Rapid7 InsightVM's primary use case for us is to check the vulnerability and the exposure of our internal system.

Remediation is not done by the VM tool; we communicate internally with system owners and handle it in that manner. The system itself has not remediated the vulnerability; we more use it to identify and discover the vulnerabilities on each asset we manage.

Rapid7 InsightVM is an on-premise type product that has helped us manage potential vulnerabilities effectively.

The dashboard is excellent as it helps in visualizing our vulnerability management data. We are able to see the historical data in the dashboard, the assets, and the vulnerability in parallel. We can also see each site and manage both per-site as well as the grand information for all sites in the first dashboard.

Most of the dynamic asset tagging we use is manual, not dynamic. To manage the assets, we employed the manual approach because we have a limitation regarding the license, so we don't use the dynamic approach much.

I don't know how the configuration assessment has assisted with meeting compliance standards. The product that we use is the on-premise solution where we configure assets and dynamically scan them. However, we use the default policies more, the template, so Rapid7 InsightVM on-premise version is not that effective in the web-related systems. However, it is best on the OS to identify and discover the OS-related vulnerabilities, more of open ports and the discovery of vulnerable ports or services.

It would be better to improve Rapid7 InsightVM by including or working better to add web-related templates because it's not that effective in regard to web. I don't know if they may have a separate product regarding the web, but for the on-premise type, they are not strong in this area.

I would prefer to see web-related templates in addition to improving the dashboard-related things because the dashboard has been constant for a very long time. It would be better to see various kinds of, perhaps a flexible type of dashboard. If it's not customizable at all, I would want to see the risk and asset over time with more flexibility. The current dashboard is not flexible in this regard; I have to dig down every day, so they should work on this as well, in addition to the web.

We have worked with Rapid7 InsightVM for the past three or four years.

For the technical support by Rapid7, I would give a six out of ten because our web-related systems are very important to identify the vulnerabilities. I believe it would be better to work on the web-related issues and include those kinds of templates in their product.

We have utilized the predictive analytics feature.

The pricing of Rapid7 is not cheap; I would say it's medium. It's not very expensive; it's not cheap, but if they included the web and addressed the comments I made, the price would not be that expensive. For now, it is expensive.

Our overall review rating for this product is six out of ten.

The main use case is the vulnerability assessment of their assets. Assets include Windows or Linux platforms. This is the only use case. They want to highlight and identify vulnerabilities in their platform to remediate them. For the remediation part, they want to integrate their IT teams with the Rapid7 InsightVM platform so their IT team can get insights into the vulnerabilities, remediate them, and update over the same platform. These are the functionalities of their Rapid7 InsightVM solution.

The most valuable feature of the Rapid7 InsightVM solution is the Live Risk Score. It provides dynamic Live Risk Scoring of the assets. Vulnerabilities can be classified between most critical and less critical vulnerabilities, which are dynamically updated in their dashboard. This is the most interesting and valuable feature from my perspective.

It provides different compliance reports regarding PCI DSS, GDPR, and HIPAA. For compliance, it is a good solution for customers, and in this domain there is no improvement required for Rapid7 InsightVM.

The automation capability remediation needs improvement. The current process requires manually telling IT teams to remediate vulnerabilities, and then they update the status of these vulnerabilities in the platform. This basic feature that Rapid7 calls an automated remediation process is actually manual. We can update the status of vulnerabilities in the Rapid7 InsightVM platform and collectively see how many vulnerabilities we have identified and how many are remediated by our IT team.

More automation in the remediation feature is a basic demand from many customers. The remediation part and vulnerability identification of network devices or rigid devices are not currently supported by Rapid7 InsightVM. More integration and automation are the two areas Rapid7 needs to improve in their product.

I have been working with Rapid7 InsightVM for about one and a half years.

This is a very stable solution. I rate it around eight because I have faced only one problem in the Rapid7 InsightVM solution when configuring it for a customer due to a malfunction or bug.

Other than that, there have been no specific issues ever recorded or noticed by my team or myself. Rapid7 continuously updates it, which is why I rate it eight out of ten.

