SecurityBrief India - Technology news for CISOs & cybersecurity decision-makers
Story image

Rapid7 integrates AWS policies for enhanced cloud security

Thu, 21st Nov 2024

Rapid7 has announced the integration of AWS Resource Control Policies (RCPs) into its Exposure Command solution, offering enhanced security controls for managing identity-based risks in cloud environments.

The collaboration with AWS enables Rapid7 customers to gain centralised visibility and control over permissions, accounts, resources, and services across their hybrid environments. This development addresses the expanding IAM challenges faced by businesses scaling their AWS infrastructure.

Craig Adams, Chief Product Officer at Rapid7, stated, "We're proud to partner with AWS for their RCP launch, as we believe it underscores our organisations' shared commitment to advancing cloud security. Now, our combined support for RCPs and SCPs in Exposure Command significantly reduces identity-based risk for our customers, ensuring they have the tools needed to enforce zero-trust policies, manage cloud permissions, and confidently drive innovation at scale."

The integration allows organisations to implement a zero-trust approach integrated with AWS's existing cloud infrastructure, including AWS Service Control Policies (SCPs). This setup provides organisations with granular control over access permissions at both the resource and principal levels, which is crucial as cloud environments expand rapidly.

Rapid7's Exposure Command provides 360-degree visibility into attack surfaces along with context enrichment. It aggregates findings from Rapid7's native detection capabilities and third-party sources within customers' existing technology ecosystems. This enhances situational awareness, helping teams identify and prioritise vulnerabilities that attackers might exploit.

Key benefits of the new RCP support include centralised monitoring and governance of RCP usage, enhanced identity and access controls that prevent excessive access and enforce least-privilege access across AWS resources, and proactive best practice recommendations. These elements aim to align security controls with business and regulatory requirements.

Furthermore, Exposure Command provides a comprehensive toolset for AWS resources, including automated scanning and detection of vulnerabilities, real-time threat alerts for suspicious activities, and protection for AI and machine learning resources.

As cloud adoption continues to grow, Rapid7 emphasises its commitment to providing the necessary tools and insights to help organisations reduce risk, maintain compliance, and innovate securely alongside AWS.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X