Rapid7 InsightConnect Reviews

Rapid7 InsightConnect is usually used for integrations. There are tons of different integrations we use, such as antivirus modules, ticketing systems like Jira, ServiceNow, and plenty of others. In most cases, it functions as an automation tool.

Rapid7 InsightConnect has great features, particularly easy and straightforward deployment. It is quite easy to provide simple information and very easy to connect to, so you don't need to be a senior or have a senior background. It is pretty straightforward, and even a junior will have the ability to deal with it.

The person doesn't need in-depth technical skills to start using Rapid7 InsightConnect.

This is a significant advantage.

Support for Jira could be improved because currently, Jira is only supported in the cloud version. It would be a great idea to support Jira Data Center versions too since Atlassian announced that Jira Server has become end-of-life over a year ago. The connection with Data Center Jira is not super stable, so the Jira Data Center connector should definitely be improved.

In future updates of Rapid7 InsightConnect, it would be really great to have some advanced capabilities for connectors. For example, if the tool is using an API, we could write code to give more flexibility for engineers to set up different integrations, even for solutions that are not available in the existing integrations. That would definitely be a significant advantage.

My overall experience with Rapid7 InsightConnect is around one year, perhaps a bit more, maybe one and a half.

Regarding technical support for Rapid7 InsightConnect, they are pretty great. Sometimes it is not always super easy to achieve support for feature requests, but for simple bugs or inquiries, they are quite collaborative and provide a lot of assistance quite quickly.

For simple bugs or inquiries, they helped resolve my issues without any hardships.

Positive

I have great experience with InsightVM and InsightCloudSec. For InsightOps and Rapid7 AppSpider I know only few things about these tools.

It is not so difficult to deploy Rapid7 InsightConnect. The deployment is pretty straightforward because it is a cloud portal of Rapid7. That is why it is not a complicated task.

Approximately how much time I spend on the deployment of Rapid7 InsightConnect depends on which tools I am going to use within it. If I am talking about some custom basic deployment with connectors such as Jira or ServiceNow, it is straightforward, taking around up to one day. If we exclude network requests, it will be even faster, perhaps a few hours.

Integrating Rapid7 InsightConnect with existing security tools must definitely provide some kind of advantage if you are not already using other tools for automation. It depends on the organization because quite a lot of them are trying to focus on open-source tools available or just writing their own Python scripts or simple automation. Overall, it should be a great idea to connect Rapid7 InsightConnect with other tools from well-known third-party vendors.

Alerting on Rapid7 InsightConnect was not used in our case.

On a scale from one to ten, I would rate the technical support of Rapid7 an eight.

I will elaborate a bit on why not ten. First of all, it would be a really great idea to provide more flexibility for customers to create their own integrations, such as ticketing systems. The second thing is that they are not always focused on delivering integrations with the latest major versions of the tools. This is not always their stronger point. They are not so proactive with supporting all major upgrades, which could be complicated due to the number of third-party software integrations. It is quite a task to keep up with all these changes.

My overall rating for Rapid7 InsightConnect is seven out of ten.

We are using Rapid7 InsightConnect in a partner model, operating as a service provider. We buy licenses under World Data Direct and distribute them internally, acting as an MSSP.

InsightIDR's Attacker Behavioral Analytics (ABA) and User and Entity Behavior Analytics (UEBA) features have been very useful in maintaining our security posture. Automated workflows and playbooks in InsightConnect reduce the SOC analyst's overhead, improving efficiency and reducing operational costs.

The GUI needs improvement, as creating workflows can be cumbersome. More updated plugins are needed to leverage existing functionalities, such as APIs for functions like blocking malicious IPs in FortiGate.

I have been using Rapid7 InsightConnect for six years.

The support for InsightConnect and InsightAppSec is very good. However, I am not very satisfied with the InsightIDR support. 

Overall, if I rate the support out of ten, it would be eight for InsightConnect and InsightAppSec.

Positive

We had a POC with multiple SOAR solutions, including FortiSOAR, Splunk Phantom, and CrowdStrike Fusion.

Compared to other SOAR solutions, the pricing is reasonable as Rapid7 provides it as a bundle called InsightIDR Ultimate, with unlimited workflows.

We evaluated FortiSOAR, Splunk Phantom, and CrowdStrike Fusion.

Based on my user experience, I would recommend InsightConnect for its user-friendly interface and excellent documentation. 

I rate InsightConnect eight out of ten.

I design workflows and integrate various processes using Rapid7 InsightConnect. This includes integrating with value management and packaging and incorporating InsightVMware performance through Rapid7 InsightConnect.

The product is user-friendly. Customers are familiar with its usage.

The technical support should be improved.

The tool is stable.

I haven't used any other solutions. Presently, my company uses Rapid7 InsightConnect, and that's why I'm using it.

The initial setup is straightforward. We have deployed it on the cloud. The deployment process doesn’t take much time.

Overall, I rate the solution an eight out of ten.

We use InsightConnect as a security orchestration automation and response solution. We are system integrators and resellers. I'm the company CTO. 

The most valuable feature, in my view, is the security orchestration and the automation AI features.

The solution really needs better integration. 

I've been using this solution for four years. 

The solution is stable.

The solution is scalable.

We have premium support and Rapid7 gives us a dedicated team and phone number so we can reach out whenever there is an issue. They are very responsive. 

We used to use Qualys and we then brought in Rapid7 for a number of IOT support services that they have. Rapid7 is the better product because of its features, capabilities, integration, and support.

The initial setup is not straightforward. It requires some experience and some trained personnel. Once it's up and running, it's fine. We have around 250 users. 

We had an ROI of somewhere around 60% within the first nine months. 

The licensing costs are reasonable. 

It's important to allocate sufficient time for training, learning about the package, configuring it, and then doing an internal detail ecosystem investigation on what you have and a transition from the previous solution through to the new one. In other words, you need to allocate enough time for migration because it's tricky.

I rate this solution nine out of 10.