AWS Security Hub vs Rapid7 InsightCloudSec comparison

Amazon Web Services (AWS) and Rapid7 are both solutions in the Cloud Security Posture Management (CSPM) category. Amazon Web Services (AWS) is ranked #16 with an average rating of 7.6, while Rapid7 is ranked #14 with an average rating of 7.8. Amazon Web Services (AWS) holds a 3.9% mindshare in CSPM, compared to Rapid7’s 1.6% mindshare. Additionally, 89% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 87% of Rapid7 users who would recommend it.

AWS Security Hub

Read 26 AWS Security Hub reviews

7,113 Views
3,130 Comparison Views

89% willing to recommend

Rapid7 InsightCloudSec

Read 13 Rapid7 InsightCloudSec reviews

1,819 Views
1,382 Comparison Views

87% willing to recommend

AWS Security Hub

Rapid7 InsightCloudSec

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between AWS Security Hub and Rapid7 InsightCloudSec based on real PeerSpot user reviews.

Find out in this report how the two Cloud Security Posture Management (CSPM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed AWS Security Hub vs. Rapid7 InsightCloudSec Report (Updated: December 2025).

Buyer's Guide

AWS Security Hub vs. Rapid7 InsightCloudSec

December 2025

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

AWS Security Hub

Ranking in Cloud Security Posture Management (CSPM)

16th

Average Rating

7.6

Reviews Sentiment

6.5

Number of Reviews

Ranking in other categories

Security Orchestration Automation and Response (SOAR) (6th)

Rapid7 InsightCloudSec

Ranking in Cloud Security Posture Management (CSPM)

14th

Average Rating

7.8

Reviews Sentiment

6.3

Number of Reviews

Ranking in other categories

Cloud Management (13th), Cloud-Native Application Protection Platforms (CNAPP) (10th), AI Observability (6th)

Mindshare comparison

As of January 2026, in the Cloud Security Posture Management (CSPM) category, the mindshare of AWS Security Hub is 3.9%, down from 4.6% compared to the previous year. The mindshare of Rapid7 InsightCloudSec is 1.6%, up from 1.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Security Posture Management (CSPM) Market Share Distribution
Product	Market Share (%)
Rapid7 InsightCloudSec	1.6%
AWS Security Hub	3.9%
Other	94.5%

Cloud Security Posture Management (CSPM)

Featured Reviews

Karthik Ekambaram

Director at Scybers

Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features

AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.

Read full review

Arun Babu

SOC analyst at a media company with 1,001-5,000 employees

Daily endpoint monitoring has improved investigations and saved time but detection rules still need tuning

It is important to note that Rapid7 InsightCloudSec's features are not 100% precise, but I find about 70% of the time it is satisfactory. I would like to suggest that you improve it to be more precise, ideally making it 100% if possible. Some cases in Rapid7 InsightCloudSec indicate that the log is not enough, as they mostly just generate alerts, and the synchronization between data connectors is often problematic, particularly in terms of not being in sync always, especially between the AD and Rapid7 alerts, which generates numerous false positives. Additionally, the traditional rules should be updated, as this is a main point worth mentioning since we spend a lot of time fine-tuning these traditional rules. I suggest improving the legacy detection rules. If there are any authentication cases, such as impossible travel activity where a user has their SharePoint hosted in a different location, Rapid7 can often trigger alerts, creating confusion as we cannot fine-tune it properly. Another issue is with honeypot access. We sometimes lack necessary logs because Defender's advanced threat protection scanning gets detected as honeypot activity by Rapid7, leading to annoying and noisy alerts that we need to constantly close. If you can improve the traditional detection rules to reflect current detection rules, it would make it significantly easier for us to manage, as we constantly need to check legacy rules to update or possibly turn them off. Updating the legacy rules should be a priority.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."

"I like that AWS Security Hub currently has several good features, around four or five. The technical support for AWS Security Hub is also responsive."

"AWS Security Hub has very good integration features. It allows for AWS native services integration, and it helps us to integrate some of the services outside of AWS. They have partners, such as Amazon Preferred Network Partners (APN). If you have different security tools around APN, we can integrate those findings with AWS Security Hub reducing the need to refer to different portals or different UIs. You can have AWS Security Hub act as a single common go-to dashboard."

"AWS Security Hub can check your infrastructure against multiple compliance frameworks. You can turn on or off specific frameworks based on your needs."

"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."

"It's a security posture management tool from AWS. Basically, it identifies misconfigurations, similar to Trusted Advisor but on a larger scale."

