PRODUCT BRIE F

Live Vulnerability Assessment

and Endpoint Analytics Rapid7 has
already
As modern networks evolve, your risk exposure changes by the minute. Each year implemented
you see the amount of data grow exponentially, the threat of attacks become what VRM
more sophisticated, and the challenges of minimizing risk and optimizing
operations are becoming more challenging. It sometimes feels like a never-
will look like
ending battle, but overcoming risk is possible by understanding it. How? Through in the future.
shared visibility, analytics, and automation—principles core to the practice The Forrester Wave™:
of SecOps. Vulnerability Risk
Management, Q1 2018
Utilizing the power of Rapid7’s Insight platform and the heritage of our award-winning
Nexpose product, InsightVM provides a fully available, scalable, and efficient way
to collect your vulnerability data, turn it into answers, and minimize risk. InsightVM
leverages the latest analytics and endpoint technology to discover vulnerabilities in
a real-time view, pinpoint their location, prioritize them for your business, facilitate
collaboration with other teams, and confirm your exposure has been reduced.

Secure Your Modern Network

Adapt to your modern network with full visibility of your ecosystem, prioritization
of risk using attacker-based analytics, and SecOps-powered remediation. Pair that
with unparalleled, ongoing research of the attacker mindset, and you’ll be ready
to act before impact.

Collect Data Across Your Ecosystem

• Continuous Endpoint Monitoring Using the Insight Agent

The Rapid7 Insight Agent automatically collects data from all your endpoints,
even those from remote workers and sensitive assets that cannot be actively
scanned, or that rarely join the corporate network. Pair InsightVM with Rapid7
InsightIDR to get a complete picture of the risks posed by your endpoints and
their users.

• Live Dashboards
Drawing from fresh vulnerability data, InsightVM Dashboards are live and
interactive by nature. You can easily create custom, tailored cards and full
dashboards for anyone—from sysadmins to CISOs—and query each card with
simple language to track progress of your security program. Visualize, prioritize,
assign, and fix your exposures more easily than ever before.

1
Prioritize Using Attacker Analytics

• Attacker-Based Risk Analysis

Prioritize risk the way attackers would. InsightVM translates decades of attacker These
knowledge into proven analytics. The granular, 1-1000 Real Risk score takes into
dashboards
account CVSS scores, malware exposure, exploit exposure and ease of use, and
vulnerability age. This makes it simpler—and more precise than CVSS alone—to are the best
prioritize vulnerabilities for remediation. Rapid7 Project Sonar data and threat view we have
feeds translate to dashboards within InsightVM, so you can understand which of our security
external network doors you’re missing and which vulnerabilities attackers are
actively exploiting.
posture, and
remediation
• Live Remediation Planning workflows
Once the most critical vulnerabilities are brought to the surface, assign and track
remediation duties in real time with Remediation Projects. InsightVM integrates
make it easy
with IT ticketing solutions like Atlassian Jira and ServiceNow, making it easy for IT to
for IT to take action. incorporate
remediation
Remediate with SecOps Agility into the rest
To move faster and more securely, you need to go beyond scanning in silos. of their work.
InsightVM is built to enable collaboration with IT operations and developers through Sierra View Medical
shared visibility, analytics, and automation. Center

What does this look like in practice? InsightVM integrates with IT’s existing ticketing
systems to provide remediation instructions with context, thus accelerating
remediation, and provides actionable reporting on program progress for every
audience—from IT and compliance to the C-Suite.

2
Compliance and Secure Configurations, Without
the Headaches

Show auditors how your environment has changed over time, demonstrating how
you’re compliant against PCI DSS, NERC CIP, FISMA (USGCB/FDCC), HIPAA/ HITECH,
Top 20 CSC, DISA STIGS, and CIS standards for risk, vulnerability, and configuration
management. Take it one step further and harden your systems based on industry
best practices like CIS and DISA STIG to get your network in shape.

About Rapid7
Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security
programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions
empowers security professionals to manage risk and eliminate threats across the entire threat landscape
from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities
and cutting-edge research–using these insights to optimize our products and arm the global security
community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our
industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition,
and future-ready for what’s next.

PRODUCTS CUSTOMER SUPPORT

Cloud Security Application Security Call +1.866.380.8113
XDR & SIEM Orchestration & Automation
Threat Intelligence Managed Services
Vulnerability Risk Management

To learn more or start a free trial, visit: https://www.rapid7.com/try/insight/