No more typing reviews! Try our Samantha, our new voice AI agent.

Rapid7 InsightIDR vs Rapid7 InsightVM comparison

The compared Rapid7 InsightIDR and Rapid7 InsightVM solutions aren't in the same category. Rapid7 InsightIDR is ranked #23 in SIEM , with an average rating of 7.5, and holds a 2.1% mindshare in the category. Rapid7 InsightVM is ranked #5 in RBVM , with an average rating of 7.7, and holds a 8.8% mindshare. Additionally, 96% of Rapid7 InsightIDR users are willing to recommend the solution, compared to 87% of Rapid7 InsightVM users who would recommend it.
Rapid7 InsightIDR
Read 32 Rapid7 InsightIDR reviews
  • 9,277 Views
  • 4,639 Comparison Views
96% willing to recommend
Rapid7 InsightVM
Read 66 Rapid7 InsightVM reviews
  • 7,678 Views
  • 3,839 Comparison Views
87% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Rapid7 InsightIDR and Rapid7 InsightVM based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, IBM, Wazuh and others in Security Information and Event Management (SIEM).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: April 2026).
Buyer's Guide
Security Information and Event Management (SIEM)
April 2026
Download the complete report
Helped 893,244 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightIDR
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
32
Ranking in other categories
Security Information and Event Management (SIEM) (23rd), User Entity Behavior Analytics (UEBA) (10th), Endpoint Detection and Response (EDR) (39th), Threat Deception Platforms (6th), Extended Detection and Response (XDR) (23rd)
Rapid7 InsightVM
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
66
Ranking in other categories
Vulnerability Management (12th), Risk-Based Vulnerability Management (5th)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Rapid7 InsightIDR is designed for Security Information and Event Management (SIEM) and holds a mindshare of 2.1%, down 2.5% compared to last year.
Rapid7 InsightVM, on the other hand, focuses on Risk-Based Vulnerability Management, holds 8.8% mindshare, down 14.0% since last year.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Rapid7 InsightIDR2.1%
Splunk Enterprise Security7.1%
IBM Security QRadar5.2%
Other85.6%
Security Information and Event Management (SIEM)
Risk-Based Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Rapid7 InsightVM8.8%
Qualys VMDR10.5%
Tenable Security Center8.0%
Other72.7%
Risk-Based Vulnerability Management
 

Featured Reviews

SohailHyder - PeerSpot reviewer
SohailHyder
Head Of Cyber Security at Super Secure
Has supported compliance needs for mid-sized organizations but lacks customization and advanced integration
If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature sets of a complete SIEM solution. Most common in the market is QRadar, but it is depleting now. It has been taken over by some other products such as Splunk and LogRhythm. If we compare these things with Rapid7 InsightIDR, then there are definitely some gaps that need to be filled. Data retention is also one concern because Rapid7 InsightIDR is cloud-based and operates on a subscription model. Whatever data you want to retain, it has to be paid for separately or it has a cost. Other solutions that are on-premises can have their own infrastructure or they provide some data retention for a month or in some capacity-wise, they provide that solution to them which makes them more attractive.
Read full review
FL
FurqanLatif
Senior Manager - Pre-Sales at Trillium Information Security Systems
Offers robust compliance features but needs improved automation in remediation
The automation capability remediation needs improvement. The current process requires manually telling IT teams to remediate vulnerabilities, and then they update the status of these vulnerabilities in the platform. This basic feature that Rapid7 calls an automated remediation process is actually manual. We can update the status of vulnerabilities in the Rapid7 InsightVM platform and collectively see how many vulnerabilities we have identified and how many are remediated by our IT team. More automation in the remediation feature is a basic demand from many customers. The remediation part and vulnerability identification of network devices or rigid devices are not currently supported by Rapid7 InsightVM. More integration and automation are the two areas Rapid7 needs to improve in their product.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The product works well. Stability-wise, I rate the solution a ten out of ten."
"We were able to identify criminals attempting to login from China and put a stop on their IP locations."
"InsightIDR’s ability to process millions of transactions per day, and to notify me of the most critical ones, is priceless. InsightIDR has the alerts tuned, and has the ability to quickly drill down to determine the threat level."
"I am able to run automated actions based on the output of reports, leaving me extra time to focus on more pressing matters."
"Log search allows us to dive deep into aggregated logs and query all event types at once.​"
"The solution is very stable and works very well for what I need it to do."
"Another very important part of insightIDR is the ability to collect data from endpoint devices via agent software. With a large remote workforce, this allows visibility into the endpoints that are connected to the internet, but not to the corporate network."
"Rapid7 InsightIDR is budget-friendly and has a good market position because not everybody can afford to go for LogRhythm or Splunk or QRadar."
More Rapid7 InsightIDR pros
"The stability of Rapid7 InsightVM is excellent."
"The remediation project is a pretty effective because it allows us, as clients or countries, to choose specific assets and set limitations on them for a certain period which allows us to track and follow up on those limitations. However, when it comes to real-time monitoring and live dashboards, InsightVM doesn't quite fit the bill. It's not a real-time solution and is not instant."
"The solution scales well."
"Overall, this is a product that I am very satisfied with."
"When you connect any new device to the network, Rapid7 has the ability to detect the new device immediately."
"Rapid7 InsightVM has given us a practical view of the vulnerabilities present in our organization."
"InsightVM is good; it's easy to use, it's fast, it's a powerful, easy to access tool."
"Overall, it's a nice tool."
More Rapid7 InsightVM pros
 

