Armis vs Rapid7 InsightVM comparison

Armis and Rapid7 are both solutions in the Risk-Based Vulnerability Management category. Armis is ranked #9 with an average rating of 8.5, while Rapid7 is ranked #4 with an average rating of 7.9. Additionally, 90% of Armis users are willing to recommend the solution, compared to 88% of Rapid7 users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Nov 6, 2024

Rapid7 InsightVM and Armis operate in the security management and visibility sector. InsightVM is favored for its competitive pricing and robust support, while Armis stands out due to its advanced feature set, offering superior device discovery and real-time monitoring.

Features: InsightVM provides comprehensive vulnerability management, granular asset viewing through dynamic tags, and robust integration options with platforms like Jira for seamless management. Armis is recognized for its agentless security, real-time threat detection, and integration capabilities, particularly benefiting environments with unmanaged and IoT devices.

Room for Improvement: InsightVM could enhance its real-time monitoring and live dashboard features to match competitors. It can also integrate more advanced automation options for remediation. Armis could improve by providing more robust visualization tools and reducing initial setup times. Streamlined reporting and more flexible pricing models would enhance its offering.

Ease of Deployment and Customer Service: InsightVM is noted for straightforward deployment with extensive ongoing support, making it accessible for businesses of varying sizes. Armis offers an agentless deployment model, reducing complexity and installation time, and provides solid customer service, focusing on less intrusive integration.

Pricing and ROI: InsightVM's competitive pricing enhances its return on investment, particularly with its effective vulnerability management tools. Although Armis may require a higher initial investment, its comprehensive device visibility and automation features can lead to substantial long-term ROI, especially for enterprises focusing on unmanaged and IoT device security.

To learn more, read our detailed Armis vs. Rapid7 InsightVM Report (Updated: March 2025).

Buyer's Guide

Armis vs. Rapid7 InsightVM

March 2025

Download the complete report

Helped 848,716 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Featured Reviews

Israel Cavazos Landini

Associate Director IT Security Operations at Novartis

Weekly insights and risk analysis facilitate informed security decisions

I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.

Read full review

SaketShrivastava

Technology and Digitization Lead at JLL

Comprehensive asset visibility and OT operations support enhance risk mitigation

I use Armis for asset discovery and vulnerability assessments of the OT network Armis is easy to use. Very few software solutions have OT capabilities that do not impact OT operations. Its asset visibility is good as well. This comprehensive feature set is crucial for our operations.…

Read full review

Mahmoud Elhamaymy

Professional services team lead at a tech services company with 1,001-5,000 employees

Reliable scanning and integration strengthen security infrastructure

InsightVM has a very organized GUI with ease of use. The vulnerability scans are reliable, and the credential scan is a beneficial feature. The solution is efficient and trustworthy. It's based on the CVSS risk scoring system, which is well-recognized and effective. The integration capabilities through APIs allow easy integration with existing security infrastructure.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Zafran is an excellent tool."

"We are able to see the real risk of a vulnerability on our environment with our security tools."

"Zafran has become an indispensable tool in our cybersecurity arsenal."

"Armis saves time by automating asset inventory management, allowing enterprises to quickly strategize by understanding their assets and exposures."

"The tool is user-friendly and helps to detect vulnerabilities."

"The initial setup and deployment were simple."

"The technology is good."

"Armis is easy to use."

"The most valuable feature of the solution is asset tracking."

"Armis is very easy to implement due to its agentless design and offers a granular level of visibility for all assets in the network."

"The solution’s vulnerability monitoring system is very good."

More Armis pros

"I rate InsightVM eight out of 10 for ease of setup. It takes two or three engineers to deploy. The solution requires some maintenance. It's mainly cleaning up data."

"This solution's most useful feature is that it is entirely a single-page application."

"It's very scalable."

"We feel the interface is very good. It is very easy to use, even a nontechnical person can use it."

"The discovery and prioritization of vulnerabilities."

"The most valuable features of Rapid7 InsightVM are the accurate level of scanning and the workflows are good."

"InsightVM's most valuable feature is risk scoring, a formula based on different vectors like the ease of exploitation and the availability of the machine."

"It is stable and scalable."

More Rapid7 InsightVM pros

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."

"We face issues during implementation."

"Armis doesn't have a back intel feature."

"We face difficulties in integrating the product with ticketing tools like ServiceNow."

"There isn't anything specific that needs improvement."

"The solution's vulnerability testing could be improved."

"Armis could improve its geographic spread and marketing campaigns across regions."