This is a very scalable solution that I would rate eight out of ten. Scalability in the Rapid7 InsightVM solution is straightforward. We just need to deploy multiple scanning engines for scanning the assets. If we exceed assets from 5,000 to 10,000, we need to deploy more scanning engines to scan the solutions and assets. We simply need to deploy another scan engine to make it scalable.

I cannot comment specifically regarding the support part because I have never needed Rapid7 support for the InsightVM solution as it is very stable. There were no bugs or specific problems that required raising a support ticket. Their support appears good, and some of their representatives are in direct contact with me through phone numbers. Their support seems good, but I cannot provide a specific rating.

In the Pakistan region, there are multiple customers using Rapid7 InsightVM solution, including Rapid7 Nexpose. Nexpose and InsightVM are the same solution, with the difference being cloud versus on-premises versions. The on-premises version is called Nexpose, and the cloud version is called Rapid7 InsightVM solution. Their functionalities are almost the same. In Pakistan, I have deployed this solution in more than 15 organizations, and approximately 30 plus organizations are using this solution in total.

Initial setup is very easy as this is a cloud solution. We just need to create the account and use it for integration with other assets. I would rate the initial setup nine out of ten.

The customers are mostly SMBs, though some enterprise organizations have also deployed the solution. This is neither a cheap nor the most expensive solution. Qualys and some other vendors are more expensive than Rapid7 InsightVM.

I have experience with the Rapid7 VMDR solution - not with other solutions. I am exploring the differences between these solutions for customer pitches.

Currently, there is no AI embedded in the solution available on the website. According to Rapid7, they are working on the Sonar project and will soon launch this project to enhance their AI capability in the solution.

My overall rating for Rapid7 InsightVM is seven out of ten.

We are resellers of Rapid7 InsightVM in this market. We typically recommend it to banks and manufacturing groups interested in enhancing their cybersecurity.

We started with a couple of Rapid7 products, including Rapid7 InsightVM, and it runs quite fine with our customers. Although some customers raised issues, we resolved them with our technical team. Customers are interested in this product as it helps heighten their cybersecurity posture. Aside from technical challenges, the products offer comparable packages and services to other vendors in the market, such as Tenable.

The major improvement needed is prompt support. When issues arise, the customer's satisfaction is tied to how quickly they receive a response and a resolution. There have been delays, particularly when technical issues needed escalation, and we had to coordinate with business personnel to address them. Improving this area would be beneficial for Rapid7 InsightVM.

I have been dealing with Rapid7 InsightVM for about three to four years.

There have been some challenges, especially with support response times, which affect stability. However, the product itself runs fine.

Integration with other tools has been fine, with no major issues reported. We did not face any specific equipment or device that could not be integrated.

Customer service needs significant improvement. There are delays in support response times, and support is not available promptly, especially when issues are escalated to another region.

The initial setup was straightforward. We train our technical team before undertaking deployment, ensuring smoother setups.

The return on investment is something the customers evaluate themselves. Since it is a subscription-based service, they do not own hardware, and it fits within their budgetary requirements.

Pricing is reasonable and competitive compared to other solutions in the market. Customers are generally satisfied and do not ask for drastic price reductions during renewals.

Tenable and Invicti are also doing good work here. The market is active with various players.

I would rate Rapid7 InsightVM a six out of ten. Improvements in support responsiveness are crucial. Customers like Habib Bank faced delays, leading them to switch to other vendors. Addressing these support issues could enhance the product's effectiveness.

We use the solution mainly for servers and vulnerability management.

The solution's user interface is good and has some vulnerability prioritization. Rapid7 InsightVM has good integrations with ServiceNow and its own remediation project creation options.

Rapid7 InsightVM is not PCI certified, which didn't help us in the London office because of the Cyber Essentials Plus certification, which is mandatory there. We had to outsource the vulnerability management for the London office.

One of the most important things for a vulnerability management tool is the identification of vulnerabilities. When it comes to Rapid7 InsightVM, the vulnerabilities are not updated within its database. This is one of the major things that should be changed in Rapid7 when it comes to customer reliability. If the database is not updated, it could jeopardize the customer's servers and data.

The solution's support staff does not reply on time, which should be improved. Rapid7 InsightVM should improve its threat intelligence.

I have been using Rapid7 InsightVM for the last few years.

