No more typing reviews! Try our Samantha, our new voice AI agent.

Rapid7 InsightOps vs USM Anywhere comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightOps
Ranking in Log Management
28th
Average Rating
9.0
Reviews Sentiment
6.0
Number of Reviews
10
Ranking in other categories
No ranking in other categories
USM Anywhere
Ranking in Log Management
29th
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
115
Ranking in other categories
Security Information and Event Management (SIEM) (29th), Endpoint Detection and Response (EDR) (40th), Compliance Management (14th)
 

Mindshare comparison

As of July 2026, in the Log Management category, the mindshare of Rapid7 InsightOps is 0.8%, up from 0.4% compared to the previous year. The mindshare of USM Anywhere is 1.3%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management Mindshare Distribution
ProductMindshare (%)
Rapid7 InsightOps0.8%
USM Anywhere1.3%
Other97.9%
Log Management
 

Featured Reviews

reviewer1247523 - PeerSpot reviewer
Head of Sales Services Department at a comms service provider with 51-200 employees
Customization and automation streamline workflows for seamless operations
The features of Rapid7 InsightOps that I have found most valuable are the predefined policies and the use of correlation rules, which are very valuable because they eliminate the need to spend time creating those rules. This feature detects insider threats or compromised credentials by using user behavior analytics, which can collect other compromise indicators. It makes it easier to install and implement this solution because you can run it as normal behavior of users and then switch off to look for the anomalous behavior of any entities, such as laptops and others. In any violation or restricted behavior, the system will notify you that something unusual is occurring. The machine learning algorithms in Rapid7 InsightIDR for threat detection work quite effectively as part of the user entity behavior analytic model, allowing us to focus group normal typical behavior of users and then turn on the rule to spot any unexpected behavior. The automation features of Rapid7 InsightOps are quite satisfactory, as users appreciate these features, especially when integrating with the ticketing system. If something goes wrong, InsightOps will notify the ticketing system to create a ticket and assign it to the responsible person to handle the events found in the infrastructure. The customizable dashboards in Rapid7 InsightOps are quite valuable and interesting because SOC center operators spend most of their time investigating on those dashboards, making them easy to manage. Additionally, we can configure email reports for high-level talks, sending historical data without needing to look online, which is very convenient.
Kris Nawani - PeerSpot reviewer
Co-Founder/Director at Bangkok MSP Company Limited
Offers complete coverage without the need to install additional software
USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools The solution offers complete coverage without the need to install additional software, as it is maintained by the vendor. It helps in saving…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We get way more out of it than we did with SecureWorks and we pay about a third of the price."
"The ability to browse logs from multiple sources at the same time really speeds up root cause analysis."
"The log aggregation and research capabilities are definitely what pays for itself."
"Easy to use and spend less time on setups/troubleshooting."
"We can save logs as plain text."
"The most valuable feature of Rapid7 InsightOps is the search functionality."
"The machine learning algorithms in Rapid7 InsightIDR for threat detection work quite effectively as part of the user entity behavior analytic model, allowing us to focus group normal typical behavior of users and then turn on the rule to spot any unexpected behavior."
"My advice to others is this is an easy-to-use solution and they should try it out."
"The price of this solution is reasonable, which is one of the reasons why we selected it over other solutions."
"It brought our logs into one place for review and set up alarms based on changes we were missing due to lack of having one place for everything to go."
"AlienVault has provided a nice, unified system for monitoring and reporting."
"SIEM log collection is great, and all of the rules that support updates with maintenance."
"The vulnerability scanning is helpful to identify the areas that need patching or fixes installed."
"The best thing about AlienVault USM is it being a Jack-of-All Trades solution, providing SIEM, HIDS/NIDS, FIM, NetFlow, Asset Management, Vulnerability Management, and more under one USM platform, which none of the commercial SIEM vendors like ArcSight or McAfee can boast of with such a diverse feature set."
"AlienVault is an amazing product that I would highly recommend."
"The all-in-one source for the needs of compliance has put everything into one location without the need of other applications and tools to accomplish the tasks."
 

