We performed a comparison between Rapid7 InsightVM and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Qualys, Rapid7 and others in Risk-Based Vulnerability Management."The most valuable feature is the site scanning, where we can provide a complete subnet and what it is we need to scan on those devices."
"The solution scales well."
"The product is scalable."
"NeXpose is a pretty good vulnerability scanner... There's a nice dashboard."
"This solution is very easy to use and easy to install."
"We are very satisfied with the reports, as they provide us with the information that is required for our management."
"I really love the new platform. It is really easy to understand, use, and deploy."
"The solution is very user friendly and easy to manage."
"The most valuable feature of Splunk Enterprise Security is the comprehensive logging capabilities it provides."
"There are a lot of third-party applications that can be installed."
"Splunk works based on parsing log files."
"Three features stand out for me: the SDK for writing Python, the customizable and adaptable diagnostic dashboard, and the optimizer for collecting data."
"The solution has proven to be quite stable."
"On the cloud, we are pushing through less than half a petabyte of data. So far, it has been fairly stable because it runs on all the underlying AWS infrastructures."
"The flexibility of the solution is quite good."
"The SIEM is the most valuable feature of the product."
"In terms of improvements, its price could be better. Our main issue with Rapid7 is that it is too expensive. You can only sell it to enterprise accounts. In terms of new features, Rapid7 came up with a product called InsightIDR a couple of years ago, which is a good SIEM solution. We expect that Rapid7 will work on some sort of integration between InsightVM and InsightIDR, where vulnerability or anomaly detected by InsightVM can be reported in InsightIDR in some sort of real-time. Rapid7 doesn't patch. For example, if you have a vulnerability, some products can scan and also do the patching, but Rapid7 does not do the patching. It would be nice if it can also patch."
"There is room for improvement on its cloud side. In the next release I would like to see better reporting."
"There are not enough templates, and the reporting is weak with this solution."
"The reporting has room for improvement. You cannot customize any report. If I need a specific requirement, I have to create a new report for it."
"Within InsightVM, there is no feature to assign a ticket. If we can have more API calls, we can do that from InsightVM."
"There is a significant learning curve, that non-technical individuals, especially those not specialized in computer science or the information security industry, might face."
"Reporting could be expanded."
"The drawback is that it is still not a fully SaaS solution, so you must deploy a console."
"Custom visualizations are real hard. While the default visualizations are good, creating enhanced visualizations are complex."
"Better directions on search head clusters."
"The only improvement I am expecting is the cost of the licensing. Clients are going to other solutions just because of the cost."
"There is improvement needed when importing from some types of data sources."
"Its user interface for everything other than the charts can be improved. Some parts of it can be simplified a bit, such as when importing documents that have the network traffic. When you're going through the information about the network traffic, you have to have the expertise, but even if a program is supposed to be for IT support, it is good to make it user-friendly because it gets easier to train people. When something goes wrong, the more difficult a program is in terms of UI, the harder it is to fix the issue."
"The solution could improve by making it more business analysis oriented. The way it is now is designed more for developers."
"The solution could improve by increasing the performance. We have run into problems when large amounts of data are processed."
"Most of my interaction is with the user community, which is how Splunk wants it. When I need help, that community is very hit or miss."
Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews. Rapid7 InsightVM is rated 8.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Wiz, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.