Rapid7 InsightConnect vs. Splunk SOAR

Rapid7 InsightConnect

Rapid7 InsightConnect

7 Reviews and Ratings

Splunk SOAR

85 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Rapid7 InsightConnect	Score 7.9 out of 10	N/A	Rapid7 offers InsightConnect, a SOAR solution that integrates with existing solutions to orchestrate vulnerability management processes from notification to remediation, so users can ensure critical issues are being addressed with every security advisory that comes in—while leaving human decision points where most critical. Automate actions to scan, find patches, and verify remediation.	N/A
Splunk SOAR	Score 8.3 out of 10	N/A	Splunk now offers a security orchestration, automation, and response (SOAR) platform via its acquisition of Phantom. Splunk Security Orchestration and Automation (Splunk SOAR) provides playbook automation and is available as a standalone solution.	N/A

Pricing

Rapid7 InsightConnect

Splunk SOAR

Editions & Modules

No answers on this topic

No answers on this topic

Offerings

Pricing Offerings
Rapid7 InsightConnect	Splunk SOAR
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

No setup fee

Additional Details

—

—

More Pricing Information

Community Pulse
	Rapid7 InsightConnect	Splunk SOAR
Considered Both Products	Rapid7 InsightConnect Verified User Employee Chose Rapid7 InsightConnect Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but … Incentivized Helpful? HA holt archer senior security engineer Chose Rapid7 InsightConnect Our needs and use of Rapid7 IC was strickly SOAR so products like Snyk would be something to integrate and build automation with, the same with Sonar Cube but we never got the chance to do so. Splunk SOAR is something we are using now at a more global level, so a Jira ticket … Incentivized Helpful?	Splunk SOAR No answer on this topic
Top Pros	Pro Coding language Pro Take action Pro Easy interface	No answers on this topic
Top Cons	Minus Coding knowledge Minus Maintenance tasks Minus Learning curve	No answers on this topic

Best Alternatives
	Rapid7 InsightConnect	Splunk SOAR
Small Businesses	No answers on this topic	No answers on this topic
Medium-sized Companies	Splunk SOAR Score 8.3 out of 10	Qualys TruRisk Platform Score 8.3 out of 10
Enterprises	Palo Alto Networks Cortex XSOAR Score 8.5 out of 10	Palo Alto Networks Cortex XSOAR Score 8.5 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Rapid7 InsightConnect	Splunk SOAR
Likelihood to Recommend	7.9 (7 ratings)	8.6 (40 ratings)
Likelihood to Renew	- (0 ratings)	8.1 (3 ratings)
Usability	9.0 (1 ratings)	8.2 (1 ratings)
Performance	- (0 ratings)	8.9 (40 ratings)
Support Rating	- (0 ratings)	8.2 (1 ratings)
Online Training	- (0 ratings)	8.2 (1 ratings)
Implementation Rating	- (0 ratings)	8.2 (1 ratings)
Configurability	- (0 ratings)	8.2 (1 ratings)
Product Scalability	- (0 ratings)	8.2 (1 ratings)