Cons

"There are a few things I would like to do with a few more complex queries which I am not able to do right now, because it is a SaaS solution."
"Rapid7 InsightOps could improve by making the search query better. There are times when the search query is broken and it does not find anything."
"Since I used the beta, improvements are to be expected. The dashboard options could have been clearer, but I believe it is more a problem with the limited documentation available at the time."
"The searching capability, or when you ask real time questions, is pretty decent but it's still not up to par with, say, Splunk."
"Improvement is needed in the dashboard of InsightOps, especially for less technical users."
"The solution takes a little bit of time when we load the website for the first time."
"There were some difficulties in product setup, but after those issues were resolved, there were no issues."
"I've been told that AlienVault doesn't have a full version of NES running in there, but I'm not sure if that's accurate or if my engineer made it that way. I'm not sure he was completely honest either because we had NES in the environment before. Those tools could be improved because AlienVault is a SIEM, and it added all these other features."
"Most of the troubleshooting requires going through the Linux command line and bypassing the GUI."
"The reporting could do with some improvements for example the vulnerability report only tells you what vulnerabilities are open and lists them but there is no indication of how old they are at a glance and what vulnerabilities have been closed since the previous scans."
"As this software is in the cloud, you do not have control on updates and general changes which are happening."
"Search performance can be slow. The Raw Logs feature is painfully slow."
"We would love to be able to create custom rules based on a series of events, to create rule-sets where, for example, failed logins to the VPN Server are logged and then when a successful attempt follows soon after, it triggers an alarm for a Brute Force."
"The AT&T AlienVault USM is okay, but the relational database is not very good for large amounts of data. For example, many logs cannot be processed. It has been very slow for the queries and some data which are large, it is not very good in this case."
"The way it identifies systems can use some improvement. It has a hard time differentiating between versions of Windows."
 

Pricing and Cost Advice

"The product is cheap."
"We checked out several competitors. For what it can do and the cost, it was the best option!"
"The ROI is quite good."
"I don't think the product's pricing is a good value because they try to raise the price 50 percent every year... AlienVault needs to understand that not all customers are huge enterprises... Their sales team is way too aggressive. The price they advertise is not always the price you get."
"It's affordable for most customers."
"​The price point is good.​"
"It is affordable, and it also has many features that the premium products such as ArcSight and QRadar have. It is a very good platform for a SIEM solution. Everything is included in the price."
"They charge a license based on the storage. ATT AlienVault USM is a less expensive solution than IBM QRadar."
"AlienVault is flexible on their pricing for unlimited licenses."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
903,257 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
13%
Construction Company
13%
Educational Organization
7%
Media Company
6%
Construction Company
23%
Financial Services Firm
10%
Comms Service Provider
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise2
Large Enterprise3
By reviewers
Company SizeCount
Small Business65
Midsize Enterprise29
Large Enterprise25
 

Questions from the Community

What needs improvement with Rapid7 InsightOps?
In my opinion, there are no specific areas of Rapid7 InsightIDR that need improvement because all solutions in the SIEM market, including InsightOps and its competitors, are doing the same things b...
What is your primary use case for Rapid7 InsightOps?
The usual use cases for Rapid7 InsightOps that I work with are to meet standard requirements such as PCI DSS and ISO standards, collecting data and protecting event logs. Rapid7 InsightOps plays a ...
What advice do you have for others considering Rapid7 InsightOps?
The integration capabilities of Rapid7 InsightIDR with other security or IT management tools are quite simple. To integrate with another solution, you just need that solution to push system logs in...
What needs improvement with AT&T AlienVault USM?
There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks. It is also limited when used with bigger products and has complex password requirements.
What is your primary use case for AT&T AlienVault USM?
USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools.
 

Also Known As

InsightOps, Logentries
AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity
 

Overview

 

Sample Customers

Trimble Navigation Limited
Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom
Find out what your peers are saying about Rapid7 InsightOps vs. USM Anywhere and other solutions. Updated: June 2026.
903,257 professionals have used our research since 2012.