TrustRadius

Rapid7 InsightConnect vs. Splunk SOAR

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Rapid7 InsightConnect
Score 10.0 out of 10
N/A
Rapid7 offers InsightConnect, a SOAR solution that integrates with existing solutions to orchestrate vulnerability management processes from notification to remediation, so users can ensure critical issues are being addressed with every security advisory that comes in—while leaving human decision points where most critical. Automate actions to scan, find patches, and verify remediation.N/A
Splunk SOAR
Score 9.2 out of 10
N/A
Splunk now offers a security orchestration, automation, and response (SOAR) platform via its acquisition of Phantom. Splunk Security Orchestration and Automation (Splunk SOAR) provides playbook automation and is available as a standalone solution.N/A
Pricing
Rapid7 InsightConnectSplunk SOAR
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Rapid7 InsightConnectSplunk SOAR
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Rapid7 InsightConnectSplunk SOAR
Considered Both Products
Rapid7 InsightConnect
Verified User
Employee
Chose Rapid7 InsightConnect
Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but …
HA
holt archer
senior security engineer
Chose Rapid7 InsightConnect
Our needs and use of Rapid7 IC was strickly SOAR so products like Snyk would be something to integrate and build automation with, the same with Sonar Cube but we never got the chance to do so. Splunk SOAR is something we are using now at a more global level, so a Jira ticket …
Splunk SOAR

