IT Brief Australia - Technology news for CIOs & IT decision-makers
Australia

Guides

#
artificial intelligence
#
digital transformation
#
disaster recovery
#
hybrid & remote work
#
internet of things

Search

Cybersecurity operations center computer screens alerts shields charts
#
Risk & Compliance
#
AI
#
Cybersecurity

Rapid7 adds AI risk summaries to Command Platform for faster response

Thu, 30th Oct 2025
Author image
By Melania Watson, Interview Editor

Rapid7 has introduced new artificial intelligence-generated risk-intelligence features to its Command Platform, aimed at reducing the time security teams need to prioritise and remediate vulnerabilities.

Addressing remediation gaps

The company's latest platform update includes plain-language risk summaries within Remediation Hub as well as enhanced vulnerability intelligence in Intelligence Hub. These features are intended to bridge the persistent gap between vulnerability detection and the actions required for exposure remediation in enterprise environments.

Remediation Hub's AI-generated risk summaries use a combination of exploit signals, asset criticality data, and threat intelligence. The new system is designed to present a clear, contextual, and straightforward overview of each exposure, allowing security teams to assess risk and choose remediation strategies more efficiently. Rapid7 says these upgrades can transform traditional vulnerability data into actionable risk intelligence, supporting prioritisation and effective communication between technical teams.

For organisations struggling with overwhelming exposure data, these summaries immediately outline which systems are at risk, the associated real-world threat activity, and recommended mitigation steps such as patch deployment or the application of compensating controls.

Features for prioritisation

Summaries provided by Remediation Hub include clarity over which risks warrant the most urgent action by factoring in exploitation likelihood and overall business impact. Additional context suitable for IT team workflows-such as change windows and support for change tickets-is also included. The urgency of each risk is determined using a range of industry data sources including CISA KEV, EPSS, and broader threat intelligence. Summaries contain information on estimated effort for patch coverage and note any blockers to effective remediation.

Vulnerability intelligence enhancements within Intelligence Hub centre on providing real-world threat context relevant to exploited Common Vulnerabilities and Exposures (CVEs). This is aimed at helping organisations focus remediation activities on the vulnerabilities that represent significant risk to their assets, rather than responding to a large volume of unfiltered alerts or relying solely on generic security ratings.

Contextual threat intelligence

Intelligence Hub now delivers profiles of CVEs, based on research from Rapid7 Labs, data from vulnerability assessments conducted through AttackerKB, and public threat and vulnerability metadata. This enables security teams to prioritise exposures in an adversary-aware manner and address those issues most likely to result in an incident.

The curated threat and vulnerability insights from Intelligence Hub are also being integrated with Remediation Hub. This approach provides customers with additional threat actor context to further inform their risk prioritisation and response decisions.

Industry demand

The introduction of these features comes in response to the ongoing challenge faced by large organisations to prioritise and respond to new exposures given the high velocity at which attackers exploit vulnerabilities. Data from Forrester points to the lack of an integrated strategy for vulnerability and exposure remediation prioritisation as a top concern for over one in five enterprise security decision-makers' organisations.

"Exposures are growing faster than teams can respond," said Craig Adams, Chief Product Officer at Rapid7.
"Organisations rely on their security partners to give them the context they need to prioritise. Our latest innovations around AI-generated risk and vulnerability intelligence provide important insights into exploitability, asset criticality, and potential risk. The result: shared context, fewer debates, and faster mean time to remediate (MTTR)."

The company's updates are designed to help customers reduce their exposure window and demonstrate measurable risk reduction in a context where attackers can exploit new vulnerabilities soon after disclosure, placing additional pressure on security teams.

Platform rollout

According to Rapid7, these updates will become available to customers of Exposure Command and Surface Command, both part of the overall Command Platform. Rollout of the enhanced functionality is set to begin in November, with both the AI-generated risk summaries in Remediation Hub and the enhanced vulnerability intelligence in Intelligence Hub being introduced on the same timeline.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Dell boosts PowerProtect with new cyber resilience updates
Intuit QuickBooks launches AI agents to boost SME efficiency
Australian firms face world’s highest cyberattack rate & losses
Caring Hands Health Care earns ISO certifications for safety & quality
Seeing Machines’ Guardian Gen 3 targets micro-distractions in fleets

Top stories

From storage to strategy: Building AI business cases that deliver enterprise-wide impact
Exclusive: Splunk reveals why only 4% of organisations are cyber ready
Fusion5 named global finalist for 2025 Dynamics 365 Service award
AMD targets strong AI growth with OpenAI deal & revenue aims
Exclusive: How Kinetic IT's traineeships address the tech skills shortage