Project Details
Client Snapshot
A global manufacturing organization operating a large, distributed Windows environment with more than 50,000 endpoints. Security and IT teams are responsible for maintaining visibility, compliance, and audit readiness across a highly diverse workforce and device footprint.
The Challenge
The organization relied on Rapid7 InsightIDR for security monitoring and vulnerability management. But evolving internal and regulatory requirements demanded detailed visibility into browser extensions across all workstations, visibility Rapid7's native dataset did not provide.
At 50,000+ devices, the math broke down quickly:
Manual exports and workstation-level checks were time-consuming, inconsistent, and functionally impossible at this scale.
Rapid7 lacked the structured reporting and historical insight needed for compliance or leadership visibility.
A third-party reporting tool existed, but per-device licensing costs were prohibitive given the device count.
The security team needed a scalable bridge between endpoint telemetry, Rapid7, and business-ready reporting, without committing to recurring licensing fees the business couldn't justify.
Our Approach
Rather than buying another tool, X-Centric built a custom end-to-end automated data pipeline using assets the client already owned: Rapid7, PowerShell, SQL, and the option to layer Power BI on top.
1
Developed and deployed a PowerShell script across all Windows workstations. The script collects browser extension metadata from every installed browser, packages it, and securely uploads it into Rapid7 as custom telemetry.
2
Built a scheduled daily process that retrieves extension data from the Rapid7 API and normalizes it into structured SQL tables optimized for reporting and trending. Built-in validation and error handling ensure long-term reliability and data integrity.
3
Delivered a SQL-backed reporting layer that gives analysts and auditors the ability to query historical data for trend analysis and compliance evidence. The client's security team can layer Power BI on top for dashboards and leadership-ready insights.
Outcomes
The solution replaced the need for expensive reporting licenses with a scalable in-house capability, and delivered enterprise-grade compliance evidence on demand.
Eliminated per-device licensing costs from a third-party reporting tool, full enterprise-scale reporting at zero additional licensing cost.
Removed manual workstation-level checks entirely, with browser extension data now centralized, accurate, and updated daily.
Delivered leadership clear, evidence-based visibility into extension compliance across 50,000+ devices.
Enabled rapid, consistent responses to audit and regulatory requirements with queryable historical data.
Freed security engineers to focus on higher-value strategic work instead of manual data collection.
Client Review
“We would have spent six figures a year on a tool that solved one reporting problem. X-Centric solved it with the licenses we already owned and gave us something we can extend to the next compliance requirement that comes up.”
John Doe
Global Manufacturer
What This Means For Your Business
If you're running enterprise security tooling at scale and getting quoted seven-figure renewals for incremental reporting capability, there's almost always a build-versus-buy conversation worth having.
The right partner can engineer compliance reporting on top of what you already own, and the savings compound year after year while the capability stays under your control.
Project information
Client:
Global Manufacturer
Industry:
Manufacturing
Solution:
Cybersecurity · Compliance Automation
Engagment:
Custom build