Rapid7 Delivers Command Platform Innovations to Identify, Prioritize, and Remediate Critical Exposures
Rapid7 (NASDAQ: RPD) has unveiled new innovations to its Exposure Management offering within the Command Platform, focusing on enhanced attack surface visibility and context. The updates introduce continuous visibility of sensitive data across multi-cloud environments, featuring:
- Integration with cloud security services (AWS Macie, GCP DLP, Microsoft Defender)
- AI-driven CVSS scoring for vulnerability assessment
- Enhanced Remediation Hub with integrated asset context
The platform now incorporates sensitive data insights into an AI-driven risk scoring and prioritization model, enabling security teams to track data across locations, ownership, access controls, and posture statuses. The improvements aim to expedite exposure remediation and strengthen risk management capabilities through automated data classification and improved mean-time-to-remediate (MTTR).
Rapid7 (NASDAQ: RPD) ha presentato nuove innovazioni nella sua offerta di Exposure Management all'interno della Command Platform, focalizzandosi su una maggiore visibilità e contesto della superficie di attacco. Gli aggiornamenti introducono una visibilità continua dei dati sensibili in ambienti multi-cloud, con:
- Integrazione con servizi di sicurezza cloud (AWS Macie, GCP DLP, Microsoft Defender)
- Valutazione delle vulnerabilità con punteggio CVSS guidato dall'IA
- Hub di rimedio potenziato con contesto degli asset integrato
La piattaforma ora incorpora approfondimenti sui dati sensibili in un modello di punteggio e priorizzazione del rischio guidato dall'IA, consentendo ai team di sicurezza di monitorare i dati in base a posizione, proprietà, controlli di accesso e stati di postura. I miglioramenti mirano ad accelerare il rimedio delle esposizioni e a rafforzare le capacità di gestione del rischio attraverso la classificazione automatizzata dei dati e un miglioramento del tempo medio di ripristino (MTTR).
Rapid7 (NASDAQ: RPD) ha presentado nuevas innovaciones en su oferta de Gestión de Exposición dentro de la Plataforma de Comando, centrándose en una mayor visibilidad y contexto de la superficie de ataque. Las actualizaciones introducen visibilidad continua de datos sensibles en entornos multi-nube, que incluyen:
- Integración con servicios de seguridad en la nube (AWS Macie, GCP DLP, Microsoft Defender)
- Evaluación de vulnerabilidades con puntuación CVSS impulsada por IA
- Centro de remediación mejorado con contexto de activos integrado
La plataforma ahora incorpora información sobre datos sensibles en un modelo de puntuación y priorización de riesgos impulsado por IA, lo que permite a los equipos de seguridad rastrear datos en función de la ubicación, propiedad, controles de acceso y estados de postura. Las mejoras tienen como objetivo acelerar la remediación de exposiciones y fortalecer las capacidades de gestión de riesgos a través de la clasificación automatizada de datos y una mejora en el tiempo medio de remediación (MTTR).
Rapid7 (NASDAQ: RPD)는 Command Platform 내의 Exposure Management 제공을 위한 새로운 혁신을 발표하며, 공격 표면 가시성과 맥락을 향상시키는 데 중점을 두었습니다. 이번 업데이트는 멀티 클라우드 환경에서 민감한 데이터에 대한 지속적인 가시성을 도입합니다. 주요 내용은 다음과 같습니다:
- 클라우드 보안 서비스 통합 (AWS Macie, GCP DLP, Microsoft Defender)
- 취약성 평가를 위한 AI 기반 CVSS 점수
- 통합 자산 맥락을 갖춘 향상된 수정 허브
이 플랫폼은 이제 AI 기반 위험 점수 및 우선 순위 모델에 민감한 데이터 통찰력을 통합하여 보안 팀이 위치, 소유권, 접근 제어 및 포지션 상태에 따라 데이터를 추적할 수 있도록 합니다. 이러한 개선 사항은 노출 수정 속도를 높이고 자동화된 데이터 분류 및 평균 수정 시간(MTTR) 개선을 통해 위험 관리 능력을 강화하는 것을 목표로 합니다.
