Financial Data and Key Metrics Changes - Rapid7 ended fiscal 2025 with an Annual Recurring Revenue (ARR) of $840 million and total revenue of $860 million, both exceeding guidance [7] - For Q4, total revenue was $217.4 million, growing 0.5% year-over-year, while full-year revenue reached $859.8 million, growing 1.9% year-over-year [31] - Non-GAAP operating income for Q4 was $30.1 million, with a margin of 13.9%, and full-year non-GAAP operating income was $135.7 million, or an operating margin of 15.8% [33][34] - Free cash flow for Q4 was $32.3 million, totaling $130 million for the full year [34] Business Line Data and Key Metrics Changes - Product revenue for Q4 was $209.1 million, growing 1.4% year-over-year, while professional services revenue totaled $8.2 million, down from $9.9 million in Q4 2024 [31][32] - The detection and response (DNR) business grew approximately 7% year-over-year, with the managed detection and response (MDR) portion growing in the high single digits [32] - The exposure management business showed signs of improvement, particularly with the rapid adoption of the Exposure Command offering in Q4 [32] Market Data and Key Metrics Changes - The cybersecurity market is experiencing significant disruption due to advancements in AI, leading to a reevaluation of security postures across enterprises [9][10] - The demand for comprehensive, expert-led security operations is increasing due to a more complex regulatory environment and an accelerating threat landscape [10][12] Company Strategy and Development Direction - Rapid7 is focusing on integrating AI capabilities into its offerings to enhance security operations and provide proactive security postures [16][26] - The company aims to consolidate customer environments under a unified platform and enhance its managed AI Security Operations Center (SOC) [16][18] - Strategic investments are being made to evolve and scale solutions, particularly in the DNR market, which is seen as a significant growth opportunity [17][23] Management's Comments on Operating Environment and Future Outlook - Management acknowledges the challenges posed by the evolving software sector and emphasizes that cybersecurity is fundamentally different, positioning Rapid7 favorably [9][10] - The company is optimistic about the potential for growth in the DNR market and is focused on improving operational efficiency and customer engagement [22][24] - Management expects that investments made in 2025 will yield improvements in efficiency and operating margins as 2026 progresses [33][40] Other Important Information - Rapid7 ended 2025 with over 11,500 customers and an average ARR per customer of approximately $72,000 [34] - The company has a strong balance sheet with over $659 million in cash and equivalents, along with a $200 million undrawn revolver [35] Q&A Session Summary Question: How will the changes in marketing and sales be measured? - Management is looking for increased sales and marketing productivity and efficacy, aiming to grow faster while improving efficiency [43][44] Question: What are the core growth businesses going forward? - The primary growth area is detection and response, with a focus on mainstream enterprises and integrating exposure management into a unified offering [48][49] Question: Why is there no full-year ARR guidance? - The decision was made to provide guidance that is meetable and clear, with visibility into ARR expected to improve as new leadership settles in [54][56] Question: What is driving the ARR decline in Q1? - The decline is attributed to slower growth in parts of the business outside of DNR, with management expecting improvements as upgrades and new releases are implemented [82][84] Question: How are customer conversations regarding AI evolving? - Customers are asking for more assistance in managing complex environments and are looking for transparency in AI solutions [66][68] Question: How is customer consolidation impacting win rates? - Rapid7 is benefiting from customer consolidation trends but needs to improve the delivery and integration of its solutions to maximize this opportunity [73][75]

Core Insights - Rapid7's top cybersecurity predictions for 2026 highlight the increasing impact of geopolitical conflicts, the rise of insider threats, and the necessity for contextual awareness in cyber defense [1][6]. Geopolitical Landscape - Geopolitical tensions will increasingly affect the cyber battlefield, with private organizations becoming proxy targets for state-aligned groups, leading to a blend of third-party and nation-state attacks [6]. - Organizations are encouraged to utilize curated threat intelligence to monitor geopolitical flashpoints and emerging advanced persistent threat (APT) tools [6]. Insider Threats - Insider threats will become a dominant cause of breaches, with actors such as disgruntled employees and negligent insiders posing significant risks [6]. - Establishing behavior baselines and regularly reviewing privilege models will be critical for organizations to mitigate these risks [6]. Contextual Awareness - Context will be essential for effective cyber performance, as defenders need more than just alerts to respond to AI-driven attacks [6]. - Integrating exposure management with detection capabilities will enhance response times and measurable impact, focusing on key metrics such as time saved and risks remediated [6]. Company Innovations - Rapid7 has experienced a year of accelerated innovation, launching new insights and expanding its Managed Detection and Response (MDR) coverage for Microsoft environments [4]. - The company aims to help organizations manage risk and detect threats in increasingly complex environments [4][8].

