SOURCE: LockPath


November 19, 2013 09:00 ET

Expanded Rapid7 Integration Enhances Vulnerability Management for LockPath Customers

Enhancements to Connector Will Help Organizations Better Manage Security Risks

OVERLAND PARK, KS--(Marketwired - Nov 19, 2013) - LockPath, a provider of innovative governance, risk management and compliance (GRC) solutions, today announced that Keylight 3.5 supports enhanced integration with Rapid7 Nexpose, vulnerability management software that provides security teams risk visibility and gives clear vulnerability remediation guidance to protect against real threats and ensure policy compliance.

Organizations are faced with a barrage of security threats every day but often don't have complete visibility into their data, which hinders their ability to respond. Keylight helps organizations gain greater insight into their overall risk posture by retrieving critical security data from reliable sources like Nexpose, correlating with assets and policies, and ultimately, enabling customers to prioritize and respond to threats.

"We're driven to deliver solutions for our customers that constantly increase their ability to maintain control and visibility of their data," said Chris Goodwin, chief technology officer of LockPath, "This latest enhancement to our connector library is a great example of a powerful customer-driven joint solution."

The enhanced connector to Nexpose brings automation and flexibility to risk management programs. Vulnerability scans can now be automatically incorporated into the threat analysis process, instead of manually importing a scan file with each request for new data. In addition, Keylight can now dynamically incorporate the latest vulnerability results from the Nexpose application programming interface (API) on a scheduled interval, and automatic detection mode provides differential imports, effectively de-duplicating vulnerability data and thus reducing the import processing time and bandwidth requirements.

Keylight has the ability to configure workflow for a variety of remediation scenarios and a flexible reporting interface to gain visibility into threats, trends, workflow KPIs, productivity and bottlenecks. This exposure makes it easier to hold users accountable for vulnerabilities they are responsible for and allows executives to see how their resources are performing.

Keylight with the help of Nexpose, exposes threats detected throughout the organization, tracking and recording key information about secured assets and creating an audit history. Like the first generation connector, setup is as simple as a few login commands and yields immediate results, and it enables organizations to manage their security by scoring, prioritizing and managing remediation efforts.

"We're excited to work with LockPath on creating immediate and tangible benefits for our joint-customers. Keylight now has the ability to deliver Nexpose's valuable intelligence with additional context further and deeper within organizations so as to better measure and manage risk," said Buck Watia, senior director of business development at Rapid7.

The Keylight platform is extremely fast to integrate and helps customers maintain a comprehensive view of their risk through its integrations with Rapid7 Nexpose and other sources of information. By correlating scan data with compliance standards and regulations such as PCI, ISO, HIPAA and FISMA, customers can effectively manage their GRC programs, while staying on top of the latest threats.

The Rapid7 Nexpose connector is available for cloud, on-premise or hybrid cloud/on-premise delivery. For more information on Keylight 3.5, please visit:

About LockPath
LockPath brings a flexible, pragmatic approach to governance, risk management, compliance and security programs. Its solutions help organizations gain a deeper understanding of their security and risk posture while reducing their audit fatigue by aligning people with their processes and the enabling technology. LockPath provides the platform to efficiently manage and harvest meaningful data from GRC activities, including regulatory compliance, policy life cycle, information security risk data, incidents, disaster recovery plans, third party assessments and internal audits. LockPath is headquartered in Kansas City. Visit to learn more.