Security Featured Article

Rapid7, which specializes in unified vulnerability management solutions, announced enhancements to Rapid7 NeXpose by adding roles-based user access administration to the NeXpose Security Console.

 

NeXpose enables enterprises to gain visibility into their risk by scanning all critical assets for vulnerabilities and prioritizing threats for mitigation across the entire network

 

The enhancements, company officials said, aim at improving enterprise’s remediation and response capabilities against the growing threat landscape. They also enable companies to assign proper security responsibilities to each user, ensuring minimal risk exposure and strategic staff deployment.

 

According to Rapid 7, roles-based administration enables a security manager using NeXpose to align staff appropriately, ensuring siloed top-level clearance while distributing the power to remediate immediate security issues to a wider set of line administrators. As a result, enterprises will be able to maintain sound fundamental security posture that enables quick and immediate response to vulnerabilities, limiting exposure and damage.

 

“Our main philosophy is that all security is local,” said Randy Marchany, director of Virginia Tech IT Security Lab, in a statement. “We needed a tool that reduced vulnerabilities in the central systems but also gave local administrators the ability to scan their own networks and servers when necessary.”

 

“Rapid7 NeXpose’s roles-based administration empowers departmental systems administrators to execute self scans of systems and analyze results before the central IT security organization reviews the data,” Marchany added. “As a result, departments are reducing their risk profiles and our central IT security organization can widen the use of NeXpose with confidence.”

 

According to Mike Tuchen, president and chief operating officer at Rapid7, the addition of roles-based administration to NeXpose Security Console gives organizations increased flexibility and control to match their internal staff skills and resources in mitigating risk and vulnerabilities.

 

The new roles-based component of NeXpose Security Console assigns default roles based on a pre-determined set of permissions. They include Global Administrator, Security Manager, Site Administrator, System Administrator, and Non-administrative User. Each of them has pre-defined roles. However, the NeXpose Security Console is also customizable according to enterprises’ varying demands, company officials said.

 

Norwich University, the first private military college in the United States, recently deployed Rapid7 NeXpose for increased network visibility and, in the process, eliminated 1,500 vulnerabilities throughout its large and growing IT infrastructure, Rapid 7 said in a recent announcement.