Try our new research platform with insights from 80,000+ expert users

Rapid7 InsightIDR vs Trellix Endpoint Security Platform comparison

Rapid7 and Trellix are both solutions in the Endpoint Detection and Response (EDR) category. Rapid7 is ranked #23 with an average rating of 7.8, while Trellix is ranked #11 with an average rating of 7.8. Rapid7 holds a 1.2% mindshare in EDR, compared to Trellix’s 3.5% mindshare. Additionally, 96% of Rapid7 users are willing to recommend the solution, compared to 88% of Trellix users who would recommend it.
Rapid7 InsightIDR
Read 32 Rapid7 InsightIDR reviews
  • 6,954 Views
  • 2,017 Comparison Views
96% willing to recommend
Trellix Endpoint Security P...
Read 159 Trellix Endpoint Security Platform reviews
  • 9,873 Views
  • 6,516 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 21, 2025

Trellix Endpoint Security Platform and Rapid7 InsightIDR are competitors in the security platform category. Based on the data comparison, Trellix holds an advantage in centralized management and advanced threat scanning while Rapid7 excels in user behavior analytics and sophisticated threat detection.

Features: Trellix excels in centralized management, threat prevention, and integration with various security tools. It supports advanced threat scanning and containment. Rapid7 InsightIDR offers robust user behavior analytics, threat intelligence, and integration with cloud-based systems, excelling in sophisticated threat detection and log analysis.

Room for Improvement: Trellix needs to reduce resource consumption, enhance its user interface, and provide better support for non-Windows platforms. Rapid7 InsightIDR would improve with enhanced customization options for alerts, better integration with broader ecosystems, and improvements in dashboard usability and search functionalities.

Ease of Deployment and Customer Service: Trellix supports various deployment models including on-premises and hybrid cloud, offering flexibility though sometimes presenting complexity during setup. Rapid7 InsightIDR, being mostly cloud-based, allows straightforward deployment with easier infrastructure management. Trellix's customer support receives mixed reviews, whereas Rapid7 is praised for responsive and efficient service.

Pricing and ROI: Trellix Endpoint Security is seen as cost-effective despite higher pricing, offering strong ROI through protection capabilities and management efficiency. Rapid7 InsightIDR is competitively priced within the SIEM market, providing significant value with comprehensive threat detection and minimal infrastructure requirements. Both platforms deliver substantial ROI, with reported cost benefits from streamlined operations and improved security.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Rapid7 InsightIDR vs. Trellix Endpoint Security Platform Report (Updated: December 2025).
Buyer's Guide
Rapid7 InsightIDR vs. Trellix Endpoint Security Platform
December 2025
Download the complete report
Helped 881,733 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightIDR
Ranking in Endpoint Detection and Response (EDR)
23rd
Ranking in Extended Detection and Response (XDR)
18th
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
32
Ranking in other categories
Security Information and Event Management (SIEM) (14th), User Entity Behavior Analytics (UEBA) (8th), Threat Deception Platforms (4th)
Trellix Endpoint Security P...
Ranking in Endpoint Detection and Response (EDR)
11th
Ranking in Extended Detection and Response (XDR)
11th
Average Rating
7.8
Reviews Sentiment
7.2
Number of Reviews
159
Ranking in other categories
Endpoint Protection Platform (EPP) (7th)
 

Mindshare comparison

As of February 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Rapid7 InsightIDR is 1.2%, up from 1.0% compared to the previous year. The mindshare of Trellix Endpoint Security Platform is 3.5%, down from 4.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Market Share Distribution
ProductMarket Share (%)
Trellix Endpoint Security Platform3.5%
Rapid7 InsightIDR1.2%
Other95.3%
Endpoint Detection and Response (EDR)
 

