Rapid7 InsightIDR vs Sophos UTM comparison

The compared Rapid7 and Sophos solutions aren't in the same category. Rapid7 is ranked #9 in SIEM , with an average rating of 8.1, and holds a 2.3% mindshare in the category. Sophos is ranked #3 in UTMU , with an average rating of 8.5, and holds a 18.5% mindshare. Additionally, 95% of Rapid7 users are willing to recommend the solution, compared to 89% of Sophos users who would recommend it.

Rapid7 InsightIDR

Read 31 Rapid7 InsightIDR reviews

5,221 Views
2,921 Comparison Views

95% willing to recommend

Sophos UTM

Read 111 Sophos UTM reviews

2,662 Views
1,972 Comparison Views

89% willing to recommend

Rapid7 InsightIDR

Sophos UTM

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Rapid7 InsightIDR and Sophos UTM based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM).

To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: October 2024).

Buyer's Guide

Security Information and Event Management (SIEM)

October 2024

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Rapid7 InsightIDR

Average Rating

8.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (9th), User Entity Behavior Analytics (UEBA) (3rd), Endpoint Detection and Response (EDR) (20th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (15th)

Sophos UTM

Average Rating

8.4

Number of Reviews

111

Ranking in other categories

Unified Threat Management (UTM) (3rd)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Rapid7 InsightIDR is designed for Security Information and Event Management (SIEM) and holds a mindshare of 2.3%, down 2.5% compared to last year.
Sophos UTM, on the other hand, focuses on Unified Threat Management (UTM), holds 18.5% mindshare, up 18.2% since last year.

Security Information and Event Management (SIEM)

Unified Threat Management (UTM)

Featured Reviews

JensWolf

Systems Administrator at Gernandt & Danielsson Advokatbyrå KB

Sep 28, 2023

A solution that offers easy setup and deployment phases, along with great scalability and stability

I use Rapid7 InsightIDR to collect logs and information from throughout our company's entire IT environment The most valuable feature of the solution is the single pane of glass that allows me to see all the information in one spot. I can see at one spot to see all the information from all the…

Read full review

SherifFouad

ICT Manager at a mining and metals company with 1,001-5,000 employees

Nov 30, 2022

Gives us the ability to manage our firewalls from the cloud and deploy a unified configuration onto them

From Cyberoam and the early builds of Sophos SG, they have developed higher integration between Sophos UTM and the computers' endpoint antiviruses. We can isolate the infected machine from the network, but an IT technician or cybersecurity professional can remove it from the machine and disinfect it. It has the capability of blocking HTTPS traffic, but you need the Sophos Central Intercept X subscription for that. It gives us the ability to manage our firewalls from the cloud and deploy a unified configuration onto them. Other competitors like Meraki have that ability, but they fail to optimize it in the way that Sophos has.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution is very stable and works very well for what I need it to do."

"The log aggregation and storage provided by InsightIDR has shown no issues with scalability; aggregating over one hundred millions events daily."

"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."

"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"I am able to run automated actions based on the output of reports, leaving me extra time to focus on more pressing matters."

"The solution's initial setup is easy."

"The alerting to drive investigations and remediation has been its most valuable feature."

More Rapid7 InsightIDR pros

"The management suite is easy and the agent is easy to develop."

"It is a stable product... I rate the solution's technical support a nine out of ten...The initial setup is quite easy because they have all the information on their website."

"The solution is stable."

"This is a very stable product."

"UTM 9 brings along IPSec as well as iPhone and iPad support. This seems small but it’s useful."

"If a computer does get infected the Sophos appliance lets us know via it's Advanced Threat Protection so we can get a much faster response time."

"It does not take much effort or thinking to understand how it works."

"Sophos has a single pane of glass which allows me to manage all my VPCs from a single instance, managing all my firewall from one place."

More Sophos UTM pros

Cons

"Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."

"The dashboard is an area that could be simplified."

"The ability to tune the collector for custom logs would greatly help."

"The main problem lies in the processes within the client's operating systems."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"Needs a better ability to customize the check within the console."

"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."

"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."

More Rapid7 InsightIDR cons

"We didn’t find any issues but I know there have been some in the last few years."

"The classification segregation of applications lacks sufficient definition."

"The memory and processing were problematic. The interface could be better."

"The reporting system needs to allow for customizations because many reports do not include details that we expect."

"The five-factor authentication needs improvement."

"The logs are not clear, which means that you need an additional piece of software in order to read them clearly."

"The product could be simplified and made more self-explanatory."

"The initial setup was straightforward. The full deployment takes approximately two days which could be simplified to reduce the time. The major part of the process is the configuration and the policy setup."

More Sophos UTM cons

Pricing and Cost Advice

"The pricing and licensing are competitive."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"It is a reasonably priced solution."

"It is more reasonably priced than other vendors."

"Rapid7 InsightIDR's pricing is reasonable."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

More Rapid7 InsightIDR pricing and cost advice

"The price is something that one will need to consider."

