Microsoft Defender XDR vs Rapid7 InsightIDR comparison

Microsoft and Rapid7 are both solutions in the Endpoint Detection and Response (EDR) category. Microsoft is ranked #5 with an average rating of 8.4, while Rapid7 is ranked #20 with an average rating of 8.1. Additionally, 97% of Microsoft users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

Microsoft Defender XDR

Read 89 Microsoft Defender XDR reviews

5,960 Views
4,546 Comparison Views

97% willing to recommend

Rapid7 InsightIDR

Read 31 Rapid7 InsightIDR reviews

1,984 Views
1,134 Comparison Views

95% willing to recommend

Microsoft Defender XDR

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Rapid7 InsightIDR and Microsoft Defender XDR are leading security solutions. Users prefer Rapid7 InsightIDR for pricing and support, while Microsoft Defender XDR excels in features.

Features: Users praise Rapid7 InsightIDR for its robust incident detection and response capabilities, user-friendly setup, and automated workflows. Microsoft Defender XDR is highly rated for its comprehensive threat intelligence, integration with other Microsoft products, and advanced analytics.

Room for Improvement: Rapid7 InsightIDR needs better scalability, enhanced reporting, and faster query performance. Microsoft Defender XDR could improve interoperability with non-Microsoft environments, more intuitive alert management, and better integration with third-party tools.

Ease of Deployment and Customer Service: Rapid7 InsightIDR is praised for straightforward deployment and responsive customer support, with quick setup times and helpful resources. Microsoft Defender XDR has mixed reviews on customer service, with some users experiencing slower response times but is also straightforward to deploy.

Pricing and ROI: Users find Rapid7 InsightIDR's pricing competitive with a higher perceived ROI due to effective threat detection and ease of use. Microsoft Defender XDR is seen as more costly but justified by its extensive features and integrations.

To learn more, read our detailed Microsoft Defender XDR vs. Rapid7 InsightIDR Report (Updated: October 2024).

Buyer's Guide

Microsoft Defender XDR vs. Rapid7 InsightIDR

October 2024

Download the complete report

Helped 816,406 peers since 2012

Categories and Ranking

Microsoft Defender XDR

Ranking in Endpoint Detection and Response (EDR)

5th

Ranking in Extended Detection and Response (XDR)

5th

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Microsoft Security Suite (2nd)

Rapid7 InsightIDR

Ranking in Endpoint Detection and Response (EDR)

20th

Ranking in Extended Detection and Response (XDR)

15th

Average Rating

8.4

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (9th), User Entity Behavior Analytics (UEBA) (3rd), Threat Deception Platforms (5th)

Featured Reviews

Desray Liu

Project Manager at Freedom Systems Inc.

A time-saving and easy-to-integrate product that needs to offer a control center to users

As a part of Microsoft's attempt to reduce costs, there has been a direct cut down of the local technical support team. Sometimes, you have to use the technical support offered by Microsoft from other countries, but at times, we speak different languages, just like how people speak in Chinese or Mandarin, but there are still some differences between them. The front-line support from Microsoft has only limited technical abilities or access to their internal system. Sometimes, my company cannot even escalate an issue to Microsoft's senior team members. The support team of Microsoft is nice as they attempt to solve the problems together with you, but I believe that due to some cost-related issues, they don't have enough permissions. Sometimes, users might feel blocked when trying to connect with the support team. I rate the technical support a seven out of ten.

Read full review

JensWolf

Systems Administrator at Gernandt & Danielsson Advokatbyrå KB

A solution that offers easy setup and deployment phases, along with great scalability and stability

I rate the initial setup a ten out of ten. The solution's initial setup was very straightforward. The solution is deployed on an on-premises and cloud model. The cloud services are provided by Rapid7. The solution can be deployed in half a day or four hours in a small environment. I was the only person involved in the product's deployment phase.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The product is very easy to use."

"We are able to consolidate licences and make use of many Microsoft products using this solution. If we have any Microsoft customers, we encourage them to use this solution for enterprise defence."

"The most valuable feature is the DLP because that's where we can have an added data protection layer and extend it not just to emails but to the documents that users are working on. We can make sure that sensitive data is tagged and flagged if unauthorized parties are using it."

"Defender XDR can stop advanced attacks, like ransomware or business email compromise."

"It has great stability."

"All of the security components are valuable including, antiphishing, antispam, and stage three antivirus."

"You can configure the product very easily."

"The Endpoint Manager is incredible; it has a very straightforward interface and is exceedingly easy to use. Pulling out and deploying different tags or resources is a simple task across various departments with different levels of security. The notifications are also simple and satisfying; it's great to see the bubble informing us which devices are compliant and which are waiting to update."

More Microsoft Defender XDR pros

"Rapid7's reporting is more robust than Tenable's."

"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."

"The ability to ingest Office 365 log files, then process them into events and display them on a map."

"Simple configuration and automatically syncs to the cloud platform."

"InsightIDR has allowed us to find potential security issues that we did not know existed, and get remediation quickly."

