Case Study: University of Mary Washington achieves faster vulnerability detection and PCI compliance with Rapid7 Nexpose

Nexpose is a “Tireless Force Multiplier” at the University of Mary Washington

The University of Mary Washington faced the challenge of protecting an extensive campus IT environment and proving compliance with PCI DSS and state security requirements with a small security team. After finding open-source tools inadequate—uncovering far fewer issues—IT Security Director Clay Calvert needed a more reliable, efficient way to find vulnerabilities and manage permissions across many systems.

Rapid7 Nexpose was deployed as a virtual appliance and delivered fast, actionable results with a short learning curve. Automated scans, granular account permissions (including a read-only auditor role), and the ability to run external penetration-style checks saved hours of manual work and uncovered many more vulnerabilities than previous tools. The solution improved ongoing security hygiene—catching settings undone by patches—supported upcoming Active Directory migration efforts, and became a “tireless force multiplier” for the IT team.

University of Mary Washington

Clay Calvert

Director of IT Security