Core Insights - Rapid7, Inc. has been recognized in the 2025 Gartner® Magic Quadrant™ for Security Information and Event Management (SIEM) for the seventh consecutive year, highlighting its leadership in threat detection and exposure management [1] Company Overview - Rapid7's SIEM solution, InsightIDR, provides an integrated detection and response ecosystem, designed with a security-role interface and an analyst-first experience, continuously validated by Rapid7's own Security Operations Center (SOC) [2] - The company has received recognition from various industry analysts, including Forrester, Frost Radar™, and IDC, indicating strong market validation for its solutions [2] Product Development - The launch of Incident Command, an AI-native SIEM powered by Agentic AI workflows, aims to enhance security teams' capabilities by providing speed, clarity, and actionable insights through integrated workflows [3] - InsightIDR's extensible architecture allows integration with advanced analytics, automation tools, and data sources across cloud and endpoint environments, contributing to its strong market adoption [3] Features and Benefits - Rapid7's SIEM offering focuses on faster threat detection, reducing alert fatigue, and centralizing investigation workflows, with the latest evolution, Incident Command, providing a unified solution for visibility, collaboration, and rapid response [4] - Key features of Incident Command include enhanced visibility, collaboration tools, and rapid response capabilities across the attack surface [4] Market Position - Rapid7 serves over 11,000 global customers, emphasizing its mission to simplify and make cybersecurity more accessible, while integrating cloud risk management with threat detection [7]

Core Insights - Rapid7 has been recognized for the seventh consecutive year in the 2025 Gartner Magic Quadrant™ for Security Information and Event Management (SIEM) [1] - The company aims to enhance its SIEM capabilities with the launch of Incident Command, an AI-native solution designed to improve security operations [3][4] Company Overview - Rapid7, Inc. (NASDAQ: RPD) focuses on threat detection and exposure management, serving over 11,000 global customers [8] - The company is committed to simplifying cybersecurity and making it more accessible through integrated solutions [7] Product Development - Rapid7's SIEM solution, InsightIDR, is built on a security-role interface and an analyst-first experience, continuously validated by the company's own Security Operations Center (SOC) [2] - The recent launch of Incident Command aims to unify visibility, collaboration, and rapid response across the attack surface, enhancing the overall security posture [4] Market Recognition - In addition to the Gartner recognition, Rapid7 has received accolades from Forrester, Frost Radar™, and IDC for its vulnerability management and exposure management solutions [2] - The company's commitment to reducing alert fatigue and centralizing investigation workflows is reflected in its product offerings [3][4]

Core Insights - Rapid7's 2025 Access Brokers Report reveals that initial access to compromised networks is being sold for less than $1,000, highlighting the need for unified detection and response strategies to combat these cyber threats [1][2][3] Industry Analysis - The report indicates that initial access brokers (IABs) are not merely seeking quick entry into networks but are exploring and exploiting the networks they infiltrate, often providing buyers with admin privileges and multiple access types [3][4] - A significant 71.4% of access broker sales include not just a specific access vector but also a level of privilege, with nearly 10% of sales bundling multiple access vectors and/or privileges [8] Company Strategy - Rapid7 emphasizes the importance of operationalizing threat detection and exposure management together, rather than treating them in isolation, to effectively address the evolving tactics of cyber attackers [4][6] - The company has launched Incident Command, an AI-native SIEM that integrates prevention, detection, intelligence, and response into a single workflow, enhancing security teams' capabilities [5][6] Recommendations - Organizations are advised to enforce multi-factor authentication (MFA) on critical access points, invest in threat-informed detection and response platforms, and conduct regular red team exercises to identify vulnerabilities [9]

Core Insights - Rapid7, Inc. has launched Incident Command, a next-gen SIEM designed to enhance threat detection and response capabilities for security teams [1][3] - The platform integrates attack surface management with threat detection, utilizing Agentic AI workflows to streamline operations and improve efficiency [2][4] Product Features - Incident Command automates triage with an accuracy of 99.93%, saving over 200 SOC hours per week [3][7] - The platform unifies various security functions, including SIEM, SOAR, ASM, and threat intelligence, into a single interface for improved analyst workflows [7] - It offers deep exposure visibility and integrated threat intelligence for actionable insights during threat detection and incident response [7] Market Positioning - Rapid7 aims to differentiate itself in the crowded SIEM market by combining exposure management with threat detection capabilities [4] - The launch aligns with the company's mission to simplify access to security outcomes and enhance the measurable impact of security teams [3] Upcoming Events - Incident Command will be showcased at Black Hat USA on August 6-7, 2025, in Las Vegas [5]