"The product works well. Stability-wise, I rate the solution a ten out of ten."

"Features for user behavior analytics and the rules for attack review are good."

"We were able to identify criminals attempting to login from China and put a stop on their IP locations."

More Rapid7 InsightIDR pros

Cons

"From a performance standpoint, improvements could be made."

"Improving scalability, especially for very large tenants, could be beneficial for Microsoft Defender XDR."

"Since all of our databases are updated and located in the cloud, I would like additional support for this."

"This solution could be improved if it included features such as those offered by Malwarebytes."

"The licensing is a nightmare and has room for improvement."

"One of the biggest downsides of Microsoft products, in general, is that the menus are often difficult to find, as they tend to move from place to place between versions."

"Customers say they want absolutely seamless integration between other Microsoft solutions and Defender XDR, including the ability to change device settings within the Defender portal. They need to contact the IT team responsible for the device management tools to change some settings. They would prefer that those changes be initiated directly from the Defender portal or applied from Intune without involving the IT operations team."

"We should be able to use the product on devices like Apple, Linux, etc."

More Microsoft Defender XDR cons

"The main problem lies in the processes within the client's operating systems."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"Needs a better ability to customize the check within the console."

"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."

"The solution's XDR agents cannot compete with the XDR solutions out there yet."

"I feel it would greatly benefit from more supported log sources."

"Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"The most valuable licensing option is expensive, so pricing could be improved. Licensing options for this solution also need to be consolidated, because they frequently change."

"Microsoft Defender XDR is priced high."

"The price could be better. Normally, the costs depend on the country you're located in for the license. When we were in the initial stage, we went with the E5 license they call premium standard. It cost us around $5.20 per month for four users."

"We have a lot of problems in Latin America regarding the price of Microsoft 365 Defender, because the relationship between dollars and the money of the different countries, it's is a lot. Many customers that have small businesses say that they would like the solution but it is too expensive. However, large companies do not find the cost an issue."

"Microsoft Defender falls within a mid-tier price range compared to other security solutions."

"365 Defender is billed per account. I don't know the exact price, but my supervisor told me that Microsoft Defender is cheaper than the alternatives. It's bundled, so you get all the features in one place."

"365 Defender can get expensive because you pay per gigabyte of data ingested. On the other hand, much of the data available in the other Microsoft security solutions are made available relatively cheaply—sometimes at cost or for free. Integrating only a limited set of third-party solutions with Sentinel would be cost-effective. It's much more affordable if companies only have Microsoft stuff."

"Its licensing and pricing are handled by someone else. My role is limited to incidents or issues with the portal, but you get what you pay for. It is worth the cost."

More Microsoft Defender XDR pricing and cost advice

"It is more reasonably priced than other vendors."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"The pricing is good, and it is not very expensive."

"Rapid7 InsightIDR charges us based on the endpoints we connect to."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

"Accurately predict your licensing counts as this is a subscription based product."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

816,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

11%

Government

Manufacturing Company

Computer Software Company

16%

Manufacturing Company

Financial Services Firm

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Microsoft 365 Defender?

Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.

See all answers

What is your experience regarding pricing and costs for Microsoft 365 Defender?

The pricing is reasonable. It's cheaper than other options.

See all answers

What needs improvement with Microsoft 365 Defender?

The solution could enhance the threat Intelligence feature by making it more relevant to specific industries. Much of the threat intelligence information isn't directly applicable to our environmen...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

CrowdStrike Falcon vs Microsoft Defender XDR

Compared 37% of the time

Wazuh vs Microsoft Defender XDR

Compared 8% of the time

Microsoft Defender for Cloud vs Microsoft Defender XDR

Compared 8% of the time

Trend Vision One vs Microsoft Defender XDR

Compared 5% of the time

Microsoft Purview Compliance Manager vs Microsoft Defender XDR

Compared 4% of the time

More Microsoft Defender XDR Competitors

Darktrace vs Rapid7 InsightIDR

Compared 13% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 11% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 7% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Microsoft Defender XDR

November 2024

Download Microsoft Defender XDR product report

Buyer's Guide

Rapid7 InsightIDR

November 2024

Download Rapid7 InsightIDR product report

Also Known As

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender

InsightIDR

Learn More

Microsoft

Rapid7

Overview

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.

It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.

Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.

Watch the Microsoft demo video here: Microsoft Defender XDR demo video.

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Sample Customers

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Microsoft Defender XDR vs. Rapid7 InsightIDR

October 2024

Free Report: Microsoft Defender XDR vs. Rapid7 InsightIDR

Find out what your peers are saying about Microsoft Defender XDR vs. Rapid7 InsightIDR and other solutions. Updated: October 2024.

DOWNLOAD NOW

816,406 professionals have used our research since 2012.

See our Microsoft Defender XDR vs. Rapid7 InsightIDR report.

See our list of best Endpoint Detection and Response (EDR) vendors and best Extended Detection and Response (XDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.