Rhea-AI Impact
Rhea-AI Sentiment
Rhea-AI Summary
Rapid7 (NASDAQ: RPD) has launched Incident Command, a next-generation Security Information and Event Management (SIEM) solution built on their Command Platform. This AI-native platform unifies threat detection, investigation, and response capabilities with attack surface management and threat intelligence.
The new solution features Agentic AI workflows trained on Rapid7’s SOC expert playbooks, achieving 99.93% accuracy in benign threat triage and saving over 200 SOC hours per week. Key features include AI-powered threat detection, unified analyst experience, integrated data mesh, and embedded threat intelligence, all designed to streamline security operations.
Rapid7 (NASDAQ: RPD) ha lanciato Incident Command, una soluzione di Security Information and Event Management (SIEM) di nuova generazione basata sulla loro Command Platform. Questa piattaforma nativa AI integra capacità di rilevamento delle minacce, indagine e risposta con la gestione della superficie di attacco e l’intelligence sulle minacce.
La nuova soluzione presenta flussi di lavoro AI agentici addestrati sui playbook degli esperti SOC di Rapid7, raggiungendo una precisione del 99,93% nella triage delle minacce benigni e risparmiando oltre 200 ore settimanali di lavoro SOC. Le caratteristiche principali includono rilevamento delle minacce potenziato dall’AI, esperienza unificata per gli analisti, data mesh integrato e intelligence sulle minacce incorporata, tutte progettate per semplificare le operazioni di sicurezza.
Rapid7 (NASDAQ: RPD) ha lanzado Incident Command, una solución de próxima generación de Security Information and Event Management (SIEM) construida sobre su Command Platform. Esta plataforma nativa de IA unifica capacidades de detección de amenazas, investigación y respuesta con la gestión de la superficie de ataque y la inteligencia de amenazas.
La nueva solución cuenta con flujos de trabajo de IA agentica entrenados con los playbooks de expertos SOC de Rapid7, alcanzando una precisión del 99,93% en el triaje de amenazas benignas y ahorrando más de 200 horas semanales de SOC. Las características clave incluyen detección de amenazas potenciada por IA, experiencia unificada para analistas, malla de datos integrada e inteligencia de amenazas incorporada, todo diseñado para optimizar las operaciones de seguridad.
Rapid7 (NASDAQ: RPD)는 차세대 보안 정보 및 이벤트 관리(SIEM) 솔루션인 Incident Command를 자사 Command Platform 위에 출시했습니다. 이 AI 기반 플랫폼은 위협 탐지, 조사 및 대응 기능을 공격 표면 관리 및 위협 인텔리전스와 통합합니다.
새 솔루션은 Rapid7 SOC 전문가 플레이북으로 훈련된 에이전틱 AI 워크플로우를 특징으로 하며, 양성 위협 분류에서 99.93% 정확도를 달성하고 주당 200시간 이상의 SOC 업무를 절감합니다. 주요 기능으로는 AI 기반 위협 탐지, 통합된 분석가 경험, 통합 데이터 메시, 내장된 위협 인텔리전스가 있어 보안 운영을 간소화하도록 설계되었습니다.
Rapid7 (NASDAQ : RPD) a lancé Incident Command, une solution de gestion des informations et des événements de sécurité (SIEM) de nouvelle génération construite sur leur plateforme Command. Cette plateforme native IA unifie les capacités de détection des menaces, d’investigation et de réponse avec la gestion de la surface d’attaque et le renseignement sur les menaces.
La nouvelle solution propose des flux de travail IA agentique formés sur les playbooks des experts SOC de Rapid7, atteignant une précision de 99,93% dans le triage des menaces bénignes et économisant plus de 200 heures SOC par semaine. Les principales fonctionnalités incluent la détection des menaces alimentée par l’IA, une expérience analyste unifiée, un maillage de données intégré et un renseignement sur les menaces intégré, tous conçus pour simplifier les opérations de sécurité.
