We performed a comparison between Rapid7 InsightIDR and Trellix ESM based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The UI is very good."
"I rate Rapid7 nine out of 10 for affordability"
"I like that it's a cloud-based solution."
"InsightIDR’s ability to process millions of transactions per day, and to notify me of the most critical ones, is priceless. InsightIDR has the alerts tuned, and has the ability to quickly drill down to determine the threat level."
"The solution provides satisfying native integration features"
"InsightIDR helps us investigate an environment to discover information about incidents."
"Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs."
"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."
"I rate the tool's deployment an eight out of ten. The deployment is completed in two days."
"Trellix ESM is very user-friendly."
"It is easy to use and deploy. It comes with user-friendly manuals."
"The most valuable feature for us is that it comes with many correlations, reports, and dashboards already available. It's also very easy to use."
"The solution is 100% stable. We really have had a great time working with it. It hasn't let us down."
"It has good technical support, which is available around the clock. You can call up anytime and get whatever you want. My queues are resolved."
"The most valuable feature is the capability to correlate different events from different platforms that we feed into it."
"The most valuable feature is for the security operation center because it provides visibility of all traffic within the company infrastructure."
"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."
"The main problem lies in the processes within the client's operating systems."
"It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required."
"The dashboard is an area that could be simplified."
"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses."
"They should add more configuration and security features to it."
"The ability to tune the collector for custom logs would greatly help."
"Lacks a mobile application."
"There should be support for multitenancy in the product."
"The disk space needed for events is not clear. In all clients, we had at least more than 100GB free that we could not use."
"The solution needs to improve case management. The UI is confusing."
"The support from McAfee ESM could improve. They could improve the speed."
"Update to user interface from version 9 is cosmetic in some aspects, and after a few clicks you are back on the old interface."
"Tech support is required each time there is a system update of the solution."
"The only issue I have with McAfee is the amount of computer resources that it takes... it's definitely impacting some of the other applications that are running on a computer at the same time."
"It cannot integrate with our Next-Generation Firewall and few applications such as Cisco ACI."
Rapid7 InsightIDR is ranked 9th in Security Information and Event Management (SIEM) with 30 reviews while Trellix ESM is ranked 18th in Security Information and Event Management (SIEM) with 34 reviews. Rapid7 InsightIDR is rated 8.4, while Trellix ESM is rated 7.4. The top reviewer of Rapid7 InsightIDR writes "Helps in the management of compliance, secret events and information". On the other hand, the top reviewer of Trellix ESM writes "Provides visibility of all the traffic within the company infrastructure". Rapid7 InsightIDR is most compared with Darktrace, Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM and IBM Security QRadar, whereas Trellix ESM is most compared with ArcSight Enterprise Security Manager (ESM), IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM and Trellix Helix. See our Rapid7 InsightIDR vs. Trellix ESM report.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.