Rapid7, Inc., a leader in threat detection and exposure management, and HITRUST, the leading provider of cybersecurity and AI assurances used in third-party and internal risk, security and compliance management, announced a strategic partnership to help organizations automate compliance and lower the cost of assurance. This new integration brings together Rapid7’s Surface Command, which provides organizations with a complete view of their attack surface, with HITRUST’s assurance framework. Through this new partnership, Rapid7 customers can automatically collect, map, and validate controls against HITRUST standards, reducing audit scope, saving time and resources, and improving overall cyber resilience.

Organizations today face increasing pressure to demonstrate continuous security readiness amid a constantly evolving threat and regulatory landscape. Traditional assurance methods rely on periodic audits and manual evidence collection, which are costly, time-consuming, and quickly outdated. By combining Rapid7’s continuous visibility into security controls with the HITRUST Framework, customers are able to move from periodic audits to continuous, evidence-based validation of their cybersecurity posture, improving their security and governance, and their ability to communicate that to stakeholders.

Cyber Technology Insights : HITRUST Chosen Tom Kellermann as VP of Cyber Risk to Advance Cybersecurity Assurance and Market Growth

“Rapid7 solutions already deliver unmatched visibility and context, enabling our customers to proactively prevent and detect security incidents,” said Jon Schipp, senior director of product management at Rapid7. “With this collaboration, we are now able to benchmark customers against HITRUST, ultimately reducing both the cost and burden of compliance while also enabling them to achieve continuous assurance against the comprehensive framework for greater protection from threats.”

“The 2025 HITRUST Trust Report demonstrated that organizations who implement our controls achieve a mere 0.59% averaged annual breach rate – a significant new benchmark in reliable risk mitigation for the industry,” said Blake Sutherland, executive vice president, market engagement at HITRUST. ”This collaboration with Rapid7 maps our controls to their proactive protections, giving joint customers the ability to maintain evidence of compliance, reduce evidence decay and ensure that the utmost security requirements are relevant, reliable and recorded for continuous assurance and even higher level of trust in security postures.”

Cyber Technology Insights : Reintroducing NSS Labs: A New Chapter in Cybersecurity Assurance

By working with HITRUST and Rapid7, customers will deploy a robust, continuous assurance program replacing point-in-time, outdated assurance practices. Additional benefits include:

  • Achieve continuous compliance visibility: Rapid7’s Command Platform continuously assesses systems against control drift using the HITRUST Framework requirements which are continuously updated in response to active threats and risk thresholds.
  • Mitigate risk proactively: Integrate vulnerability and exposure management along with threat data aligned to compliance mandates to address the complexity of modern enterprise environments.
  • Reduce audit burden and detect compliance drift: Continuous compliance enables extended certification intervals, reduction in information collection efforts, assurance that controls are maintained beyond scheduled audit engagements and report on drifts in the environment.
  • Facilitate improved cyber insurance: Demonstrate consistent risk management to insurers, leading to lower premiums and streamlined policy renewals.
  • Lower costs: Minimize the resource-intensive process of annual compliance audits and secure cost-effective insurance coverage.

Cyber Technology Insights : Codenotary Raises $16.5 Million to Expand Intelligent Cybersecurity Platform

Source: GlobeNewswire

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com