Qualys Scanning
All Subscriber Websites (SWS) are scanned for security vulnerabilities using the Qualys scanner, more specific information can be found on the SWS-Specific Requirements page. To kickoff Qualys scanning prior to or independent of SQA submittal please complete the Qualys Scan ServiceNow (In Development) request or reach out to SQA
Checkmarx Scanning
Checkmarx scanning is currently available for Subscriber Websites (SWS) and Desktop deliverables. To find more details pertaining to the Checkmarx scanning process please review SAST Basic Scan Process. To familiarize yourself with the process of using Checkmarx and remediating vulnerabilities, please review Checkmarx SAST - Vulnerability Remediation Process. To kickoff Checkmarx scanning prior to or independent of SQA submittal please complete the Checkmarx Scan ServiceNow (In Development) request or reach out to SQA/InfoSec.