founded 2000
Companies referencing Rapid7
“We're not buying tools. We're buying outcomes. And we're not just outsourcing the work, we're partnering with a team that knows our environment and shares our goals.”
Rapid7 provides security analytics and automation solutions including InsightVM for vulnerability management and InsightConnect for SOAR. The platform helps organizations manage security compliance, detect threats, and demonstrate regulatory adherence across cloud and on-premise environments.
Rapid7 users value the platform's combined security analytics, vulnerability management, and compliance capabilities, particularly the InsightVM product for maintaining continuous compliance visibility. The platform is well-suited for organizations needing both security operations and compliance reporting, though dedicated GRC users may find it less comprehensive than purpose-built tools.
Showing 12 of 28. The rest are locked.
12 references · Hospitality
The Rapid7 platform has made a difference as far as our ability to have this wide casting net and visibility.
We use over 150 different applications today which includes a mix of security, IT and general business applications. We're always looking at how we can better secure those applications that we don't necessarily have much control over. And how we can keep better tabs on who and why and when they're being used.
We left a competitor to implement InsightAppSec and bring things closer together in the Rapid7 world. We're running scans twice a month or monthly for some of our web apps, and sending those reports to our internal customers.
We had several machines impacted and we had them all remediated within 30 days. I've never seen us work that fast before. But again, that was Rapid7. That was us dashboarding. We were 100% reliant on Rapid7 and we got the job done.
The agents provide real-time data. We make tremendous use of the InsightVM dashboards for vulnerability management and our internal customers expect reports on a regular basis. But, we were a spreadsheet organization for many, many years; the whole vulnerability management program hinged on a spreadsheet.
We cleaned up all of our tags, our asset groups, and we said everything is going to be in a dashboard. If you want to know how an asset's doing, you've got to login to view it. We're not doing spreadsheets anymore.
That was the fastest I've ever seen us remediate 100% of the organization over a holiday period, at Christmas. We had several machines impacted and we had them all remediated within 30 days.
If we have EDR and we have Rapid7 on an endpoint, we're good. And that's the impression that we make across the board as far as deployments go.
And so, we started to ingest stuff into IDR, things like our web-proxy data and identity management logs.
Having everything in one spot, one login, one place certainly helps with the day-to-day work that's going on, especially for the teams that are cross-platform.
It's a lot fewer vendors that we have to be on the phone with. We've certainly been called over the last 10 years from competitors looking for us to move our operation, but really, we don't want to leave Rapid7. We feel like we have such a good thing going with Rapid7. We've got the entire Rapid7 team on our regular calls, because it's a cross-platform today with InsightAppSec and vulnerability management, all of our SOC people, and all of our IR people, all together.
That was a huge success, everyone is feeling better. We're across the board very happy with everything that Rapid7 is delivering today.
Paddle
10 references · Locked
Zoopla
6 references · Real Estate Tech · Locked
16 more quotes from 2 companies locked
Claim this listing and upgrade to unlock the rest.
7 documented outcomes from Rapid7 customers. Showing 1 of 7 — the rest are locked.
Arcadis
Design/Consultancy · Locked
Wyndham Hotels
Hospitality · Locked
Zoopla
Real Estate Tech · Locked
Visier
HR Analytics · Locked
Capital on Tap
FinTech · Locked
Keyloop
Automotive Tech · Locked
6 more case studies locked
Rapid7 is on the Verified tier. Upgrade to Premium to unlock every customer case study for prospects to see.
3 plans available.
Be the first to write a community review of Rapid7.
Write a review
Share your experience with Rapid7 and help others make informed decisions.
Compliance automation for cloud-first companies
79 customer references
Enterprise password and secrets management with compliance
26 customer references
Continuous compliance automation with 85+ integrations
119 customer references
Cloud security platform with compliance capabilities
1 customer reference
Compliance operating system for modern enterprises
21 customer references
Automated compliance for SOC 2, HIPAA, ISO 27001 & more
70 customer references
What Is PCI DSS? A Complete Guide to Payment Card Security
PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards created by major card brands (Visa, Mastercard, Amex, Discover, JCB) to protect cardholder data. Any organization that accepts, processes, stores, or transmits credit card information must comply.
PCI DSS 4.0 Requirements: All 12 Explained in Detail
PCI DSS 4.0 has 12 core requirements organized under 6 goals: build secure networks, protect account data, manage vulnerabilities, control access, monitor and test networks, and maintain security policies. Together they contain approximately 400 individual test procedures.
What Is HIPAA? A Complete Guide to HIPAA Compliance
HIPAA (Health Insurance Portability and Accountability Act) is a US federal law that sets national standards for protecting sensitive patient health information (PHI) from being disclosed without the patient's consent or knowledge.
HIPAA Compliance Checklist for 2025
A comprehensive HIPAA compliance checklist covers risk assessments, administrative/physical/technical safeguards, Business Associate Agreements, workforce training, breach notification procedures, and ongoing documentation requirements.