No answer on this topic

Best Alternatives
Rapid7 InsightConnectSplunk SOAR
Small Businesses

No answers on this topic

No answers on this topic

Medium-sized Companies
Splunk SOAR
Splunk SOAR
Score 9.2 out of 10
LogRhythm NextGen SIEM Platform
LogRhythm NextGen SIEM Platform
Score 6.0 out of 10
Enterprises
Palo Alto Networks Cortex XSOAR
Palo Alto Networks Cortex XSOAR
Score 7.4 out of 10
Palo Alto Networks Cortex XSOAR
Palo Alto Networks Cortex XSOAR
Score 7.4 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Rapid7 InsightConnectSplunk SOAR
Likelihood to Recommend
7.9
(7 ratings)
8.1
(40 ratings)
Likelihood to Renew
-
(0 ratings)
7.5
(3 ratings)
Usability
9.0
(1 ratings)
8.2
(1 ratings)
Performance
-
(0 ratings)
8.2
(40 ratings)
Support Rating
-
(0 ratings)
8.2
(1 ratings)
Online Training
-
(0 ratings)
8.2
(1 ratings)
Implementation Rating
-
(0 ratings)
8.2
(1 ratings)
Configurability
-
(0 ratings)
8.2
(1 ratings)
Product Scalability
-
(0 ratings)
8.2
(1 ratings)
User Testimonials
Rapid7 InsightConnectSplunk SOAR
Likelihood to Recommend
Rapid7
Where Rapid7 InsightConnect excels is in environments needing the whole suite of virus protection and monitoring. In our environment we use it to make sure we have visibility over all endpoints, servers, hosts, and clusters to make sure that there are no vulnerabilities being left unattended too. It is also best in large environments. Since there are many endpoints, the automation from Rapid7 helps manage them all in an efficient manner.
Verified User
Anonymous
Read full review
Cisco
Our company has very complex and dynamic security operations because of the large number of security tools and systems that we need to manage and coordinate. Moreover, it helps us to meet many regulatory and compliance requirements because it helps us to automate and document our security operations. We also use it to streamline our security operations and improve our response to potential threats.
PK
Priya Kumar
Security Engineer
Read full review
Pros
Rapid7
  • The most significant difference is that we no longer have to examine endpoints and devices separately.
  • The cost.
  • The impact on the safety and efficiency of our business.
Verified User
Anonymous
Read full review
Cisco
  • Its security orchestration and integration capability that supports multiple tools.
  • Easy coding that automates our security actions.
  • Enables us to easily collaborate and respond to security issues faster.
  • Splunk SOAR is a flexible product that is easy to deploy.
  • Efficient tracking and monitoring capability.
  • Excellent real-time reporting functionality.
Angelica Cavalli | TrustRadius Reviewer
Angelica Cavalli
Senior Software Engineer
Read full review
Cons
Rapid7
  • It would be great if Rapid7 InsightConnect could be configured based on pre determined specifications when installing the agent.
  • We've noticed that at times, there are certain network parameters needed in order for Rapid7 to collect and report data efficiently.
  • Sometimes there are issues with the discovery scan in Rapid7 making it hard to configure in the beginning.
Verified User
Anonymous
Read full review
Cisco
  • A lack of instruction It can be difficult to contact the support staff. Limited experience from current users.
  • It takes some effort to set up and learn new technology at first. More assistance is required from the support staff. The product's price needs to go down.
  • Cost of the larger version.
Pavan sreevatsav Akula | TrustRadius Reviewer
Pavan sreevatsav Akula
Cybersecurity Analyst
Read full review
Likelihood to Renew
Rapid7
No answers on this topic
Cisco
As we already have a lot of clients being catered with Splunk SOAR and because Splunk SOAR is robust and efficient, we are already using it, and we have understood the product to a certain extent, I feel we are personally more enticed to use and scale it to a lot of business.
Gaurav S | TrustRadius Reviewer
Gaurav S
Senior Security Specialist
Read full review
Usability
Rapid7
It's incredibly easy to set up, to use, to detect threats. It's easy to change, tweek and very quick to resolve all issues
Sarah Urbani | TrustRadius Reviewer
Sarah Urbani
Technical Specialist
Read full review
Cisco
Not immediate: it always requires a training.
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Performance
Rapid7
No answers on this topic
Cisco
We are able to automate almost every one of our use cases, even our threat-hunting, and threat intel procedures. We have 20+ playbooks and cover almost everything, even searching logs into Splunk, looking into TIP and external systems, enrichment, and collecting evidence for analysts; it can perform concurrent playbooks running.
Muhammed Ali CETİN | TrustRadius Reviewer
Muhammed Ali CETİN
senior Security Engineer
Read full review
Support Rating
Rapid7
No answers on this topic
Cisco
Splunk Support is always great! In addition the Community is very efficient and active.
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
In-Person Training
Rapid7
No answers on this topic
Cisco
I never followed an in-person training, I gave my evaluation based on the online training
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Online Training
Rapid7
No answers on this topic
Cisco
I followed training for Phantom admins and it opened a world for me
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Implementation Rating
Rapid7
No answers on this topic
Cisco
I already said that the main key insight is the knowledge of Phantom, so a detailed training for all the people involeved.
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Alternatives Considered
Rapid7
Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but for our environment, it made more sense to go with Rapid7.
Verified User
Anonymous
Read full review
Cisco
Splunk Phantom integrates well with Splunk ES and has many integrations. One thing that I liked about XSOAR as compared to Phantom is that it has an "app-store" where you can download not only app integrations (similar to Phantom) but Playbooks and dashboards as well.
Verified User
Anonymous
Read full review
Scalability
Rapid7
No answers on this topic
Cisco
me and the customers I encountered found it flexible and scalable
Giuseppe Cusello | TrustRadius Reviewer
Giuseppe Cusello
GRC Director
Read full review
Return on Investment
Rapid7
  • The automation and integration we set up in the dev cycle helped us provide evidence in audits
  • The automation and integration we set up in the dev cycle helped us fix vulns in our software prior to implementation thus increasing our security
  • Automations save massive time and headache's between infosec and devs
HA
holt archer
senior security engineer
Read full review
Cisco
  • The playbooks are valuable. They are the core component. Being able to implement and build a code process to work through and scale out what we want to do is valuable
  • Before its use, analyzing each email would take at least 15 to 20 minutes, with some complex cases taking up to 30 minutes...With the automation provided by Splunk Phantom, we could significantly reduce the amount of time and human effort required to complete this task
Verified User
Anonymous
Read full review
ScreenShots