Rapid7 is on a mission to drive the SecOps movement into the future, and we take that to heart with our holistic approach to security. Rapid7 has policies and procedures in place to keep our data, platform, and products secure, so that we can continue creating tools and services that keep our customers secure.


Our world class security program is driven by a blend of published standards and industry best practices:

Rest assured: Rapid7’s approach to security is established on four core pillars essential to trust.


Rapid7’s platform and products are designed to fit securely into your environment and adhere to security best practices.


You have access to your data when you need it and our operational status is always up to date.


Ensuring your data is used only in a manner consistent with your expectations is a responsibility we take very seriously.


You have full visibility into where your data lives, who has access to it, and how it is used.

Have questions? We have answers.

Trust FAQ

Read What’s New on the Rapid7 Blog

12 Most Exploited Vulnerabilities: How to Navigate Vulnerabilities in a Security Program
In a recent alert published by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the organization laid out the 12 most exploited vulnerabilities since 2016. Navigating these most commonly exploited vulnerabilities can be a hassle if you don’t have a true patching and/or vulnerability...
Joshua Harr
Jul 06, 2020
Read More
Gain a More Dynamic View: How to Connect Cloud Configuration Assessment in InsightVM to CloudTrail in AWS
Cloud Configuration Assessment is an InsightVM feature that provides a security-focused view into your cloud environment. Capabilities are centered around the ability to identify and remediate cloud misconfigurations, an increasingly important concern in today's ever-evolving world. Since the policies...
Jessica Koe
Jul 06, 2020
Read More
How to Use Custom Policy Builder to Customize Password Policies in InsightVM
This post is part two of a two-part blog series on policy customization in InsightVM, Rapid7’s vulnerability risk management solution. In the first blog post of our Custom Policy Builder series, we learned about how to edit the Common Platform Enumeration (CPE) of a policy in InsightVM. In this post,...
Naveen Bibinagar
Jul 01, 2020
Read More
Rapid7 is trusted by 9,000 customers and 140+ countries.
View All Customers