Rapid7 InsightIDR Reviews

I use Rapid7 InsightIDR to collect logs and information from throughout our company's entire IT environment.

The most valuable feature of the solution is the single pane of glass that allows me to see all the information in one spot. I can see at one spot to see all the information from all the logs and everything.

Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries. In the future, I would like the tool to offer its uses with a pre-made set of queries.

I have been using Rapid7 InsightIDR for a year. I use the solution's latest version. My company is a customer of the solution.

The product works well. Stability-wise, I rate the solution a ten out of ten.

I rate the product's scalability a ten out of ten since, scalability-wise, it is a really good tool.

Rapid7 InsightIDR is managed by four people in my company.

The speed of response from the technical support team may vary since I purchased it from a reseller in Sweden and not from Rapid7 directly.

I rate the technical support a seven out of ten.

Neutral

In the past, my company used Unomaly, a tool from Sweden. My company switched from Unomaly to Rapid7 InsightIDR after seeing that the former could only checked syslogs, while we wanted something that checked our overall systems.

I rate the initial setup a ten out of ten.

The solution's initial setup was very straightforward.

The solution is deployed on an on-premises and cloud model. The cloud services are provided by Rapid7.

The solution can be deployed in half a day or four hours in a small environment.

I was the only person involved in the product's deployment phase.

After considering the prices of the product's competitors, I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive. There may be some additional costs attached to the solution only if you want to buy a SOC or something. I don't have to pay for any additional costs at the moment.

I suggest that those who plan to use the solution give it a try since it is free for a couple of months. The solution has really easy setup and deployment phases, and you can even remove it from your environment if you want to do so later.

I rate the overall product a nine out of ten.

We are using Rapid7 to provide threat detection and response services to our clients. It covers 1,200 users and 1,100 assets. 

Rapid7 doesn't integrate well with all our security tools from various vendors, so we plan to switch. Many of our solutions work with Rapid7, but some do not. We are already searching for a replacement already.

I have used Rapid7 for about three years. 

I rate Rapid7 six out of 10 for scalability. 

Setting up Rapid7 is simple. You only need to download the agents and collectors. It's a cloud-based solution with on-premise agents. Five security admins manage the solution.

We worked with the vendor during the initial installation. Our system is hybrid, so some of our endpoints are being scanned directly from the cloud, but others use the collectors. 

I rate Rapid7 nine out of 10 for affordability 

I rate Rapid7 InsightIDR six out of 10.

The solution lacks an AI-driven capability. While other competitors emphasize AI as the most important feature.

I have been using Rapid7 InsightIDR as a distributor for seven years.

The product's stability is high. I rate the solution’s stability an eight out of ten.

Due to its cloud-based nature and numerous agents, its scalability is high. This, combined with its on-premise environment, ensures rapid performance. It can handle several thousand. It is best suited for large-scale businesses.

Support is slow. I'm not satisfied with the support so far.

Neutral

Due to the product's complexity, the initial setup can be challenging. Additionally, setting up the product and training the customer can be quite demanding. Deploying the appliance or sensor on-premises can take up to twelve months.

The product pricing is very cheap.

InsightIDR automates everything through InsightConnect in a seven-day cycle.

The product has improved significantly since its inception. However, based on feedback I've received from other products in the market, aside from InsightIDR.

It improved because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively. 

If you combine it with InsightIDR, then it may become more compact. Maybe IBM was a bit larger. So, having MDR is the main key point for this product.

Overall, I rate the solution a four out of ten.

Normally, we use the solution as an event viewer to collect and resume cases and playbooks.

The main problem lies in the processes within the client's operating systems. XDR is superior to CMs. Observing how the processes function within the machine is essential if you are monitoring the client or servers, and not only the event with the first or second line but the third line is most important.

I've been familiar with the solution for six months.

The solution is very stable and works very well for what I need it to do. The solution is completely different in an experienced environment and a real environment.

I have worked with Wazuh before, but only to try it. Wazuh is more or less the same as Rapid7 InsightIDR.

I rate Rapid7 InsightIDR an eight out of ten.

We provide InsightIDR for our banking and ICT clients. 

InsightIDR helps us investigate an environment to discover information about incidents. 

InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal. 