Cons

"The dashboard is an area that could be simplified. For management, it should be clear and the files should be there."
"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses."
"The dashboard is an area that could be simplified."
"One of the things that could be better is digital forensics. It is there, but it can be better."
"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."
"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."
"Customised alert recipients need to be added to allow better first-line action and quicker response."
"I'd like to see a mobile application included and some feature related to the generality of segregation for internal users that access the application."
More Rapid7 InsightIDR cons
"It would be nice to have an additional feature that would provide reports on who has logged onto the console or who did what on the console."
"Patch management is the only missing feature I can think of. Rapid7 detects vulnerabilities, but it should also help you manage patches."
"The integration with other solutions like JIRA could be better. Perhaps there could be some additional updates in the next phase that could integrate with it, so then you can proceed with the VT much easier."
"Rapid7 InsightVM should improve its threat intelligence."
"It is still not a fully cloud-based solution. It will be helpful for customers if it is a complete cloud solution. It is a hybrid solution at the moment."
"The reporting has room for improvement. You cannot customize any report."
"InsightVM is getting a little stale and is in danger of falling behind its competitors."
"I have had some difficult problems with InsightVM. The InsightVM cannot scan if we connect to our customer by the VPN."
More Rapid7 InsightVM cons
 

Pricing and Cost Advice

"The pricing is good, and it is not very expensive."
"The solution has a mid-range price point in the market"
"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
"​I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability.​"
"​Accurately predict your licensing counts as this is a subscription based product.​"
"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."
"The pricing and licensing are competitive."
"It is a reasonably priced solution."
More Rapid7 InsightIDR pricing and cost advice
"The tool's price is neither too high nor too low. My company needs to pay 65,000 per year. There are no additional costs apart from the licensing fees attached to the solution."
"InsightVM is an expensive product, especially compared to its competitors, at around a million NOK per year."
"The license is annual and this is the optimal approach when it comes to most software."
"Comparing the price with the value that we receive, I am not happy with it."
"Its pricing depends on the number of users per month."
"Its licensing is yearly. Everything is included in the price for one year."
"The license is IP based. How many IPs you are using to scan is the amount of the license you have to buy. The number of users doesn't matter; many users can use it or only person. It depends on the culture of the organization."
"It is pretty expensive. It depends on what you consider pricey, however, if you only look at vulnerability management solutions, such as within VM or VMDR, there are, I suppose the prices are almost the same. But I believe you will discover that for yourself."
More Rapid7 InsightVM pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
893,244 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
9%
Computer Software Company
9%
Manufacturing Company
9%
Comms Service Provider
7%
Financial Services Firm
12%
Manufacturing Company
9%
Computer Software Company
7%
Comms Service Provider
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise5
Large Enterprise6
By reviewers
Company SizeCount
Small Business29
Midsize Enterprise14
Large Enterprise25
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightIDR?
The product pricing is very cheap.
See all answers
What needs improvement with Rapid7 InsightIDR?
If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature...
See all answers
How would you choose between Rapid7 InsightVM and Tenable Nessus?
You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. You can easily prioritize vulnerabilities using attacker analytics. Overall, Rapid...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightVM?
My experience with the pricing, setup cost, and licensing is that both the setup cost and licensing are great.
See all answers
What needs improvement with Rapid7 InsightVM?
To improve Rapid7 InsightVM, I wish to have integration with patching systems, which would be useful to us. The usability of Rapid7 InsightVM is excellent, and the reporting module is one of the mo...
See all answers
 

Comparisons

Splunk Enterprise Security vs Rapid7 InsightIDR Logo
Splunk Enterprise Security vs Rapid7 InsightIDR
Compared 4% of the time
Microsoft Sentinel vs Rapid7 InsightIDR Logo
Microsoft Sentinel vs Rapid7 InsightIDR
Compared 4% of the time
CrowdStrike Falcon vs Rapid7 InsightIDR Logo
CrowdStrike Falcon vs Rapid7 InsightIDR
Compared 3% of the time
Adlumin Security Operations vs Rapid7 InsightIDR Logo
Adlumin Security Operations vs Rapid7 InsightIDR
Compared 3% of the time
Sentinel vs Rapid7 InsightIDR Logo
Sentinel vs Rapid7 InsightIDR
Compared 3% of the time
More Rapid7 InsightIDR Competitors
Qualys VMDR vs Rapid7 InsightVM Logo
Qualys VMDR vs Rapid7 InsightVM
Compared 15% of the time
Tenable Security Center vs Rapid7 InsightVM Logo
Tenable Security Center vs Rapid7 InsightVM
Compared 12% of the time
Tenable Nessus vs Rapid7 InsightVM Logo
Tenable Nessus vs Rapid7 InsightVM
Compared 12% of the time
Microsoft Defender Vulnerability Management vs Rapid7 InsightVM Logo
Microsoft Defender Vulnerability Management vs Rapid7 InsightVM
Compared 4% of the time
Arctic Wolf Managed Risk vs Rapid7 InsightVM Logo
Arctic Wolf Managed Risk vs Rapid7 InsightVM
Compared 4% of the time
More Rapid7 InsightVM Competitors
 

