We just raised a $30M Series A: Read our story

Compare BMC TrueSight Vulnerability Management vs. Rapid7 InsightVM

You must select at least 2 products to compare!
Featured Review
Use BMC TrueSight Vulnerability Management? Share your opinion.
Zain Rehman
Find out what your peers are saying about Tenable Network Security, Rapid7, Morphisec and others in Vulnerability Management. Updated: November 2021.
552,305 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

"Takes reports from other vulnerabilities."

More BMC TrueSight Vulnerability Management Pros »

"It is good and fits well with pretty much all of our use case needs.""I have been in contact with technical support and they are not bad.""When you connect any new device to the network, Rapid7 has the ability to detect the new device immediately. It can scan that device to detect if it has any vulnerability. It tells you what is vulnerable and what has been misconfigured. It also tells you what is the risk of that misconfiguration or lack of patches and how to resolve the problem.""It's a relevant management tool.""The performance is good.""You can bring in and get online to do reports fairly quickly,""I liked the dashboard on it. I could customize my dashboard with different widgets and different heat maps.""There are many integrations with things like the VMware NSX that are great, the reporting is really solid."

More Rapid7 InsightVM Pros »

"No third-party applications or integrations with additional software solutions."

More BMC TrueSight Vulnerability Management Cons »

"The reporting is very bad when you compare it with other vulnerability assessment tools.""There have been instances where technical support takes a long time to update the status of a ticket, which is something that can be improved.""There needs to be much clearer instructions surrounding scanning.""We found that after you passed an endpoint, it didn't always reflect it in the next scan. I'm not sure if it was a glitch or some issue with the product's software. That was never clear. That was always an issue and something that definitely needed improvement.""Rapid7 could be easier to manage.""I would like to see more integration.""In terms of improvements, its price could be better. Our main issue with Rapid7 is that it is too expensive. You can only sell it to enterprise accounts. In terms of new features, Rapid7 came up with a product called InsightIDR a couple of years ago, which is a good SIEM solution. We expect that Rapid7 will work on some sort of integration between InsightVM and InsightIDR, where vulnerability or anomaly detected by InsightVM can be reported in InsightIDR in some sort of real-time. Rapid7 doesn't patch. For example, if you have a vulnerability, some products can scan and also do the patching, but Rapid7 does not do the patching. It would be nice if it can also patch.""The solution could improve by being more secure."

More Rapid7 InsightVM Cons »

Pricing and Cost Advice
Information Not Available
"The license is IP based. How many IPs you are using to scan is the amount of the license you have to buy. The number of users doesn't matter; many users can use it or only person. It depends on the culture of the organization.""The licensing is asset-based and very straightforward.""In some cases, we procure the licenses. In some cases, the customers directly buy the license from Rapid7.""Licensing fees are paid on a yearly basis.""Its price is too high. My only concern or issue with Rapid7 is its pricing.""Our licensing costs are somewhere around $40,000 annually. There are no additional fees.""Comparing the price with the value that we receive, I am not happy with it.""The license is annual and this is the optimal approach when it comes to most software."

More Rapid7 InsightVM Pricing and Cost Advice »

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
552,305 professionals have used our research since 2012.
Questions from the Community
Ask a question

Earn 20 points

Top Answer: You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. You can easily prioritize vulnerabilities using attacker analytics. Overall, Rapid7… more »
Top Answer: Using Rapid7, we can install a scan engine, we can do our VPN connections, and we can conduct internal scans of remote sites. We prefer the web application. It's smarter and more accurate from an… more »
Top Answer: The license could be a little bit cheaper. For all these features, you would expect to pay a little bit lower but around the same general price. Licenses are paid yearly. For some customers, we pay… more »
Average Words per Review
Average Words per Review
Also Known As
TrueSight Vulnerability Management, SecOps Response Service, BladeLogic Threat Director
InsightVM, NeXpose
Learn More

Helps security and IT operations teams prioritize and remediate risks based on potential impact to the business.

  • Powerful dashboards highlight vulnerability data, performance trends, and SLA compliance for quick prioritization of remediation tasks
  • Streamlined workflows combine scan verification and remediation tasks, leveraging BladeLogic Server Automation and Microsoft SCCM systems management
  • Blindspot awareness enables you to identify areas of your infrastructure which are not being monitored, leaving you exposed
  • Rapid import lets you quickly consume vulnerability scanning reports with native integration to Qualys, Tenable, and Rapid 7
  • Data export enables deep analysis and custom reports to help meet audit requirements and fuel process improvements

Rapid7 InsightVM is the vulnerability assessment tool built for the modern web. InsightVM combines complete ecosystem visibility, an unparalleled understanding of the attacker mindset, and the agility of SecOps so you can act before impact.

Learn more about BMC TrueSight Vulnerability Management
Learn more about Rapid7 InsightVM
Sample Customers
Online Business Systems
ACS, Acosta, AllianceData, amazon.com, biogen idec, CBRE, CATERPILLAR, Deloitte, COACH, GameStop, IBM
Top Industries
Computer Software Company35%
Comms Service Provider11%
Energy/Utilities Company4%
Computer Software Company21%
Insurance Company14%
Financial Services Firm14%
Comms Service Provider14%
Computer Software Company26%
Comms Service Provider19%
Financial Services Firm6%
Company Size
No Data Available
Small Business31%
Midsize Enterprise31%
Large Enterprise38%
Find out what your peers are saying about Tenable Network Security, Rapid7, Morphisec and others in Vulnerability Management. Updated: November 2021.
552,305 professionals have used our research since 2012.

BMC TrueSight Vulnerability Management is ranked 15th in Vulnerability Management with 1 review while Rapid7 InsightVM is ranked 2nd in Vulnerability Management with 19 reviews. BMC TrueSight Vulnerability Management is rated 7.0, while Rapid7 InsightVM is rated 8.0. The top reviewer of BMC TrueSight Vulnerability Management writes "Good features for infrastructure application; lacking in integrations with other software ". On the other hand, the top reviewer of Rapid7 InsightVM writes "Broad capabilities make this scanning solution able to cover a lot of ground". BMC TrueSight Vulnerability Management is most compared with Tenable SC, Qualys VM, Tenable Nessus and CyberGRX, whereas Rapid7 InsightVM is most compared with Tenable Nessus, Tenable SC, Qualys VM, Tenable.io Vulnerability Management and Microsoft Intune.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.