Rapid7 (NASDAQ: RPD) hat Incident Command vorgestellt, eine SIEM-Lösung der nächsten Generation, die auf ihrer Command Platform basiert. Diese KI-native Plattform vereint Bedrohungserkennung, Untersuchung und Reaktionsfähigkeiten mit Angriffsfächenmanagement und Bedrohungsinformationen.
Die neue Lösung verfügt über agentische KI-Workflows, die anhand der SOC-Experten-Playbooks von Rapid7 trainiert wurden, und erreicht eine Genauigkeit von 99,93% bei der Triagierung harmloser Bedrohungen und spart über 200 SOC-Stunden pro Woche. Zu den Hauptmerkmalen gehören KI-gestützte Bedrohungserkennung, eine einheitliche Analysten-Erfahrung, ein integriertes Daten-Mesh und eingebettete Bedrohungsinformationen, die alle darauf ausgelegt sind, Sicherheitsabläufe zu optimieren.
Positive
- Achieves 99.93% accuracy in benign threat triage automation
- Saves over 200 SOC hours per week through AI-powered automation
- Unifies previously siloed SIEM, SOAR, ASM, and threat intelligence functions
- Integrates with third-party telemetry through Command Platform’s data mesh
Insights
Rapid7’s new AI-powered SIEM unifies security operations workflows, potentially strengthening their competitive position in the crowded cybersecurity market.
Rapid7’s launch of Incident Command represents a significant evolution in the company’s product portfolio by unifying several typically fragmented security functions. The new SIEM solution integrates threat detection, automation, attack surface management, and threat intelligence within a single platform experience—addressing a major pain point for security operations centers that often struggle with tool sprawl and context switching.
The product’s differentiating factor is its Agentic AI approach, which appears more sophisticated than typical SIEM offerings. Unlike black-box AI implementations, Rapid7’s solution draws on the company’s accumulated SOC expertise and MDR operations data, claiming 99.93% accuracy in benign alert disposition—a metric that directly addresses the alert fatigue problem plaguing security teams. The company claims this can save 200+ SOC hours weekly, a substantial efficiency gain for resource-constrained security departments.
What makes this launch particularly notable is how it leverages Rapid7’s Command Platform data architecture to unify both proprietary and third-party telemetry without complex integrations. This open approach to data ingestion could provide competitive advantage against vendors with more closed ecosystems, potentially lowering barriers to adoption.
The IDC analyst quote highlighting the marriage of exposure management with threat detection validates that this approach differs from typical offerings in the crowded SIEM market. With this launch, Rapid7 is positioning itself to compete more effectively against larger security vendors by offering an integrated security operations experience rather than point solutions.
Powered by SOC-tested AI and built on the Command Platform’s integrated data foundation, Incident Command delivers detection, automation, attack surface context, and threat intelligence in one SOC experience
BOSTON, July 29, 2025 (GLOBE NEWSWIRE) — Today, Rapid7, Inc. (NASDAQ: RPD), a leader in threat detection and exposure management, announced the launch of Incident Command, a powerful new next-gen SIEM extending the capabilities of its Command Platform, purpose-built to transform how security teams detect, investigate, and respond to threats. Incident Command unifies preventative attack and exposure management together with threat detection and response, all powered by Agentic AI workflows trained on playbooks designed by Rapid7’s own SOC experts, and refined through continuous real-world application.
Built on the Command Platform’s data mesh, Incident Command brings attack surface context through Surface Command and curated threat intelligence with Intelligence Hub to deliver a seamless user experience that enables every analyst to operate like an expert, every action to be informed by context, and every response to be faster, smarter, and simpler.
“The launch of Incident Command is a leap toward our mission to simplify access to security outcomes,” said Corey Thomas, CEO of Rapid7. “Security teams are under scrutiny to deliver measurable impact across their risk and response programs. We built the Command Platform to unify all customer data—not just what we collect—so that organizations get the facts from the beginning and reduce their time to action. Incident Command, our upgraded next-gen SIEM, gives customers the benefit of the Command Platform plus broadened access to our decades of SOC expertise with agentic AI integrated within the workflows they use every day.”
