Download PDF
Rapid7 > Case Studies > Permission Interactive Turns to Rapid7 for Help Enhancing its Security with Comprehensive Vulnerability Management
Rapid7 Logo

Permission Interactive Turns to Rapid7 for Help Enhancing its Security with Comprehensive Vulnerability Management

Technology Category
  • Cybersecurity & Privacy - Security Compliance
  • Cybersecurity & Privacy - Application Security
  • Cybersecurity & Privacy - Network Security
Applicable Industries
  • E-Commerce
Applicable Functions
  • Business Operation
  • Quality Assurance
Services
  • System Integration
  • Cybersecurity Services
  • Training
The Challenge
Permission Interactive, an e-commerce company handling sensitive customer information, faced challenges in meeting PCI compliance standards. Their existing McAfee vulnerability management solution was only helping them 'check the box' for PCI compliance without improving their overall security landscape. A full audit revealed significant gaps in security best practices and overall compliance, prompting the company to seek a more robust solution.
About The Customer
Permission Interactive is an e-commerce company that deals with up to 40 thousand customers daily, handling a significant amount of sensitive customer information, including credit card data. The company had been using a vulnerability management solution from McAfee for several years to help meet PCI regulations. However, the solution was only helping them meet the basic compliance requirements without enhancing their overall security posture. Frustrated with the limitations of their current solution, Permission Interactive decided to conduct a full audit to assess their security practices and compliance status. The audit results were disappointing, revealing significant gaps in their security measures and overall compliance.
The Solution
Permission Interactive decided to evaluate new security vendors, focusing on those who could help with their primary concern—PCI compliance. After reviewing the list of approved scanning vendors (ASVs) on the PCI website, they narrowed down their options to a small group for full evaluation. Rapid7 stood out due to its robust vulnerability management and scalability. Additionally, Permission Interactive was intrigued by Rapid7's acquisition of the Metasploit Project, a renowned open-source penetration testing platform. Rapid7's dedication to enhancing its vulnerability management solution with integrated penetration testing and continued support for community collaboration made it an easy choice for Permission Interactive. The company was impressed by Rapid7's ability to protect data and control security for both PCI compliance and e-commerce on a grand scale, far beyond what competitors could offer.
Operational Impact
  • Rapid7's solution provided Permission Interactive with a comprehensive vulnerability management system that went beyond basic PCI compliance.
  • The integration of the Metasploit Project allowed for enhanced penetration testing capabilities, improving overall security posture.
  • Rapid7's scalability and customer service approach were well-suited to companies of all sizes, making it a versatile solution for Permission Interactive.
Quantitative Benefit
  • Permission Interactive deals with up to 40 thousand customers daily.
  • Rapid7's solution allowed Permission Interactive to meet PCI compliance standards more effectively.

Related Case Studies.

Contact us

Let's talk!

* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.