Log In Get Started
Stock Markets May 14, 2026 09:24 AM

Qualys Gains FedRAMP High Authorization for TotalCloud; Shares Tick Up in Premarket

TotalCloud added to FedRAMP Marketplace after DEA-sponsored High Authorization, enabling federal and regulated entities to adopt cloud-native protections

By Hana Yamamoto QLYS

Qualys Inc. reported that its TotalCloud solution received FedRAMP High Authorization, sponsored by the U.S. Drug Enforcement Agency, extending the Qualys Government Platform's FedRAMP High status to include Cloud-Native Application Protection Platform. The announcement coincided with a 1.7% premarket uptick in QLYS shares. TotalCloud is now listed on the FedRAMP Marketplace and is presented as a unified cloud-native security platform aligned with NIST SP 800-53 High Impact controls for handling the government's most sensitive unclassified data.

Qualys Gains FedRAMP High Authorization for TotalCloud; Shares Tick Up in Premarket
QLYS

Key Points

  • Qualys TotalCloud achieved FedRAMP High Authorization, sponsored by the U.S. Drug Enforcement Agency.
  • The authorization extends the Qualys Government Platform's FedRAMP High status to include its Cloud-Native Application Protection Platform, and TotalCloud is now listed on the FedRAMP Marketplace.
  • TotalCloud combines risk-based prioritization from code to cloud, compliance monitoring, runtime and threat detection, attack surface discovery, and cloud-native application protection; federal agencies and aligned organizations can use the authorization to reduce operational risk and accelerate compliance.

Qualys Inc (NASDAQ:QLYS) saw its shares rise 1.7% in premarket trading Thursday following confirmation that its TotalCloud offering achieved FedRAMP High Authorization, with the authorization sponsored by the U.S. Drug Enforcement Agency.

The new authorization expands the FedRAMP High designation already held by the Qualys Government Platform to encompass the company's Cloud-Native Application Protection Platform (CNAAP). As part of the update, Qualys TotalCloud is now listed on the FedRAMP Marketplace, making the technology available to federal agencies, suppliers, and organizations operating in highly regulated sectors.

FedRAMP High represents the highest compliance tier within the Federal Risk and Authorization Management Program. The authorization reflects alignment with NIST SP 800-53 High Impact controls and indicates that the platform meets the security requirements applicable to the handling of the government’s most sensitive unclassified information.

TotalCloud is described by the company as a consolidated solution for cloud-native security across development and operations. The platform brings together risk-based prioritization from code to cloud, continuous compliance monitoring, runtime and threat detection, comprehensive attack surface discovery, and cloud-native application protection into a single offering.

In a company statement, Sumedh Thakar, president and CEO of Qualys, said: "Adding this milestone for CNAAP ensures agencies can modernize with confidence, securing their most sensitive workloads, while meeting the highest federal standards for trust and resilience."

The company notes that federal agencies, contractors, and other organizations that adhere to NIST SP 800-53 can leverage TotalCloud’s FedRAMP High Authorization to reduce operational risk and expedite compliance efforts. Through inheritance of pre-validated controls within a shared responsibility model, organizations may be able to streamline their authority-to-operate processes and reduce audit complexity.

Qualys confirms that TotalCloud is available as part of the Qualys Government Platform offering on the FedRAMP Marketplace.

Implications and context

  • Federal agencies and suppliers now have an option for FedRAMP High-authorized cloud-native application protection through Qualys TotalCloud.
  • The authorization ties the product to NIST SP 800-53 High Impact requirements, a standard referenced for sensitive unclassified government data.
  • Qualys’ market listing of TotalCloud on the FedRAMP Marketplace formalizes availability to procurement channels covered by the program.

Risks

  • Operational risk remains a concern for agencies and contractors even with FedRAMP High authorization, as organizations still must integrate the solution into their environments.
  • Audit complexity and authority-to-operate processes persist; while pre-validated controls may streamline these, organizations will still need to manage ATO steps.
  • The shared responsibility model requires entities to correctly implement inherited controls and responsibilities to realize the compliance and risk-reduction benefits.

More from Stock Markets

Klarna Shares Rally After Strong Q1 2026 Results and Surging GMV May 14, 2026 Broadcom Shares Jump as Analysts Raise Targets and AI Revenue Outlook Strengthens May 14, 2026 KeyBanc Flags Stretched Valuation for Apple as Early Demand Signals Worry Analysts May 14, 2026 F2i Confirms Continued Control of 2i Aeroporti After CDP Equity Term Sheet May 14, 2026 Nvidia Shares Rise as U.S. Clears H200 Licenses for Major Chinese Buyers; Deliveries Still Pending May 14, 2026