Threats are evolving at a faster pace every day, but making sure that you’re constantly aware of your organization’s vulnerabilities can be a daunting challenge. Active vulnerability scanning needs to be supplemented with intelligent, preventative security measures to give a comprehensive picture of your security posture and your organization’s exposure to real world attacks. Leveraging Rapid7’s InsightVM or Nexpose solutions within Cisco’s FireSIGHT Management Center gives you the confidence to stop attacks with the most accurate security data available.
An InsightVM* scan is conducted to assess the risk posture of the systems within your organization. The InsightVM connector generates a CSV file containing all the vulnerability and asset data, which then gets pushed to Cisco FireSIGHT Management Center. Once in FireSIGHT Management Center, the data gets combined with the vulnerability and asset information that already exists in the Host Map. From there, if malicious network traffic is detected that matches a known vulnerability on the host, the Impact flag gets raised accordingly; this signals with confidence that the attack will be successful, and can be stopped by enabling the IPS rule.
Figure 1: Cisco FireSIGHT Management Center with Rapid7 vunerability data
*All mentions of Rapid7 InsightVM associated with Cisco FireSIGHT also apply to Rapid7 Nexpose.
Download this Integration OverviewDownload Now
Take this integration for a spin and experience the full functionality of InsightVM for 30 daysExplore InsightVM
Please contact Rapid7 for support or assistance at +1.866.380.8113, or view all of our support options.Get Support