Cybersecurity technology provider Rapid7 Inc. today showcased new capabilities that simplify cloud detection, response and vulnerability assessment at AWS re:Invent 2022 in Las Vegas.
The new capabilities are designed to assist organizations across all industries that are migrating to the cloud to support innovation, scale and digital transformation. Rapid7 argues organizations can struggle to effectively secure their businesses across a modern attack surface without purpose-built risk assessment and threat detection in the cloud.
Topping the list are new capabilities on the Rapid7 Insight Platform that make it easier to provide an added layer to manage risks and eliminate threats on AWS. Agentless vulnerability assessment gives security teams continuous visibility into the vulnerabilities in their cloud environment without having to install anything onto individual machines.
Cloud detection and response capabilities have been enhanced to natively identify suspicious events in real time and consolidate third-party threat findings. The enhanced service more accurately and effectively alerts security teams of active threats in their environment.
“Combined, these new capabilities and integrations solve our customers’ biggest cloud security pain points,” Lee Weiner, senior vice president of cloud security and chief innovation officer at Rapid7, said in a statement. “These innovations deliver a unique value proposition that combines our agentless approach, real-time visibility and rich unified context so customers can more effectively operationalize their cloud security programs.”
Rapid7 is also providing customers with support for the newest AWS security services as they are released.
AWS Verified Access, a new virtual private network-less authentication service announced by Amazon yesterday that assists in implementing a work-from-anywhere model in a secure and scalable manner, integrates with Rapid7’s Insight Platform.
The integration allows AWS customers to give employees secure access to private apps running on AWS while enforcing zero-trust policies. Rapid7 can also ingest logs from AWS Verified Access, giving customers full visibility into who is accessing private apps so that any suspicious activity can be investigated.
Amazon Security Lake, a new service that automatically centralizes an organization’s security data from the cloud and on-premises sources into a data lake to ease security data management, is also now supported by Rapid7. With Amazon Security Lake, customers can consolidate all their AWS and third-party security logs in the Open Cybersecurity Schema Framework. Rapid7 customers can send multiple types of logs to the Insight Platform via a single integration, which will help simplify initial onboarding and ongoing maintenance.
“Amazon Security Lake helps organizations aggregate, manage and derive value from log and event data to give security teams greater visibility across their organizations,” explained Rod Wallace, general manager for Amazon Security Lake. “Rapid7’s integration with Amazon Security Lake will give customers the ability to run advanced analytics on AWS and third-party logs with Rapid7 InsightIDR. This will help customers address a variety of security use cases such as threat detection, investigation, and incident response.”
The releases come back to Rapid7’s aim to assist security teams in staying on their toes. Security teams “need to continuously monitor an increasingly complex threat landscape in real-time, while securely scaling their cloud footprint in line with their business needs,” Weiner added. “By uniting cloud risk and threat detection, Rapid7 is delivering enhanced scale and time-to-value, helping customers secure their businesses with both speed and precision.”