D3 Security vs. Rapid7 InsightConnect

D3 is clearly tailoring their approach to large organizations with a significant geographical footprint who are largely in need of a tool that provides robust analytics and activity graphing to analyze productivity and supervisory efficiency at the executive level. However, small to medium-sized organizations and those with narrow geographical footprints may find the investment vastly more expensive than the return. The implementation of minimum purchasing guidelines means that smaller departments will be forced into purchasing tools they have little to no use for, and medium-size departments will be paying a high price for features they do find helpful but could get elsewhere for a substantially lower price. Additionally, small to medium-sized users may find that D3's focus on large organizational level tools is less helpful than some smaller competitor's software which provides a number of capabilities with more operational relevance for environments like office buildings, college campuses, university police departments, and housing associations. Overall, I would recommend D3 to large organizations who have need of the advanced tools included in their more expensive modules. The lack of some smaller levels of customization, 1st line operational features, and the high-end user interface is less important at that level of implementation.

Incentivized

Where Rapid7 InsightConnect excels is in environments needing the whole suite of virus protection and monitoring. In our environment we use it to make sure we have visibility over all endpoints, servers, hosts, and clusters to make sure that there are no vulnerabilities being left unattended too. It is also best in large environments. Since there are many endpoints, the automation from Rapid7 helps manage them all in an efficient manner.

Incentivized

• Great Automation in incident response.
• Reduce complexity and security threats.
• Best SOAR security platform.

Incentivized

• The most significant difference is that we no longer have to examine endpoints and devices separately.
• The cost.
• The impact on the safety and efficiency of our business.

Incentivized

• A lack of documentation of the administrative interface.
• Additional training is needed to take advantage of all of the features.
• Remediation and post-incident activities are not supported.

Incentivized

• It would be great if Rapid7 InsightConnect could be configured based on pre determined specifications when installing the agent.
• We've noticed that at times, there are certain network parameters needed in order for Rapid7 to collect and report data efficiently.
• Sometimes there are issues with the discovery scan in Rapid7 making it hard to configure in the beginning.

Incentivized

It's incredibly easy to set up, to use, to detect threats. It's easy to change, tweek and very quick to resolve all issues

Incentivized

Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but for our environment, it made more sense to go with Rapid7.

Incentivized

• More stability in aggrieved systems.
• Drops in cyberattacks from early reports to 34%.
• Cost savings of 12% per year.

Incentivized

• The automation and integration we set up in the dev cycle helped us provide evidence in audits
• The automation and integration we set up in the dev cycle helped us fix vulns in our software prior to implementation thus increasing our security
• Automations save massive time and headache's between infosec and devs

Incentivized