AWS Marketplace: InsightIDR - Next-gen SIEM Reviews

Sign in

Sign in

or

Create a new account

Agent Mode

Categories

About What is AWS Marketplace?Why AWS Marketplace?Get started in AWS Marketplace Procurement options Cost management tools Governance & control features ??service_pages.dropdown.free_trials_en??Sell in AWS Marketplace

AI Agents & Tools AI Security Content Creation Customer Experience Personalization Customer Support Data Analysis Finance & Accounting IT Support Legal & Compliance Observability Procurement & Supply Chain Quality Assurance Research Sales & Marketing Scheduling & Coordination Software Development

Business Applications Blockchain Collaboration & Productivity Contact Center Content Management CRM eCommerce eLearning Human Resources IT Business Management Project Management

Cloud Operations Cloud Financial Management Cloud Governance

Data Products Automotive Data Environmental Data Financial Services Data Gaming Data Healthcare & Life Sciences Data Manufacturing Data Media & Entertainment Data Public Sector Data Resources Data Retail, Location & Marketing Data Telecommunications Data

DevOps Agile Lifecycle Management Application Development Application Servers Application Stacks Continuous Integration and Continuous Delivery Infrastructure as Code Issue & Bug Tracking Log Analysis Monitoring Source Control Testing

Industries Automotive Education & Research Energy Financial Services Healthcare & Life Sciences Industrial Media & Entertainment

Infrastructure Software Backup & Recovery Data Analytics High Performance Computing Migration Network Infrastructure Operating Systems Security Storage

IoT Analytics Applications Device Connectivity Device Management Device Security Industrial IoT Smart Home & City

Machine Learning Audio Computer Vision Data Labeling Services Generative AI Human Review Services Image Intelligent Automation ML Solutions Natural Language Processing Speech Recognition Structured Text Video

Professional Services Assessments Implementation Managed Services Premium Support Training

Delivery Methods API-Based Agents & Tools Amazon Machine Image EC2 Image Builder Component Amazon SageMaker AWS Data Exchange CloudFormation Stack Container Image Helm Chart Add-on for Amazon EKS Professional Services SaaS

Solutions AI Agents & Tools AWS Well-Architected Business Applications CloudOps Data & Analytics Data Products DevOps Digital Sovereignty Generative AI Infrastructure Software Internet of Things Machine Learning Managed Services Providers Migration Security

Industry ??industrySolutions.dropdown.advertising_and_marketing_en??Energy ??industrySolutions.dropdown.engineering_construction_and_real_estate_en??Financial Services Healthcare & Life Industrial ??industrySolutions.dropdown.life_sciences_en??Media & Entertainment Nonprofit ??industrySolutions.dropdown.power_and_utility_en??Public Health Public Sector ??industrySolutions.dropdown.retail_en????industrySolutions.dropdown.sustainability_en??Telecommunications

AWS Service Integrations AWS Control Tower AWS PrivateLink Pre-trained Amazon SageMaker Models

Resources All resources Developer tools & tutorials Blog Events & webinars Analyst reports Customer success stories Buyer guide Frequently asked questions

Your Saved List

Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

InsightIDR - Next-gen SIEM

Rapid7

Reviews from AWS customer

4 AWS reviews

5 star

1
4 star

3
3 star

0
2 star

0
1 star

0

External reviews

85 reviews

from and

External reviews are not included in the AWS star rating for the product.

4-star reviews ( Show all reviews )

Ryan C.

Mature and ready for a small team!

January 10, 2018
Review provided by G2

What do you like best about the product?

My team is very small (myself and my manager), so we needed something that was easy to use (and USEFUL) out of the box. We didn't mind tweaking and adjusting things, but there had to be some very quick turn around. And we couldn't dedicate a person to just manage our SIEM, like Arcsight needs. We like the cooperation of on-premises and cloud operations, along with the in-app documentation for investigations ("Notes").

What do you dislike about the product?

There are some investigations that are unnecessary for our case. For example, we could tell the system that UserX is allowed to login remotely to any system (used for sysadmins). But we couldn't say that SystemX should be accessible by any user in the domain, and to stop alerting on it.

What problems is the product solving and how is that benefiting you?

We can see multiple sources of event data, and it correlates this across all other sources. We have caught numerous attack attempts, and used it to justify our ongoing Multi-Factor Authentication project.

Recommendations to others considering the product:

Get as many log sources as you can into this. The more data it can use, the better it works.

showing 51 - 51