Rapid7 has announced a definitive agreement to acquire Noetic Cyber, a company specialising in cyber asset attack surface management (CAASM). This acquisition aims to enhance Rapid7’s security operations platform, offering improved visibility into both internal and external assets, on-premise and in the cloud.
The incorporation of Noetic’s CAASM solution aims to provide customers with a more comprehensive understanding of their attack surface. This includes offering a high-context, inside-out view while also considering an adversary-aware, outside-in perspective to better anticipate and manage risks. The combined platform is expected to enable enhanced prioritisation of threats, improve signal-to-noise ratios for security teams, and increase overall productivity and efficiency.
“Fragmented attack surfaces are stifling security productivity, efficiency, collaboration, and credibility,” stated Corey Thomas, Chief Executive Officer of Rapid7. “The addition of Noetic’s solution to our platform positions Rapid7 to deliver the most productive security operations experience while making it more accessible to the teams who need it most.”
Paul Ayers, Chief Executive Officer and co-founder of Noetic Cyber, commented, “The addition of Noetic Cyber to Rapid7’s portfolio ensures even more security teams can be confident they have the right visibility of their security data. Rapid7 customers will now be able to better prioritise exposures based on the meaningful insights from Noetic and take action to identify security gaps and reduce cyber risk.”
Noetic Cyber was established in 2019 by Paul Ayers, Allen Hadden, and Allen Rogers. The company focuses on empowering security teams to better manage their attack surfaces through a proactive approach to cyber asset and exposure management. Noetic Cyber aims to improve the efficacy of security tools and controls by breaking down data silos and enhancing the overall security ecosystem.
According to the 2024 Gartner Innovation Insight: Attack Surface Management report, only 17 per cent of organisations can clearly identify and inventory a majority (95% or more) of their assets. The acquisition of Noetic Cyber is positioned as a response to this challenge, offering enhanced visibility and context for better security outcomes.
The acquisition is expected to close during Rapid7’s fiscal third quarter and is not anticipated to have a material impact on the company’s 2024 Annualized Recurring Revenue (ARR). Once finalised, Rapid7 plans to make Noetic Cyber’s capabilities available to its customers later in the summer.
Noetic Cyber’s addition to Rapid7’s suite of solutions promises to aid security teams in continuously improving asset inventory and content to reduce risk while providing practical remediation guidance. The unified platform aims to offer highly correlated asset and resource views, along with searchable risk context, thereby creating efficiency and productivity for security teams.
