Rapid7 InsightIDR vs SolarWinds Security Event Manager comparison

Rapid7 InsightIDR vs. SolarWinds Security Event Manager

Download the complete report

Helped 863,679 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Rapid7 InsightIDR

Ranking in Security Information and Event Management (SIEM)

14th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (5th), Endpoint Detection and Response (EDR) (25th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (16th)

SolarWinds Security Event M...

Ranking in Security Information and Event Management (SIEM)

33rd

Average Rating

7.8

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of July 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Rapid7 InsightIDR is 2.6%, down from 2.6% compared to the previous year. The mindshare of SolarWinds Security Event Manager is 0.7%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Rafal-Stas

CEO at Greeneris Sp. z o.o.

Helpful in areas like event management, log viewing, and information management

The product's initial setup phase on the cloud is pretty easy but on an on-premises version, I think it is of a moderate level. The solution is deployed on the cloud and on an on-premises model. The time required to deploy the solution depends on the customers' infrastructure, and it may range from a couple of weeks to a couple of months, as it depends on how many additional custom configurations are required. Around two to three engineers are usually involved in the tool's installation process.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."

"InsightIDR helps us investigate an environment to discover information about incidents."

"The solution is easy to use, and the interface is intuitive."

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."

"The ability to ingest Office 365 log files, then process them into events and display them on a map."

"InsightIDR’s ability to process millions of transactions per day, and to notify me of the most critical ones, is priceless. InsightIDR has the alerts tuned, and has the ability to quickly drill down to determine the threat level."

"Dashboards, including the main screen, provide much-needed information at a glance, without hours of coding and sifting through logs to find it. In case of an actual security incident, I have faith that insightIDR has retained all logs in a secure manner that prevents log tampering as well."

More Rapid7 InsightIDR pros

"The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers."

"The most valuable feature of SolarWinds Security Event Manager is the analysis and the knowledge about the incidence that we trace."

"We did previously use a different solution, but SolarWinds is much better. It's easy to interact with SolarWinds. It's easy to operate, easy to configure and is generally easier compared to what we were working with before."

"Some of the rules are most valuable because you can be notified about various things, such as spyware or things that are going on in the internal network."

"The most valuable feature of this solution is the visibility into both attempted and failed logins."

"It performs network behavior monitoring, log monitoring, and disaster recovery monitoring."

"The product's most effective part in improving security stems from the fact that the solution is deployed for event management, log viewing, and information management."

"SolarWinds is effective for server, network, and log monitoring. It's also good for IP address management. We also have a patch manager, but we're still working on getting that operational."

More SolarWinds Security Event Manager pros

Cons

"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"I feel it would greatly benefit from more supported log sources."

"The main problem lies in the processes within the client's operating systems."

"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."

"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"There are certain limitations with Rapid7 that I am working on."

More Rapid7 InsightIDR cons

"One of the drawbacks of being so flexible is that it is also a fairly complicated software application to install, configure, and maintain."

"There are no multiple dashboards which would allow you to see information side-by-side."

"We'd like more customization capabilities."

"It won't tell you when your backups are failing, but it will give you hints when your database is running on full recovery."

"SolarWinds should improve its correlation capabilities. The correlation does not automatically detect and reduce the events fast enough. You have to manually do a correlation report, which means the tool is not scalable in many ways."

"The product should improve the ease with which you can create event alerts. They are not as hard now but you need to have an easier way."

"The company had to use a third party for the implementation of the solution."

"The only issue is the pricetag. SolarWinds is a costly solution."

More SolarWinds Security Event Manager cons

Pricing and Cost Advice

"Rapid7 InsightIDR charges us based on the endpoints we connect to."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"The solution has a mid-range price point in the market"

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

More Rapid7 InsightIDR pricing and cost advice

"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."

"The pricing model would benefit from having package deals with other SolarWinds products."

"The price of SolarWinds Security Event Manager is reasonable."

"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."

"Licenses can only be purchased in blocks of fifty at a time."

"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."

"Licensing is on devices, so if you have many, then this may be high."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

863,679 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Manufacturing Company

Financial Services Firm

Government

University

14%

Financial Services Firm

12%

Computer Software Company

11%

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

What do you like most about SolarWinds Security Event Manager ?

The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.

What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?

The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.

What needs improvement with SolarWinds Security Event Manager ?

I think the customization area in the tool can be considered as an area of concern where improvements are required In the future, I want to see the tool have better customization abilities with som...

Darktrace vs Rapid7 InsightIDR

Comparisons

Compared 9% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 8% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Wazuh vs SolarWinds Security Event Manager

Compared 31% of the time

Splunk Enterprise Security vs SolarWinds Security Event Manager

Compared 15% of the time

IBM Security QRadar vs SolarWinds Security Event Manager

Compared 11% of the time

ManageEngine Log360 vs SolarWinds Security Event Manager

Compared 8% of the time

Trellix ESM vs SolarWinds Security Event Manager

Compared 6% of the time

More SolarWinds Security Event Manager Competitors

Product Reports

Rapid7 InsightIDR

Download Rapid7 InsightIDR product report

SolarWinds Security Event Manager

Download SolarWinds Security Event Manager product report

SolarWinds Security Event Manager report

Also Known As

InsightIDR

SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

SolarWinds

Sample Customers

Liberty Wines, Pioneer Telephone, Visier

NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.

Rapid7 InsightIDR vs. SolarWinds Security Event Manager