Latest news with #ExposureCommand
Techday NZ
29-07-2025
- Business
- Techday NZ
Rapid7 integrates Active Patching for automated risk mitigation
Rapid7 has released Active Patching, an automated patching and remediation feature developed in partnership with Automox and integrated into the Rapid7 Exposure Command platform. Active Patching is designed for security and IT teams to address vulnerabilities on exposed endpoints by automating patch deployment, applying compensating controls when patches are not available, and giving real-time insight into the status of remediation efforts. The new capability comes as organisations face increasing challenges from attackers who are quick to exploit zero-day vulnerabilities and system misconfigurations. Traditional approaches to patching, which often rely on manual processes, can lead to delays and incomplete coverage, potentially leaving systems exposed. Active Patching aims to tackle these issues by combining threat intelligence, contextual risk insights and automated workflows for faster response to vulnerabilities. Automated risk mitigation Active Patching works in conjunction with Automox's Autonomous Endpoint Management technology, giving security and IT teams the ability to prioritise and implement patches efficiently across a wide selection of IT assets. This approach provides proactive mitigation and helps maintain compliance through exposure management. The solution facilitates the identification of vulnerable systems, keeps track of which require patches, and highlights those with no currently available fixes. Craig Adams, Chief Product Officer at Rapid7, commented on the product's aims and functionality. "The visibility and context Exposure Command delivers is unmatched. It's not just about seeing where you're vulnerable, it's about knowing exactly what to do next. We've built a platform that doesn't just highlight risk, it contextualises it. Active Patching is another way that Rapid7's Command Platform turns insights into action, enabling teams to automatically remediate vulnerabilities or apply compensating controls in real time, even when a patch doesn't exist. That's the difference between reactively managing vulnerabilities and proactively eliminating exposures." By leveraging Automox's automation capabilities, Active Patching seeks to deliver scalable, impact-driven risk mitigation by automating remediation actions across multiple devices at once. According to Rapid7, threat intelligence is embedded in every finding, empowering organisations to prioritise remediations that matter most to essential business assets. The platform compiles contextual insights, dynamic risk scores, and actionable intelligence sourced from Rapid7 Labs to ensure confidence in decisions regarding vulnerability management. Key features and integration The system introduces several features to improve the remediation process: pre-built virtual patching templates to protect assets lacking known fixes, out-of-box workflows to drive compliance and quick remediation, and closed-loop vulnerability management for continuous status tracking. Additionally, Active Patching enables automated fixes for a wide range of operating systems, including Linux, MacOS, Windows, and their associated third-party applications. Jason Kikta, Chief Information Security Officer and Senior Vice President of Product at Automox, highlighted the joint value brought by the partnership between the two companies. "Modern security demands more than just knowing where you're exposed, it requires the ability to take action, fast. Our partnership with Rapid7 brings that capability to life. By embedding our patch and configuration automation technology into Exposure Command, we're enabling customers to go from identification to remediation in a matter of minutes, dramatically reducing risk while eliminating manual overhead." Rapid7 states that Active Patching enhances the Exposure Command platform's existing visibility of an organisation's attack surface, vulnerability management capabilities, and threat intelligence. The company indicates that this approach enables security teams to operate more efficiently and respond more quickly to critical security issues in their environments.
Channel Post MEA
24-07-2025
- Business
- Channel Post MEA
Rapid7 Launches Active Patching
Rapid7 has announced the release of Active Patching, a fully automated patching and remediation solution integrated into Rapid7's Exposure Command solution. Powered by Automox, Active Patching empowers security and IT teams to proactively mitigate risk across vulnerable assets. The pace at which attackers exploit zero-day vulnerabilities and misconfigurations continues to accelerate. At the same time, traditional patching methods often leave critical gaps due to delays, complexity, and limited coverage. Active Patching within Exposure Command addresses this challenge by automating risk remediation and providing continuous, real-time visibility into which systems require patches and which have no available fixes. Powered by Automox's Autonomous Endpoint Management platform, this new solution provides security and IT teams with another powerful way to prioritize effectively and accelerate response times with Exposure Command. The result is a proactive and compliant security posture that addresses vulnerabilities head-on. 'The visibility and context Exposure Command delivers is unmatched. It's not just about seeing where you're vulnerable, it's about knowing exactly what to do next,' said Craig Adams, Chief Product Officer at Rapid7. 'We've built a platform that doesn't just highlight risk, it contextualizes it. Active Patching is another way that Rapid7's Command Platform turns insights into action, enabling teams to automatically remediate vulnerabilities or apply compensating controls in real time, even when a patch doesn't exist. That's the difference between reactively managing vulnerabilities and proactively eliminating exposures.' Active Patching augments Exposure Command's complete attack surface visibility, native and third-party vulnerability management, and enriched threat intelligence with automated patching and remediation capabilities from Automox, providing organizations the following: Impact-driven, scalable mitigation: Efficiently reduce risk and eliminate manual process by automating remediation actions across multiple assets at once. Threat intelligence embedded into every finding: Remediate risks automatically and with confidence by knowing which vulnerabilities impact mission-critical assets by combining contextual insights, dynamic risk scores, and actionable threat intelligence from Rapid7 Labs. Actionable risk acceptance: Protect assets without known fixes via an expansive array of pre-built virtual patching templates that can help automatically configure endpoints and prevent attacks targeting unpatched systems. Automated remediation workflows: Leverage hundreds of out-of-box actionsto automate risk remediation, drive compliance, and respond to vulnerabilities faster. Closed-loop vulnerability management: Continuously view the status of all deployed patches to establish trust that vulnerabilities have been properly mitigated. Unmatched patching and configuration coverage: Automate fixes across almost any device, including Linux, MacOS, and Windows operating systems and their third-party software. 'Modern security demands more than just knowing where you're exposed—it requires the ability to take action, fast. Our partnership with Rapid7 brings that capability to life,' said Jason Kikta, CISO and Senior vice president of product at Automox. 'By embedding our patch and configuration automation technology into Exposure Command, we're enabling customers to go from identification to remediation in a matter of minutes, dramatically reducing risk while eliminating manual overhead.'
