2 min Security

Rapid7 buys Noetic Cyber, but gets pressured to find an acquirer for itself

Rapid7 buys Noetic Cyber, but gets pressured to find an acquirer for itself

Rapid7 is acquiring the start-up Noetic Cyber, expanding its ability to discover and address vulnerabilities in (wholesale) enterprise networks. The acquisition does come at a precarious time for Rapid7, as it faces pressure to sell itself.

With the acquisition of Noetic Cyber, of which no financial details were disclosed, Rapid7’s customers should get a better overview of all attack surfaces in their enterprise networks.

The acquisition of the Boston-based security start-up comes at a precarious time for Rapid7. The security specialist is reportedly under pressure from activist investor Jana Partners to make itself ready for acquisition. Jana Partners recently announced it had taken a significant equity stake in the security specialist.

Noetic platform

Boston-based Noetic Cyber offers several solutions, the most important being its own platform and InsightAppSec product. The Moetic platform can automatically map all devices in a corporate network and scan them for vulnerabilities. The vulnerabilities found are then ranked based on their sensitivity.

The data collected by the Noetic platform comes from the other security solutions companies are running on their network(s). More specifically, it analyzes telemetry data, allowing it to build an inventory of servers, workstations and other network systems. In addition, the platform identifies potential holes in the collected data, such as a server’s failure to monitor certain security settings. It also enables automated workflows to expedite specific security tasks, send notifications, and download patches.

The second major product of the acquired start-up is the InsightAppSec solution. This solution can independently launch simulated cyber attacks on applications, revealing potential vulnerabilities.

Fuller overview of attack surface

With the acquired start-up’s products, Rapid7 customers fully understand their attack surface, among other things. As a result, they can more easily anticipate potential attacks and counter risks. In addition, the tools provide the ability to prioritize threats based on so-called “threat-aware context.” Thus, they can recognize the most acute risk signals and exposures. Furthermore, the various solutions should bring more efficiency and productivity to customers’ security teams.

Noetic Cyber’s solutions are an extension of Rapid7’s products. InsightConnect and InsightVM, for example, offer the same functionality as the Noetic platform.

Also read: Fortinet strengthens cloud security offering with acquisition of Lacework