With Incident Command, security teams operate within a closed-loop feedback model, combining AI-powered threat detection with deep exposure visibility, automating triage with
- Agentic AI, built by and for the SOC: Unlike black-box “AI” tools, Rapid7’s AI is trained on years of detection, investigation, and response data from its 24/7 MDR operations, enabling transparent, analyst-assistive triage and investigation workflows with
99.93% benign disposition accuracy. It doesn’t just classify, it guides, recommends, and adapts with every use. - Unified analyst experience: Incident Command brings together historically siloed SIEM, SOAR, ASM, and threat intelligence functions into one intuitive interface. Analysts can investigate with deep threat, exposure, and asset context in a single view—no context switching required.
- Open and integrated data mesh: Powered by Surface Command and the Command Platform’s data mesh, customers can unify Rapid7 and third-party telemetry without complex integrations, gaining end-to-end visibility across their hybrid environments.
- Deeply embedded threat intelligence: Expertly vetted threat intelligence is integrated within Incident Command for the most actionable, relevant, and context-rich insights for targeted detection, threat hunts, and incident response.
“With Incident Command, Rapid7 is marrying exposure management capabilities with threat detection and this is a differentiator in a crowded SIEM market,” said Michelle Abraham, senior research director at IDC. “By bringing detection automation, internal and external attack surface visibility, threat intelligence, and AI automation into one platform, Rapid7 is offering security analysts a solution that reduces complexity, connects data, and streamlines investigations, which improves analyst workflows.”
To learn more about Incident Command, visit https://www.rapid7.com/products/siem/.
Rapid7 is showcasing Incident Command at Black Hat USA, August 6-7 in Las Vegas, both in the Business Hall (Booth #5042) and at The Border Grill in Mandalay Bay from 9am – 6pm on August 6. Click here to learn more and sign up for a demonstration.
About Rapid7
Rapid7, Inc. (NASDAQ: RPD) is on a mission to create a safer digital world by making cybersecurity simpler and more accessible. We empower security professionals to manage a modern attack surface through our best-in-class technology, leading-edge research, and broad, strategic expertise. Rapid7’s comprehensive security solutions help more than 11,000 global customers unite cloud risk management with threat detection and response to reduce attack surfaces and eliminate threats with speed and precision. For more information, visit our website, check out our blog, or follow us on LinkedIn or X.
Rapid7 Media Relations
Alice Randall
Director, Global Communications
press@rapid7.com
(857) 216-7804
Rapid7 Investor Contact
Elizabeth Chwalk
Vice President, Investor Relations
investors@rapid7.com
(617) 865-4277
FAQ
What is Rapid7’s new Incident Command platform and when was it announced?
Rapid7 announced Incident Command on July 29, 2025. It’s an AI-native next-gen SIEM solution that unifies threat detection, investigation, and response capabilities with attack surface management and threat intelligence.
How accurate is Rapid7’s Incident Command AI in threat detection?
Incident Command’s Agentic AI achieves 99.93% accuracy in benign threat triage and saves over 200 SOC hours per week through automation.
What are the key features of Rapid7’s Incident Command platform?
Key features include Agentic AI trained on SOC expert playbooks, unified analyst experience combining SIEM/SOAR/ASM functions, open data mesh integration, and embedded threat intelligence.
Where can I see a demonstration of Rapid7’s Incident Command?
Rapid7 will showcase Incident Command at Black Hat USA, August 6-7 in Las Vegas, at Booth #5042 and The Border Grill in Mandalay Bay.
How does Rapid7 RPD’s Incident Command differentiate from other SIEM solutions?
According to IDC, Incident Command differentiates itself by combining exposure management capabilities with threat detection, while integrating AI automation, attack surface visibility, and threat intelligence in a single platform.
