Rapid7 InsightVM Pros and Cons

Rapid7 InsightVM Pros

Director of Cyber Security (CISO) at a marketing services firm with 201-500 employees
It is good and fits well with pretty much all of our use case needs.
You can bring in and get online to do reports fairly quickly,
View full review »
RW
IT Security Architect at a government with 1,001-5,000 employees
There are many integrations with things like the VMware NSX that are great, the reporting is really solid.
View full review »
MH
Owner at a tech services company with 1-10 employees
I liked the dashboard on it. I could customize my dashboard with different widgets and different heat maps.
View full review »
Learn what your peers think about Rapid7 InsightVM. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,307 professionals have used our research since 2012.
Technical Consultant at Yip Intsoi
The most important aspect of the solution is that it rarely gives false positives, especially compared to other products. It provides very clear reports for our IT teams to look at.
View full review »
HM
Information Security Senior Expert (Founding member, African Cybersecurity Center) at a financial services firm with 10,001+ employees
The most valuable feature for us is the different types of reporting it provides.
View full review »
JS
Director Of Information Technology at a government with 201-500 employees
The main functionality of identifying item endpoints that weren't properly patched or had vulnerabilities is the solution's most valuable feature.
View full review »
ES
Owner at Sidif Del Caribe Corporation
When you connect any new device to the network, Rapid7 has the ability to detect the new device immediately. It can scan that device to detect if it has any vulnerability. It tells you what is vulnerable and what has been misconfigured. It also tells you what is the risk of that misconfiguration or lack of patches and how to resolve the problem.
View full review »
MF
Infrastructure Security Architect at a comms service provider with 1,001-5,000 employees
The most valuable feature is the site scanning, where we can provide a complete subnet and what it is we need to scan on those devices.
View full review »
Security Analyst at Zavarovalnica Triglav, d.d.
This solution is very easy to use and easy to install.
View full review »
IS
Enterprise ICT Security Architect at a tech services company with 1-10 employees
We are very satisfied with the reports, as they provide us with the information that is required for our management.
View full review »

Rapid7 InsightVM Cons

Director of Cyber Security (CISO) at a marketing services firm with 201-500 employees
The product does not have the capability to do dynamic scanning of non-web applications.
Reporting could be expanded.
There are end-user needs and expectations that are being overlooked in the development that could be addressed by appointing a customer advisory board.
View full review »
RW
IT Security Architect at a government with 1,001-5,000 employees
Some difficulties with the online reporting and lack of integrations.
View full review »
MH
Owner at a tech services company with 1-10 employees
I would say that it improved our visibility, but it left things open.
View full review »
Learn what your peers think about Rapid7 InsightVM. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,307 professionals have used our research since 2012.
Technical Consultant at Yip Intsoi
There needs to be much clearer instructions surrounding scanning.
View full review »
HM
Information Security Senior Expert (Founding member, African Cybersecurity Center) at a financial services firm with 10,001+ employees
This solution integrates with another module in Metasploit, that doesn't exist in the other solutions. It is subscribed to on our roadmap, but we chose to implement both Nexppose and AppSpider.
View full review »
JS
Director Of Information Technology at a government with 201-500 employees
We found that after you passed an endpoint, it didn't always reflect it in the next scan. I'm not sure if it was a glitch or some issue with the product's software. That was never clear. That was always an issue and something that definitely needed improvement.
View full review »
ES
Owner at Sidif Del Caribe Corporation
In terms of improvements, its price could be better. Our main issue with Rapid7 is that it is too expensive. You can only sell it to enterprise accounts. In terms of new features, Rapid7 came up with a product called InsightIDR a couple of years ago, which is a good SIEM solution. We expect that Rapid7 will work on some sort of integration between InsightVM and InsightIDR, where vulnerability or anomaly detected by InsightVM can be reported in InsightIDR in some sort of real-time. Rapid7 doesn't patch. For example, if you have a vulnerability, some products can scan and also do the patching, but Rapid7 does not do the patching. It would be nice if it can also patch.
View full review »
MF
Infrastructure Security Architect at a comms service provider with 1,001-5,000 employees
The reporting is a little bit tricky because it can be difficult to exactly pinpoint some of the assets to filter them and generate a report.
View full review »
Security Analyst at Zavarovalnica Triglav, d.d.
It would be nice to have an additional feature that would provide reports on who has logged onto the console or who did what on the console.
View full review »
IS
Enterprise ICT Security Architect at a tech services company with 1-10 employees
There have been instances where technical support takes a long time to update the status of a ticket, which is something that can be improved.
View full review »
Learn what your peers think about Rapid7 InsightVM. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,307 professionals have used our research since 2012.