Rapid7, a top player in threat detection and exposure management, recently revealed a strategic partnership with a company called ARMO. This partnership comes into play because ARMO is a developer of an open-source cloud-native security platform called Kubescape and a cloud application detection & response solution dubbed CADR. The arrangement integrates cloud and application runtime security capabilities within the Rapid7 Command Platform.
With the ARMO runtime security capabilities being integrated into the Rapid7 ecosystem, the combined offering provides improved visibility into the complex cloud environments and allows the security, development, and IT teams to respond promptly and confidently to threats in real-time. Cloud breaches rely on minute vulnerabilities that have gone unnoticed by conventional solutions in the past. The new runtime security layer provides continuous anomaly detection and real-time threat detection & response (D&R) across active cloud workloads and assets, delivering unified, prioritized insights that help security teams act faster and more decisively.
“By extending our exposure management leadership with runtime from ARMO, we’re giving organizations clearer visibility, faster response, and better security outcomes,” said Corey Thomas, CEO at Rapid7. “This is another important step in our commitment to delivering unified, open security with exposure context that enables security teams to move from reactive defense to preemptive response.”
Also Read: Hexaware and AccuKnox Forge Strategic Partnership to Elevate Cloud Security Services
Expanded Threat Detection and Response Capabilities
With the integration of CADR into the Command Platform, Rapid7 now enables security teams to:
- Detect active threats in real time – including application-level and cloud-level attacks, API abuse, data exfiltration, and container breakout attempts.
- Correlate runtime events with existing risks – such as misconfigurations, vulnerabilities, and identity threats, providing a consolidated view of risk and active attacks.
- Execute rapid response actions – including isolating compromised workloads or terminating malicious processes to prevent lateral movement.
- Support multicloud environments – through seamless integration with AWS, Azure, and other cloud platforms.
“Our team built ARMO to bring the most advanced runtime-powered, open-source first, behavioral Cloud Runtime Security to every Kubernetes and cloud-native environment,” said Shauli Rozen, co-founder and CEO of ARMO. “Rapid7 shares that philosophy. By combining their breadth across exposure management, detection and response, and cloud security with our runtime security technology, we are delivering the most advanced cloud defense solution that is both modern and practical. Together, we’re helping organizations detect real attacks as they happen and protect the infrastructure their businesses rely on.”
Industry analysts emphasize the importance of this advancement.
“As enterprises face increasingly fragmented and complex cloud threats, the need for full visibility across all cloud environments continues to be paramount. Rapid7’s partnership with ARMO helps to meet that market need by connecting the dots between proactive exposure management and real-time threat detection & response,” said Philip Bues, senior research manager, IDC Security and Trust. “This addition to Rapid7’s capabilities enables security teams to better correlate exposures with active threats and prioritize remediation based on operational risk, supporting both security objectives and business continuity.”
Driving Cyber Resilience for Modern IT Teams
The runtime security capabilities provided through the ARMO platform are incorporated in the Exposure Command Ultimate solution offered by Rapid7. This service helps to minimize security risks in the earlier phases of the attack life cycle.