Rapid7 is on a mission to drive the SecOps movement into the future, and we take that to heart with our holistic approach to security. Rapid7 has policies and procedures in place to keep our data, platform, and products secure, so that we can continue creating tools and services that keep our customers secure.


Our world class security program is driven by a blend of published standards and industry best practices:

Rest assured: Rapid7’s approach to security is established on four core pillars essential to trust.


Rapid7’s platform and products are designed to fit securely into your environment and adhere to security best practices.


You have access to your data when you need it and our operational status is always up to date.


Ensuring your data is used only in a manner consistent with your expectations is a responsibility we take very seriously.


You have full visibility into where your data lives, who has access to it, and how it is used.

Have questions? We have answers.

Trust FAQ
Read What’s New on the Rapid7 Blog
What WannaCry Taught Me About the Benefits of Agents in VM Programs
Steven Campbell | Jan 15, 2019
When WannaCry hit the news in May 2017, I was working as the lead application security analyst for a global organization and was responsible for reducing risk across tens of thousands of endpoints. In the aftermath of the attack, our security team kicked off a major incident to determine our exposure...
Read More
How AWS and InsightVM Can Help You Securely Move to the Cloud
Martin Nielsen | Jan 14, 2019
No one can deny that cloud adoption is increasing at a fast rate. Though moving to the cloud offers many advantages—such as speed of development, cost savings, and reduced overhead—one of the implications of adoption is that customers must change the way they approach security to adapt to hybrid and...
Read More
Rapid7 Industry Cyber-Exposure Report Highlights the Need for Vulnerability Management
Justin Buchanan | Jan 14, 2019
In our recently released Industry Cyber-Exposure Report: Fortune 500, we uncovered that companies across all industries in the U.S. Fortune 500 are showing signs of recurring compromise. And if the resource-rich Fortune 500 is susceptible, it’s not difficult to imagine how bad it is for everyone else....
Read More

Rapid7 By The Numbers

Advancing Security Since
Valued Customers
Fortune 100 Friends
Assets Monitored
Petabytes of Data Processed
Ports Monitored Per IP
IPs Scanned