The most valuable feature of the product for managing security events stems from the fact that the product's intelligence part is very good since it offers its own threat intelligence and vulnerability management platform. The tool also has its own cloud security posture management platform. The tool also is a dynamic application security testing platform. The aforementioned tools fall under Rapid7 InsightIDR's kitty. The intelligence and the data that Rapid7 gathers from customers across the globe enrich the quality of its detection capabilities. All other tools in the market depend on third-party solutions for intelligence. Rapid7 InsightIDr has the intelligence part natively available within the product, giving it a good edge over other vendors.
Rapid7 Command Platform
Rapid7External reviews
External reviews are not included in the AWS star rating for the product.
Offers capabilities in areas like threat intelligence and vulnerability management but needs to improve support
What is most valuable?
What needs improvement?
I believe that Rapid7 InsightIDR has moved to a complete cloud-first strategy. The tools offered by Rapid7 InsightIDR are amazing. The product should have provided some capabilities to users who wanted to stay or use the tool's on-premises version, as it would have provided the solution with more acceptance in the market, especially in the Middle East region.
It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required.
For how long have I used the solution?
I have been using Rapid7 InsightIDR for three to four years.
What do I think about the stability of the solution?
As I haven't heard any complaints about the product, I rate the solution's stability a nine out of ten.
What do I think about the scalability of the solution?
Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable.
The product is meant for medium-sized customers and large enterprises and not for corporate or government organizations since the product is available only on the cloud. Customers who have the privilege of using cloud solutions can use Rapid7 InsightIDR. Cloud solutions' use is less in government spaces in the Middle East region since there are some regulations to use cloud-based products. In the private space, I feel that Rapid7 InsightIDR is considered to be a fairly strong product.
It is difficult for enterprise businesses to use the solution, especially the ones regulated by governments. There are no problems with the solution when it comes to a private company or a private enterprise. I think Rapid7 InsightIDR provides the best tools. The tool won't work for you if you are not allowed to use a public cloud.
How are customer service and support?
I rate the technical support a six to seven out of ten.
What other advice do I have?
The tool has improved the efficiency of security incident detection and response in our company as it works fairly well. It is possible to enhance the capabilities of the platform since the solution offers a whole stack or suite of tools. When dealing with Rapid7 InsightIDR, you will see the integration capabilities offered are extremely seamless. Rapid7 InsightIDR offers its own set of features that enrich the capabilities of the vulnerability management tool. In general, the product's features increase the solution's overall capabilities in terms of reporting and detection of vulnerabilities.
I can't remember a scenario where the product was effective in threat hunting or investigation. Rapid7 InsightIDR is a very acceptable product for people who want a cloud-based solution. The product is not available on an on-premises version. The product can be useful for industries ranging from SMBs to large-sized companies where there is a need for a tool that can be very easily rolled out at a very effective and attractive price point that gives them very good coverage from a cybersecurity perspective.
Speaking about how the product has enhanced the security posture in our company, I would say that I am not really sure about the capabilities of the UABA part of the solution since I haven't seen many use cases around it.
Rapid7 InsightIDR mean time-to-detect and mean time-to-respond are fairly good because Rapid7's support team does pick up a ticket whenever it is raised from the users' end, but its mean time-to-resolve has some concerns since some of the tools under Rapid7 are available on an on-premises model. In specific to InsightIDR, I think that everything is very good, including areas like detection, MTTD, and MTTR, which are very good in InsightIDR specifically. The product can improve a bit in the area of MTTD and MTTR.
Rapid7 InsightIDR's integration capabilities with other tools are not an area I have experience with since the product is completely available on the cloud. I believe that whatever integrations users want from the product would work since it is a solution that is available on the cloud. I don't have personal experience with the integration part.
I rate the overall tool a seven out of ten.
An affordable product that is easy to use and has many advanced features and default templates
What is most valuable?
It’s a great tool. The solution helps us a lot in threat detection. It’s one of the most updated tools. The UI is very good. We can easily start using the tool and explore it. It also provides features like legacy UBA that other products do not provide. We can customize the rules from the default template in InsightIDR. UBA is a great feature.
When a new user is created in Active Directory, an investigation is created. We can use the default features to create an investigation. The solution has many advanced features and default templates that help protect from attacks without a user’s intervention. It is quite impressive.
What needs improvement?
The product allows us to make only 30 custom rules. The limit on custom rules must be changed.
For how long have I used the solution?
I have been working with the product for two months.
What do I think about the scalability of the solution?
We have deployed the solution in 28 offices. We are using the basic features for now.
How was the initial setup?
The initial setup is straightforward.
What's my experience with pricing, setup cost, and licensing?
We chose Rapid7 because of its price. IBM QRadar charges us based on data storage. Rapid7 InsightIDR charges us based on the endpoints we connect to. We are satisfied with the product’s price.
Which other solutions did I evaluate?
I have used IBM QRadar, Splunk, and Sentinel. We use Splunk in our offices, too. Compared to other products, Rapid7 InsightIDR’s UI is very good. It is very easy to handle. We are working with the tool currently and are quite satisfied with it.
What other advice do I have?
Overall, I rate the solution a nine out of ten.
Robust monitoring for any situation
A tool to detect malicious activities and provide security to networks and endpoints
What is our primary use case?
Rapid7 InsightIDR helps me detect any malicious activities in any endpoints in my company.
How has it helped my organization?
I have seen that Rapid7 InsightIDR provides security to the networks and endpoints in the company.
What is most valuable?
