We performed a comparison between Rapid7 InsightVM and SecurityScorecard based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Qualys, Rapid7 and others in Risk-Based Vulnerability Management."InsightVM's best features are the vulnerability database and remediation steps."
"The discovery and prioritization of vulnerabilities."
"The most valuable features are its reporting capabilities and the host discovery functionality."
"The most valuable feature is the site scanning, where we can provide a complete subnet and what it is we need to scan on those devices."
"It is a stable solution."
"It's a relevant management tool."
"The risk score that they provide makes it easier to find out the biggest risks. It helped the security officers to understand where the biggest risks are so that they can act on them. They can instruct their IT teams to give them a higher priority and mitigate them."
"When you connect any new device to the network, Rapid7 has the ability to detect the new device immediately. It can scan that device to detect if it has any vulnerability. It tells you what is vulnerable and what has been misconfigured. It also tells you what is the risk of that misconfiguration or lack of patches and how to resolve the problem."
"The solution helps identify our environment's vulnerabilities."
"One of its most effective features for risk identification is its enterprise-ready automation for third-party risk measurements."
"With its automated approach, nothing is missed on the IPs your organization is related to."
"I rate the product's initial setup phase a nine on a scale of one to ten, where one is a difficult setup phase, and ten is an easy setup process."
"Rapid7 InsightVM could be easier to use for those who are using it for the first time."
"The reporting is a little bit tricky because it can be difficult to exactly pinpoint some of the assets to filter them and generate a report."
"This solution creates false-positives which can cause issues with reporting."
"This solution integrates with another module in Metasploit, that doesn't exist in the other solutions. It is subscribed to on our roadmap, but we chose to implement both Nexppose and AppSpider."
"There are end-user needs and expectations that are being overlooked in the development that could be addressed by appointing a customer advisory board."
"It would be great to have a mobile application client. Currently, you have to use a mobile web browser on a device, but it is not similar to the desktop web browser in terms of user experience. It would be nice to have a mobile application to access the platform."
"In terms of improvements, its price could be better. Our main issue with Rapid7 is that it is too expensive. You can only sell it to enterprise accounts. In terms of new features, Rapid7 came up with a product called InsightIDR a couple of years ago, which is a good SIEM solution. We expect that Rapid7 will work on some sort of integration between InsightVM and InsightIDR, where vulnerability or anomaly detected by InsightVM can be reported in InsightIDR in some sort of real-time. Rapid7 doesn't patch. For example, if you have a vulnerability, some products can scan and also do the patching, but Rapid7 does not do the patching. It would be nice if it can also patch."
"They should improve the cybersecurity feature of the solution."
"There could be more information in regards to solving problems like hints on what specifically to look for."
"SecurityScorecard's technical team's response time is an area that my company expects to be made faster."
"They could improve the process with a questionnaire module for the product."
"The tool needs to have the ability to mitigate vulnerabilities with alternative solutions."
Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews while SecurityScorecard is ranked 5th in IT Vendor Risk Management with 4 reviews. Rapid7 InsightVM is rated 8.0, while SecurityScorecard is rated 8.0. The top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". On the other hand, the top reviewer of SecurityScorecard writes "Easy-to-deploy product with good technical support services ". Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Wiz, whereas SecurityScorecard is most compared with Bitsight Third-Party Risk Management, Recorded Future, RiskRecon, Tenable Nessus and Black Kite.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.