Skip to main content
TrustRadius

Overview

What is Rapid7 InsightConnect?

Rapid7 offers InsightConnect, a SOAR solution that integrates with existing solutions to orchestrate vulnerability management processes from notification to remediation, so users can ensure critical issues are being addressed with every security advisory that comes in—while leaving human decision points…

Read more
Recent Reviews

TrustRadius Insights

Rapid7 InsightConnect has proven to be a valuable tool for users across various industries and environments. With its pre-built …
Continue reading

Easy to manage.

9 out of 10
April 19, 2022
Incentivized
We use it for security event alerting so that we have all the information from what is happening in the network and are more quickly able …
Continue reading
Read all reviews
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is Rapid7 InsightConnect?

Rapid7 offers InsightConnect, a SOAR solution that integrates with existing solutions to orchestrate vulnerability management processes from notification to remediation, so users can ensure critical issues are being addressed with every security advisory that comes in—while leaving human decision…

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

31 people also want pricing

Alternatives Pricing

What is Trellix Helix?

Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.

Return to navigation

Product Details

What is Rapid7 InsightConnect?

Rapid7 InsightConnect Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(7)

Community Insights

TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!

Rapid7 InsightConnect has proven to be a valuable tool for users across various industries and environments. With its pre-built integrations and customization options, users have been able to seamlessly connect their vulnerability management platform, Insight M, with other tools like Jira and Slack. This integration has allowed for efficient ticket and project creation as well as notifications, enhancing workflow productivity. By integrating with Slack, users can access vulnerability information and receive notifications directly from the platform, replicating and enhancing ticketing and alerting workflows.

One key use case of Rapid7 InsightConnect is its ability to detect and respond to suspicious or abnormal behavior, enabling users to take quick action. It serves as an effective virus protection solution, monitoring the technical landscape to reduce the risk of virus attacks and patch vulnerabilities. The scanning and automation features have helped users maintain security in their IT environment by addressing malware attacks even outside of regular working hours. Additionally, the software automates various aspects of security, providing relief for IT departments with limited staff by reducing phishing emails.

Another important use case is that Rapid7 InsightConnect facilitates thorough network scans across various environments, including cloud and virtualized infrastructure. Users have found it to be a powerful and scalable vulnerability assessment tool that integrates seamlessly with different solutions such as Jira, EDR solutions, open-source intelligence platforms, firewalls, and intrusion detection systems. Although customization may require coding knowledge, users have appreciated the convenience of pre-built integrations provided by Rapid7 InsightConnect.

The integration with ticketing systems also allows for streamlined tracking and reporting of security events, which is crucial for effective incident response and compliance reporting. Overall, Rapid7 InsightConnect has proven to be a versatile tool that addresses key security concerns in organizations while increasing efficiency and automation in vulnerability management processes.

Easy to use: Many users have found the platform easy to use, thanks to its intuitive interface. This has allowed them to navigate through the system effortlessly and quickly access the features they need.

Flexible workflows and integrations: Several reviewers have appreciated the ability of the platform to create custom workflows and integrations. This flexibility allows users to tailor their monitoring and response processes according to their specific needs, resulting in a more efficient and personalized experience.

Effective security measures: Users have praised the platform's capability to detect odd behavior and monitor malicious activity across systems. By proactively identifying threats, it enables quick action to be taken, leading to fast and efficient responses against viruses and vulnerabilities.

Outdated User Interface: Some users have expressed their frustration with the outdated user interface of the software. They feel that it is in need of improvement to match modern design standards and enhance usability.

Complex Initial Deployment: According to several reviewers, the initial deployment process for this software can be quite complex and may require a strong understanding of coding. This complexity has been cited as a potential barrier for new users or those without extensive technical knowledge.

Steep Learning Curve: Many users have pointed out that there is a steep learning curve associated with using this software. It takes time and effort to become proficient, which may not be ideal for users who are looking for an intuitive and easy-to-use solution.

