QLYS Stock: Insider Activity, Filings & Research
Qualys, Inc. (QLYS) — Drillr’s hub for QLYS insider activity, SEC filings, earnings signals and AI research. Over the trailing 3 months, QLYS insiders filed 0 open-market buys and 14 sales (SEC Form 4).
QLYS insider trading activity (SEC Form 4)
| Date | Insider | Type | Shares | Price |
|---|---|---|---|---|
| Jun 3, 2026 | Kim Joo Miofficer: CHIEF FINANCIAL OFFICER | Sell | 419 | $113.29 |
| Jun 3, 2026 | Kim Joo Miofficer: CHIEF FINANCIAL OFFICER | Sell | 306 | $109.78 |
| Jun 3, 2026 | Kim Joo Miofficer: CHIEF FINANCIAL OFFICER | Sell | 153 | $110.60 |
| Jun 2, 2026 | Thakar Sumedh Sdirector, officer: CEO & PRESIDENT | Sell | 10,861 | $114.97 |
| Jun 2, 2026 | Thakar Sumedh Sdirector, officer: CEO & PRESIDENT | Sell | 1,700 | $113.95 |
| Jun 2, 2026 | Thakar Sumedh Sdirector, officer: CEO & PRESIDENT | Sell | 600 | $112.46 |
| Jun 2, 2026 | Thakar Sumedh Sdirector, officer: CEO & PRESIDENT | Sell | 39 | $115.57 |
| May 26, 2026 | Pfeiffer Wendydirector | Sell | 500 | $101.21 |
| May 21, 2026 | POSEY BRUCE Kofficer: CHIEF LEGAL OFFICER | Sell | 7 | $101.17 |
| May 21, 2026 | POSEY BRUCE Kofficer: CHIEF LEGAL OFFICER | Sell | 858 | $100.43 |
| May 21, 2026 | POSEY BRUCE Kofficer: CHIEF LEGAL OFFICER | Sell | 50 | $101.23 |
| May 21, 2026 | Kim Joo Miofficer: CHIEF FINANCIAL OFFICER | Sell | 1,627 | $100.17 |
| May 21, 2026 | POSEY BRUCE Kofficer: CHIEF LEGAL OFFICER | Sell | 2,334 | $100.16 |
| May 4, 2026 | Thakar Sumedh Sdirector, officer: CEO & PRESIDENT | Tax | 6,748 | $88.53 |
| May 4, 2026 | POSEY BRUCE Kofficer: CHIEF LEGAL OFFICER | Tax | 2,270 | $88.53 |
Source: QLYS SEC Form 4 filings, latest Jun 3, 2026. For informational purposes only — not investment advice.
Qualys, Inc. company profile
Overview
Qualys, Inc. (NASDAQ:QLYS) is a cloud-based cybersecurity company founded in 1999 and headquartered in Foster City, California. The company went public in September 2012 and has established itself as a leading provider of vulnerability management and IT security solutions. Qualys operates a unified cloud platform that delivers integrated IT security, compliance, and digital risk management solutions to enterprises, government entities, and small-to-medium businesses across various industries including financial services, healthcare, government, and technology sectors.
Business
Qualys operates in the cybersecurity software industry, specifically focusing on vulnerability management and IT security compliance. The company's core offering is the Qualys Cloud Platform, which serves as a unified foundation for delivering multiple security applications and services. The platform includes several key product categories. Vulnerability Management, Detection and Response (VMDR) represents the company's flagship solution, deployed by approximately 54% of customers, which identifies security vulnerabilities across IT infrastructure and provides automated remediation guidance. Patch Management and Cybersecurity Asset Management solutions help organizations maintain updated systems and track their digital assets, contributing roughly 15% of total bookings. The company's newer Cloud Security solutions, branded as TotalCloud CNAPP (Cloud-Native Application Protection Platform), address security risks in cloud environments and represent about 4-5% of recent bookings. Additional solutions include Web Application Security for protecting web-based applications, Compliance solutions for regulatory adherence including PCI and policy compliance, and emerging offerings like TotalAI for artificial intelligence security assessment. The company has also introduced Enterprise TruRisk Management (ETM), which consolidates security findings from multiple tools into a unified risk assessment platform, representing their evolution toward comprehensive risk operations. Revenue is primarily subscription-based, with approximately 46-49% of revenues flowing through channel partners including managed service providers, security consultants, and resellers. The geographic revenue split is roughly 57-58% from the United States and 42-43% from international markets.
