Fairly recently, Rapid7 took their vulnerability management platform up to the next level with their analytics platform called Rapid7 Insight. It’s a beneficial for an independent consultant like myself and even more useful for enterprises with IT environments of growing complexity. Rapid7 Insight is marketed as a way to bring together the Nexpose vulnerability research, Metasploit exploits, global security intelligence and exposure analytics into a single system that can help businesses solve more – and better – security problems.
A cloud tool that integrates with your Nexpose instance, Rapid7 Insight lets you see what’s being uncovered in your environment, monitor specific vulnerabilities, and bring it full circle with ticketing system integration to support remediation workflows. you even have a choice on where to store your data in the cloud in order to meet specific compliance/legal requirements. Here are some examples of Insight’s “Liveboards” that provide info on specific areas of vulnerability management. These are external-facing security vulnerability data including details on exploitable vulnerabilities.
Being able to run a tool such as this can add tremendous value to security testing and vulnerability remediation programs. This level of detail can show you exactly where you need to focus your efforts in order to expedite remediations and ensure returns on your security efforts. Hint: getting your patching under control, once and for all will likely be front and center. This information is good for sharing with executive management and can also help you prioritize your efforts that involve security policy development, user awareness and training, incident response and other core areas of security that need attention.
Rapid7 Insight, nor any other tool, is going to fix all of your security woes…it will at least set you on the right path. The discipline required to see things through is totally up to you.