Israeli cybersecurity start-up ARMO, which developed the open-source cloud security platform Kubescape and the CADR system for real-time detection and response to attacks on cloud-based applications, and the American company Rapid7 (NASDAQ: RPD), a leader in cyber threat exposure management, have signed a strategic partnership agreement. The agreement will integrate ARMO’s runtime application security product into Rapid7’s new information security and control platform, Rapid7 Command. The addition of runtime cloud protection capabilities, expanding Rapid7’s current coverage, will allow organizations to reduce risks earlier, act more efficiently, and build advanced cybersecurity defenses.
Modern cloud attacks often exploit small gaps connected across dynamic cloud environments. The addition of continuous anomaly detection as well as real-time threat detection and response across active cloud assets and applications will provide security, infrastructure management, and development teams with unified insights into threats, ranked by priority, and enable faster responses. The importance of such solutions is increasing due to the growing use of AI applications, whose behavior can only be understood and protected during runtime.
Rapid7 is a leading U.S.-based cybersecurity company providing a unified platform for security operations, helping organizations manage and reduce their cyber risks. Rapid7 offers solutions for vulnerability management, threat detection, cloud security, application security, and automation.
In recent years, Rapid7 has strengthened its presence in Israel through the acquisition of three cybersecurity companies: Insights and Alcide in 2021, and Minerva Labs in 2023. These strategic acquisitions enhanced Rapid7’s position in the local market and gave it access to Israeli expertise in the cybersecurity field in general, and cloud security in particular. Rapid7 serves over 11,000 customers worldwide, with many large and medium-sized organizations relying on its security solutions for risk management, threat detection, and response.
Corey Thomas, CEO of Rapid7: “By adding ARMO’s runtime cloud application protection capabilities, we are strengthening Rapid7’s position in threat exposure management and enabling organizations with significantly greater visibility, faster real-time threat response, and improved security for their most critical assets. This is another major step in our commitment to providing unified and open security that reduces exposure, strengthens defenses, and streamlines our customers’ security operations.”
The integration of ARMO’s CADR system into Rapid7’s command platform will enable security teams to:
Detect active threats in real time – from application and running code levels to cloud accounts, API-based attacks, sensitive data theft attempts, and container breaches.
Identify links between attacks and misconfigurations, security gaps, and identity theft – with a unified view of risks and active attacks, enabling faster and more precise response.
Respond immediately – by isolating compromised applications or stopping malicious processes to prevent lateral movement across networks or cloud environments.
Ensure simple and efficient integration – connecting detection and response processes with existing cloud environments, including Azure, AWS, and others.
Shauli Rozen, CEO and Co-Founder of ARMO: “Our team built ARMO so organizations could implement the most advanced real-time cloud application security, based on open-source technology and behavioral code analysis for all existing cloud environments. Rapid7 shares this vision. Combining their diverse solutions, expertise, and customer base in threat exposure management, threat detection and response, and cloud security with our runtime security technology will provide the most advanced cloud and application security solution - innovative, practical, and tailored for the largest and most sophisticated organizations. Together, we will help organizations detect real attacks as they happen and protect the infrastructures their businesses depend on.”
Philip Boas, Senior Analyst for Information Security at IDC: “As organizations face increasing threats from complex and distributed cloud attacks, they urgently need deep end-to-end visibility across all their cloud environments. The Rapid7–ARMO collaboration addresses this market need by linking active exposure management with real-time threat detection and response. This addition to Rapid7’s capabilities will allow security teams to more effectively connect risk management with protection against real attacks, prioritize real-time event handling, and support both security objectives and uninterrupted business operations.”
ARMO was founded in 2019 and is led by cloud security experts Shauli Rozen and Ben Hirschberg. Since its founding, the company has raised approximately $34 million, including $30 million in a Series A round led by Tiger Global with participation from Hyperwise Ventures, Pitango First, and Peled Ventures, and a $4.5 million seed round led by Pitango Ventures. ARMO currently employs 30 staff members in its Tel Aviv offices.