Try our new research platform with insights from 80,000+ expert users
Rapid7 InsightVM Logo

Rapid7 InsightVM Reviews

Vendor: Rapid7
4.0 out of 5
Badge Leader
Leave a review

What is Rapid7 InsightVM?

Rapid7 InsightVM is a comprehensive vulnerability management platform that protects your systems from attackers and is easy to scale. The solution provides easy access to vulnerability management, application security, detection and response, external threat intelligence, orchestration and automation, and more. Rapid7 InsightVM is ideal for security, IT, and DevOps teams, helping them reduce risk by enabling them to detect and respond to attacks quickly.

Get the Rapid7 InsightVM Buyer's Guide and find out what your peers are saying about Rapid7 InsightVM, Qualys VMDR, Tenable Security Center and more!
Rapid7 InsightVM is the #4 ranked solution in top Risk-Based Vulnerability Management solutions. PeerSpot users give Rapid7 InsightVM an average rating of 8.0 out of 10. Rapid7 InsightVM is most commonly compared to Qualys VMDR: Rapid7 InsightVM vs Qualys VMDR. Rapid7 InsightVM is popular among the large enterprise segment, accounting for 58% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 13% of all views.
Buyer's Guide
Rapid7 InsightVM
August 2025
Get the report
Helped 866,218 peers since 2012

Featured Rapid7 InsightVM reviews

Read more reviews

Rapid7 InsightVM mindshare

As of August 2025, the mindshare of Rapid7 InsightVM in the Risk-Based Vulnerability Management category stands at 15.0%, up from 14.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Risk-Based Vulnerability Management Market Share Distribution
ProductMarket Share (%)
Rapid7 InsightVM15.0%
Qualys VMDR16.8%
Tenable Security Center10.9%
Other57.3%
Risk-Based Vulnerability Management

PeerResearch reports based on Rapid7 InsightVM reviews

TypeTitleDate
CategoryRisk-Based Vulnerability ManagementAug 29, 2025Download
ProductReviews, tips, and advice from real usersAug 29, 2025Download
ComparisonRapid7 InsightVM vs Qualys VMDRAug 29, 2025Download
ComparisonRapid7 InsightVM vs Tenable Vulnerability ManagementAug 29, 2025Download
ComparisonRapid7 InsightVM vs Tenable Security CenterAug 29, 2025Download
Suggested products
TitleRatingMindshareRecommending
Qualys VMDR4.116.8%94%94 interviewsAdd to research
Tenable Security Center4.110.9%96%55 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Rapid7 InsightVM is valued for powerful vulnerability scanning, customizable dashboards, easy integration, and dynamic risk scoring. Users highlight its ease of use, comprehensive reporting, and strong remediation features. Integration with tools like JIRA aids vulnerability management. Features like agentless scanning, accurate risk assessment, API integration, and compliance reporting are frequently praised. The community edition and strong support structure enhance its appeal among users seeking an efficient cybersecurity tool.
  • "With Rapid7 InsightVM, the deployment process is more user-friendly."
  • "The most valuable feature of the Rapid7 InsightVM solution is the Live Risk Score."
  • "Customers are generally satisfied and do not ask for drastic price reductions during renewals."

Room for Improvement

Rapid7 InsightVM needs enhancements in reporting customization, integration capabilities, and false-positive reduction. Users suggest better API integrations, especially with ticketing systems like JIRA. Improved patch management, streamlined user experience, and more comprehensive templates are desired. Some face challenges with resource consumption and configuration complexity, while others emphasize the need for better customer support response times. An expansion of cloud-based options and quicker updates for vulnerability data is requested to enhance reliability.
  • "Customer support in Rapid7 InsightVM could be improved. The response time needs improvement."
  • "The automation capability remediation needs improvement."
  • "Customer service needs significant improvement. There are delays in support response times, and support is not available promptly, especially when issues are escalated to another region."