Attribute Ratings

Reviews

(1-5 of 5)
Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Incentivized
In our environment Rapid7 InsightConnect is used our virus protection solution. We utilize it to monitor our technical landscape and reduce the risk of any virus attacks and patch vulnerabilities. With its scanning and automation features we are able to rely on it to uphold security in our IT environment and continue to improve our security posture with the many new vulnerabilities surfacing daily.
  • It monitors malicious behavior in across our systems so that we can be proactive in catching any viruses.
  • Based on what threats surfaces, it automatically quarantines and mitigates vulnerabilities allowing for fast and efficient response.
  • It will install easily across the environment allowing for simple rollout and quick security.
  • It would be great if Rapid7 InsightConnect could be configured based on pre determined specifications when installing the agent.
  • We've noticed that at times, there are certain network parameters needed in order for Rapid7 to collect and report data efficiently.
  • Sometimes there are issues with the discovery scan in Rapid7 making it hard to configure in the beginning.
Where Rapid7 InsightConnect excels is in environments needing the whole suite of virus protection and monitoring. In our environment we use it to make sure we have visibility over all endpoints, servers, hosts, and clusters to make sure that there are no vulnerabilities being left unattended too. It is also best in large environments. Since there are many endpoints, the automation from Rapid7 helps manage them all in an efficient manner.
  • Vulnerability scans.
  • Real time monitoring against threats and other security deficiencies.
  • Discovery scans to make sure any new devices in our environment get added to its protection policies.
  • During quarterly security assessments we are able to use Rapid7's reporting to present how good or bad we are doing in our InfoSec department.
  • It has allowed us to be scaleable in managing our virus protection as we are able configure the type of protection we want which saves us resources and money down the line.
  • All of our endpoints remain secure and updated with the latest security definitions allowing us to focus on other aspects of the technical landscape.
In our opinion, Rapid7 InsightConnect was a better choice for our environment as we were able to roll it out efficiently. Also the monitoring tools and reporting were easier to use and read. CrowdStrike appeared to be harder to install from a client standpoint and also we felt that Rapid7 fit our budget a bit better for the value we getting.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
We used Rapid7 InsightConnect as our SOAR solution which is very easy and convenient to integrate with various different solutions and tools like JIRA for ticketing systems, EDR solutions, open-source intelligence platforms, firewalls, Intrusion detection systems etc. The integrations are right out of the box and it has many capabilities to customize the tool as per the organizations requirement however this requires coding knowledge.
  • SOAR
  • SIEM
  • Alerts
  • Integration
  • Customization
  • UI experience
  • Heavy coding knowledge
  • Learning curve
When there are many services available within an organization Rapid7 InsightConnect is very well suited for such organization because this has the ability to connect across various tools and services seamlessly like firewalls, network devices, IPS, IDS, ticketing service. Also, has options to give out alerts in different methods based on severity.
  • Reports
  • Integration
  • ROI has been good
  • Has a learning curve
  • Need training
  • KnowBe4 PhishER, Splunk SOAR (Security Orchestration and Automation and Response) (formerly Phantom)
Splunk SOAR (Security Orchestration, Automation and Response) (formerly Phantom), Azure API Management, Salt Security API Protection Platform
Score 7 out of 10
Vetted Review
Verified User
Incentivized
We use Rapid7 InsightConnect to automate various aspects of security in our IT department. We don't have the staff to constantly monitor everything 24/7. This has given us the ability to identify and remedy various malware attacks, along with automating the process after hours. Phishing emails have been reduced to a minimum as well.
  • Reduce phishing emails
  • Locate devices infected with malware and isolate them.
  • No need to learn a proprietary coding language to configure.
  • Initial deployment can get complex
  • User interface looks outdated
  • Cost was higher than expected
This is perfect for an IT department with minimal staff. Security is usually an afterthought in small IT departments. If you have a dedicated security team, then something like this could be replaced with something more complex. The features it comes with are aimed toward a team that doesn't monitor and change things all the time. It's more of a set it and let it handle the rest type.
  • Email scanning for phishing attempts.
