Rapid7 Debuts Incident Response Technology
Rapid7 makes incident response technology originally built for its professional services group available to a wider user base.A key metric across myriad security reports in any given year is the time it takes for an organization to contain a breach. Security vendor Rapid7 today launched a new product called InsightIDR (incident detection and response) that aims to help organizations quickly identify potential breaches and then remediate them. The InsightIDR platform makes use of technology gained in Rapid7's $68 million acquisition of data search vendor Logentries in October 2015. With Logentries, Rapid7 gained technology to quickly search and understand data. "We look at behaviors that we know attackers have, as well as heuristical models, based on anomalies in assets," Lee Weiner, senior vice president, products and engineering at Rapid7, told eWEEK. "We also allow organizations to set traps and we ship InsightIDR with honeypots that are easy to deploy." Weiner said that InsightIDR provides insight into how widespread a particular attack behavior might be in order to help organizations figure out its impact and contain active threats.
The InsightIDR technology has its development roots in Rapid7's incident response professional services group. Rapid7 launched its incident response services in March 2015, under the direction of Wade Woolwine, who previously had worked as senior manager of managed defense at FireEye, one of the leading firms for incident response. In November 2015, Woolwine's group at Rapid7 launched a managed detection service for breaches that is based on the InsightIDR technology that is now being made available to Rapid7's customers.