IBM Security QRadar SOAR vs. Rapid7 InsightVM

Rapid7 InsightVM

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
IBM Security QRadar SOAR	Score 8.5 out of 10	N/A	IBM Security® QRadar® SOAR is designed to help your security team respond to cyberthreats with confidence, automate with intelligence and collaborate with consistency. It guides your team in resolving incidents by codifying established incident response processes into dynamic playbooks.	N/A
Rapid7 InsightVM	Score 8.2 out of 10	N/A	InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also offers advanced remediation, tracking, and reporting capabilities not included in Nexpose.	$19 per GB

Pricing

IBM Security QRadar SOAR

Rapid7 InsightVM

Editions & Modules

No answers on this topic

Log Management: $19
per GB
Vulnerability Management: $22
per asset
insightIDR: $52
per asset
Application Security: $2,000
per app
insignConnect: Contact sales team

Offerings

Pricing Offerings
IBM Security QRadar SOAR	Rapid7 InsightVM
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

Usage-based pricing: This simple, scalable option allows starting small with an initial users and capabilities and scaling up as more users are added, as well as capabilities and data. Enterprise-wide pricing: This option is based on either the size of the enterprise-wide IT infrastructure or the size and type of data sources being secured.

—

More Pricing Information

Explore pricing

Community Pulse
	IBM Security QRadar SOAR	Rapid7 InsightVM
Considered Both Products	IBM Security QRadar SOAR Verified User Analyst Chose IBM Security QRadar SOAR Better log sourcing Incentivized Helpful?	Rapid7 InsightVM No answer on this topic
Top Pros	Pro Take action Pro Customer support Pro Team support	Pro Easy to use Pro Generate reports Pro Easy and useful
Top Cons	Minus Useful data Minus Customer service Minus Data reports	Minus False positives Minus Ticketing system Minus Higher level

Features

IBM Security QRadar SOAR

Rapid7 InsightVM

Threat Intelligence

Comparison of Threat Intelligence features of Product A and Product B
	IBM Security QRadar SOAR - Ratings	Rapid7 InsightVM 8.4 3 Ratings 3% above category average
Network Analytics	00 Ratings	8.33 Ratings
Threat Recognition	00 Ratings	8.03 Ratings
Vulnerability Classification	00 Ratings	8.33 Ratings
Automated Alerts and Reporting	00 Ratings	8.73 Ratings
Threat Analysis	00 Ratings	8.33 Ratings
Threat Intelligence Reporting	00 Ratings	8.52 Ratings
Automated Threat Identification	00 Ratings	8.33 Ratings

Vulnerability Management Tools

Comparison of Vulnerability Management Tools features of Product A and Product B
	IBM Security QRadar SOAR - Ratings	Rapid7 InsightVM 8.3 3 Ratings 1% below category average
IT Asset Realization	00 Ratings	8.03 Ratings
Authentication	00 Ratings	8.33 Ratings
Configuration Monitoring	00 Ratings	8.73 Ratings
Web Scanning	00 Ratings	8.33 Ratings
Vulnerability Intelligence	00 Ratings	8.33 Ratings

Best Alternatives
	IBM Security QRadar SOAR	Rapid7 InsightVM
Small Businesses	No answers on this topic	ThreatDown, powered by Malwarebytes Score 8.7 out of 10
Medium-sized Companies	Splunk SOAR Score 8.3 out of 10	CrowdStrike Falcon Score 9.1 out of 10
Enterprises	Palo Alto Networks Cortex XSOAR Score 8.5 out of 10	CrowdStrike Falcon Score 9.1 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	IBM Security QRadar SOAR	Rapid7 InsightVM
Likelihood to Recommend	8.5 (13 ratings)	8.7 (11 ratings)
Likelihood to Renew	8.0 (1 ratings)	- (0 ratings)
Usability	8.0 (1 ratings)	- (0 ratings)
Support Rating	6.0 (1 ratings)	7.2 (2 ratings)