"The price of the solution is high. The price from USD to my currency is expensive."

"The pricing for Sophos UTM is quite acceptable compared to other UTM vendors."

"It will cost approximately $67 US per device. We have 300 devices in our organization."

"The licensing model is very straightforward, it's a bit pricey, but for what you get, it's well worth it."

"Pricing for the upgrade was very competitive as Sophos wanted to retain existing customers."

"There was an up-front charge of around $70,000, to purchase the hub and license. Beyond the initial cost, licenses are charged for annually, but they are good value for the service we receive."

"It's reasonably priced."

More Sophos UTM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Comparison Review

it_user216600

Senior Technical Consultant with 51-200 employees

Jan 3, 2016

Sophos UTM vs. Fortinet FortiGate

I have used both Sophos and Fortinet products in production and I have found the Sophos UTM appliances (hardware and virtual) to be a better fit most of the time -- with a few caveats which I will touch on below. In both instances, the transition from TMG will be mostly straightforward. The main…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

16%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

18%

Government

Educational Organization

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite good. The most valuable features for me are their web and email filtering. I wou...

See all answers

What Is The Biggest Difference Between Sophos UTM and Sophos XG?

The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW. They can not be compared with each other because the price, license, firewall th...

See all answers

What do you like most about Sophos UTM?

The most valuable feature of Sophos UTM is the endpoint protection feature.

See all answers

Comparisons

Darktrace vs Rapid7 InsightIDR

Compared 13% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 11% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 7% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Netgate pfSense vs Sophos UTM

Compared 17% of the time

Fortinet FortiGate vs Sophos UTM

Compared 17% of the time

OPNsense vs Sophos UTM

Compared 14% of the time

Sophos XG vs Sophos UTM

Compared 12% of the time

Palo Alto Networks NG Firewalls vs Sophos UTM

Compared 7% of the time

More Sophos UTM Competitors

Product Reports

Buyer's Guide

Rapid7 InsightIDR

October 2024

Download Rapid7 InsightIDR product report

Buyer's Guide

Sophos UTM

October 2024

Download Sophos UTM product report

Also Known As

InsightIDR

Astaro

Learn More

Rapid7

Sophos

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Sophos UTM is a unified threat management platform designed to protect your businesses from known and emerging malware including viruses, rootkits and spyware. The solution provides a complete network security package with everything your organization needs in a single modular appliance.

Sophos UTM Features

Sophos UTM has many valuable key features. Some of the most useful ones include:

Web and Email Filtering
General Management
Network Protection
Network Routing and Services
Advanced Threat Protection
Authentication
Email Encryption and DLP
Web Policy
End-User Portal
VPN IPsec Client, VPN SSL Client, and Clientless VPN
Web Application Firewall Protection
UTM Endpoint Protection and Management
SEC Endpoint Integration
Logging and Reporting

Sophos UTM Benefits

There are many benefits to implementing Sophos UTM. Some of the biggest advantages the solution offers include:

Simplifies your IT security without the complexity of multiple point solutions
Intuitive interface to help you quickly create policies to control security risks
Provides clear, detailed reports to give you the insight you need to improve your network performance and protection
Complete control to block, allow, shape and prioritize applications
Two-factor authentication with one-time password (OTP)
Integrated wireless controller
Allows you to connect remote offices with easy VPN and Wi-Fi

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Sophos UTM solution.

PeerSpot user Dana B., Network Administrator at a manufacturing company, says “The web and email filtering are the two biggest and most valuable aspects of the solution for us. The solution overall has just been a good, cost-effective solution for us. The solution offers a lot of functionality. The solution scales well. We've found the technical support to be helpful. The stability and performance are quite good.”

A Technical Director at a security firm mentions, "Sophos SG UTM had all the basic functionality that you needed. It is user-friendly and easy to manage for any integrator."

Marek M., Senior Network Engineer at a computer software company, comments, “Sophos UTM is the simplest of these products to set up. If you follow the instructions using the wizard, which is just a few steps, then you will have a firewall to protect you and your customer.”

A Software Sales Manager at a tech services company explains, “The overall visibility of the console is what I find most valuable, plus it's very user-friendly. It can be integrated with other solutions such as SOAR, SIEM, etc., even when you have an existing firewall. I really like that the console can be integrated. You'll see everything on the same window, and the single window feature of the machine is so good. These are the features I really like.”

James D., IT Manager at Manual Workers Union, states, “The fact that it's on the cloud means we don't have to administer it on our network or deal with a physical machine, which saves us money. The solution has many great features. From the console, we can start different scannings on different machines. We enjoy the centralized reporting part of it. The initial setup is simple. We enjoy its general stability. The solution can scale. So far, the solution has been problem-free.”

Sample Customers

Liberty Wines, Pioneer Telephone, Visier

One Housing Group

Buyer's Guide

Security Information and Event Management (SIEM)

October 2024

Download Free Report

Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM). Updated: October 2024.

DOWNLOAD NOW

814,649 professionals have used our research since 2012.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.