With Rapid7 InsightIDR, you must install the Insight Agent, after which you may get to see some of the risks affecting endpoints.
What needs improvement?
The integration capabilities of the solution have certain shortcomings where improvements are required.
If possible, it would be great to see AI embedded in all the functionalities offered by the product.
For how long have I used the solution?
I have been using Rapid7 InsightIDR for four years. I use the solution's latest version since the version gets automatically updated as it is a cloud-based tool. I work as a distributor of the product.
What do I think about the stability of the solution?
Stability-wise, I rate the solution an eight out of ten.
What do I think about the scalability of the solution?
It is a scalable solution. Scalability-wise, I rate the solution an eight out of ten.
How was the initial setup?
The time required to complete the product's installation phase depends on the number of endpoints that a user has in their environment. Insight Agent can be deployed in a couple of minutes.
Five engineers in my company take care of the deployment phase of Rapid7 InsightIDR.
The solution is deployed on the public cloud services offered by AWS.
What's my experience with pricing, setup cost, and licensing?
Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight.
Which other solutions did I evaluate?
I did not evaluate any other options in the market against Rapid7 InsightIDR.
What other advice do I have?
I have never been involved with any maintenance process related to Rapid7 InsightIDR.
To those who plan to use the solution, I suggest that they undertake a training program to understand the product.
I rate the overall tool an eight out of ten.
Which deployment model are you using for this solution?
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
A stable solution that works well for playbooks and viewing events
What is our primary use case?
Normally, we use the solution as an event viewer to collect and resume cases and playbooks.
What needs improvement?
The main problem lies in the processes within the client's operating systems. XDR is superior to CMs. Observing how the processes function within the machine is essential if you are monitoring the client or servers, and not only the event with the first or second line but the third line is most important.
For how long have I used the solution?
I've been familiar with the solution for six months.
What do I think about the stability of the solution?
The solution is very stable and works very well for what I need it to do. The solution is completely different in an experienced environment and a real environment.
Which solution did I use previously and why did I switch?
I have worked with Wazuh before, but only to try it. Wazuh is more or less the same as Rapid7 InsightIDR.
What other advice do I have?
I rate Rapid7 InsightIDR an eight out of ten.
Very facinating experience
Excellent soc tools to have analysis
It's very easy to approach
It's should be very recommended for organisation to help for their approach of business possibilities
It's depends on the approach of user
InsightIDR is a highly effective and user-friendly cybersecurity solution.
Detecting threats in real time is where InsightIDR really shines. It recognises and notifies you of questionable actions, unauthorised access tries, and potential security breaches as they take place. With this skill, you can react quickly, reducing the potential harm and data loss brought on by cyberattacks.
A solution that offers easy setup and deployment phases, along with great scalability and stability
What is our primary use case?
I use Rapid7 InsightIDR to collect logs and information from throughout our company's entire IT environment.
What is most valuable?
The most valuable feature of the solution is the single pane of glass that allows me to see all the information in one spot. I can see at one spot to see all the information from all the logs and everything.
What needs improvement?
Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries. In the future, I would like the tool to offer its uses with a pre-made set of queries.
For how long have I used the solution?
I have been using Rapid7 InsightIDR for a year. I use the solution's latest version. My company is a customer of the solution.
What do I think about the stability of the solution?
The product works well. Stability-wise, I rate the solution a ten out of ten.
What do I think about the scalability of the solution?
I rate the product's scalability a ten out of ten since, scalability-wise, it is a really good tool.
Rapid7 InsightIDR is managed by four people in my company.
How are customer service and support?
The speed of response from the technical support team may vary since I purchased it from a reseller in Sweden and not from Rapid7 directly.
I rate the technical support a seven out of ten.
Which solution did I use previously and why did I switch?
How was the initial setup?
I rate the initial setup a ten out of ten.
The solution's initial setup was very straightforward.
The solution is deployed on an on-premises and cloud model. The cloud services are provided by Rapid7.
The solution can be deployed in half a day or four hours in a small environment.
I was the only person involved in the product's deployment phase.
What's my experience with pricing, setup cost, and licensing?
After considering the prices of the product's competitors, I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive. There may be some additional costs attached to the solution only if you want to buy a SOC or something. I don't have to pay for any additional costs at the moment.
What other advice do I have?
I suggest that those who plan to use the solution give it a try since it is free for a couple of months. The solution has really easy setup and deployment phases, and you can even remove it from your environment if you want to do so later.
I rate the overall product a nine out of ten.
Lets you simplify threat detection and has a fast deployment
What is our primary use case?
The solution is used as a platform for a better understanding of the Intelligence products that different vendors sell.
What is most valuable?
Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling.
What needs improvement?
The APIs can be further improved in Rapid7.
For how long have I used the solution?
I have been using Rapid7 InsightIDR for two months.
What do I think about the stability of the solution?
It is stable solution.
What do I think about the scalability of the solution?
It is a scalable solution. Presently, there are only small businesses working with the solution.
How are customer service and support?
The technical support team is good.
How was the initial setup?
The initial setup is easy. The deployment took only half an hour. It's just a cloud platform. You just have to deploy a connector like Select Pro, and it will set the data from the on-premise. It will send it to the cloud platform, and you can have it installed in five to ten minutes.
What's my experience with pricing, setup cost, and licensing?
The pricing of the solution depends on the user. But there is a yearly licensing cost.
What other advice do I have?
It is a good solution but just has some API issues. I rate the solution an eight out of ten.