Listing Thumbnail

    InsightIDR - Next-gen SIEM

     Info
    Sold by: Rapid7 
    Rapid7 InsightIDR is a fast-deploying next-gen SIEM for the cloud-first era that lets you simplify threat detection and response in today's complex hybrid environments.
    Listing Thumbnail

    InsightIDR - Next-gen SIEM

     Info
    Sold by: Rapid7 

    Overview

    Play video

    Rapid7 InsightIDR is a cloud-based next-gen SIEM built for security teams in need of a solution that can quickly detect and respond to threats in today's ever-evolving hybrid and multi-cloud IT environments.

    InsightIDR deploys quickly. Customers routinely get up and running in under a day. A library of 900+ out of the box detections lets InsightIDR start detecting threats as soon as deployment is complete.

    Once deployed, InsightIDR monitors your entire IT environment. It can ingest CloudTrail, GuardDuty, EC2 network traffic, and raw logs sent via SQS from multiple AWS accounts plus data from other cloud services, on-premises networks, and remote endpoints. From there, you can use InsightIDR to:

    • Visualize and search all your security data in a single intuitive interface
    • Quickly detect threats and minimize false alarms with user and attacker behavior analytics, backed by a vast community of threat intel
    • Build layered defenses with honeypots, honey credentials, and honey files
    • Detect use of new AWS regions, services, and EC2 instance types
    • Cut investigation times with detailed log timelines and automated response workflows
    • Meet log, event, and File Integrity Monitoring (FIM) requirements of compliance frameworks like PCI, HIPAA, and GDPR

    InsightIDR is also available as a managed service.

    NOTE: InsightIDR's attribution engine requires access to Microsoft Active Directory, DHCP, and LDAP. Before purchasing, please read documentation and contact Rapid7 with any questions.

    Highlights

    • Resolve incidents faster: InsightIDR's visual investigation timeline makes it easy to validate and quickly understand the scope of an attack. In addition, automation capabilities let you instantly take actions such as quarantining compromised assets.
    • Get up and running in hours: InsightIDR is SaaS-based, making it easy to deploy in a fraction of the time of traditional SIEMs.
    • Monitor everything with one tool: Centralize data from cloud and on-prem networks, off-network endpoints, cloud services like AWS GuardDuty, and SaaS solutions like Office365. This consolidated view of your environment makes it easier to detect and respond to intrusions.

    Details

    Sold by

    Delivery method

    Features and programs

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    InsightIDR - Next-gen SIEM

     Info
    Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.

    12-month contract (3)

     Info
    Dimension
    Description
    Cost/12 months
    Insight IDR Essential
    Monitor up to 500 assets. 0.5TB/mo limit, 13 month data retention
    $21,479.00
    InsightIDR Advanced
    Monitor up to 500 assets. 0.6TB/mo limit, 13 month data retention
    $33,682.00
    IDR Ultimate
    Monitor up to 500 assets. 0.8TB/mo. Incl. ENTA, unlimited automation.
    $46,149.00

    Vendor refund policy

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    Software as a Service (SaaS)

    SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

    Resources

    Vendor resources

    Support

    Vendor support

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Similar products

    Customer reviews

    Ratings and reviews

     Info
    0 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    0%
    0%
    0%
    0 AWS reviews
    |
    69 external reviews
    External reviews are sourced from G2  and are not included in the star rating for this product.
    Construction

    Robust monitoring for any situation

    Reviewed on Feb 05, 2024
    Review provided by G2
    What do you like best about the product?
    Insight IDR provides a detailed look at any event that might occur in your environment. It's flexible enough to plug into just about any situation and has the ability to monitor a number of 3rd party sources giving you a single view into your entire environment without having to go to multiple dashboards.
    What do you dislike about the product?
    There can be a lot of overhead and some of the integrations and monitoring especially for Windows devices can be a little clunky. Additional collector servers will be needed to gather the logs and these can be costly if you're running them in the cloud.
    What problems is the product solving and how is that benefiting you?
    Insight IDR provides us with the security tools we need to monitor and respond to events in our environment. Each alert includes a detailed reasoning for why it was generated in addition to remediation steps. It makes it easy to resolve issues and gives you the peace of mind knowing that everything is being monitored around the clock.
    Information Technology and Services

    Very facinating experience

    Reviewed on Sep 26, 2023
    Review provided by G2
    What do you like best about the product?
    Very Easy for usage and implementation. Good Customer support.
    What do you dislike about the product?
    Nothing to describe much as it is user friendly.
    What problems is the product solving and how is that benefiting you?
    Security related problems
    Durgaprasad L.

    Excellent soc tools to have analysis

    Reviewed on Sep 26, 2023
    Review provided by G2
    What do you like best about the product?
    Its have features of integrated with active directory to check user details in detailed
    It's very easy to approach
    What do you dislike about the product?
    No option to export daily alerts
    It's should be very recommended for organisation to help for their approach of business possibilities
    What problems is the product solving and how is that benefiting you?
    It's user for deep analysis of any incident with approach of log analysis and detailed investigation
    It's depends on the approach of user
    Information Technology and Services

    InsightIDR is a highly effective and user-friendly cybersecurity solution.

    Reviewed on Sep 19, 2023
    Review provided by G2
    What do you like best about the product?
    The visibility and threat detection that InsightIDR offers for our organization's network is vital, making it a crucial component of our defence against cyberattacks. It is also very easy to use.
    What do you dislike about the product?
    Pricing: Although InsightIDR offers outstanding value for the services it delivers, smaller organisations with tighter budgets could discover its pricing to be on the expensive side.
    What problems is the product solving and how is that benefiting you?
    Cybersecurity-related issues are being addressed by InsightIDR, and the advantages it provides to organisations using it are significant. Here are some of the main issues that InsightIDR resolves and how those advantages might help your company:

    Detecting threats in real time is where InsightIDR really shines. It recognises and notifies you of questionable actions, unauthorised access tries, and potential security breaches as they take place. With this skill, you can react quickly, reducing the potential harm and data loss brought on by cyberattacks.
    Information Technology and Services

    Awesome Power!

    Reviewed on Aug 10, 2023
    Review provided by G2
    What do you like best about the product?
    Prompt, easy to parse alerts on the relevant assets it monitors that allows for a measured and swift response.
    What do you dislike about the product?
    That every contract I'm on doesn't use it. I am a big fan of the Rapid7 product as a Cybersecurity professional. I think this is the best on the market in the detection and response space.
    What problems is the product solving and how is that benefiting you?
    Every deployment I've been fortunate enough to to work on the administrator side of the operation is saving TIME and headache. So in terms of labor and my team's sanity = paying dividends.
    View all reviews