ArcSight Intelligence vs Rapid7 InsightIDR comparison

OpenText and Rapid7 are both solutions in the Security Information and Event Management (SIEM) category. OpenText is ranked #40 with an average rating of 8.0, while Rapid7 is ranked #9 with an average rating of 8.2. OpenText holds a 0.3% mindshare in SIEM, compared to Rapid7’s 2.5% mindshare. Additionally, 80% of OpenText users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

ArcSight Intelligence

Read 5 ArcSight Intelligence reviews

467 Views
317 Comparison Views

80% willing to recommend

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

4,184 Views
2,604 Comparison Views

95% willing to recommend

ArcSight Intelligence

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

ArcSight Intelligence and Rapid7 InsightIDR are both security information and event management tools used to detect and respond to cyber threats. Rapid7 InsightIDR seems to have the upper hand due to its versatility, scalability, ease of use, and competitive pricing.

Features: ArcSight Intelligence delivers potent advanced analytics, anomaly detection, and integration with other security tools. Rapid7 InsightIDR is noted for strong endpoint detection, automation capabilities, and streamlined workflows.

Room for Improvement: ArcSight Intelligence needs better user training and documentation and a faster processing speed for large datasets. Rapid7 InsightIDR could benefit from more detailed reporting functionalities and better log retention policies.

Ease of Deployment and Customer Service: Rapid7 InsightIDR has a straightforward and quick deployment process and responsive customer service. ArcSight Intelligence requires more expertise for deployment, although customer service is helpful.

Pricing and ROI: Rapid7 InsightIDR has competitive pricing aligning with its feature set, resulting in satisfactory ROI. ArcSight Intelligence is often seen as higher-priced with a slower ROI.

To learn more, read our detailed ArcSight Intelligence vs. Rapid7 InsightIDR Report (Updated: April 2025).

Buyer's Guide

ArcSight Intelligence vs. Rapid7 InsightIDR

April 2025

Download the complete report

Helped 847,862 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

ArcSight Intelligence

Ranking in Security Information and Event Management (SIEM)

40th

Ranking in User Entity Behavior Analytics (UEBA)

14th

Average Rating

8.0

Reviews Sentiment

6.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Rapid7 InsightIDR

Ranking in Security Information and Event Management (SIEM)

9th

Ranking in User Entity Behavior Analytics (UEBA)

2nd

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (18th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (14th)

Mindshare comparison

As of April 2025, in the Security Information and Event Management (SIEM) category, the mindshare of ArcSight Intelligence is 0.3%, down from 0.3% compared to the previous year. The mindshare of Rapid7 InsightIDR is 2.5%, down from 2.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Pravir KumarSinha

Information Security at Synechron

Has essential threat detection capabilities, but the features for intelligence need enhancement

We integrated this tool with our security infrastructure. We installed it on a Linux server, where we have a Logger and ESM installed. With the Linux server as the hub, we manage all the configurations and rules, including those for email triggers. The logs are routed through a connector to the Logger, allowing us to monitor our infrastructure effectively. The platform helps us improve threat detection capabilities. I recommend it to others and rate it a seven out of ten.

Read full review

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The ability to tailor an environment to suit our specific use cases is a major advantage of ArcSight compared to other logging servers such as Splunk."

"The product has a valuable interface."

"The platform helps us improve threat detection capabilities."

"We found the correlation engine to be very good. It takes logs from different types of devices and does the correlation in a good way."

"The most valuable feature of ArcSight Intelligence is a single console where the entire dashboard gives all the connected details in a single place."

"It improved my organization by building a security alerting program."

"Another very important part of insightIDR is the ability to collect data from endpoint devices via agent software. With a large remote workforce, this allows visibility into the endpoints that are connected to the internet, but not to the corporate network."

"Rapid7's reporting is more robust than Tenable's."

"I like that it's a cloud-based solution."

"The log aggregation and storage provided by InsightIDR has shown no issues with scalability; aggregating over one hundred millions events daily."

"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."

"Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling."

"Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs."

More Rapid7 InsightIDR pros

Cons

"ArcSight Intelligence's pricing needs improvement."

"We haven't found the product fully scalable."

"ArcSight Intelligence is a bit slower, and its speed should be improved."

"The frequency of the updates that we are getting can be improved because the number and types of incidents that are happening at the global level are far more than what we are receiving. The frequency of updates feeds related to our rules should be increased. There should be more frequent information about the new rules that are coming and the global threats that are happening. There should be better options for dashboard creation. At present, the dashboards are good, but there is scope to make them better."

"The dashboard is not user-friendly and is in black and white."

"The product allows us to make only 30 custom rules."

"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."

"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."

"The integration capabilities of the solution have certain shortcomings where improvements are required."

"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."

"There are certain limitations with Rapid7 that I am working on."

"The ability to tune the collector for custom logs would greatly help."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"Its price is average and not very high. Splunk might be a bit cheaper than this. Its licensing is on a monthly basis."

"ArcSight Intelligence is an expensive solution."

"They offer perpetual licenses for the product."

"The solution is expensive and only suitable for enterprise environments."

"It is an expensive platform."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"Rapid7 InsightIDR's pricing is reasonable."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"The pricing and licensing are competitive."

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

847,862 professionals have used our research since 2012.

Comparison Review

it_user186927

Director of Operations at Bell

Feb 16, 2015

Cybereason vs. Interset vs. SQRRL

Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…

Read full review

Top Industries

By visitors reading reviews

Government

20%

Computer Software Company

19%

Financial Services Firm

Manufacturing Company

Computer Software Company

16%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about ArcSight Interset / Intelligence?

The platform helps us improve threat detection capabilities.

See all answers

What is your experience regarding pricing and costs for ArcSight Interset / Intelligence?

They offer perpetual licenses for the product.

See all answers

What needs improvement with ArcSight Interset / Intelligence?

The product could be improved in several areas; it currently requires significant enhancement. Compared to QRadar and Splunk, ArcSight Intelligence falls behind, placing it as the third choice amon...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

ArcSight Enterprise Security Manager (ESM) vs ArcSight Intelligence

Compared 36% of the time

Microsoft Sentinel vs ArcSight Intelligence

Compared 33% of the time

Trellix Helix Connect vs ArcSight Intelligence

Compared 31% of the time

More ArcSight Intelligence Competitors

Darktrace vs Rapid7 InsightIDR

Compared 10% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 9% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 5% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Security Information and Event Management (SIEM)

April 2025

Download ArcSight Intelligence product report

Buyer's Guide

Rapid7 InsightIDR

March 2025

Download Rapid7 InsightIDR product report

Also Known As

ArcSight Interset / Intelligence, FileTrek, Interset UEBA, Micro Focus Interset UEBA, Micro Focus Interset, ArcSight Interset

InsightIDR

Overview

Empower your threat hunting team to pre-empt elusive attacks with anomaly detection powered by security AI to find insider threats, zero-day attacks, and APTs.

OpenText

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

Accuvant, Splunk Inc., NuTech, Box, rSolutions, Voodoo Technology Limited

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

ArcSight Intelligence vs. Rapid7 InsightIDR

April 2025

Free Report: ArcSight Intelligence vs. Rapid7 InsightIDR

Find out what your peers are saying about ArcSight Intelligence vs. Rapid7 InsightIDR and other solutions. Updated: April 2025.

DOWNLOAD NOW

847,862 professionals have used our research since 2012.

See our ArcSight Intelligence vs. Rapid7 InsightIDR report.

See our list of best Security Information and Event Management (SIEM) vendors and best User Entity Behavior Analytics (UEBA) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.