BlackBerry UEM vs. ManageEngine Endpoint Central vs. Rapid7 InsightVM

If you want to connect securely, connect the mobile android or iOS devices to your network for communication purposes, where you have control over all the devices, who can access the network and remove the corporate data from those same devices if the need arises.

Incentivized

ManageEngine Endpoint Central is very well suited to most kind of patches, updates, and software deployments. It's able to quickly recognize and update third-party software whenever a new security vulnerability is discovered, and it's able to do this for you automatically. The remote connection and management features allow us to begin troubleshooting immediately once a user reports an issue, regardless of whether or not they're working on-campus or from home. A ticket that might have taken a few days to close out now takes no longer than a couple minutes. If you use Mac, the remote connection feature requires the user to allow Endpoint Central through their system's Security/Privacy settings. This step can be difficult for your less tech-savvy users. You can remotely and silently access a computer's task manager, registry, and command prompt, which is incredibly useful. This saves us a ton of time on having to contact the user and schedule a meeting. The only complaints I have about these management features are that the UI is a little bare bones, and it occasionally has minor problems with responsiveness.

InsightVM is great for finding all devices on your network and where the misconfigurations exist. We all have to patch our systems and applications, but it can be difficult to keep track of which systems are up to date. This tool is very helpful in filling in this gap and helping you organize that information. It is easy to get a big picture view of how your organization is doing from a vulnerability perspective, and it is equally as easy to drill down and get specific details that you need. Prioritization is crucial when it comes to this space, because you can never address every vulnerability, so you need to make sure the highest priority items are being remediated. R7's tool excels in this area and highlights items you weren't even aware of.

Incentivized

• Security and Web Filtering are easy to set up and maintain
• Initial set up and install of company profile onto Android/iOS devices

Incentivized

• We set alerts when a devices gets low on disk space. That is automatic and creates a ticket in ME SDP. We are then able to Add space to a VM Desktop, and then go thru ManageEngine Endpoint Central to extend the drives so the entire process can be done without interruption to the end user.
• Using the patch scans we can easily see what patches have been installed for all manufacturers not just Microsoft, without having to physically go to the device. It also allows us to choose which patches we want to push out and automate the process so we can be hands off, freeing up out time for other things.
• Remote access to devices. This allows us to remotely make changes, not just via remote control but also make registry changes and clean up space without going to the device and without interruption to the end user.
• Alerts. We have set up to get email alerts when new hardware is plugged into any computers. This lets us know if someone is bringing in un-authorized equipment (thumb drives, hubs, etc) to better manage what is/is not on our network.

Incentivized

• Rapid7 InsightVM is good at agentless scanning.
• Rapid7 InsightVM integration with ServiceNow works very well.
• Rapid7 InsightVM scales very well with deploying scan engines. It can be used in large organizations.
• The user interface of Rapid7 InsightVM is very intuitive and user friendly. It is easy to use.

Incentivized

• One thing which is annoying to me is that after every 5-10 minutes, I need to log in again with my credentials to access emails. It could be from a security perspective but in that case the auto log out time should be user configurable.
• It's not possible to save or forward attachments from my inbox on my device
• Good does allow for synchronizing of contacts in your personal corporate email address book to your personal device address book.

• The remote CLI/PowerShell interfaces should support tab completion and command history like the real-world versions
• Remote control could work better
• Having a standalone application, even if just a Java app or something for the remote control/remote command line versus running it out of a web browser

Incentivized

• From my experience of using this tool, sometimes it gives more false positives. A few times I had performed the scan on the same IP address using QualysGuard and Nexpose, but after comparing the scan results I had found that QualysGuard had provided more accurate vulnerability information.

Incentivized

I will renew use of this product for as long as the company supports its use.

ManageEngine is considered an excellent product due to its comprehensive suite of solutions for IT management, with ManageEngine Endpoint Central specifically excelling in endpoint management. The platform stands out for its user-friendly interface, robust features, and versatility in addressing diverse IT needs. It offers organizations a centralized solution for endpoint security, patch management, software deployment, and asset management

I gave this rating because ManageEngine Endpoint Central is reliable, easy to use, and delivers strong value for money. It helps us save time through automation and effectively handles patching, remote support, application management, BitLocker security, and corporate data wipe. Although cloud DLP support is limited, the overall performance and stability fully justify the rating.

While I think it is a great tool and platform, I believe it (like all tools and solutions) is always evolving and the needs for clients are changing as the industry evolves and threats are upgraded. Cost is good, and support is helpful. Some things could be more granular and others could be easier to understand

Incentivized

If you have a serious issue with your on-premise installation, access to support can take a bit to get someone on the phone, and it can take some time to rectify, given the complexity of the software. In my experience, the support team does get you back up and running in critical scenarios, but you more than likely will be on some marathon calls, unless it is a very simple and known issue.

Incentivized

The immediate chat support is great and very helpful. However, if you need escalated support or have a deeper need that the chat tool can't help with, you will experience significant wait times and slow responses. The time zone difference becomes painful to the point of often just giving up.

I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response.

Incentivized

It seems that the services offered with the purchase change from what is covered to what is an additional cost. Somethings I thought we had ended up requiring an additional purchase if we wanted to continue using the feature.

Incentivized

Well, selecting Good was an organization level decision and not my personal one. I like Good from the security perspective and that it helps our IT department avoid worrying about data theft. Otherwise, from the perspective of user convenience, Outlook scores way over Good with it's real time delivery of email, real time syncing and a host of other features

This works great. It is super easy to setup automated patching and the patching actually works. When using Solarwinds, we would have to regularly troubleshoot machines and figure out why they were not patching. This is not the case with ManageEngine Endpoint Central. We have seen a significant decrease in number of troubleshooting hours since moving.

Incentivized

Rapid7 InsightVM is a more professional tool than Nessus because historically, it was based on metasploit which is a powerful pentesting and exploiting tool. InsightVM covers more attacking scenarios and vulnerabilities than competitors and still a leader in this domain.cloud capability is also not available forNesuus and some other products. Rapid7 InsightVM is a way better as a pentesting tool in my opinion

Incentivized

• Security profiles have been effective in managing user devices.
• Location tracking has helped locate lost and stolen devices.

Incentivized

• We have been able resolve and complete any requests which include things like software deployment or issues that include troubleshooting, much faster and more efficiently. This has had a sharp decrease in our response times and also time it takes to complete these requests or incidents.
• The mobile device management features have allowed us to be able to have a much tighter grip on security. This means we have dramtically decreased our device vulnerabilities and risk of data breaches. This has saved us lots of time and money.
• The remote features that are available have helped a lot with user's being able to work remotely and allow our organisation to sustain hybrid work. It means user's can still be as productive and IT support is as efficient no matter where the user is working.

• After spending 2 years configuring, tuning, troubleshooting, and ultimately having nothing but regrets, we migrated away from the tool and accepted the loss.
• Support had a variety of opinions, none of them consistent. No best practices. Lots of secret tricks known by support, none documented or shared until after problems are found.
• Consulting services are available to come out and do a health check of your deployment, for a fee.

Incentivized