"The most beneficial aspect of Security Hub is its proactive capability, allowing us to identify potential security issues before they escalate."

"Cloudposse is a valuable feature as it guarantees my security."

More AWS Security Hub pros

"The tool's most valuable feature is workload protection for Kubernetes and container security. It has agents that identify bugs or lack of security on runtime containers."

"Rapid7 InsightCloudSec has helped us save thirty percent time in our log retrievals, and it completely changed log searching, making it really fast when we search for logs, with no prior knowledge required."

"Rapid7 InsightCloudSec impacts the organization positively by acting as a shield against hackers and ransomware, providing effective protection to data and infrastructure."

"The fastest scanning is the best feature Rapid7 InsightCloudSec offers, helping me respond to threats quickly in my daily operations."

"Rapid7 InsightCloudSec has positively impacted my organization because we are using Microsoft Defender for endpoint protection alongside Rapid7."

"After implementing Rapid7 InsightCloudSec, we increased our CIS benchmark score from 48 to around 88 after addressing missing patches on some VM instances, indicating a significant positive impact."

"Since implementing Rapid7 InsightCloudSec, manual cloud security checks have been reduced by around forty to fifty percent, and mean time to resolve misconfigurations has dropped from several hours to under thirty minutes on average, significantly improving efficiency and client confidence."

"ICSE is cheaper compared to other tools and has a pleasant user experience with good support."

More Rapid7 InsightCloudSec pros

Cons

"From an improvement perspective, there is a need to add more compliance since, right now, AWS Security Hub only provides four to five compliances to control the tool."

"Security Hub is currently not worth investing in, as it requires more configurations and integration with other services to work effectively."

"Shortening the response time for support tickets, particularly in production issues, could make the service more efficient."

"The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."

"The solution lacks self-sufficiency."

"We need more granular-level customizations to enable or disable the rules in AWS Security Hub."

"It's not user-friendly. Too much going on, too many unnecessary findings, not very visual. You can't do much compared to other similar tools that are cheaper and better."

"Security needs to be measured based on their own criteria. We can't add custom criteria specific to our organization. For example, having an S3 bucket publicly available might be flagged as a critical alert, but it might not be critical in a sandbox environment. So, it gets flagged as critical, which becomes a false positive. So, customization options and creating custom dashboards would be areas for improvement."

More AWS Security Hub cons

"Rapid7 InsightCloudSec needs to provide more granular search capabilities, such as the ability to search back the last three months."

"Rapid7 InsightCloudSec can be improved by seeing reductions and improvements in prioritization, tuning findings, suppressing low-value alerts, and better prioritizing the most critical risks."

"A couple of modules are missing when compared to other providers, specifically related to some IAM, and the login piece needs improvement."

"Rapid7 InsightCloudSec could be better at showing dashboards for virtual firewalls and appliances. Compared to other solutions like Palo Alto, this area is not as good. So, they should work on improving this for virtual devices."

"I would say that because Rapid7 InsightCloudSec does not have automatic patching capabilities, it provides recommendations, but it does not execute anything from within Rapid7 InsightCloudSec."

"They didn't have any documentation on how to patch it."

"There are a lot of other solutions in the market, not only providing the features of a CSPM, but also CNAPP."

"Some cases in Rapid7 InsightCloudSec indicate that the log is not enough, as they mostly just generate alerts, and the synchronization between data connectors is often problematic, particularly in terms of not being in sync always, especially between the AD and Rapid7 alerts, which generates numerous false positives."

More Rapid7 InsightCloudSec cons

Pricing and Cost Advice

"The price of AWS Security Hub is average compared to other solutions."

"There are multiple subscription models, like yearly, monthly, and packaged."

"Security Hub is not an expensive solution."

"The pricing is fine. It is not an expensive tool."

"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."

"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."

"The price of the solution is not very competitive but it is reasonable."

"AWS Security Hub's pricing is pretty reasonable."

"We're doing an annual subscription. There are additional expenses, but not within the confines of this platform."

"Companies generally buy this tool because the pricing is not that high."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Comparison Review

it_user186927

Director of Operations at a comms service provider with 10,001+ employees

Feb 16, 2015

Cybereason vs. Interset vs. SQRRL

Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…

Read full review

Top Industries

By visitors reading reviews

Financial Services Firm

12%

Computer Software Company

12%

Manufacturing Company

11%

Government

Insurance Company

10%

Manufacturing Company

Financial Services Firm

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	5
Large Enterprise	12

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	5
Large Enterprise	8

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?

