Security Experts:

Connect with us

Hi, what are you looking for?


Incident Response

Rapid7 Launches Incident Response Services

Rapid7, a provider of security analytics software and services, announced on Tuesday that it has launched a new services group dedicated to incident response.

Rapid7, a provider of security analytics software and services, announced on Tuesday that it has launched a new services group dedicated to incident response.

The Boston, Mass.-based company, which has raised $93 million in funding to date, said that its new Incident Response and Incident Response Program Development Services were designed help enterprise security teams shorten their time to respond, investigate, and remediate a breach.

Best known for its Metasploit penetration testing products, which the company gained through its 2009 acquisition of the open source Metasploit Framework, Rapid7 continues to expand its security software and services, and the newly-launched services are yet another key offering.

Rapid7 Logo

“Security teams face a motivated and nimble attacker and every team has to prepare for the possibility of a breach,” said Nicholas J. Percoco, vice president of Strategic Services at Rapid7. “Rapid7’s Incident Response Services can help organizations prepare with an appropriate plan, and respond with the help of world-class industry experts.”

Under Rapid7’s Incident Response Program Development, the company’s security experts perform threat simulation sessions where the incident response team works through real breach scenarios, coordinate technical response activities, identify key sources of evidence, perform mock communications, and make recommendations for customers to prioritize cleanup and recovery, the company explained.

Designed to help customers accelerate incident investigation and containment, Rapid7 Incident Response Services teams will work with in-house teams to scope the incident and focus on identifying all attacker remote access capabilities, restoring prioritized business processes and systems, and securing compromised user accounts.

The Incident Response division is part of the Strategic Services organization headed by Nicholas Percoco, who previously built and ran Trustwave’s SpiderLabs, Rapid7 said.

The Incident Response group is led by Wade Woolwine, a veteran of Mandiant’s Managed Defense business unit. Woolwine also served as a threat detection and incident response analyst in a number of different government agencies.

The Incident Responders team is led by Mike Scutt, an expert on Windows forensics, malware analysis, and incident response, the company said.

Rapid7 offers a retainer-based offering, but goes beyond traditional retainers by delivering a threat readiness assessment where its experts evaluate key areas of threat detection and incident response capabilities and establish breach response processes.

Additionally, Rapid7 offers customers the ability to convert a portion of their unused pre-purchased hours to drive improvements in any aspect of their security program.

Rapid7 Incident Response Program Development and Incident Response Services are available immediately.

Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Expert Insights

Related Content

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Incident Response

Cygnvs emerges from stealth mode with an incident response platform and $55 million in Series A funding.

Data Breaches

T-Mobile disclosed another massive data breach affecting approximately 37 million customer accounts.


Albanian prosecutors on Wednesday asked for the house arrest of five public employees they blame for not protecting the country from a cyberattack by...

Incident Response

A new Mississippi Cyber Unit will be the state’s centralized cybersecurity threat information, mitigation and incident reporting and response center.


Thoma Bravo will spend $1.3 billion to acquire Canadian software firm Magnet Forensics, expanding a push into the lucrative cybersecurity business.

Application Security

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.