TLDR: Rapid7 Inc. has announced the integration of advanced agentic AI workflows into its next-generation Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) platforms. This innovation aims to transform threat investigation in Managed Detection and Response (MDR) environments by autonomously handling foundational tasks, significantly enhancing speed, accuracy, and analyst efficiency, saving over 200 SOC hours weekly.
Rapid7 Inc. (NASDAQ: RPD), a leader in cybersecurity solutions, has introduced groundbreaking agentic AI workflows embedded within its next-generation Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) platforms. This strategic enhancement is set to fundamentally reshape how threats are investigated within Managed Detection and Response (MDR) customer environments, particularly within the Security Operations Center (SOC).
Leveraging Rapid7’s proprietary AI Engine, the new agentic AI capabilities are designed to autonomously perform foundational investigative tasks. These AI-driven processes operate with the same rigor and expertise as a seasoned SOC analyst but at significantly accelerated speeds. This allows human analysts to pivot from repetitive, time-consuming tasks to more complex analysis, thereby shortening investigation cycles and enabling faster resolution of critical security issues for customers.
The integration addresses a growing demand for scalability, speed, and transparency in cybersecurity operations. A key highlight of the new workflows is their robust AI automation for alert triage, which boasts an impressive 99.93% accuracy rate in closing benign alerts. This efficiency translates into substantial operational savings, with Rapid7 reporting that the system saves over 200 SOC hours per week.
Laura Ellis, President of AI and Data at Rapid7, emphasized the transformative potential of this technology, stating, “AI isn’t just an enhancement to security operations, it’s a catalyst for a new era of scale, speed, and strategic decision-making. At Rapid7, we believe AI must be human-centric, transparent and accountable, and built on analyst expertise.” This philosophy underpins the development of these workflows, which are trained on playbooks meticulously designed by Rapid7’s own SOC experts and continuously refined through real-world application.
Jon Hencinski, VP of Detection and Response at Rapid7, further elaborated on the human-centric approach: “A world-class SOC optimizes for the ‘human’ decision moment. With agentic AI workflows, we’re using AI to present the right information to enable accurate and fast human decisions that allow organizations to quickly find and stop today’s AI-enabled attackers. Agentic AI workflows automate repetitive tasks, surface relevant findings, and provide contextual information to support analyst decision-making.”
Also Read:
- Automation Anywhere Deepens AI Agent Capabilities with New Solutions and Platform Enhancements
- Legion Intelligence Unveils Groundbreaking Generative AI Platform for U.S. Special Operations Command
In an era where AI is accelerating the threat landscape, enabling attackers to launch faster, more personalized, and harder-to-detect campaigns, organizations require an MDR experience that can scale to meet these evolving demands while providing clear visibility into decisions. Rapid7’s agentic AI workflows aim to deliver improved confidence in security postures through scalable, repeatable, and high-quality investigations. Furthermore, they promise greater visibility and control over service outcomes by offering transparency into the reasoning, evidence, and logic behind every AI-powered action and output. This innovation is expected to maximize the return on detection and response investments by reallocating analyst hours to the most impactful and strategic decisions across customer environments.
