PRESS RELEASE

SAN FRANCISCO--(BUSINESS WIRE)--Rapid7', the leading provider of unified vulnerability management and penetration testing solutions, and Rsam, the industry leader in governance, risk and compliance (GRC) solutions, today announced a technology collaboration to bring rich vulnerability and exploit intelligence from Rapid7 to the Rsam GRC Platform. With its automated scans and Metasploit' integration, Rapid7 NeXpose' provides faster access to real risk intelligence and risk prioritization for smarter GRC-based decisions.

“Today’s increasing organizational complexity and professional threat environment have made it more critical than ever for organizations to clearly identify their exposures, measure vulnerability risk and quickly prioritize remediation efforts,” said Sheldon Malm, senior director of security strategy and alliances for Rapid7. “This integration provides Rsam customers with the information they need to make sound, risk-based decisions, protect critical information assets, achieve and maintain compliance, and, ultimately, help accelerate their business.”

Rapid7 NeXpose, the Company's flagship vulnerability management product, is the only vulnerability management solution integrated with penetration testing to allow organizations fast assessment of network operating systems, Web applications and database security strategies. Through its collaboration with Metasploit, the world’s leading open source database of public exploits, NeXpose uses real exploit intelligence in order to eliminate false positives, provide prioritized, remediation-based reporting and leverage risk-based scoring to help security professionals make informed decisions on which vulnerabilities need to be fixed first.

“This integration is a great addition to the technology that our customers depend on today,” said Vivek Shivananda, CEO of Rsam. “Our customers want all their risk and compliance findings in one central repository (Rsam), in order to manage remediation, correlate findings and provide visibility to their overall posture. The extensive vulnerability and exploit intelligence that NeXpose adds to our technology will help us to continue our goal in making the Rsam GRC Platform the most mature and extensible software solution for GRC management in the marketplace today.”

The Rsam GRC Platform integrates business criticality with regulatory assessment data, vulnerabilities and other findings to successfully deliver visibility, automation and metrics to risk and compliance initiatives. Rsam’s award-winning combination of innovative technology, robust content and extensible platform enables organizations to achieve enterprise-wide risk visibility, oversight and assurance. Modular, out-of-the-box solutions support a phased approach to GRC initiatives.

About Rapid7

Rapid7 is the leading provider of unified vulnerability management and penetration testing solutions, delivering actionable intelligence about an organization’s entire IT environment. Rapid7 offers the only integrated threat management solution that enables organizations to implement and maintain best practices and optimize their network security, Web application security and database security strategies.

Recognized as the fastest growing vulnerability management company in the U.S. by Inc. Magazine, Rapid7 helps leading organizations such as Liz Claiborne, the United States Postal Service, Carnegie Mellon University and Red Bull to mitigate risk and maintain compliance for regulations such as PCI, HIPAA, FISMA, SOX and NERC. Rapid7 also manages the Metasploit Project, the leading open-source penetration testing platform with the world’s largest database of public, tested exploits. To obtain a free download of NeXpose or Metasploit, please visit http://www.rapid7.com/resources/free-downloads.jsp.

For more information, visit www.rapid7.com.

About Rsam

Since 2003, Rsam has been successfully implemented at hundreds of clients across a variety of verticals to effectively identify, assess, manage, and mitigate risks, while providing enterprise-wide visibility, oversight and assurance. Rsam’s modular solutions streamline the risk & compliance process while reduce costs in the areas of: Assessment, Audit, Compliance, Incident Management, Issue & Remediation Tracking, Policy Management, Threat & Vulnerability Management, Risk Inventory and Vendor Risk Management. Our customers span from large global Fortune 500 organizations to smaller single-site companies looking for out-of-the-box structure and consistency at a reasonable price-point.