We performed a comparison between Rapid7 InsightVM and Skybox Security Suite based on real PeerSpot user reviews.
Find out in this report how the two Risk-Based Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's very scalable."
"The solution is very user friendly and easy to manage."
"The reports in Rapid7 InsightVM are useful when compared to competitors."
"Has great reporting features."
"The product's initial setup phase was very easy."
"It's easy to use. It's fast, it's a powerful easy to access tool."
"The solution is good because it has a lot of options."
"When it comes to the process, installation is very easy and does not take long."
"It's very supportive and very user-friendly."
"The most valuable feature is the compliance, whether it's access compliance or the configuration compliance, to make sure that all of our devices are configured as they're supposed to be, to limit access as much possible, to follow least-access guidelines."
"Key features for us include the firewall change audit every week. Also, being able to track firewall ACL usage, so that we can produce semiannual reports on ACL usage and shadowed and redundant rules on the firewall."
"Security review is the most important feature, because it offers a single pane of glass to analyze multiple firewalls."
"We are currently working on rule review and compliance. The logging features are good."
"The solution's most valuable and unique assets are the vulnerability management and change management solutions because they identify mistakes in the network before implementation which reduces risks."
"The ability to appropriately prioritize vulnerabilities inside the environment, and then to have visibility into the traffic and rule sets of an organization, are two of the top capabilities that I recommend. Skybox is the only one that does both of those in a single platform."
"The product's most valuable feature is vulnerability management."
"We have some issues with how it scans patches."
"They should improve the cybersecurity feature of the solution."
"They should integrate the solution with multiple products."
"The solution should include a tighter integration with third-party threat modeling and threat intelligence tools."
"Within InsightVM, there is no feature to assign a ticket. If we can have more API calls, we can do that from InsightVM."
"Some of our customers want to be completely cloud based, and Rapid7 doesn't offer this as an option."
"Patch management is the only missing feature I can think of. Rapid7 detects vulnerabilities, but it should also help you manage patches."
"The team needs to improve the speed and focus on the new bandwidth feed. Sometimes, it takes a while to scan, especially with new updates."
"The initial setup with Skybox Security is hard. You need one or two strong security engineers on your team."
"If anything could be improved it would be staying on top of the collector scripts, but I understand that's a very tough challenge."
"Skybox Security Suite's attack surface management feature needs improvement."
"Change Manager can be improved. If they can improve Change Manager so that whatever we want to do on a firewall, we are able to do it through Change Manager, it will be helpful for us. Whenever we are doing a change, it only does them at an L3 and L4 level, but all the firewalls are at the application layer. So, whatever needs to be done on the firewall, we aren't able to get it done through Change Manager. Currently, this functionality is not there because of which we are sometimes losing customers. I can create a role on Layer 3, Layer 4, but when it comes to the application layer, such as configuring and defining URLs or other things at the application level, it can't be done through Change Manager. Customers demand that they should be able to do everything through Change Manager. They don't want to do it through some other mechanism to accomplish their complete change management policy. They don't want to use a firewall manager because sometimes, they don't have any manager. They ask if they can use our solution so that a manager is not required. If Change Manager can do all the management automatically without involving any other manager, it will be great. They can also provide better integration with other managers so that everything can be done through a central point."
"Reporting. A lot of the reports, out of the box, are limited to a certain number of either configuration violations or access rule violations. So when you first set up a new firewall to be monitored by Skybox, you don't get a real full report. You have to really tweak it to get everything."
"The price could be cheaper."
"I've had issues with licensing where, when they were expiring and I asked for the updated licenses, I would the wrong ones. I think their process needs to be straightened out a little bit - I don't know if they fixed it already, it has been awhile. It wasn't as straightforward as it could have been."
"The solution needs improvement in firewall configuration checks. I would also like to see more configuration checks for Forcepoint and for other non-supported firewalls."
Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews while Skybox Security Suite is ranked 18th in Vulnerability Management with 34 reviews. Rapid7 InsightVM is rated 8.0, while Skybox Security Suite is rated 7.8. The top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". On the other hand, the top reviewer of Skybox Security Suite writes "Efficient in vulnerability management, stable and easy to use ". Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Rapid7 InsightIDR, whereas Skybox Security Suite is most compared with AlgoSec, Tufin Orchestration Suite, FireMon Security Manager, Palo Alto Networks Panorama and Cisco Vulnerability Management (formerly Kenna.VM). See our Rapid7 InsightVM vs. Skybox Security Suite report.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.