Rapid7 (NASDAQ: RPD) a dévoilé de nouvelles innovations dans son offre de Gestion de l'Exposition au sein de la Command Platform, se concentrant sur une meilleure visibilité et un contexte de la surface d'attaque. Les mises à jour introduisent une visibilité continue des données sensibles dans des environnements multi-cloud, comprenant :
- Intégration avec des services de sécurité cloud (AWS Macie, GCP DLP, Microsoft Defender)
- Évaluation des vulnérabilités avec un score CVSS alimenté par l'IA
- Hub de remédiation amélioré avec contexte d'actifs intégré
La plateforme intègre désormais des informations sur les données sensibles dans un modèle de scoring et de priorisation des risques alimenté par l'IA, permettant aux équipes de sécurité de suivre les données en fonction des emplacements, de la propriété, des contrôles d'accès et des statuts de posture. Les améliorations visent à accélérer la remédiation des expositions et à renforcer les capacités de gestion des risques grâce à la classification automatisée des données et à une amélioration du temps moyen de remédiation (MTTR).
Rapid7 (NASDAQ: RPD) hat neue Innovationen für sein Exposure Management-Angebot innerhalb der Command Platform vorgestellt, die sich auf eine verbesserte Sichtbarkeit und Kontext der Angriffsfläche konzentrieren. Die Aktualisierungen führen eine kontinuierliche Sichtbarkeit sensibler Daten in Multi-Cloud-Umgebungen ein, darunter:
- Integration mit Cloud-Sicherheitsdiensten (AWS Macie, GCP DLP, Microsoft Defender)
- KI-gestützte CVSS-Bewertung zur Schwachstellenbewertung
- Verbesserter Remediation Hub mit integriertem Asset-Kontext
Die Plattform integriert nun Einblicke in sensible Daten in ein KI-gestütztes Risikobewertungs- und Priorisierungsmodell, das es Sicherheitsteams ermöglicht, Daten nach Standort, Eigentum, Zugriffskontrollen und Status zu verfolgen. Die Verbesserungen zielen darauf ab, die Behebung von Expositionen zu beschleunigen und die Risikomanagementfähigkeiten durch automatisierte Datenklassifizierung und verbesserte mittlere Wiederherstellungszeit (MTTR) zu stärken.
- Integration with major cloud security providers expands market reach
- AI-driven scoring system addresses gap in timely CVSS vulnerability assessment
- Streamlined remediation process likely to improve operational efficiency
- Enhanced automation reduces manual processes in data protection
- No specific performance metrics or ROI data provided
- Implementation timeline and costs not disclosed
Insights
Rapid7's latest Command Platform enhancements represent a strategic evolution of its exposure management capabilities that could strengthen its competitive positioning in the $13.5B vulnerability management market, which is projected to grow at 16.3% CAGR through 2028.
The multi-cloud sensitive data discovery integration addresses a critical gap in most security programs. While competitors like Tenable and Qualys offer vulnerability scanning, Rapid7's approach of contextualizing vulnerabilities with sensitive data exposure creates a more compelling risk narrative for security leaders who must justify remediation priorities to technical teams. This capability is particularly valuable amid increasing regulatory pressures from GDPR, CCPA, and upcoming federal privacy legislation.
The AI-driven vulnerability scoring system tackles a significant industry bottleneck. With the NVD currently experiencing a 90+ day backlog for CVSS scoring of new vulnerabilities, security teams often operate with incomplete risk information. By applying machine learning to generate predictive severity scores, Rapid7 enables more timely prioritization decisions - a capability that could become a key differentiator as vulnerability volumes continue to surge (17,300+ new CVEs in 2023 alone).
Most compelling from an investment perspective is the enhanced Remediation Hub with embedded asset context. This addresses the persistent efficiency challenges in security operations, where teams typically use 25-49 different security tools according to IBM research. By consolidating contextual intelligence and remediation guidance into unified workflows, Rapid7 is positioning itself at the intersection of two high-growth markets: vulnerability management and security orchestration.
These innovations align with the industry's shift toward consolidated security platforms and could accelerate Rapid7's transition from point solutions to a comprehensive security platform - a strategy that typically commands higher valuation multiples. For investors, this suggests potential for both improved customer retention (through deeper platform integration) and expanded average contract values as customers adopt these enhanced capabilities.
