Excellent all in One Security Platform
Use Cases and Deployment Scope
We use IntSights Cyber Intelligence, from Rapid7 primarily to display all our systems in one single 'pane of glass'. We've done this so all our teams - Security, Operations, Dev, DevOps, Network and even project Management can have unhindered visibility of all systems. It allows us to make decisions much more quickly and effectively. Also, it creates better team working synergies and better brainstorming when it comes to resolving issues and being proactive in avoiding scenarios that may appear. With the displays we get concise information in a bespoke format, and comprehensive information is available by going deeper into each field to so we can conduct different aspects like root cause analysis and trend and behavioural analysis. The main focus of Rapid7 products is Vulnerability Management of course, but with IntSights we are seeing the benefits of the management of application security as well, scheduling of tasks/activities, trend analysis and so much more.
Pros
- Agility
- Seamless Integration
- Quicker and More Accurate decision-making
- Threats and Vulnerabilities Detection
- Improved Risk Analysis
- Improved Threat Intelligence
Cons
- Improve Risk Assessments
Likelihood to Recommend
It has been a brilliant tool and we have harnessed it for so many applications - Threat intelligence, Risk Analysis, Automation, Endpoint protection, Vulnerability Management, Application Security, Protecting all our Cloud Applications. We love the fact that we only have to see those threats that are meaningful to us.
We don't need clutter and endless dashboards with information that just gets in the way and makes things complicated. By having this full, crisp, easily discernible visibility, our decision-making is enhanced and we can see clearly what's happening in real time. We also love the fact that if a dashboard isn't proving to be productive, then we can go ahead and scrap it, and create another one. The tailor made/bespoke aspect of the Application is the thing that really sets it
apart. By having all our dashboards aligned, our teams are all working from the same page and it means we are safe in the knowledge that our systems and applications are being monitored in the most effective and efficient ways.
There haven't been any real scenarios where it has been ineffective. - perhaps just In-depth Risk Vulnerability Analytics
are a bit lacking. However, I'm probably just picking hairs there.