Product Reports

Buyer's Guide
Rapid7 InsightIDR
April 2026
Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
Buyer's Guide
Rapid7 InsightVM
April 2026
Rapid7 InsightVM reportDownload Rapid7 InsightVM product report
 

Also Known As

InsightIDR
InsightVM, NeXpose
 

Overview

Rapid7 InsightIDR is a cloud-based security information and event management solution known for its user behavior analytics, offering rapid detection and response capabilities while facilitating seamless integration across systems.

Rapid7 InsightIDR is designed to enhance threat detection and investigation through its efficient user behavior analytics and advanced threat intelligence framework. The platform's cloud-based deployment ensures rapid setup and comprehensive event monitoring across diverse IT environments, including endpoints and Office 365. Its intuitive interface supports seamless data collection, honing in on threat detection through honeypot utilization and intelligent alerting. However, it is noted for lacking some customization features and better integration, especially with Microsoft and ITSMs.

What are the key features of Rapid7 InsightIDR?
  • User Behavior Analytics: Detects threats by analyzing patterns and anomalies.
  • Cloud Deployment: Enables quick setup and scalability.
  • Comprehensive Monitoring: Monitors events across systems and platforms like Office 365.
  • Honeypots and Alerting: Utilizes honeypots to reduce false positives and alert fatigue.
  • Threat Intelligence Framework: Supports effective threat hunting and remediation.
What benefits should users consider in reviews when evaluating Rapid7 InsightIDR?
  • Enhanced Detection: Improves threat detection with user behavior analysis.
  • Easy Integration: Integrates across systems for a streamlined security approach.
  • Rapid Response: Facilitates quick action against identified threats.
  • Operational Efficiency: Offers a cohesive view of security operations.

Rapid7 InsightIDR is prominently used in security operation centers to manage events, detect threats, and respond effectively. Industries apply it for network behavior monitoring, compliance, and vulnerability management. Companies integrate it with security tools to boost threat investigation, ensuring full SIEM functionalities and robust log management capacities. Its application spans behavioral and intrusion analytics, aiding in monitoring and addressing malicious activities.

Rapid7

Rapid7 InsightVM provides advanced vulnerability scanning and remediation tracking with real-time data integration. Its intuitive interface supports both agent and agentless modes, enhancing cybersecurity by reducing exploitable vulnerabilities.

Rapid7 InsightVM integrates smoothly with existing security infrastructure, supporting detailed dashboards and reporting features for efficient risk scoring and vulnerability management. Users value its comprehensive asset tagging and the ability to prioritize vulnerabilities, appreciating host discovery capabilities. While InsightVM requires enhancements in reporting flexibility and patch management integration, and users seek improved support response times and extended security measures. Desired improvements also include greater integration with other tools and expanded dashboard customization.

What are the key features of Rapid7 InsightVM?
  • Vulnerability Scanning: Delivers detailed assessments of network vulnerabilities.
  • Risk Scoring: Provides efficient risk prioritization guided by detailed analytics.
  • Dashboards: Offers customizable, comprehensive metrics for insightful reporting.
  • Asset Tagging: Supports efficient asset management with intuitive tagging capabilities.
  • Host Discovery: Features robust host discovery for enhanced security coverage.
What benefits should reviews highlight?
  • Real-Time Data: Enables timely and accurate vulnerability management.
  • Intuitive Interface: Facilitates easier user interaction and quick access to vital functions.
  • Integration Capabilities: Seamlessly works with existing systems for enhanced security.
  • False Positives Reduction: Improves accuracy, minimizing reporting errors.
  • Comprehensive Insight: Provides valuable insights that aid in prioritization and remediation.

InsightVM's implementation spans several industries, offering robust solutions in vulnerability management, patch management, and cybersecurity compliance facilitation. Organizations leverage its capacity for comprehensive network monitoring and critical vulnerability visibility to enhance their cybersecurity posture.

Rapid7
 

Sample Customers

Liberty Wines, Pioneer Telephone, Visier
ACS, Acosta, AllianceData, amazon.com, biogen idec, CBRE, CATERPILLAR, Deloitte, COACH, GameStop, IBM
Buyer's Guide
Security Information and Event Management (SIEM)
April 2026
Download Free Report
Find out what your peers are saying about Splunk, IBM, Wazuh and others in Security Information and Event Management (SIEM). Updated: April 2026.
DOWNLOAD NOW
893,244 professionals have used our research since 2012.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.