• Nexpose
  • Overview
  • Features
  • Architecture & Open API
  • Try NeXpose
  • Buy NeXpose
  • System Requirements
  • Vulnerabilities Tested
  • NeXpose Information
• Solutions
  • Web Application VA
  • Database VA
  • Network & OS VA
  • Compliance Scanning
• Services
  • PCI Compliance Testing
  • Penetration Testing
  • Web Application Security Audits
  • Best Practices Consulting
  • Social Engineering
  • NeXpose Training
• Support
  • NeXpose FAQ
  • System Requirements
  • Support Form
  • Vulnerabilities Tested
  • Customer Center Login
• Security Center
  • Advisories
  • Vulnerabilities Tested
  • Compliance
  • White Papers & Articles
  • SSHredder Test Suite
• Company
  • Management
  • Customers
  • Partners
  • Press Room
  • Events
  • Contact
  • Careers
• Customers

• Management
• Customers
• Partners
• Press Room
• Events
• Contact
• Careers

PR Contact

Beth Bryant
BBWrites Strategic Communications
(508) 786-3013
Email Press Contact

• PDF format

Rapid7 Receives "Promising" Rating in Leading Analyst Firm's Recent Vulnerability Assessment MarketScope Report

Research Article Confirms Vulnerability Assessment (VA) as an Essential Component of an Organization’s Security Program

BOSTON - March 13, 2007 - Rapid7 LLC, provider of NeXpose, the award-winning vulnerability management solution, today announced that leading analyst firm, Gartner, Inc., has rated Rapid7 as "Promising" in its MarketScope for Vulnerability Assessment, 2H06¹ report, written by Mark Nicolett and John Pescatore and published on January 16, 2007.

"We believe Gartner's rating validates our increasingly solid presence in the market as well as the significant role of vulnerability assessment in any organization's security endeavors," said Alan Matthews, president and CEO of Rapid7 LLC. "Our commitment to delivering innovative technology and our depth of market experience enables us to provide our customers with advanced Web vulnerability detection, superior remediation-oriented reporting, and a unique expert system approach that provides root cause analysis of vulnerability chains."

The MarketScope report states that vulnerability assessment (VA) "is an essential component of an organization's security program," and predicts that "organizations that implement an effective vulnerability management program will experience a 60% reduction in successful external attacks (0.8 probability)." The report explains that VA "provides foundational discovery and security baseline data as one of the first steps in the vulnerability management process, and it provides ongoing data through periodic re-scanning. VA tools provide a bottom-up security baseline of an IT environment with respect to a database of known vulnerabilities."

The report also states, "Current market drivers are a continuing need for VA as a component of a compliance program, and the expanding Payment Card industry (PCI) Data Security specification for VA."

Rapid7's NeXpose provides robust reporting capabilities that ensure compliance with governmental regulations, corporate security configuration policies, and the PCI Data Security Standard. Rapid7 is also a PCI-certified security scanning vendor.

According to the same Gartner report, the vulnerability assessment market "generated approximately $125 million in revenue in 2005 and will generate about $160 million in 2006." Companies included in the MarketScope were evaluated based on six criteria, including market responsiveness and track record, sales execution/pricing, offering (product) strategy, product/service, overall viability, and customer experience.

About the Gartner MarketScope

The MarketScope is copyrighted January 16, 2007 by Gartner, Inc. and is reused with permission. The MarketScope is an evaluation of a marketplace at and for a specific time period. It depicts Gartner's analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the MarketScope, and does not advise technology users to select only those vendors with the highest rating. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About NeXpose

Rapid7's award-winning NeXpose Unified Vulnerability Management (UVM) product is an all-in-one security solution that scans Web servers, Web applications, databases and networks to locate threats, assess their risk to the environment and devise a remediation plan. NeXpose incorporates an expert system to build a knowledge base of facts on the environment it explores and model potential targeted attacks to expose all existing threats. NeXpose provides robust reporting capabilities that ensure compliance with governmental regulations, corporate security configuration policies, and the PCI Data Security Standard. NeXpose is available as an appliance, downloadable software or an On-Demand hosted solution.

About Rapid7

Rapid7 is the leading provider of Unified Vulnerability Management (UVM) Solutions. Rapid7’s NeXpose UVM provides network, database and Web application vulnerability management for enterprise deployments and small-to-medium businesses. Since its introduction, NeXpose has been sold to corporate enterprises, Global 2000 companies, and government entities, and serves the full range of vertical markets across the U.S. and abroad. In addition, Rapid7 provides compliance products and services for PCI, HIPAA and Sarbanes Oxley. Rapid7 is headquartered in Boston, MA, with an office in Los Angeles, California.

• Home
• |
• Nexpose
• |
• Solutions
• |
• Services
• |
• Support
• |
• Security Center
• |
• Company
• |
• Contact