Revenue model
Qualys operates a Software-as-a-Service (SaaS) subscription model where customers pay recurring fees to access cloud-based security applications. The company generates revenue through annual and multi-year subscription contracts, with customers typically paying based on the number of assets being monitored, applications being secured, or users accessing the platform. The primary paying customers are IT security teams and Chief Information Security Officers (CISOs) at enterprises, government agencies, and mid-market companies. These organizations subscribe to Qualys solutions to meet regulatory compliance requirements, manage cybersecurity risks, and maintain visibility across their IT infrastructure. The company serves over 19,000 customers globally, with approximately 200 customers spending more than $500,000 annually. Several factors influence the company's margins and growth trajectory. Positive margin drivers include the scalable nature of cloud-based delivery, which allows serving additional customers with minimal incremental infrastructure costs, and the platform's consolidation value proposition that can command premium pricing as customers reduce their security tool sprawl. The company's net dollar expansion rate of 103% indicates existing customers are expanding their usage over time. Margin pressures come from increased competition in the cybersecurity space, particularly from larger players like Microsoft and emerging point solutions. Extended sales cycles and heightened budget scrutiny, especially in challenging macroeconomic conditions, can impact deal velocity and pricing power. Additionally, the company's significant investments in sales, marketing, and channel partnerships to drive growth require careful balance with profitability targets. The shift toward partner-driven sales, while expanding market reach, typically involves revenue sharing that can compress margins compared to direct sales.
Competitive moat
Qualys possesses a moderate competitive moat built primarily around its comprehensive platform integration and established customer relationships. The company's strongest defensive position comes from its unified cloud platform architecture, which allows customers to manage multiple security functions through a single interface rather than juggling disparate point solutions. This creates switching costs as customers become dependent on the integrated workflows and consolidated reporting capabilities. The company's extensive asset discovery and vulnerability database, built over more than two decades, provides deep institutional knowledge that would be difficult for new entrants to replicate quickly. Additionally, Qualys benefits from regulatory compliance positioning, particularly in government markets where it has achieved FedRAMP certifications that create barriers for competitors. However, the moat faces significant challenges. Large technology companies like Microsoft pose a substantial threat by bundling security capabilities with their broader software suites, often at attractive pricing that can undercut standalone security vendors. The cybersecurity market's rapid evolution toward cloud-native and AI-driven solutions creates opportunities for nimble startups to disrupt established players with innovative approaches. The company's channel partner dependency, while expanding market reach, also creates vulnerability as partners may shift allegiances to competitors offering better terms or more comprehensive solutions. Furthermore, as cybersecurity becomes increasingly commoditized, Qualys must continuously innovate to maintain differentiation, particularly in areas like artificial intelligence security and cloud-native protection where newer entrants may have architectural advantages.
Risks & safety
Qualys demonstrates a strong financial safety profile with solid cash generation and conservative debt levels, though valuation metrics suggest limited margin of safety at current prices. **Cash and Solvency:** • Strong cash position of $291 million with minimal debt (debt-to-equity ratio of 0.10) • Robust free cash flow generation of $108 million in Q1 2025, indicating healthy cash conversion • Current ratio of 1.39 provides adequate liquidity coverage • No significant solvency risk given strong balance sheet and recurring revenue model **Valuation Metrics:** • Price-to-earnings ratio of 24.2x appears reasonable for a growing SaaS company • EV/EBITDA of 19.4x is elevated but within range for quality software companies • Price-to-book ratio of 9.2x reflects significant goodwill and intangible assets typical of software firms • Graham number analysis suggests potential overvaluation relative to conservative metrics **Other Considerations:** • Recurring subscription revenue model provides predictable cash flows • Net dollar expansion rate of 103% indicates modest but positive customer growth trends • Revenue growth of 10% year-over-year shows steady but not exceptional expansion
Recent development
Over the past few years, Qualys has undergone a significant strategic transformation focused on platform consolidation and risk quantification. The company has evolved from primarily offering point vulnerability management solutions to developing a comprehensive risk operations platform. Key strategic initiatives include the launch of Enterprise TruRisk Management (ETM), which the company positions as the world's first cloud-based Risk Operations Center (ROC). This platform consolidates security findings from multiple tools, applies threat intelligence, and provides contextual business risk assessments with remediation plans. The introduction of TruRisk Eliminate capabilities allows organizations to address security risks without traditional patching, representing a significant innovation in vulnerability remediation. The company has expanded into artificial intelligence security with TotalAI, offering security scanning and assessment capabilities for AI and large language model deployments. This positions Qualys to capitalize on the growing need for AI governance and security as organizations increasingly adopt AI technologies. Qualys has also shifted toward a partner-first go-to-market strategy, with channel revenue growing to 49% of total revenues. The company is developing managed Risk Operations Centers (mROC) for service providers, enabling partners to offer comprehensive risk management services to their clients. Additionally, significant investments in federal market capabilities, including pursuit of FedRAMP high certification, demonstrate expansion into government sectors. Recent product developments include enhanced cloud security solutions through TotalCloud 3.0 and expanded patch management capabilities, while the company continues to emphasize helping customers quantify cybersecurity risk in financial terms rather than just technical metrics.
QLYS company profile · for informational purposes only — not investment advice.
Track QLYS with Drillr
SEC filings, earnings calls, insider activity, alt-data signals — all queryable through Drillr's AI terminal and MCP API.
Try Drillr for free