Rapid7 InsightIDR vs Trellix ESM comparison

"Very intuitive and easy to set up."

"It improved my organization by building a security alerting program."

"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."

"We were able to identify criminals attempting to login from China and put a stop on their IP locations."

"I like that it's a cloud-based solution."

"The solution is easy to use, and the interface is intuitive."

"The ability to ingest Office 365 log files, then process them into events and display them on a map."

"I have seen that Rapid7 InsightIDR provides security to the networks and endpoints in the company."

"It is easy to use and deploy. It comes with user-friendly manuals."

"I rate the tool's deployment an eight out of ten. The deployment is completed in two days."

"It has good technical support, which is available around the clock. You can call up anytime and get whatever you want. My queues are resolved."

"We are now able to completely monitor our environment so we can review what is there, which is a big win for us."

"McAfee as a whole is a good solution."

"The most valuable feature is that if the scanning does find something, it quarantines it. Then you can decide what you are going to do with it."

"It is user-friendly. The notification part of McAfee ESM is very easy."

"Trellix ESM utilizes fewer human resources and improves security and visibility."

"The solution's XDR agents cannot compete with the XDR solutions out there yet."

"Needs a better ability to customize the check within the console."

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."

"I feel it would greatly benefit from more supported log sources."

"The dashboard is an area that could be simplified."

"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses.​"

"The integration capabilities of the solution have certain shortcomings where improvements are required."

"It is not a very advanced solution, and it is for very generic use cases. It cannot cope with the advanced requirements that we're going to have. For example, for multiple authentication failures, it is still based on Windows events for detecting multiple login failures, whereas other companies are going beyond and working on implementing two-factor authentication. It is time to correlate the two-factor authentication results with authentification failures, which is not happening with McAfee ESM. The performance of the tool should be improved because it is very slow. The data display on the console is very slow in McAfee ESM. Its data storage is still old-fashioned, and it should be improved and upgraded to the latest versions. They have to come up with some new ideas to match what other leaders in the same domain are doing. For example, in Splunk, when you search for information for the last 60 days or five months, it quickly shows the information, but that is not the case with McAfee. The results should be quicker and faster on the console. They should integrate some additional features such as User Behavior Analytics (UBA) and automation. The threat intelligence part should also be improved on McAfee."

"The product’s alert response feature needs improvement. It could be more flexible and secure."

"The solution needs to improve case management. The UI is confusing."

"We acquired the IBM product because McAfee is slightly confusing to use, and it's broader."

"It cannot integrate with our Next-Generation Firewall and few applications such as Cisco ACI."

"It is more difficult to operate Trellix ESM than other solutions."

"There should be support for multitenancy in the product."

"Update to user interface from version 9 is cosmetic in some aspects, and after a few clicks you are back on the old interface."

"It is a reasonably priced solution."

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"Rapid7 InsightIDR charges us based on the endpoints we connect to."

"​Accurately predict your licensing counts as this is a subscription based product.​"

"Rapid7 InsightIDR's pricing is reasonable."

"The product is slightly expensive."

"McAfee is the right choice for a low-budget solution."

"The pricing is fair."

"We renew our license annually."

"We pay for our licensing fees on a yearly basis, and there are no costs in addition to the standard licensing fees."

"The price of McAfee ESM is higher than some of the other solutions. There are additional features that can be added at an additional fee."

"The pricing is good, and they are competitive compared to providers such as RSA and IBM QRadar."

"The cost is dependent on the customer's environment and requirements."