Rapid7, Inc. is a global cybersecurity company focused on helping organizations reduce risk and strengthen cyber resilience through unified exposure management, detection, and response. Its open and extensible Rapid7 Command Platform brings together security telemetry, AI-driven insight, and threat intelligence so teams can understand their attack surface, prioritize risk, and act faster across hybrid environments.
The company combines cloud-delivered software with managed security operations expertise. Its portfolio spans managed detection and response, attack surface management, vulnerability management, cloud-native application protection, application security testing, digital risk protection, SIEM, automation, and penetration testing. Rapid7, Inc. is positioned for organizations that want tighter coordination between security operations, IT, cloud, and development teams instead of relying on disconnected point tools.
Offerings, Capabilities, and Integrations
Rapid7, Inc. delivers a unified operating model for security teams by connecting exposure data, threat detections, investigations, and response actions in one environment. Its capabilities span hybrid and multi-cloud visibility, adversary-aware risk prioritization, log and telemetry analysis, threat intelligence, guided investigations, and automated remediation workflows.
The company emphasizes extensibility across existing security stacks. Rapid7, Inc. supports integrations with cloud platforms, ticketing systems, developer tools, identity technologies, endpoint controls, and network security products, helping customers bring third-party data into investigations and response processes. It also supports partner-led service delivery models, including multi-tenant workflows for managed security providers.
Products and Services
- Rapid7 Command Platform: An open, extensible security operations platform that unifies exposure, detections, response workflows, administration, and AI-driven context across Rapid7 offerings.
- Rapid7 MDR: An expert-led managed detection and response service that combines continuous monitoring, threat hunting, exposure context, third-party telemetry support, and incident response.
- Surface Command: An attack surface management capability that aggregates internal and external asset data to provide a continuous 360-degree view of hybrid attack surface risk.
- Exposure Command: An exposure management offering that combines attack surface management, cloud security, vulnerability management, automation, and platform context to prioritize and remediate risk.
- Incident Command: An AI-powered next-generation SIEM and security operations product that combines log analysis, detections, triage, investigation, SOAR, and guided response.
- InsightCloudSec: A cloud-native application protection platform for multi-cloud visibility, risk prioritization, compliance, CIEM, infrastructure-as-code security, and automated remediation.
- InsightVM: A vulnerability management solution for continuous discovery, adversary-aware prioritization, and remediation workflows across dynamic environments.
- Threat Command: A digital risk protection solution for monitoring clear, deep, and dark web exposure, mapping external threats, and accelerating takedowns and remediation.
- InsightAppSec: A dynamic application security testing solution for modern web applications and APIs, with compliance reporting and developer workflow integrations.
- InsightConnect: A security orchestration and automation product with no-code workflows for coordinating actions across IT and security tools.
- Managed Threat Complete: An integrated product-and-services offering that combines monitoring, threat hunting, incident response, and exposure management to extend customer security operations.
- Metasploit: A penetration testing platform for exploit validation, security awareness testing, and closed-loop verification of vulnerabilities.
Target Customers
Rapid7, Inc. targets security operations teams, vulnerability management leaders, cloud security teams, application security teams, and organizations seeking outsourced or co-managed detection and response. Its offerings fit hybrid and multi-cloud environments where teams need to correlate asset, exposure, and threat data across on-premises infrastructure, cloud services, SaaS applications, endpoints, and networks.
The company serves both enterprise and mid-market organizations, with particular relevance in regulated and operationally complex sectors such as financial services, government, healthcare, retail, education, and energy. Rapid7, Inc. also supports managed security service providers and channel partners that build recurring services on top of its platform.
Cloud Integrations and Marketplace
- AWS Marketplace: Rapid7, Inc. maintains an AWS Marketplace presence that includes the Rapid7 Command Platform and selected cloud-delivered offerings, supporting marketplace-based procurement and deployment within AWS environments.
- Azure Marketplace: Rapid7, Inc. maintains Azure Marketplace listings for vulnerability management components such as Rapid7 VM Console and Rapid7 VM Scan Engine, enabling InsightVM-based scanning workflows for Microsoft Azure assets.
Key People
- Corey E. Thomas: Chief Executive Officer
- Rafe Brown: Chief Financial Officer
- Craig Adams: Chief Product Officer
- Allan Peters: Chief Commercial Officer
- Katie Kulikoski: Chief People Officer
- Julian Waits: Chief Experience Officer
- Brian Castagna: Chief Security Officer
- Pete Rubio: Senior Vice President, Platform and Engineering
- Peter Kaes: Senior Vice President, General Counsel
Key Facts
- Headquarters: Boston, Massachusetts, United States
- Employees: 2,613
- Annual Revenue: $859.8M
- Parent Company: None
- Subsidiaries: 16+ subsidiaries, including Rapid7 LLC, Rapid7 Public Sector LLC, Rapid7 International Limited, Rapid7 India Technologies Ltd., and IntSights Cyber Intelligence Ltd.
- Publicly Listed: NASDAQ: RPD
Analyst Recognitions
- Gartner: Leader in the 2025 Gartner Magic Quadrant for Exposure Assessment Platforms.
- Forrester: Strong Performer in The Forrester Wave: Unified Vulnerability Management Solutions, Q3 2025. Contender in The Forrester Wave: Attack Surface Management Solutions, Q3 2024.
- IDC: Leader in the IDC MarketScape: Worldwide Exposure Management 2025 Vendor Assessment. Leader in the IDC MarketScape: Worldwide SIEM for Enterprise 2024 Vendor Assessment. Leader in the IDC MarketScape: Worldwide SIEM for SMB 2024 Vendor Assessment.
