2009 Press Releases

PDF Version

Rapid7 Nexpose Receives NIST SCAP Validation

Federal Agencies and Contractors Now have Trusted and Cost-Effective Vulnerability Management Solution for Reducing Risk and Achieving Compliance

BOSTON, Mass. – October 27, 2009 – Rapid7, the leading provider of unified vulnerability management, compliance and penetration testing solutions, today announced that Rapid7 Nexpose™ has been validated as a Security Content Automation Protocol (SCAP) scanner.  With its ability to locate thousands of threats across the broadest level of assets, Rapid7 Nexpose is now recognized by the National Institute of Standards and Technology (NIST) as a validated partner for the vulnerability scanning and evaluation of U.S. government networks.

SCAP is a method for using specific standards to enable automated vulnerability management, measurement, and policy compliance evaluation (e.g. FISMA compliance) to assist with the challenge of managing the configurations and security settings of information systems.   To increase adoption, the U.S. federal government (Office of Management and Budget) requires agencies to use SCAP-validated products for monitoring configurations and settings.  The SCAP Validation Program, devised by the NIST, is designed to test the ability of products to use the features and functionality available through SCAP and its component standards. 

To become SCAP validated, Rapid7 Nexpose was rigorously tested by an independent SCAP-accredited laboratory on its ability to determine the presence of known vulnerabilities by evaluating the target system over the network. 

As a result of Rapid7 Nexpose's SCAP validation, government agencies and contractors now have a trusted vulnerability management solution known for its ability to scan the most complex network infrastructures, enterprise applications, operating systems, databases and Web applications.  To reduce the time and cost associated with managing vulnerabilities, minimizing risk and achieving compliance, Rapid7 Nexpose provides the industry's first prioritized remediation reports based on threat level and with flexible risk scoring.  Rapid7's products and services provide critical insight that help organizations comply with mandatory regulations, including the security requirements for PCI, HIPAA, FISMA, SOX and NERC.

"Government agencies face continuous sophisticated security attacks and it's clear that standards for security controls and content are vital to the safety and health of the nation’s most complex IT infrastructures," said Mike Tuchen, president and CEO at Rapid7.  "To that end, we're committed to providing the federal market with a strong vulnerability management tool that enables agencies to meet federal policies, while at the same time provides the best level of protection and reduces the complexity of compliance regulations.  Achieving SCAP validation is another step in our partnership with the federal government."

Rapid7 was recently named an AlwaysOn OnDC Top 100 Winner in the Government & Security Services Category by the AlwaysOn editorial team and global industry experts as a result of its continued innovation, market potential, and stakeholder value.  Inclusion in the OnDC 100 signifies major developments in the creation of new business opportunities that contribute to the renewed and continued prosperity of our country. 

About Rapid7

Rapid7 is the leading provider of security risk intelligence solutions. Rapid7's integrated vulnerability management and penetration testing products, Nexpose and Metasploit, empower organizations to obtain accurate, actionable and contextual intelligence into their threat and risk posture. Rapid7's solutions are being used by more than 2,000 enterprises and government agencies in more than 65 countries worldwide, while the Company's free products are downloaded more than one million times per year and enhanced further by over 125,000 security community users and contributors. Rapid7 has been recognized as one of the fastest growing security companies by Inc. Magazine and as a “Top Place to Work” by the Boston Globe. The Company is backed by Bain Capital Ventures and Technology Crossover Ventures. For more information about Rapid7, please visit http://www.rapid7.com.

Awards
Rapid7 named a Most admired Startup company by Boston Business Journal SC Magazine Finalist Deloitte Fast 500 Award Logo ASC Award inc500 Award Logo 2009 Redherring Winner Logo 2009 Best Prodcuts Logo 2009 Tomorrow Tech Logo 2009 GPE Awrads Logo Finalist Hot Companies 2009 Logo Rapid7 Star100 Revised Graphic SC Award Nominee 2008 Nominee 2008 Global Exeellence SC Awards 2007 Finalist Hot Companies of 2007 Customer Trust Logo Hot Company 2006 Logo SC 2006 Awards Winner
Most Read
Most Downloaded
Press Releases