Rapid7’s Command Platform Launches Unified Threat-Informed Remediation

Rhea-AI Summary

Rapid7 has unveiled major enhancements to its Command Platform, introducing unified threat-informed remediation capabilities. The platform now offers comprehensive security solutions across exposure management and threat detection, backed by a $1,000,000 Breach Protection Warranty for Managed Threat Complete Ultimate customers.

Key innovations include:

• Unified vulnerability management supporting third-party tools
• Automated remediation workflows through Remediation Hub
• AI-powered triage with transparent decision-making in InsightIDR
• Active Remediation with Velociraptor for malware removal

The platform addresses modern security challenges by providing automated remediation across organizations' ecosystems, helping teams identify, prioritize, and fix critical exposures faster. The update includes vendor-agnostic dashboards, streamlined workflows, and unlimited incident response services, making it easier for security teams to manage complex enterprise environments.

Positive

• Launch of enhanced Command Platform with unified threat-informed remediation capabilities, expanding product portfolio
• Integration of AI-powered automated threat detection and response features, strengthening competitive position
• Expansion of third-party vulnerability support, increasing market reach and ecosystem integration
• Introduction of $1M Breach Protection Warranty for MTC Ultimate customers, potentially driving premium subscription adoption
• Addition of unlimited incident response service included in warranty coverage, differentiating from competitors

Negative

• No specific financial metrics or growth indicators provided
• Heavy investment in new features and warranty coverage may impact near-term margins

Insights

Cybersecurity Technology Analyst

Rapid7's platform enhancements unify security operations with automated remediation and financial protection, addressing fragmentation challenges in enterprise environments.

Rapid7's Command Platform update introduces significant enhancements focusing on unified threat-informed remediation across exposure management and threat detection. The platform now consolidates vulnerability data from both native Rapid7 scanners and third-party tools, allowing security teams to manage remediation workflows from a central location rather than toggling between disparate systems.

The technical advancements address three critical challenges facing security teams: expanding attack surfaces, fragmented security tools, and distributed ownership of security responsibilities. The Remediation Hub introduces automated workflows for asset owner notifications and manual tasks, streamlining the often complex communication processes during vulnerability remediation.

The AI-powered triage capabilities in InsightIDR represent an advancement in how security teams interact with automated decision-making. By providing visibility into the AI Engine's reasoning through a redesigned alert details interface, the platform helps build trust in automated processes – a significant factor in adoption of AI security tools.

Active Remediation with Velociraptor extends the platform's capabilities beyond detection to removal of malicious artifacts, addressing a critical gap in many security platforms that identify but don't remediate threats. By performing advanced remediation actions on customers' behalf, this feature reduces the time between detection and resolution.

The Breach Protection Warranty with up to $1,000,000 in coverage includes unlimited incident response services without additional fees – a noteworthy feature as IR services typically incur significant additional costs during breach responses.

Financial Industry Analyst

Rapid7 strengthens market position with platform consolidation strategy and financial warranty, addressing security talent shortages and operational inefficiencies.

Rapid7's platform enhancements represent a strategic response to enterprise security challenges of tool fragmentation and distributed security responsibilities. By unifying remediation capabilities across exposure management and threat detection, the company is positioning its Command Platform as a central security operations hub rather than a point solution.

The introduction of vendor-agnostic dashboards that integrate third-party vulnerability data signals a platform strategy aimed at reducing customer reliance on multiple security vendors. This approach typically creates stronger customer relationships and potentially improves retention rates, as enterprises increasingly seek to consolidate their security technology stack.

The AI-assisted triage and Active Remediation capabilities address the persistent security talent shortage by automating complex evaluation and remediation tasks. By reducing the manual workload on security teams, these features align with enterprise needs for operational efficiency.

The Breach Protection Warranty offering up to $1,000,000 in breach-related coverage demonstrates confidence in their platform capabilities while creating a differentiated value proposition. The inclusion of unlimited incident response without additional fees addresses the unpredictable costs that typically accompany breach responses, creating a more predictable cost structure for customers.

The announcement timing ahead of the RSA Conference (April 28 - May 1) positions Rapid7 to capitalize on industry attention during a major security event. This strategic platform enhancement strengthens Rapid7's competitive positioning in the extended detection and response market by addressing core operational challenges faced by security teams.

New innovations address the complexity of modern enterprise environments, providing effective remediation at scale via proactive exposure remediation and AI-assisted automated detection and response

BOSTON, April 29, 2025 (GLOBE NEWSWIRE) -- Rapid7, Inc. (NASDAQ: RPD), a leader in extended risk and threat detection, today announced a series of powerful enhancements to its Command Platform. With unified threat-informed remediation, Rapid7 now offers security teams platform-level remediation capabilities across exposure management and threat detection and response, resulting in greater visibility, alignment, collaboration, and security outcomes. In addition, Rapid7 stands behind these security outcomes with financial coverage through Breach Protection Warranty, giving customers confidence that they’re not only protected from threats – but also providing peace of mind should a breach occur.

Security teams face an increasingly expanding attack surface, made more complex by a fragmented approach to security tools and continued distribution of ownership and responsibility of IT operations and security. To take command of their attack surface, automated remediation across an organization's full ecosystem is critical. This next version of the Command Platform helps security teams transform their exposure and threat remediation processes by proactively identifying, prioritizing, and remediating critical exposures faster and with greater precision.