We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...

See all answers

What do you like most about AWS Security Hub?

The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.

See all answers

What needs improvement with AWS Security Hub?

See all answers

What do you like most about Rapid7 InsightCloudSec?

The tool provides centralized visibility through dashboards and alerts, allowing customers to receive reports on cloud vulnerabilities and security posture. Rapid7 InsightCloudSec provides customer...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightCloudSec?

The pricing, setup cost, and licensing for Rapid7 InsightCloudSec are reasonable, and since our organization is growing, I have observed that the more numbers you have, the less costly the product ...

See all answers

What needs improvement with Rapid7 InsightCloudSec?

I would say that because Rapid7 InsightCloudSec does not have automatic patching capabilities, it provides recommendations, but it does not execute anything from within Rapid7 InsightCloudSec. It h...

See all answers

Comparisons

Microsoft Sentinel vs AWS Security Hub

Compared 35% of the time

Wiz vs AWS Security Hub

Compared 8% of the time

Prisma Cloud by Palo Alto Networks vs AWS Security Hub

Compared 8% of the time

Microsoft Defender for Cloud vs AWS Security Hub

Compared 5% of the time

CrowdStrike Falcon Cloud Security vs AWS Security Hub

Compared 3% of the time

More AWS Security Hub Competitors

Wiz vs Rapid7 InsightCloudSec

Compared 24% of the time

Microsoft Defender for Cloud vs Rapid7 InsightCloudSec

Compared 15% of the time

CrowdStrike Falcon Cloud Security vs Rapid7 InsightCloudSec

Compared 13% of the time

FortiCNAPP vs Rapid7 InsightCloudSec

Compared 6% of the time

Check Point CloudGuard CNAPP vs Rapid7 InsightCloudSec

Compared 5% of the time

More Rapid7 InsightCloudSec Competitors

Product Reports

Buyer's Guide

AWS Security Hub

January 2026

Download AWS Security Hub product report

Buyer's Guide

Rapid7 InsightCloudSec

January 2026

Download Rapid7 InsightCloudSec product report

Also Known As

SQRRL

DivvyCloud

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts.

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments.

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

Rapid7 InsightCloudSec is a comprehensive CSPM tool catering to cloud security across Docker and Kubernetes workloads, ensuring rigorous data classification and protection, focusing on AWS and Azure platforms.

Organizations leverage Rapid7 InsightCloudSec for securing cloud environments, integrating smoothly into Kubernetes settings for extensive security oversight. This tool addresses data protection with governance and access controls, providing centralized visibility and alert mechanisms. Users depend on its threat detection capabilities, easing data security management on AWS and Azure. The platform integrates automated processes and agentless scanning to foster an understanding of cloud security dynamics. Enhancements in CNAPP management and more intuitive interfaces could further streamline its use.

What are the most important features of Rapid7 InsightCloudSec?

Security Frameworks: Offers structured systems to enforce security policies across cloud environments.
Agentless Scanning: Provides insights without deploying agents, simplifying operations.
Automation: Streamlines routine security tasks, enhancing efficiency.
Centralized Visibility: Uses dashboards and alerts for comprehensive monitoring.
Vulnerability Management: Identifies threats with a comprehensive database.

What ROI should users look for in reviews?

Improved Data Security: Enhanced protection across multiple cloud platforms.
Compliance Facilitation: Helps meet regulatory standards effortlessly.
Operational Efficiency: Reduces workload with automation and intuitive tools.
Threat Prevention: Proactively manages vulnerabilities.

In financial sectors, Rapid7 InsightCloudSec is critical for safeguarding sensitive information and ensuring compliance. Healthcare industries use it to protect patient data, adhering to strict regulatory standards. E-commerce businesses appreciate its ability to secure transaction data while maintaining service availability through reliable threat detection and mitigation strategies.

Rapid7

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com

Fannie Mae, 3M, PizzaHut, Spotify, Autodesk, Discovery

Buyer's Guide

AWS Security Hub vs. Rapid7 InsightCloudSec

December 2025

Free Report: AWS Security Hub vs. Rapid7 InsightCloudSec

Find out what your peers are saying about AWS Security Hub vs. Rapid7 InsightCloudSec and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,082 professionals have used our research since 2012.

See our AWS Security Hub vs. Rapid7 InsightCloudSec report.

See our list of best Cloud Security Posture Management (CSPM) vendors.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.