Latest features designed to protect sensitive data across multi-cloud environments, drive effective prioritization and accelerated remediation of exposures with AI-driven risk scoring and integrated asset context
BOSTON, Feb. 25, 2025 (GLOBE NEWSWIRE) -- Rapid7 (NASDAQ: RPD), a leader in extended risk and threat detection, today announced new innovations to its Exposure Management offering. These latest features further enhance the Rapid7 Command Platform, delivering unmatched attack surface visibility and unparalleled context. With this expanded offering, organizations now have continuous visibility into sensitive data stored across their multi-cloud environments paired with the context they need to prioritize and remediate exposures effectively.
As organizations increasingly need to track who has access to sensitive data, ensure it is adequately protected, and verify compliance with evolving privacy regulations, the ability to discover and protect this data from endpoint to cloud has become table stakes. These new innovations within Rapid7’s Exposure Management weave sensitive data insights into an AI-driven risk scoring and prioritization model, enabling security teams to track the data as it relates to assets across locations, ownership, access controls, and posture statuses. In addition, the updates include enhancements to Remediation Hub, enabling risk-based exposure management by aligning risk severity, asset context, reachability, and exploitability together with recommended remediations. This provides security teams enhanced asset context at the time of remediation and removes the need for analysts to navigate across the platform to eliminate exposures.
“Security teams today need more than just visibility—they need it paired with unparalleled context and control for maximum efficiency,” said Craig Adams, chief product officer at Rapid7. “That’s exactly what we’re delivering with these latest innovations. By integrating sensitive data insights, AI-driven prioritization, and embedded remediation guidance, we’re ensuring that organizations can proactively reduce risk, expedite response times, and gain deeper visibility into their attack surface.”
These new innovations to Exposure Command provide organizations with the ability to:
- Discover and Protect of Sensitive Data Across Multi-Cloud Environments: By integrating with Cloud Service Provider (CSP) security services like AWS Macie, GCP DLP, and Microsoft Defender, along with Infrastructure-as-Code (IaC) tagging, teams can classify and secure sensitive data from the start—eliminating manual processes and improving data hygiene. These insights feed directly into Layered Context and Attack Path Analysis, ensuring security teams can prioritize exposures that put sensitive information at risk.
- Prioritize Exposures with AI-Generated Vulnerability Scoring: The rapid growth of vulnerabilities has outpaced vendors and agencies like NIST and NVD, leaving security teams without timely CVSS scores to assess severity. To bridge this gap, Rapid7 AI-driven CVSS scoring uses advanced machine learning to analyze vulnerability data, generate intelligence-driven scores, and enhance accuracy of Active Risk scoring—helping teams cut through the noise and prioritize exposures with confidence.
- Speed Up Exposure Remediation with Integrated Asset Context: The expanded Surface Command and Remediation Hub embeds remediation guidance directly within asset inventory and asset detail pages, eliminating platform switching and streamlining risk mitigation. This deeper integration accelerates mean-time-to-remediate (MTTR), enriches asset context with third-party security and ITOps insights, and enhances collaboration by providing stakeholders with the contextual intelligence needed for faster, more informed decision-making.
To learn more about Rapid7’s Command Platform or to request a demo, visit https://www.rapid7.com/products/command/request-demo/.
About Rapid7
Rapid7, Inc. (NASDAQ: RPD) is on a mission to create a safer digital world by making cybersecurity simpler and more accessible. We empower security professionals to manage a modern attack surface through our best-in-class technology, leading-edge research, and broad, strategic expertise. Rapid7’s comprehensive security solutions help more than 11,000 global customers unite cloud risk management with threat detection and response to reduce attack surfaces and eliminate threats with speed and precision. For more information, visit our website, check out our blog, or follow us on LinkedIn or X.
Rapid7 Media Relations
Alice Randall
Director, Global Corporate Communications
press@rapid7.com
(857) 216-7804
Rapid7 Investor Contact
Elizabeth Chwalk
Vice President, Investor Relations
investors@rapid7.com
(617) 865-4277
FAQ
What new features did Rapid7 (RPD) add to its Command Platform in February 2025?
How does Rapid7's new AI-driven CVSS scoring system work?
Which cloud security services does Rapid7's new platform integrate with?
What improvements were made to Rapid7's Remediation Hub?