Featured Reviews

SohailHyder - PeerSpot reviewer
SohailHyder
Head Of Cyber Security at Super Secure
Has supported compliance needs for mid-sized organizations but lacks customization and advanced integration
If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature sets of a complete SIEM solution. Most common in the market is QRadar, but it is depleting now. It has been taken over by some other products such as Splunk and LogRhythm. If we compare these things with Rapid7 InsightIDR, then there are definitely some gaps that need to be filled. Data retention is also one concern because Rapid7 InsightIDR is cloud-based and operates on a subscription model. Whatever data you want to retain, it has to be paid for separately or it has a cost. Other solutions that are on-premises can have their own infrastructure or they provide some data retention for a month or in some capacity-wise, they provide that solution to them which makes them more attractive.
Read full review
Abhimanyu Das - PeerSpot reviewer
Abhimanyu Das
Senior Associate at a tech vendor with 10,001+ employees
Threat detection is effective, and the solution provides good control over device access, but it still needs better troubleshooting options for agent-related issues.
From an improvement perspective, I am looking for a way to troubleshoot situations where the endpoint agent becomes corrupted and requires reinstallation, as there is currently no option to resolve these issues without rebooting the system. I give it a rating of seven because, in today’s scenario, the portal is complicated to navigate. The Trellix Endpoint Security Platform dashboard is somewhat difficult to understand, and it takes considerable time to familiarize oneself with the tools and policies compared to other solutions. For on-premises deployment, I would also like to highlight that the architecture is quite complex, which is an area Trellix Endpoint Security Platform should consider improving.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The biggest reason why we chose Rapid7 was to gain value in a really quick time. Its deployment doesn't take months. It just takes a few days."
"During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an application belongs to a known ransomware group. The system rates the threat, offering a clear detection ratio, such as 97 out of 100. It not only identifies threats but also illustrates the associated behaviors, helping us understand the potential risk to a particular endpoint."
"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."
"The solution is easy to use, and the interface is intuitive."
"InsightIDR’s ability to process millions of transactions per day, and to notify me of the most critical ones, is priceless. InsightIDR has the alerts tuned, and has the ability to quickly drill down to determine the threat level."
"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."
"Integration with threat modeling from the Metasploit and InsightIDR repositories."
"The solution's initial setup is easy."
More Rapid7 InsightIDR pros
"A great console with a user-friendly GUI."
"Would benefit with the addition of DLP features."
"The most valuable feature is user-based policy provision."
"The stability has been great."
"The DLP and user interface are the most valuable feature."
"It is easy to use, flexible, and stable. Because it is a cloud-based solution and it integrates all endpoints of the cloud, we can do an IOC-based search. It can search the entire enterprise and tell us the endpoints that are possibly compromised."
"The reporting capabilities are a valuable feature. In enables more visibility on our network."
"The solution is reliable."
More Trellix Endpoint Security Platform pros
 

Cons

"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."
"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."
"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."
"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."
"The ability to tune the collector for custom logs would greatly help."
"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."
"If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is."
"I feel it would greatly benefit from more supported log sources."
More Rapid7 InsightIDR cons
"Search feature could be made more user-friendly."
"The solution needs to work on memory consumption. It is too high."
"The endpoint has room for improvement because it's restrictive, it's very sensitive. Sometimes it can delete something that you need and so sometimes you have to disable the antivirus."
"There should be better integration between the ePolicy Orchestrator and FireEye console. The integration of both consoles should be better."
"I hope the solution can be used in cloud systems going forward."
"The DAC (Dynamic Application Containment) component of this product needs improvement."
"We’re facing remote installation issues sometimes:"
"Continued available training is important for people coming in to use it."
More Trellix Endpoint Security Platform cons
 

Pricing and Cost Advice

"The pricing is good, and it is not very expensive."
"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."
"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."
"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
"​Accurately predict your licensing counts as this is a subscription based product.​"
"The pricing and licensing are competitive."
"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help.​"
"It is a reasonably priced solution."
More Rapid7 InsightIDR pricing and cost advice
"The product pricing is high."
"Annual license fee is good"
"There's a subscription on a yearly basis. It's not that expensive; it's quite affordable."
"It is reasonably priced."
"It's fairly priced compared to other products on the market."
"When comparing the solution to others it is a bit expensive. We are on a monthly license."
"The current pricing is much better than before because they now offer product-related promotions along with some changes in product licensing. The new pricing model is better than before."
"Licensing is paid yearly."
More Trellix Endpoint Security Platform pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
881,733 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
12%
Financial Services Firm
9%
Manufacturing Company
8%
Government
7%
Manufacturing Company
13%
Government
12%
Financial Services Firm
8%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise5
Large Enterprise6
By reviewers
Company SizeCount
Small Business67
Midsize Enterprise36
Large Enterprise61
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What do you like most about Rapid7 InsightIDR?
During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightIDR?
The product pricing is very cheap.
See all answers
How does McAfee Endpoint Security compare with MVISION?
The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...
See all answers
How does Crowdstrike Falcon compare with FireEye Endpoint Security?
The Crowdstrike Falcon program has a simple to use user interface, making it both an easy to use as well as an effective program. Its graphical design is such that it makes an extremely useful too...
See all answers
What do you like most about McAfee Endpoint Security?
It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.
See all answers
 

