Case Study: Winthrop & Weinstine achieves 24/7 threat detection and proactive response with Rapid7 Managed Detection & Response

Rapid7 Managed Detection and Response provides cybersecurity “eyes and ears” for leading law firm

Winthrop & Weinstine is a top U.S. law firm of 130+ attorneys that moved to a highly virtualized, remote-enabled environment to boost productivity. That shift raised security concerns for IT Director Craig Wilson: the firm needed to maintain strong protection across virtual desktops and servers, keep up with a high volume of threats and alerts, and stop attacks as early as possible—challenges the small in-house IT team could not cover 24/7.

The firm deployed Rapid7 Managed Detection and Response with InsightIDR, reaching 95% Insight Agent coverage and using honeypots, UBA/ABA analytics, and a dedicated MDR SOC to provide continuous monitoring and response. The service detected live attack activity during a third‑party red-team exercise, helped remediate risky misconfigurations, and delivered regular actionable reporting—giving the firm faster, more confident threat detection and the equivalent of an outsourced CISO to reduce risk and support future automation and client security assessments.

Winthrop & Weinstine

Craig Wilson

Director of IT