User Testimonials
	Rapid7 InsightConnect	Splunk SOAR
Likelihood to Recommend	Rapid7 Where Rapid7 InsightConnect excels is in environments needing the whole suite of virus protection and monitoring. In our environment we use it to make sure we have visibility over all endpoints, servers, hosts, and clusters to make sure that there are no vulnerabilities being left unattended too. It is also best in large environments. Since there are many endpoints, the automation from Rapid7 helps manage them all in an efficient manner. Incentivized Verified User Anonymous Read full review	Splunk Our company has very complex and dynamic security operations because of the large number of security tools and systems that we need to manage and coordinate. Moreover, it helps us to meet many regulatory and compliance requirements because it helps us to automate and document our security operations. We also use it to streamline our security operations and improve our response to potential threats. Incentivized PK Priya Kumar Security Engineer Read full review
Pros	Rapid7 The most significant difference is that we no longer have to examine endpoints and devices separately. The cost. The impact on the safety and efficiency of our business. Incentivized Verified User Anonymous Read full review	Splunk Its security orchestration and integration capability that supports multiple tools. Easy coding that automates our security actions. Enables us to easily collaborate and respond to security issues faster. Splunk SOAR is a flexible product that is easy to deploy. Efficient tracking and monitoring capability. Excellent real-time reporting functionality. Incentivized Angelica Cavalli Senior Software Engineer Read full review
Cons	Rapid7 It would be great if Rapid7 InsightConnect could be configured based on pre determined specifications when installing the agent. We've noticed that at times, there are certain network parameters needed in order for Rapid7 to collect and report data efficiently. Sometimes there are issues with the discovery scan in Rapid7 making it hard to configure in the beginning. Incentivized Verified User Anonymous Read full review	Splunk A lack of instruction It can be difficult to contact the support staff. Limited experience from current users. It takes some effort to set up and learn new technology at first. More assistance is required from the support staff. The product's price needs to go down. Cost of the larger version. Incentivized Pavan sreevatsav Akula Cybersecurity Analyst Read full review
Likelihood to Renew	Rapid7 No answers on this topic	Splunk As we already have a lot of clients being catered with Splunk SOAR and because Splunk SOAR is robust and efficient, we are already using it, and we have understood the product to a certain extent, I feel we are personally more enticed to use and scale it to a lot of business. Incentivized Gaurav S Senior Security Specialist Read full review
Usability	Rapid7 It's incredibly easy to set up, to use, to detect threats. It's easy to change, tweek and very quick to resolve all issues Incentivized Sarah Urbani Technical Specialist Read full review	Splunk Not immediate: it always requires a training. Incentivized Giuseppe Cusello GRC Director Read full review
Performance	Rapid7 No answers on this topic	Splunk We are able to automate almost every one of our use cases, even our threat-hunting, and threat intel procedures. We have 20+ playbooks and cover almost everything, even searching logs into Splunk, looking into TIP and external systems, enrichment, and collecting evidence for analysts; it can perform concurrent playbooks running. Incentivized Muhammed Ali CETİN senior Security Engineer Read full review
Support Rating	Rapid7 No answers on this topic	Splunk Splunk Support is always great! In addition the Community is very efficient and active. Incentivized Giuseppe Cusello GRC Director Read full review
In-Person Training	Rapid7 No answers on this topic	Splunk I never followed an in-person training, I gave my evaluation based on the online training Incentivized Giuseppe Cusello GRC Director Read full review
Online Training	Rapid7 No answers on this topic	Splunk I followed training for Phantom admins and it opened a world for me Incentivized Giuseppe Cusello GRC Director Read full review
Implementation Rating	Rapid7 No answers on this topic	Splunk I already said that the main key insight is the knowledge of Phantom, so a detailed training for all the people involeved. Incentivized Giuseppe Cusello GRC Director Read full review
Alternatives Considered	Rapid7 Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but for our environment, it made more sense to go with Rapid7. Incentivized Verified User Anonymous Read full review	Splunk Splunk Phantom integrates well with Splunk ES and has many integrations. One thing that I liked about XSOAR as compared to Phantom is that it has an "app-store" where you can download not only app integrations (similar to Phantom) but Playbooks and dashboards as well. Incentivized Verified User Anonymous Read full review
Scalability	Rapid7 No answers on this topic	Splunk me and the customers I encountered found it flexible and scalable Incentivized Giuseppe Cusello GRC Director Read full review
Return on Investment	Rapid7 The automation and integration we set up in the dev cycle helped us provide evidence in audits The automation and integration we set up in the dev cycle helped us fix vulns in our software prior to implementation thus increasing our security Automations save massive time and headache's between infosec and devs Incentivized HA holt archer senior security engineer Read full review	Splunk The playbooks are valuable. They are the core component. Being able to implement and build a code process to work through and scale out what we want to do is valuable Before its use, analyzing each email would take at least 15 to 20 minutes, with some complex cases taking up to 30 minutes...With the automation provided by Splunk Phantom, we could significantly reduce the amount of time and human effort required to complete this task Incentivized Verified User Anonymous Read full review
ScreenShots