The new enhancements provide integrated remediation of all vulnerabilities, whether they come from a native Rapid7 scanner or a third-party vulnerability management tool, in addition to AI-powered and automated prioritization for threat investigation. They also include Active Remediation with Velociraptor, allowing Rapid7 to take action on customers’ behalf to remove malicious artifacts with precision, effectively responding to exposures and threat signals before they become incidents.

“Security teams are overwhelmed with alerts—they’re asking for clarity, prioritization, and outcomes,” said Craig Adams, chief product officer at Rapid7. “It’s not enough to simply detect threats; teams need the context to act quickly and the confidence that issues will be resolved. With our latest version of the Command Platform, we’re giving customers a cohesive, continuous, and trusted understanding of their entire attack surface—alongside the intelligent automation to prioritize threats and remediate them fast.”

Among the key updates of threat-informed remediation on Rapid7’s Command Platform:

• Unified Vulnerability Management Across Ecosystems: Rapid7 continues to expand support for third-party vulnerabilities, helping organizations consolidate and act on risk signals across disparate security tools. With vendor-agnostic dashboards, reporting, and centralized workflows, security teams can now prioritize vulnerabilities across their entire ecosystem, streamline remediation, and track progress with confidence.
• Fully Integrated Automation into the Remediation Process: Security teams can use Remediation Hub workflows to automate asset owner notifications and manual tasks. This reduces administrative overhead, improves communication efficiency, speeds up remediation and offers a unified progress view to comprehensively track remediation across hybrid environments.
• Transparent, Trustworthy AI-Powered Triage: This new triage experience in Rapid7’s AI detection and response platform, InsightIDR, gives security analysts unprecedented visibility into the decisions made by the Rapid7 AI Engine. A redesigned alert details interface highlights the key data inputs and reasoning behind each AI-driven triage decision, helping teams build trust and seamlessly integrate automation into their workflows. The new “AI Suggested Disposition” field enables faster investigation and resolution by allowing users to sort, filter, and bulk action alerts triaged by AI.
• Active Remediation With Velociraptor: Once a threat is contained, the work shouldn’t stop there. With this new capability of Velociraptor, Rapid7 now performs advanced remediation actions on customers’ behalf—removing malware remnants, restoring registry settings, and returning affected assets to a secure state. This reduces dwell time and helps organizations bounce back faster, often before they’ve had time to react manually.
• Breach Protection Warranty: In addition to the enhancements around AI-triage and remediation with Velociraptor, Managed Threat Complete (MTC) Ultimate customers can now confidently manage the financial impact of a cyberattack with up to $1,000,000 in breach-related coverage embedded directly into the service. This includes expenses related to forensic investigations, legal counsel, post-incident response, and public relations. In addition, Rapid7’s service is the only offering to include unlimited incident response (IR), removing the cost of IR engagements required by other providers. With the financial benefit not offset by additional fees, customers reduce complexity in breach response planning.
  

To learn more about Unified Threat-Informed Remediation, visit https://www.rapid7.com/blog/post/2025/04/29/from-exposure-to-assurance-unified-remediation-across-the-security-lifecycle/.

Rapid7 will also be showcasing these capabilities live at RSA Conference in San Francisco, April 28 - May 1.

About Rapid7
Rapid7, Inc. (NASDAQ: RPD) is on a mission to create a safer digital world by making cybersecurity simpler and more accessible. We empower security professionals to manage a modern attack surface through our best-in-class technology, leading-edge research, and broad, strategic expertise. Rapid7’s comprehensive security solutions help more than 11,000 global customers unite cloud risk management with threat detection and response to reduce attack surfaces and eliminate threats with speed and precision. For more information, visit our website, check out our blog, or follow us on LinkedIn or X.

Rapid7 Media Relations
Alice Randall
Director, Global Communications
press@rapid7.com
(857) 216-7804

Rapid7 Investor Contact
Elizabeth Chwalk
Vice President, Investor Relations
investors@rapid7.com
(617) 865-4277

FAQ

What new features does Rapid7's (RPD) Command Platform include in April 2025?

Rapid7's Command Platform introduces unified threat-informed remediation with four key features: unified vulnerability management across ecosystems, fully integrated automation for remediation, AI-powered triage with transparent decision-making, and Active Remediation with Velociraptor for automated threat removal.

How much coverage does Rapid7's (RPD) new Breach Protection Warranty offer?

Rapid7's Breach Protection Warranty offers up to $1,000,000 in breach-related coverage for Managed Threat Complete Ultimate customers, including forensic investigations, legal counsel, post-incident response, and public relations expenses, plus unlimited incident response.

What security problems does Rapid7's (RPD) 2025 platform update solve?

The platform update addresses the challenges of expanding attack surfaces and fragmented security tools by providing automated remediation across organizations' ecosystems, proactive exposure management, and AI-assisted threat detection and response capabilities.

How does Rapid7's (RPD) new AI-powered triage system work?

Rapid7's AI triage system in InsightIDR provides visibility into AI decision-making processes, features a redesigned alert interface showing key data inputs and reasoning, and includes an 'AI Suggested Disposition' field for faster investigation and resolution of alerts.

What is Active Remediation with Velociraptor in Rapid7's (RPD) 2025 update?

Active Remediation with Velociraptor is a new capability that automatically performs advanced remediation actions on customers' behalf, including removing malware, restoring registry settings, and returning affected assets to a secure state, reducing threat dwell time.