surface faster than traditional tools can adapt.

“Enterprises today need advanced solutions to address the growing risks from AI-driven threats and sophisticated adversaries,” said Tyler Shields, principal analyst at Omdia. “Qualys’ latest enhancements will help security teams operate with greater precision and efficiency for measurable risk reduction. Its Enterprise TruRisk Management (ETM) solution expands visibility to non-human and agentic AI identities and provides predictive, industry and environment-specific risk insights.”

That visibility is central to Qualys’ Risk Operation Center (ROC) vision — a single source of truth that unifies security, IT, and compliance teams around a shared language of risk, the company’s proprietary TruRisk™ metric.

ETM Identity: Tackling the Newest Invisible Threats

ETM Identity zeroes in on one of cybersecurity’s most under-acknowledged blind spots: identity risk. By pulling data from Active Directory, Microsoft Entra ID, cloud identity providers, and IDaaS platforms, the system builds a correlated Identity TruRisk™ score that highlights which credentials and service accounts pose the greatest lateral-movement potential.

“Identity risk has become one of the most exploited and least visible threats organizations face today,” said Corey Amsler, director of risk management at GE Vernova. “Security teams need unified insight, aligning identity risk with asset risk, in order to act decisively. No effective exposure management strategy is complete without it.”

In practical terms, this means ETM Identity doesn’t just flag weak credentials — it maps the real-world blast radius of their compromise, allowing automated remediation workflows to cut off potential breach pathways before they’re exploited.

TruLens: Real-Time Threat Intelligence, Tailored

If ETM Identity is the “who,” TruLens is the “how.” The new module acts as a live threat-intelligence filter that continuously reprioritizes exposures based on current exploits, business impact, and active campaigns — essentially a dynamic threat weather map.

Instead of dumping long lists of CVEs, TruLens re-ranks vulnerabilities like CISA’s Known Exploited Vulnerabilities (KEV) catalog in real time, ensuring that SOC analysts focus only on the issues that truly matter to their environment. Its integration with a mobile app means that executives and security leads can access live risk dashboards on the go — a subtle nod to the growing need for board-level visibility into cyber exposure.

TruConfirm: Testing the Exploitability Gap

Perhaps the most forward-leaning piece of the update, TruConfirm, lets organizations safely test whether a given exposure is actually exploitable. By running controlled, real-world attack simulations, it can validate the gap between theoretical vulnerabilities and practical attack paths — a distinction that could save teams thousands of wasted remediation hours.

Once a vulnerability is confirmed exploitable, the platform automatically triggers patching or mitigation through ITSM workflows and updates the TruRisk™ score to reflect provable risk reduction.

Agentic AI, Verified Security

For Qualys CEO Sumedh Thakar, this evolution is about more than keeping pace with automation — it’s about quantifying security in a world increasingly shaped by autonomous decision-making systems.

“Agentic AI is transforming cybersecurity and forcing organizations to rethink how they manage risk. To stay ahead, they must proactively reduce risk, anticipate where attackers are most likely to strike, and clearly demonstrate the impact of their security investments,” Thakar said. “We’re empowering organizations to measure, communicate, and eliminate cyber risk in ways that drive real, verifiable risk reduction at the executive and board level.”

The Bigger Picture

The timing of this release reflects a broader industry shift: from chasing alerts to validating outcomes. As enterprises face pressure from both regulators and boards to prove that their cybersecurity investments are effective, the ability to confirm exploitability — not just detect it — represents a competitive edge.

With ETM Identity, TruLens, and TruConfirm, Qualys is positioning itself as one of the few vendors ready to translate AI-driven risk into business-driven action — and, crucially, to prove it.

Qualys ETM is now generally available. ETM Identity, TruLens, and TruConfirm are in preview and can be accessed through Qualys’ free trial program.