ROI

Users had a commendable return with Rapid7 InsightVM, though some expected more. Its vulnerability scanner often prevents cyber attacks, ensuring significant value. While ROI perception ranged from fair to excellent, it remains difficult for some to precisely measure. It's an essential tool for management, enhancing comprehension of potential issues. Users appreciated cost-savings, particularly for vulnerability management and comprehensive cybersecurity. Being subscription-based without requiring hardware ownership, it aligns well with budgetary constraints.

Pricing

Enterprise buyers find Rapid7 InsightVM's pricing to be asset-based and straightforward, with licenses typically paid annually. Some users consider it expensive compared to competitors, but others find it reasonable and competitive, especially when purchasing for larger environments. Prices can range from $30 per IP monthly to around $100,000 annually, depending on asset usage and organizational requirements. While some express dissatisfaction with its cost, others appreciate the bundled features and flexible pricing structure.
  • "The tool's price is neither too high nor too low. My company needs to pay 65,000 per year. There are no additional costs apart from the licensing fees attached to the solution."
  • "The product is cheaper than the other similar tools available in the market."
  • "It is less expensive compared to other competitors."

Popular Use Cases

Organizations primarily use Rapid7 InsightVM for vulnerability management, including scanning, identifying, and remediating vulnerabilities across various platforms like servers and network devices. They implement it to assess risks, manage assets, and improve security infrastructure visibility. The tool assists in aligning with security frameworks, conducting continuous vulnerability assessments, and generating reports to ensure operating system and application patches are up to date. Multiple stakeholders within IT teams leverage its capabilities for efficient cybersecurity management.

Service and Support

Customer service for Rapid7 InsightVM is rated as excellent, though response times can be slow. Technical support is generally good and responsive, with some cases resolved efficiently. Users appreciate the helpful attitude but note occasional delays, likely due to regional differences. The quality is praised, with ratings frequently ranging from eight to ten out of ten. Some users seek faster service and support availability during holidays and escalations across regions. Improvements in response times are desired by many.

Deployment

Rapid7 InsightVM's initial setup is generally straightforward and easy, allowing quick deployment. Many users find the process customizable and intuitive. The complexity can depend on factors like organizational size and network configuration. Deployment time ranges from hours to weeks, often influenced by network intricacies and existing infrastructure. Some users experience challenges with advanced features, but proper preparation and support from Rapid7 can mitigate these issues, ensuring a smoother setup experience.

Scalability

Rapid7 InsightVM exhibits excellent scalability, handling large environments effectively. Users report it adapts well to varying needs across different industry scales, from school districts to large enterprises. Its deployment supports hundreds to thousands of assets, and additional license purchases enable further scaling. Users note ease in expanding scan engines across networks, with high compatibility across various systems. The solution is often rated highly for scalability, meeting organizational demands efficiently.

Stability

Rapid7 InsightVM is consistently described as stable, reliable, and high-performing. Many users report no bugs, glitches, or crashes, with an ease of integration and consistent updates. A few note occasional minor issues, mainly with communication or internal configurations, but support is responsive. Most ratings are between eight to ten out of ten for stability, with specific cases highlighting performance on Linux systems. Overall perception indicates remarkable stability across various deployments and use cases.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Rapid7 InsightVM Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business24
Midsize Enterprise13
Large Enterprise20
By reviewers
By visitors reading reviews
Company SizeCount
Small Business323
Midsize Enterprise250
Large Enterprise783
By visitors reading reviews

Top industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
12%
Manufacturing Company
10%
Government
5%
University
5%
Healthcare Company
5%
Retailer
4%
Comms Service Provider
4%
Insurance Company
4%
Educational Organization
4%
Real Estate/Law Firm
3%
Performing Arts
3%
Construction Company
3%
Hospitality Company
2%
Energy/Utilities Company
2%
Wholesaler/Distributor
2%
Legal Firm
2%
Outsourcing Company
2%
Non Profit
2%
Logistics Company
2%
Media Company
1%
Recreational Facilities/Services Company
1%
Consumer Goods Company
1%
Transportation Company
1%
Pharma/Biotech Company
1%

Compare Rapid7 InsightVM with alternative products

Go!