Yahoo
13-02-2025
- Business
- Yahoo
Rapid7 Inc (RPD) Q4 2024 Earnings Call Highlights: Strong ARR Growth Amidst Competitive Challenges
Release Date: February 12, 2025 For the complete transcript of the earnings call, please refer to the full earnings call transcript. Rapid7 Inc (NASDAQ:RPD) ended 2024 with $840 million in ARR, growing 4% over the prior year, in line with their outlook. Revenue and operating income exceeded guided ranges, with over $150 million in free cash flow generated for the year. The detection and response business delivered double-digit growth, ending the year with over $400 million in ARR. The company made substantial progress in scaling its partner ecosystem, booking 80-90% of new ARR through the channel. Rapid7 Inc (NASDAQ:RPD) achieved significant milestones in cloud security adoption with the release of Exposure Command, driving over 20% year-over-year growth in risk and exposure management pipeline generation. Rapid7 Inc (NASDAQ:RPD) acknowledged that recent growth has not kept pace with broader security demand. The vulnerability management landscape is facing intense competition and cloud migration, leading to secular pressure and increased churn. The company experienced challenges in managing the transition from traditional vulnerability management to integrated security operations. There is uncertainty and disruption with certain state, local, educational, and healthcare customers affecting ARR growth expectations. The managed service component of the business comes with lower gross margins due to its labor-intensive nature. Warning! GuruFocus has detected 6 Warning Signs with RPD. Q: Can you clarify the growth expectations for the Detection and Response (DNR) business and how it compares to the Vulnerability Management (VM) segment? A: Corey Thomas, CEO: The DNR business, particularly Managed Detection and Response (MDR), is growing in the mid-teens and represents a significant portion of our ARR. The remainder includes cloud VM and legacy products. We are confident in the growth potential of the DNR segment and are investing in it. The integrated exposure management market is also expected to be a growth driver, although we are cautious about overestimating its immediate impact. Q: How do you view the margins for the Managed Detection and Response (MDR) business compared to the rest of the company? A: Tim Adams, CFO: Product gross margins are expected to remain stable in the mid-seventies. The managed service aspect of MDR has a lower gross margin due to its labor-intensive nature, but we are working on efficiencies through AI and our innovation center in India. Overall, we anticipate maintaining stable product gross margins. Q: What is Rapid7's value proposition in the competitive cloud security market, and how sustainable is your success? A: Corey Thomas, CEO: Our focus is on reducing complexity for customers by providing integrated exposure management across various environments, including cloud and on-prem. We aim to offer a comprehensive view of the attack surface, manage risk, and ensure compliance. This approach targets a broader market beyond the initial cloud adopters, making it a sustainable strategy. Q: How are you addressing the decline in the Vulnerability Management (VM) market, and what is the outlook for this segment? A: Corey Thomas, CEO: The traditional on-prem VM market is not experiencing significant growth, but we see opportunities in managing risk in a fragmented regulatory environment. We are focusing on exposure management, which is gaining traction. While we expect incremental positive impact this year, the more substantial benefits will likely materialize next year. Q: Can you elaborate on the competitive environment and pricing pressures Rapid7 faces? A: Corey Thomas, CEO: The traditional VM market has been competitive, but our exposure command is gaining momentum with better-than-expected conversion rates. We see a robust upsell opportunity within our install base, particularly in the DNR and exposure management segments. While the market remains competitive, we are well-positioned to capitalize on these opportunities. For the complete transcript of the earnings call, please refer to the full earnings call transcript. This article first appeared on GuruFocus.
