Rapid7 and Coalfire Join Forces to Provide Powerful PCI-Approved Scanning Services

Boston, MA — January 18, 2017

Rapid7, Inc. (NASDAQ: RPD), a leading provider of IT and security analytics solutions, announced that it has partnered with Coalfire, an industry-leading cyber risk management and compliance solution provider, to deliver its PCI Approved Scanning Vendor (ASV) offering. The companies have also announced that Coalfire has standardized its scanning solution on Nexpose, Rapid7’s vulnerability management solution. With Nexpose as the underlying scanning engine behind CoalfireOne℠, customers will benefit from the combined power of top-rated vulnerability management and compliance expertise to more effectively meet the needs of their organizations.

Through the partnership, Rapid7 ASV customers will have access to the CoalfireOne portal to run and manage their ASV scans and obtain PCI attestation reports. The streamlined interface significantly reduces manual processes and simplifies tasks, such as submitting evidence for exceptions. The PCI Security Standards Council (SSC), which promotes standards for the safety of cardholder data globally, issues ASV status to organizations that provide security services and tools used to conduct external vulnerability scanning to validate adherence with the external scanning requirements of PCI DSS Requirement 11.2.2.

“We strongly believe that building meaningful partnerships with industry-leading organizations is one of the most effective ways to help our customers better secure their environments and mitigate risk,” said David Etue, vice president of managed services at Rapid7.  “Pairing Rapid7’s leading vulnerability management technology with Coalfire’s demonstrated ability to help customers manage and document compliance, especially as the PCI compliance landscape continues to shift, is a recipe for customer success.”

Rapid7 will continue to focus on delivering innovative PCI scanning capabilities to support its ASV partners and will maintain its status as PCI ASV certified. Current Rapid7 PCI ASV customers will be contacted to schedule their transition to the CoalfireOne-delivered service. Nexpose monitors exposures in real time and adapts to new threats with fresh data, ensuring customers can always act at the moment of impact. Nexpose real-time monitoring is supported by Rapid7’s research, threat intelligence, and the Metasploit community, ensuring comprehensive coverage for today’s evolving threat landscape.

“In order to effectively minimize the impact on brand trust and reputation, speed is a critical capability when helping businesses to identify cyber threats,” said Dirk Anderson, vice president, enterprise risk & compliance, for Coalfire. “Our long-standing and continued relationship with Rapid7 as the underlying engine to the CoalfireOne platform has helped our customers maintain the integrity of critical systems in the ongoing effort to preserve and grow their brand in the face of increasing cyber threats.”

For more information about Rapid7 compliance and requirements: https://rapid7.com/solutions/compliance/

For more information about CoalfireOne: https://www.coalfire.com/Solutions/CoalfireOne-Services/CoalfireOne-Overview

For more information about Rapid7 Nexpose: https://www.rapid7.com/products/nexpose/