"Like any IT tool, continuous learning and improvement are essential for the solution."

"We have faced issues with the tool's stability."

More Armis cons

"It would be great to have a mobile application client. Currently, you have to use a mobile web browser on a device, but it is not similar to the desktop web browser in terms of user experience. It would be nice to have a mobile application to access the platform."

"All products have room for increased security and Rapid7 InsightVM is no exception."

"The solution needs to improve its vulnerability design to include CVC results."

"The product does not have the capability to do dynamic scanning of non-web applications."

"A definite improvement would be to make it easier to run ad-hoc scans without needing to assign the asset to a site or group."

"The reporting is very bad when you compare it with other vulnerability assessment tools."

"There is a significant learning curve, that non-technical individuals, especially those not specialized in computer science or the information security industry, might face."

"Their customer support should be improved, and the effectiveness of scans also needs to be improved."

More Rapid7 InsightVM cons

Pricing and Cost Advice

Information not available

"The tool is cheap."

"Its price is too high. My only concern or issue with Rapid7 is its pricing."

"The product is cheaper than the other similar tools available in the market."

"A full license for the solution is expensive because it is at the organizational level and not by individual users."

"Its licensing is yearly. Everything is included in the price for one year."

"Pricing is reasonable because we pay according to asset usage. We can define our assets and sites according to our preference."

"We purchase annual licenses."

"It is pretty expensive. It depends on what you consider pricey, however, if you only look at vulnerability management solutions, such as within VM or VMDR, there are, I suppose the prices are almost the same. But I believe you will discover that for yourself."

"The licensing is asset-based and very straightforward."

More Rapid7 InsightVM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Risk-Based Vulnerability Management solutions are best for your needs.

See recommendations

848,716 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

14%

Financial Services Firm

11%

Manufacturing Company

Retailer

Government

12%

Computer Software Company

11%

Manufacturing Company

Financial Services Firm

Educational Organization

40%

Computer Software Company

Financial Services Firm

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?

I find that the pricing for Zafran aligns well with the comprehensive features it offers. The asset and user-based li...

See all answers

What needs improvement with Zafran Security?

While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even ...

See all answers

What is your primary use case for Zafran Security?

Our primary use case for Zafran involves leveraging it to enhance our vulnerability risk scoring methodology. In toda...

See all answers

What do you like most about Armis?

Armis is a straightforward and user-friendly solution.

See all answers

What needs improvement with Armis?

Armis could improve its geographic spread and marketing campaigns across regions.

See all answers

What is your primary use case for Armis?

Armis is a cloud-based SaaS solution designed specifically for manufacturing environments, especially for companies i...

See all answers

How would you choose between Rapid7 InsightVM and Tenable Nessus?

You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. Yo...

See all answers

What do you like most about Rapid7 InsightVM?

The product's initial setup phase was very easy.

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightVM?

Rapid7 InsightVM is expensive, possibly one of the highest in pricing among similar products.

See all answers

Comparisons

Wiz Code vs Zafran Security

Compared 54% of the time

Vulcan Cyber vs Zafran Security

Compared 22% of the time

ServiceNow Security Operations vs Zafran Security

Compared 15% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 9% of the time

More Zafran Security Competitors

Axonius vs Armis

Compared 22% of the time

Nozomi Networks vs Armis

Compared 17% of the time

Claroty Platform vs Armis

Compared 17% of the time

Forescout Platform vs Armis

Compared 7% of the time

Microsoft Defender for IoT vs Armis

Compared 2% of the time

More Armis Competitors

Tenable Nessus vs Rapid7 InsightVM

Compared 20% of the time

Qualys VMDR vs Rapid7 InsightVM

Compared 18% of the time

Tenable Security Center vs Rapid7 InsightVM

Compared 12% of the time

Microsoft Defender Vulnerability Management vs Rapid7 InsightVM

Compared 11% of the time

Snyk vs Rapid7 InsightVM

Compared 1% of the time

More Rapid7 InsightVM Competitors

Product Reports

Buyer's Guide

Continuous Threat Exposure Management (CTEM)

March 2025

Download Zafran Security product report

Buyer's Guide

IoT Security

April 2025

Download Armis product report

Buyer's Guide

Rapid7 InsightVM

April 2025

Download Rapid7 InsightVM product report

Also Known As

No data available

InsightVM, NeXpose

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Armis is a comprehensive cybersecurity solution used for continuous monitoring and threat detection across IT and IoT devices. It excels in spotting vulnerabilities, managing device compliance, and tracking assets to enhance security protocols and network management. Key features include real-time threat detection, comprehensive visibility, and granular risk assessments. Armis boosts organizational productivity by streamlining workflows and enhancing operational accuracy.