Learn more about Rapid7 InsightVM

Rapid7 InsightVM Features

Rapid7 InsightVM has many valuable key features. Some of the most useful ones include:

  • Automated containment: With this feature, you can decrease exposure from vulnerabilities by automatically implementing temporary (or permanent) compensating controls via your network access control (NAC) systems, firewalls, and endpoint detection and response tools.
  • Policy assessment: Rapid7 InsightVM offers pre-built scan templates for common compliance requirements. The solution helps you take clear, actionable steps to compliance once you have assessed your risk posture. In addition, Rapid7 InsightVM’s Custom Policy Builder allows you to modify existing benchmarks or create new policies from scratch.
  • REST API: Rapid7 InsightVM REST API is easy to use and was built to easily automate virtually any aspect of vulnerability management, from data collection to risk analysis.
  • Live dashboards: Rapid7 InsightVM includes dashboards that are live and interactive by nature. The live dashboards enable you to create custom cards and full dashboards for anyone in your organization and allow you to track progress of your security program.
  • Automation-assisted patching: Rapid7 InsightVM’s automation-assisted patching gives you the autonomy to make key decisions in your patching process, such as your approval to apply certain patches to certain vulnerabilities.
  • Real risk prioritization: Rapid7 InsightVM makes it simple to know which vulnerabilities need to be prioritized and where your riskiest assets lie.
  • Goals and SLA’s: This feature enables you to make and track progress toward your goals and service level agreements (SLAs) at an appropriate pace.

Rapid7 InsightVM Benefits

There are many benefits to implementing Rapid7 InsightVM. Some of the biggest advantages the solution offers include:

  • Attack surface monitoring for maintained visibility: By leveraging attack surface monitoring with Project Sonar (a Rapid7 research project that regularly scans the internet to gain insights into global exposure to common vulnerabilities), you can gain more control of all of your external-facing assets, both known and unknown.
  • Container security: Rapid7 InsightVM integrates with your CI/CD tools, public container repositories, and private repositories to assess container images for vulnerabilities during the build process even before they are deployed.
  • Lightweight endpoint agent: Rapid7 InsightVM unifies data so you only need to install a single agent for continuous vulnerability assessment, incident detection, and log data collection.
  • Easily assign and track remediation duties: Using Rapid7 InsightVM, IT and security teams can assign as well as track remediation duties without having to deal with remediation reports, complex spreadsheets, or back-and-forth email tags.
  • Integration with cloud services and virtual infrastructure: Rapid7 InsightVM provides full visibility into risk across your physical, virtual, and cloud infrastructure.
  • Integrated threat feeds: Rapid7 InsightVM is designed with integrated threat feeds, giving you a dynamic view that shows you which threats are most relevant to your environment, enabling you to better protect against current, impending threats so you can react quickly to critical vulnerabilities.

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Rapid7 InsightVM solution.

An owner at a tech services company says, "I liked the dashboard on it. I could customize my dashboard with different widgets and different heat maps."

PeerSpot user Kimeang S., Technical Consultant at Yip Intsoi, mentions, "The most important aspect of the solution is that it rarely gives false positives, especially compared to other products. It provides very clear reports for our IT teams to look at."

A Director of Information Technology at a government explains, "The main functionality of identifying item endpoints that weren't properly patched or had vulnerabilities is the solution's most valuable feature."

Rapid7 InsightVM was previously known as InsightVM, NeXpose.

Rapid7 InsightVM customers

ACS, Acosta, AllianceData, amazon.com, biogen idec, CBRE, CATERPILLAR, Deloitte, COACH, GameStop, IBM

Related questions

  • 52
How would you choose between Rapid7 InsightVM and Tenable Nessus?
  • 6
When evaluating Cloud Security Remediation, what aspect do you think is the most important to look for?
  • 10
Why is Risk-Based Vulnerability Management important for companies?

