We performed a comparison between CyberGRX and Rapid7 InsightVM based on real PeerSpot user reviews.
Find out what your peers are saying about RSA, AuditBoard, Trend Micro and others in GRC."The interface is simple to use."
"The pricing is reasonable."
"InsightVM offers a robust platform for identifying, prioritizing, and addressing vulnerabilities across an organization's IT infrastructure."
"The remediation project is a pretty effective because it allows us, as clients or countries, to choose specific assets and set limitations on them for a certain period which allows us to track and follow up on those limitations. However, when it comes to real-time monitoring and live dashboards, InsightVM doesn't quite fit the bill. It's not a real-time solution and is not instant."
"The solution is good because it has a lot of options."
"InsightVM's most valuable feature is risk scoring, a formula based on different vectors like the ease of exploitation and the availability of the machine."
"Using Rapid7, we can install a scan engine, we can do our VPN connections, and we can conduct internal scans of remote sites. We prefer the web application. It's smarter and more accurate from an application perspective."
"The most valuable features of Rapid7 InsightVM are the accurate level of scanning and the workflows are good."
"It's a relevant management tool."
"There are not many partners for this product in India, which makes the OEM very difficult to reach."
"The integration with other solutions like JIRA could be better. Perhaps there could be some additional updates in the next phase that could integrate with it, so then you can proceed with the VT much easier."
"Their customer support should be improved, and the effectiveness of scans also needs to be improved."
"In terms of improvements, its price could be better. Our main issue with Rapid7 is that it is too expensive. You can only sell it to enterprise accounts. In terms of new features, Rapid7 came up with a product called InsightIDR a couple of years ago, which is a good SIEM solution. We expect that Rapid7 will work on some sort of integration between InsightVM and InsightIDR, where vulnerability or anomaly detected by InsightVM can be reported in InsightIDR in some sort of real-time. Rapid7 doesn't patch. For example, if you have a vulnerability, some products can scan and also do the patching, but Rapid7 does not do the patching. It would be nice if it can also patch."
"The reporting is a little bit tricky because it can be difficult to exactly pinpoint some of the assets to filter them and generate a report."
"The solution should include a tighter integration with third-party threat modeling and threat intelligence tools."
"There are certain limitations because of the product being used on a hybrid model. Rapid7 InsightVM doesn't offer a solution purely in the cloud."
"The on-premise updates could improve from Rapid7 InsightVM."
"Some difficulties with the online reporting and lack of integrations."
Earn 20 points
CyberGRX is ranked 61st in GRC while Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews. CyberGRX is rated 6.0, while Rapid7 InsightVM is rated 8.0. The top reviewer of CyberGRX writes "Scales well and technical support is good, but it is expensive". On the other hand, the top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". CyberGRX is most compared with SecurityScorecard, whereas Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Wiz.
We monitor all GRC reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.