I have used InsightIDR for four years. 

I rate InsightIDR 10 out of 10 for stability. 

I rate InsightIDR six out of 10 for scalability. The licensing model limits the scalability. The licenses are defined based on assets, so you have to purchase more licenses as you add assets. It's suitable for a small or medium-sized company. We have about 250 users. 

I rate Rapid7 support nine out of 10.

Positive

I rate InsightIDR eight out of 10 for ease of setup. It takes about seven working days to deploy. We install a connector on the LAN, which links up to the cloud and becomes one of your event sources. Next, you need to integrate everything with the console.

I rate InsightIDR six out of 10 for affordability. It isn't the cheapest solution I've seen, but it offers a greater value than less expensive competitors. 

I rate InsightIDR eight out of 10. It's worth a try. InsightIDR provides excellent visibility and threats. The network detection is fast, so you get alerts as soon as something happens. 

I use the solution for its SIEM functionalities, log analysis, and behavioral analysis.

The solution is easy to use, and the interface is intuitive.

Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA). So, User Behavior Analytics (UBA) should be added in the new release.

I have been using the solution for two years. My company has a partnership with Rapid7.

It is a stable solution. My customers are happy to use it.

I do not have any plans to expand the usage of the solution. Currently, one hundred people are using the solution.

I have not used the technical support.

Previously, I used IBM.

I was not involved in the initial setup as I am not an engineer.

The pricing is good, and it is not very expensive.

I rate the overall solution a nine out of ten.

I used the solution to monitor networks and prevent them from real-time threats.

The solution's most valuable feature is its ability to fetch insights on threats and log activities. 

They should add more configuration and security features to the solution.

I have used the solution for more than a year and a half.

I rate the solution's stability as a seven.

We have two thousand customers using the solution. It works best for the medium-scale industry. I rate its scalability as an eight.

The solution's initial setup is easy. The deployment process involves installing and collecting agents to communicate with the systems. In the case of multiple machines, it takes around five to six months to complete it. I rate the process as an eight.

The solution's license costs around Rs. 20,00,000. It is more reasonable than other vendors. I rate its pricing as an eight.

Compared to other solutions, Rapid7 is more flexible to use. We install, gather, and monitor logs easily with its help. I rate it as an eight.

I used it in my previous company. We were the integrator of the solution, and also a partner of Rapid7 at the time. 

We used it for security monitoring and also for analytics. We used it for our own company, and like an MSSP, we sold this to our customers. So, we did security monitoring for our customers and interim response for them.

It was cloud-based, and I was using its latest version.

Previously, when something happened, such as when a hacker was attacking one of our customers, we were always behind, or we didn't know that we were hacked until the ransomware started. With the Rapid7 solution, at every step, we could online see what a person was doing, and we could prevent ransomware. Previously, we could never say it can be really prevented, but with Rapid7, we could see the first steps of what they were trying to do, and we could mitigate those steps before there is a big outage.

The biggest reason why we chose Rapid7 was to gain value in a really quick time. Its deployment doesn't take months. It just takes a few days.

When something is happening, such as there is hacking or something else going on, the information provided is really helpful. It almost tells you what to do. It is enriched with a lot of information.

One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level.

It could have intelligence. It is available as a separate product but not as a part of the platform itself.

It is definitely stable. We never have any outages. I would rate it a ten out of ten in terms of stability.

It is definitely scalable. I would rate it a ten out of ten in terms of scalability.

We had six users who were monitoring the systems. There were 10 customers with about 10,000 employees in total.

They are responsive, but there is scope for improvement. I would rate them an eight out of ten.

Positive

It is straightforward. I would rate it a nine out of ten in terms of the ease of setup.

In terms of maintenance, it is all cloud-based. So, the maintenance is done by the vendor.

It must be really high, but we never looked at the real numbers.

It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year.

We had a list of three products. We tried them all, and in the end, we went for Rapid7 because it was easy to deploy, and it required little or no maintenance. The price was another reason.

One of the biggest reasons why we chose it as our security platform was that it is not only for security monitoring. We could see a lot of improvements coming over the next couple of years. Automation is one of the things that will be really important in the next few years. It is already there, but we didn't buy it.

I would rate it a nine out of ten.