Armis

Rapid7 InsightVM is a comprehensive vulnerability management platform that protects your systems from attackers and is easy to scale. The solution provides easy access to vulnerability management, application security, detection and response, external threat intelligence, orchestration and automation, and more. Rapid7 InsightVM is ideal for security, IT, and DevOps teams, helping them reduce risk by enabling them to detect and respond to attacks quickly.

Rapid7 InsightVM Features

Rapid7 InsightVM has many valuable key features. Some of the most useful ones include:

Automated containment: With this feature, you can decrease exposure from vulnerabilities by automatically implementing temporary (or permanent) compensating controls via your network access control (NAC) systems, firewalls, and endpoint detection and response tools.

Policy assessment: Rapid7 InsightVM offers pre-built scan templates for common compliance requirements. The solution helps you take clear, actionable steps to compliance once you have assessed your risk posture. In addition, Rapid7 InsightVM’s Custom Policy Builder allows you to modify existing benchmarks or create new policies from scratch.

REST API: Rapid7 InsightVM REST API is easy to use and was built to easily automate virtually any aspect of vulnerability management, from data collection to risk analysis.

Live dashboards: Rapid7 InsightVM includes dashboards that are live and interactive by nature. The live dashboards enable you to create custom cards and full dashboards for anyone in your organization and allow you to track progress of your security program.

Automation-assisted patching: Rapid7 InsightVM’s automation-assisted patching gives you the autonomy to make key decisions in your patching process, such as your approval to apply certain patches to certain vulnerabilities.

Real risk prioritization: Rapid7 InsightVM makes it simple to know which vulnerabilities need to be prioritized and where your riskiest assets lie.

Goals and SLA’s: This feature enables you to make and track progress toward your goals and service level agreements (SLAs) at an appropriate pace.

Rapid7 InsightVM Benefits

There are many benefits to implementing Rapid7 InsightVM. Some of the biggest advantages the solution offers include:

Attack surface monitoring for maintained visibility: By leveraging attack surface monitoring with Project Sonar (a Rapid7 research project that regularly scans the internet to gain insights into global exposure to common vulnerabilities), you can gain more control of all of your external-facing assets, both known and unknown.

Container security: Rapid7 InsightVM integrates with your CI/CD tools, public container repositories, and private repositories to assess container images for vulnerabilities during the build process even before they are deployed.

Lightweight endpoint agent: Rapid7 InsightVM unifies data so you only need to install a single agent for continuous vulnerability assessment, incident detection, and log data collection.

Easily assign and track remediation duties: Using Rapid7 InsightVM, IT and security teams can assign as well as track remediation duties without having to deal with remediation reports, complex spreadsheets, or back-and-forth email tags.

Integration with cloud services and virtual infrastructure: Rapid7 InsightVM provides full visibility into risk across your physical, virtual, and cloud infrastructure.

Integrated threat feeds: Rapid7 InsightVM is designed with integrated threat feeds, giving you a dynamic view that shows you which threats are most relevant to your environment, enabling you to better protect against current, impending threats so you can react quickly to critical vulnerabilities.

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Rapid7 InsightVM solution.

An owner at a tech services company says, "I liked the dashboard on it. I could customize my dashboard with different widgets and different heat maps."

PeerSpot user Kimeang S., Technical Consultant at Yip Intsoi, mentions, "The most important aspect of the solution is that it rarely gives false positives, especially compared to other products. It provides very clear reports for our IT teams to look at."

A Director of Information Technology at a government explains, "The main functionality of identifying item endpoints that weren't properly patched or had vulnerabilities is the solution's most valuable feature."

Rapid7

Sample Customers

Information Not Available

Samsung Research America, IDT Corporation, Gett

ACS, Acosta, AllianceData, amazon.com, biogen idec, CBRE, CATERPILLAR, Deloitte, COACH, GameStop, IBM

Buyer's Guide

Armis vs. Rapid7 InsightVM

March 2025

Free Report: Armis vs. Rapid7 InsightVM

Find out what your peers are saying about Armis vs. Rapid7 InsightVM and other solutions. Updated: March 2025.

DOWNLOAD NOW

848,716 professionals have used our research since 2012.

See our Armis vs. Rapid7 InsightVM report.

See our list of best Risk-Based Vulnerability Management vendors.

We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.