Product Categories

Product Categories
Risk-Based Vulnerability Management

Popular Comparisons

Popular Comparisons
Qualys VMDR vs Rapid7 InsightVM Logo
Qualys VMDR vs Rapid7 InsightVM
Tenable Security Center vs Rapid7 InsightVM Logo
Tenable Security Center vs Rapid7 InsightVM
Tenable Vulnerability Management vs Rapid7 InsightVM Logo
Tenable Vulnerability Management vs Rapid7 InsightVM
Microsoft Defender Vulnerability Management vs Rapid7 InsightVM Logo
Microsoft Defender Vulnerability Management vs Rapid7 InsightVM
Armis vs Rapid7 InsightVM Logo
Armis vs Rapid7 InsightVM
Red Canary vs Rapid7 InsightVM Logo
Red Canary vs Rapid7 InsightVM
Nucleus vs Rapid7 InsightVM Logo
Nucleus vs Rapid7 InsightVM
Arctic Wolf Managed Risk vs Rapid7 InsightVM Logo
Arctic Wolf Managed Risk vs Rapid7 InsightVM
Cisco Vulnerability Management (formerly Kenna.VM) vs Rapid7 InsightVM Logo
Cisco Vulnerability Management (formerly Kenna.VM) vs Rapid7 InsightVM
SanerNow CyberHygiene Platform vs Rapid7 InsightVM Logo
SanerNow CyberHygiene Platform vs Rapid7 InsightVM
Balbix BreachControl vs Rapid7 InsightVM Logo
Balbix BreachControl vs Rapid7 InsightVM
SecureWorks Taegis VDR vs Rapid7 InsightVM Logo
SecureWorks Taegis VDR vs Rapid7 InsightVM
Fortra's Vulnerability Management vs Rapid7 InsightVM Logo
Fortra's Vulnerability Management vs Rapid7 InsightVM
See all alternatives
 
Rapid7 InsightVM Reviews Summary
Author infoRatingReview Summary
Senior Manager - Pre-Sales at Trillium Information Security Systems3.5I use Rapid7 InsightVM for vulnerability assessment of assets to identify and remediate vulnerabilities. The Live Risk Score feature is valuable, though I feel the automation in remediation needs improvement, as it's currently a manual process.
Enterprise Security Architect at a energy/utilities company with 10,001+ employees4.0I use Rapid7 InsightVM for effective vulnerability scanning, appreciating its agentless capabilities and risk scoring system. While it surpasses QualysGuard in user-friendliness, its customer support response time needs improvement. I deploy it through Microsoft Azure.
Head of Cyber Security at Super Secure3.0We resell Rapid7 InsightVM to enhance cybersecurity for banks and manufacturers. While valued for robust features, the key improvement area is prompt support. Its subscription model offers budget flexibility, competing with Tenable and Invicti, despite some escalated technical challenges.
0 at a tech vendor with 5,001-10,000 employees4.5I find Rapid7 InsightVM valuable for its connectivity and integration with SIEM and antivirus solutions, although it could be more user-friendly. I recommend Tenable Nessus for its cost-effectiveness, having experience with it in previous roles.
Professional services team lead at a tech services company with 1,001-5,000 employees4.0No summary available
IT Manager at Hermanus Investments, LLC4.5I use Rapid7 InsightVM in my company for cybersecurity, valuing its agent and scanning features. It needs faster updates between the cloud and scanner. Despite this, it provides cost-saving benefits and is superior to alternatives like Nessus, offering comprehensive network security.
Senior Security Engineer at DRS4.0We use Rapid7 InsightVM to scan around 150,000 subnets for video equipment. While it excels in remediation projects, its lack of real-time monitoring is a drawback. We wish it integrated both on-premise and cloud management capabilities like CloudSec.
Marketing Expert at J's communication3.0The main limitation of Rapid7 InsightVM is that it functions only as a hybrid solution, not purely cloud-based. This contrasts with competitors like Tenable.io and Qualys, which offer full cloud solutions without the constraints of a hybrid model.