The solution's initial setup is good.

Overall, I rate the solution a six out of ten.

The product is not a cloud solution. The tool can only be used as a hybrid solution, meaning it can be used on the cloud and on an on-premises deployment model. There are certain limitations because of the product being used on a hybrid model. Rapid7 InsightVM doesn't offer a solution purely in the cloud.

Competitors of Rapid7 InsightVM, like Tenable.io and Qualys, offer pure cloud solutions.

I have been using Rapid7 InsightVM for seven or eight years. My company serves as a distributor of the tool.

Sometimes, there were certain parts and programs of the product about which the customer used to complain.

Stability-wise, I rate the solution a six to seven out of ten.

It is a highly scalable solution. One of my company's customers uses the tool on 1,30,000 devices.

My company deals with clients who own small as well as enterprise-sized businesses.

In the past, the support offered for the product was good. Unfortunately, over a period of time, the support offered has become poor.

I rate the technical support a four to five out of ten.

The product's initial setup phase was very easy.

The solution can be deployed in a few hours. The time required depends on the scale of the deployment. If there are 1,000 or 10,000 deployments to be done, then it takes time. If the customer provides a Q&A to calculate the design of the network, then the process becomes easier. If the customer does not know about their network, then the deployment process takes time since our company has to discuss several things with them before starting the process.

The product is cheaper than the other similar tools available in the market.

My company uses Rapid7 InsightVM to identify and assess vulnerabilities.

The product has improved our company's vulnerability remediation process. The tool finds vulnerabilities by scanning devices and networks. The solution is also useful in the area of database scanning.

The product area I find to be valuable in vulnerability management workflow stems from many aspects, like reporting, which is very useful. Rapid7 InsightVM's integration with Jira is also very effective and useful for end users. The coverage of the vulnerability offered by the product is very good. The GUI for Japanese users is good.

The product's integration capabilities have improved my company's security posture, as many other systems can be integrated with it. The export feature of the product helps users deal with other products like ServiceNow or Splunk.

The product is more useful for scanning than for its real-time visibility, but I can say that its functionalities come very close to real-time features. The product scans every six hours.

In large and diverse environments, the performance and the scalability of the product are not bad.

The product is easy to understand, making it good for companies that doesn't have much expertise in the area of security. It is an easy to use product. The product also provides a GUI in Japanese, while taking care of the reporting part efficiently, making it very convenient for the end users in Japan.

I rate the product's capacity to offer ease of use an eight out of ten.

I rate the overall tool a six to seven out of ten.

The core domain use of the solution is verification, scanning, and finding out the vulnerabilities in real time.

The ease of deployment and configuration allows users to onboard quickly, aligning smoothly with various functionalities.

The data sheet is good in pricing and promises. The customers are very price-conscious. You have to satisfy technical requirements. This combo makes the product valuable and usable.

Two things are consistent. The rest of the things run fine. The technical side does not respond quickly. They take a lot of time. The priority should be to respond to the customer to serve the customer.

I have been using Rapid7 InsightVM for more than three years.

The solution’s stability is good. It keeps on running. There are no system complaints.

The solution’s scalability is linked to the new scope and the cost.

We are actively seeking alternatives. If you can offer a better solution, superior after-sales service, and overall better everything, we would like to explore what you have to offer.

The initial setup is not so complex. It is quickly deployable configurable and integrated with your existing setup.

The common process for Rapid7 InsightVM involves comparing it against their standard procedures to ensure compliance with the required licenses and resources. Users download the necessary files and initiate/reactivate licenses. Certain configurations are also set up. This process typically takes two to three days for the department, but we usually allocate a week for completion.

Our team feels enabled enough after completing the training session on Rapid7 InsightVM. We conduct our tests independently, and whenever we need support, we seek assistance directly from Rapid7. This process isn't overly complex or time-consuming. We ensure thorough preparation by gathering all necessary information, addressing internet concerns, and informing the customer. Once fully prepared, we proceed forward.

The solution’s pricing is good because the value proposition delivers a report box. It is not very costly.

Since the product is cloud-based, there's no maintenance. Whatever the information or the customization of the customer needs to be confirmed. The hardware needs maintenance.

Overall, I rate the solution a six out of ten.