November 30, 2010

Partnership will help businesses quickly recognize and respond to potential threats

Columbia, MD & Boston – Prism Microsystems, a leading provider of comprehensive SIEM solutions for the midsize enterprise, and Rapid7®, the leading provider of unified vulnerability management and penetration testing solutions, today announced a technology collaboration that will combine EventTracker’s unmatched security event analysis and real-time alerting functionality with Rapid7’s NeXpose® vulnerability management solution to help organizations rapidly identify, prioritize and respond to the most critical compliance violations, security breaches and insider threats.

“A rapidly expanding threatscape means that enterprises and government agencies today experience an overwhelming number and variety of threats to their environment. While SIEM solutions can provide an effective method for identifying these situations, they typically require security expertise on the part of the end-user to pinpoint from a sea of alerts that one condition that has the potential to cause costly damage,” said A.N. Ananth, CEO at Prism

With this integration, EventTracker will take advantage of Rapid7 NeXpose capabilities to scan and prioritize vulnerabilities across the broadest range of assets and layers including networks, operating systems, Web applications and databases for threats. The results of the scan will be imported into EventTracker and correlated with enterprise-wide event log information to provide customers with incident alerts prioritized by risk, which factors on the
threat level, asset value and vulnerability status. This approach will allow analysts to focus on the most critical threats to their environment and eliminate the need to manually parse through thousands of alerts or author intricate correlation rules to identify and react to the events that need immediate attention.

“The integration of NeXpose vulnerability data is precisely the type of intelligence that drives our vision of SIEM, simplified. Through this integration, we are now better able to provide our SIEM-focused customers with effective, real-time threat intelligence for a stronger security model,” added Ananth.

”We’re excited to support the integration of NeXpose with Prism EventTracker, as organizations will now benefit from another proactive approach to managing threats in their environment,” commented Mike Tuchen, president and CEO at Rapid7. “Vulnerability information combined with SIEM allows customers to focus their efforts on correlating and understanding risk information, and, therefore, prevent attacks from occurring in the first place. Our goal at Rapid7 has always been to provide organizations with the highest quality of risk prioritization, and we are thrilled to be able to expand this expertise into Prism’s SIEM solution.”

About Prism Microsystems

Prism Microsystems delivers business critical solutions that transform high-volume cryptic log data into actionable, prioritized intelligence that will fundamentally change your perception of the utility, value and organizational potential inherent in log files. Prism’s leading solutions offer Security Information and Event Management (SIEM), real-time Log Management, and powerful Change and Configuration Management to optimize IT operations, detect and deter costly security breaches, and comply with multiple regulatory mandates.

Visit for more information. Follow us on Twitter @logtalk.

About Rapid7

Rapid7 is the leading provider of unified vulnerability management and penetration testing solutions, delivering actionable intelligence about an organization’s entire IT environment. Rapid7 offers the only integrated threat management solution that enables organizations to implement and maintain best practices and optimize their network security, Web application security
and database security strategies.

Recognized as the fastest growing vulnerability management company in the U.S. by Inc. Magazine, Rapid7 helps leading organizations such as Liz Claiborne, the United States Postal Service, Carnegie Mellon University and Red Bull to mitigate risk and maintain compliance for regulations such as PCI, HIPAA, FISMA, SOX and NERC. Rapid7 also manages the Metasploit Project, the leading open-source penetration testing platform with the world’s largest database of public, tested exploits.
For more information, visit