Comparisons

Rapid7 InsightVM vs Rapid7 InsightIDR Logo
Rapid7 InsightVM vs Rapid7 InsightIDR
Compared 5% of the time
Microsoft Sentinel vs Rapid7 InsightIDR Logo
Microsoft Sentinel vs Rapid7 InsightIDR
Compared 5% of the time
Splunk Enterprise Security vs Rapid7 InsightIDR Logo
Splunk Enterprise Security vs Rapid7 InsightIDR
Compared 5% of the time
CrowdStrike Falcon vs Rapid7 InsightIDR Logo
CrowdStrike Falcon vs Rapid7 InsightIDR
Compared 4% of the time
Darktrace vs Rapid7 InsightIDR Logo
Darktrace vs Rapid7 InsightIDR
Compared 3% of the time
More Rapid7 InsightIDR Competitors
Microsoft Defender for Endpoint vs Trellix Endpoint Security Platform Logo
Microsoft Defender for Endpoint vs Trellix Endpoint Security Platform
Compared 7% of the time
CrowdStrike Falcon vs Trellix Endpoint Security Platform Logo
CrowdStrike Falcon vs Trellix Endpoint Security Platform
Compared 5% of the time
SentinelOne Singularity Complete vs Trellix Endpoint Security Platform Logo
SentinelOne Singularity Complete vs Trellix Endpoint Security Platform
Compared 5% of the time
Trellix Endpoint Detection and Response (EDR) vs Trellix Endpoint Security Platform Logo
Trellix Endpoint Detection and Response (EDR) vs Trellix Endpoint Security Platform
Compared 4% of the time
Tanium vs Trellix Endpoint Security Platform Logo
Tanium vs Trellix Endpoint Security Platform
Compared 3% of the time
More Trellix Endpoint Security Platform Competitors
 

Product Reports

Buyer's Guide
Rapid7 InsightIDR
January 2026
Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
Buyer's Guide
Trellix Endpoint Security Platform
January 2026
Trellix Endpoint Security Platform reportDownload Trellix Endpoint Security Platform product report
 

Also Known As

InsightIDR
McAfee Endpoint Security, McAfee Endpoint Protection, Intel Security Total Protection for Endpoint, McAfee Complete Endpoint Protection, Trellix Endpoint Security (ENS)
 

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Trellix Endpoint Security Platform offers essential features like centralized management, threat prevention, and encryption, facilitating seamless scaling and integration with other systems while prioritizing user security.

This comprehensive platform focuses on endpoint protection, antivirus capabilities, and malware defense. It enhances cybersecurity with data loss prevention, advanced threat detection, and AI-driven features for reliable protection without impacting performance. Central management and advanced reporting streamline integration and ease of use. Flexible policy deployment through the management console and its robust security measures, such as DLP and device control, further increase protection. Challenges include high CPU and memory usage affecting performance, a complex interface, and lengthy deployment. Third-party integration and Windows Hello support need improvement. Additional concerns involve improved threat detection and faster technical support responses.

What are the key features of Trellix Endpoint Security Platform?
  • Centralized Management: Allows seamless integration and scaling with consistent control across environments.
  • Threat Prevention: Provides comprehensive antivirus and malware protection to secure systems.
  • Encryption: Ensures data security with robust encryption techniques.
  • Advanced Reporting: Facilitates detailed insights and analysis for better decision-making.
  • AI-Driven Detection: Offers reliable threat detection without impacting system performance.
What benefits should users look for in reviews?
  • Comprehensive Protection: Offers extensive security measures for protecting digital environments.
  • Ease of Integration: Simplifies the process of incorporating into current systems and processes.
  • Flexible Policy Deployment: Supports adaptable policy management to meet diverse requirements.
  • Scalability: Enables growth while maintaining efficiency and security.
  • Robust Security Features: Provides advanced security measures like DLP and device control.

Trellix Endpoint Security Platform is widely implemented in industries such as banking and government for securing mobile and desktop devices. Its capabilities cover network security, device control, and remote access protection, catering to diverse environments by offering robust cybersecurity management against advanced threats.

Trellix
 

Sample Customers

Liberty Wines, Pioneer Telephone, Visier
inHouseIT, Seagate Technology
Buyer's Guide
Rapid7 InsightIDR vs. Trellix Endpoint Security Platform
December 2025
Free Report: Rapid7 InsightIDR vs. Trellix Endpoint Security Platform
Find out what your peers are saying about Rapid7 InsightIDR vs. Trellix Endpoint Security Platform and other solutions. Updated: December 2025.
DOWNLOAD NOW
881,733 professionals have used our research since 2012.
See our Rapid7 InsightIDR vs. Trellix Endpoint Security Platform report.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.