2018-04-22T07:58:00Z

What advice do you have for others considering Rapid7 InsightIDR?


If you were talking to someone whose organization is considering Rapid7 InsightIDR, what would you say?

How would you rate it and why? Any other tips or advice?

Guest
33 Answers

author avatar
Top 10Real User

On a scale from one to ten where one is the worst and ten is the best, I would rate this product as a nine-out-of-ten. It is very good but it could be better with a few details that would improve the utility of the investigations interface.

2020-01-07T06:27:00Z
author avatar
Real User

Have a plan going forward (Syslog exports, agent-based collection, etc.) and ensure WMI is available if using Windows Servers. It was very easy to set up, but troubleshooting can be "fun" if an endpoint doesn't connect correctly. Don't be shy of support requests. They'd rather you be "that person" that keeps getting support, rather than being the one that ran into an issue and stopped using the product.

2018-10-02T19:05:00Z
author avatar
Real User

You should use it to drive change within your IT from a security point of view. Run a PoC and see exactly what it can do for you. The simple setup means it will be running in no time and you will get meaningful alerts straight away.

2018-04-22T07:58:00Z
Find out what your peers are saying about Rapid7, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: October 2020.
442,141 professionals have used our research since 2012.