  • Checking for vulnerabilities through plugins.
  • Ability to isolate/resolve issues with no user intervention.
  • Cost was higher than the competitors, but worth it
  • No need to hire additional staff to maintain it
  • We haven't been hit with ransomware as a result
  • Splunk SOAR (Security Orchestration, Automation and Response) (formerly Phantom) and Palo Alto Networks Cortex XSOAR (formerly Demisto)
Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but for our environment, it made more sense to go with Rapid7.
Sarah Urbani | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We use it to detect odd/bad behavior, to be able to respond and take action quickly
It's a wonderful tool to stop suspicious behavior or block it
  • Detect odd bwhavior
  • Take action quickly
  • Easy interface
  • Amazing to setup
  • a
  • None
  • None
Use it to stop bad behavior from both our employees and outside 3rd party vendors we support.
To ensure as a health company nothing is comprised
  • Easy interface
  • Quick detection of suspicious behavior
  • Easy to fix problems
  • Wonderful integration to set up monitoring
  • Safer comoany
  • Hippa compliant
  • Secure network
  • Secure web place
I feel sophos is good but rapid7 was way easier to setup, more simple to use and just overall better detection for behaviors
Microsoft 365 (formerly Office 365), BeyondTrust Remote Support (formerly Bomgar), BitLocker Drive Encryption
It's incredibly easy to set up, to use, to detect threats. It's easy to change, tweek and very quick to resolve all issues
  • Detection for threats
  • Interface is clean and simple
  • East to take action if something is found
  • Takes a min to learn if never used
  • It can be overwhelming at first
Yes, but I don't use it
Score 7 out of 10
Vetted Review
Verified User
Incentivized
We used rapid7 insight connect to connect our vuln management platform, insight M, to our Jira and Slack for ticket/project creation and notifications. I found both of the integrations as pre-built modules that I could customize for our environment so was able to get them up and working quickly and effectively. This enabled me to replicate and improve ticketing and alerting workflows that I had previously built in Tenable's Security Center platform by allowing for interaction with the vuln management tool from Slack. Now our devs and sysadmins could pull up device or application vuln info from Slack and would be notified via slack of changes to any devices or apps they owned, assuming they were being scanned by the vuln management tool.
  • Offers pre-built integrations with multiple common alerting tools
  • Offers pre-built workflows for multiple common tools
  • Easy to create custom workflows and integrations
  • Sometimes too point and clicky
  • Cost is high
  • Workflows often require users from several teams to work on various tools
It is well suited to accelerating the dev/sec/ops cycle because it integrates with all the tools we used there including Jenkins, Jira, and Slack, so that when a build kicked off from a project in Jira we could have the build scanned as it went through Jenkins either via a slack or Jira task. The scan would produce a report that we would customize and drop into Jira and any findings could also be sent to Slack. Infosec would also be notified and we worked with the dev team to make a policy that any highs or criticals would need to be remediated prior to advancing the code to prod. Where it could be better is putting an automated gate on the Jenkins build, which it may be able to do but we didn't figure out before our time with the product ended.
  • Integration
  • Automation
  • Ease of use
  • The automation and integration we set up in the dev cycle helped us provide evidence in audits
  • The automation and integration we set up in the dev cycle helped us fix vulns in our software prior to implementation thus increasing our security
  • Automations save massive time and headache's between infosec and devs
Our needs and use of Rapid7 IC was strickly SOAR so products like Snyk would be something to integrate and build automation with, the same with Sonar Cube but we never got the chance to do so. Splunk SOAR is something we are using now at a more global level, so a Jira ticket will kick off a vuln scan as well as a code scan, one example. We evaluated Sensu but since our SIEM is Splunk it made more sense to go that way. It was our observation that other products that are dedicated SOAR have more integrations and more powerful workflows that can span your entire enterprise. That is not to say that IC can't span your enterprise but as you can imagine it is very Rapid7 centric, so if you have Rapid7 VM, IDR, and AppSec this could be a VERY powerful SOAR. On the other hand, if you don't have a large Rapid7 footprint your SOAR implementation with IC may be very limited.
Splunk Enterprise Security (ES), CrowdStrike Falcon Endpoint Protection, Splunk SOAR (Security Orchestration, Automation and Response) (formerly Phantom)
Return to navigation