Rapid7 is on a mission to drive the SecOps movement into the future, and we take that to heart with our holistic approach to security. Rapid7 has policies and procedures in place to keep our data, platform, and products secure, so that we can continue creating tools and services that keep our customers secure.


Our world class security program is driven by a blend of published standards and industry best practices:

Rest assured: Rapid7’s approach to security is established on four core pillars essential to trust.


Rapid7’s platform and products are designed to fit securely into your environment and adhere to security best practices.


You have access to your data when you need it and our operational status is always up to date.


Ensuring your data is used only in a manner consistent with your expectations is a responsibility we take very seriously.


You have full visibility into where your data lives, who has access to it, and how it is used.

Have questions? We have answers.

Trust FAQ
Read What’s New on the Rapid7 Blog
Drupal Core Remote Code Execution (CVE-2019-6340): What You Need to Know
boB Rudis | Feb 21, 2019
What do I need to know about the Drupal remote code execution vulnerability? On Wednesday, Feb. 20, 2019, the Drupal Core team provided an early-warning update for the third Drupal Core Security Alert of 2019, which has been assigned CVE-2019-6340. The vulnerability lies in the lack of field sanitization...
Read More
Patch Tuesday - February 2019
Greg Wiseman | Feb 12, 2019
Microsoft got back in the swing of things today after a couple of relatively light months, with over 70 separate CVEs being addressed. The usual suspects got patches, including Windows, Office, Browsers (including Adobe Flash), .NET Framework, SharePoint, Exchange, and another slew of JET Database Engine...
Read More
Automation in Action: How Carnegie Mellon University Combats Vulnerabilities Using Nexpose
Rapid7 | Feb 11, 2019
We recently had the opportunity to speak with Brian W. Gray, Information Security Engineer for Carnegie Mellon University, about how he’s managing vulnerabilities across such a sprawling network, what his biggest challenges are, and how he is using our vulnerability assessment solution, Nexpose, to automate...
Read More

Rapid7 By The Numbers

Advancing Security Since
Valued Customers
Fortune 100 Friends
Assets Monitored
Petabytes of Data Processed
Ports Monitored Per IP
IPs Scanned