User Testimonials
	IBM Security QRadar SOAR	Rapid7 InsightVM
Likelihood to Recommend	IBM IBM Security QRadar SOAR is versatile. All the major players in SOAR field require the administrator to have coding experience but with IBM it is different. IBM's solution is a full-fledged automation solution, and not some threat-based or limited one. Meaning whatever comes to your mind, if you can write the code, you can do it. This goes from daily tasks from SOC to daily tasks of your network or security administrator or any other administrator. You can manage your ITSM solution if you want to, IBM is a playground and there is much to discover in its capabilities. If you do not have the knowledge or if you want a SOC/Threat Based SOAR solution, meaning you want automation but you want it to be limited to an area and out-of-box, you may choose other alternatives. Incentivized Verified User Anonymous Read full review	Rapid7 Rapid7 InsightVM is perfect for a scenario where IT admin or CISO wants to scan its infrastructure to be sure that there is no vulnerability that could be exploited from outside or inside the company. It also could be used to automate patching and dealing with vulnerabilities. It's also adapted for users that need cloud security management Incentivized Verified User Anonymous Read full review
Pros	IBM QRadar's ability to collect, analyze and normalize vast amount of security data from various sources is remarkable. QRadar allows us to define and automate incident response playbooks which have been amazing for streamlining the response to security incidents. It offers and extensive library of pre-built connectors and support for common security standards facilitating seamless integration with a wide range of security tools. Incentivized SJ Sarah Jones CMO (Chief Marketing Officer) Read full review	Rapid7 Being a vulnerability scanner tool, its purpose is to scan the systems to find the vulnerabilities. We can define the assets like IP address for the scans and it also allows to either schedule the scan at a preferred time or start the scan immediately. Upon completion of the scan, this tool can result provide the details like host type, OS information, hardware address, along with the vulnerabilities. Rapid7 Nexpose has a list of templates to perform the scan. Once the templates are defined then the scans are performed accordingly. It also contains an option to add credentials/authentication using passwords, usernames, private keys to perform the credential-based scans which I think is a great feature. Incentivized Verified User Anonymous Read full review
Cons	IBM You still have to generate reports manually. Reports are very limited and practically not useful. The solution should not be SOAR class. Automations usually don't work. It's apparent that it's not designed for that. Lack of flexibility. Practically no support. The reported integration problems have not been resolved. Incentivized DS Dominik Siekierski Applications Engineer Read full review	Rapid7 In comparison to Tenable SecurityCenter we saw it didn't exactly find the same vulnerabilities which we would assume it should have We rely on a ticketing system and not our VM tool to assign tasks so wasn't too useful having that in there Filtering capabilities aren't as good as its competitors Incentivized Verified User Anonymous Read full review
Likelihood to Renew	IBM It is beneficial to have a program that can run independently and be used without the supervision of a devoted employee Incentivized JS june smith Legal Secretary Read full review	Rapid7 No answers on this topic
Usability	IBM It is very easy to navigate and run the parts that we have needed Incentivized JS june smith Legal Secretary Read full review	Rapid7 No answers on this topic
Support Rating	IBM I have never had to contact support Incentivized JS june smith Legal Secretary Read full review	Rapid7 I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response. Incentivized Verified User Anonymous Read full review
Alternatives Considered	IBM Overall, IBM Security QRadar SOAR offered the same set of functionality that was needed by the organization as offered by Splunk SOAR, but the former is less expensive and solves all the purpose within budget. In addition, integration with other IBM products was easier and made implementation of a SOAR solution much faster. Incentivized Verified User Anonymous Read full review	Rapid7 Nessus Pro does scans, but does not maintain an inventory from scan to scan. There is no history for a specific device, you have to look inside the results of each scan. Search across inventory is non-existent. There are no dashboards for data analysis. This is no tracking for remediation Incentivized Verified User Anonymous Read full review
Return on Investment	IBM It provides comprehensive MTTD and MTTR metrics and we are aware of how secure our systems are at any given moment. We use linux 7.7, therefore the integrations are smooth. We've been able run our online shops securely for so long. Incentivized Verified User Anonymous Read full review	Rapid7 Can reduce time to patch most critical vulnerabilities Can help to identify who is spending time patching things of lower risk thus keeping the organization in a more vulnerable position Easily provides the patch team with a work plan to enhance security more quickly Incentivized Verified User Anonymous Read full review
ScreenShots	IBM Security QRadar SOAR Screenshots