Rapid7 > Case Studies > Permission Interactive Turns to Rapid7 for Help Enhancing its Security with Comprehensive Vulnerability Management

Permission Interactive Turns to Rapid7 for Help Enhancing its Security with Comprehensive Vulnerability Management

Rapid7 Logo
Customer Company Size
SME
Region
  • America
Country
  • United States
Product
  • Rapid7
  • Metasploit Project
  • McAfee Vulnerability Scanner
Tech Stack
  • Vulnerability Management
  • Penetration Testing
  • PCI DSS Compliance
Implementation Scale
  • Enterprise-wide Deployment
Impact Metrics
  • Customer Satisfaction
  • Digital Expertise
Technology Category
  • Cybersecurity & Privacy - Security Compliance
  • Cybersecurity & Privacy - Application Security
  • Cybersecurity & Privacy - Network Security
Applicable Industries
  • E-Commerce
Applicable Functions
  • Business Operation
  • Quality Assurance
Services
  • System Integration
  • Cybersecurity Services
  • Training
About The Customer
Permission Interactive is an e-commerce company that deals with up to 40 thousand customers daily, handling a significant amount of sensitive customer information, including credit card data. The company had been using a vulnerability management solution from McAfee for several years to help meet PCI regulations. However, the solution was only helping them meet the basic compliance requirements without enhancing their overall security posture. Frustrated with the limitations of their current solution, Permission Interactive decided to conduct a full audit to assess their security practices and compliance status. The audit results were disappointing, revealing significant gaps in their security measures and overall compliance.
The Challenge
Permission Interactive, an e-commerce company handling sensitive customer information, faced challenges in meeting PCI compliance standards. Their existing McAfee vulnerability management solution was only helping them 'check the box' for PCI compliance without improving their overall security landscape. A full audit revealed significant gaps in security best practices and overall compliance, prompting the company to seek a more robust solution.
The Solution
Permission Interactive decided to evaluate new security vendors, focusing on those who could help with their primary concern—PCI compliance. After reviewing the list of approved scanning vendors (ASVs) on the PCI website, they narrowed down their options to a small group for full evaluation. Rapid7 stood out due to its robust vulnerability management and scalability. Additionally, Permission Interactive was intrigued by Rapid7's acquisition of the Metasploit Project, a renowned open-source penetration testing platform. Rapid7's dedication to enhancing its vulnerability management solution with integrated penetration testing and continued support for community collaboration made it an easy choice for Permission Interactive. The company was impressed by Rapid7's ability to protect data and control security for both PCI compliance and e-commerce on a grand scale, far beyond what competitors could offer.
Operational Impact
  • Rapid7's solution provided Permission Interactive with a comprehensive vulnerability management system that went beyond basic PCI compliance.
  • The integration of the Metasploit Project allowed for enhanced penetration testing capabilities, improving overall security posture.
  • Rapid7's scalability and customer service approach were well-suited to companies of all sizes, making it a versatile solution for Permission Interactive.
  • The solution enabled Permission Interactive to operate as if they had an extra security person on hand, without the need for additional staff.
  • Permission Interactive achieved greater control over their security, meeting their goal of being more secure than ever before.
Quantitative Benefit
  • Permission Interactive deals with up to 40 thousand customers daily.
  • Rapid7's solution allowed Permission Interactive to meet PCI compliance standards more effectively.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.