Overall Satisfaction with Rapid7 InsightIDR
When I arrived at my org vulnerability management was done ad hoc using an inexpensive NESSUS license. But this didn't provide results in a good manageable format. The idea was to be able to automate regular scanning and present the results in a format that would allow responsible asset owners to see the status of their systems and insofar as possible make it a self-service experience, taking as much burden off the security team as possible. InsightIDR has made this possible, and gone further through our use of the agent for detailed on device results.
- Scanning
- Vulnerability context
- Multi-user/group usage
- Allowing group owners to scan assets
- There is an occasional false positive
- Vulnerability scanning
- Agent scanning
- Robust permissions
- Identified vulnerabilities before they were exploited and became catastrophes
- Allows us to meet compliance goals
Other products are OK, but they lack the robust permissions and their interfaces are much much less intuitive. Rapid7's prioritization system for vulnerabilities makes more sense given their context as the developers of Metasploit. We thought we might be able to switch and save money and not lose too much but it turned out that we weren't comfortable with what we would lose and we wouldn't save much after an initial discount.
Do you think Rapid7 InsightIDR delivers good value for the price?
Yes
Are you happy with Rapid7 InsightIDR's feature set?
Yes
Did Rapid7 InsightIDR live up to sales and marketing promises?
Yes
Did implementation of Rapid7 InsightIDR go as expected?
Yes
Would you buy Rapid7 InsightIDR again?
Yes