A Leader in Vulnerability Management
Overall Satisfaction with Rapid7 InsightVM
Rapid7 InsightVM is our vulnerability scanner. This is one of the pillars of information security, and I firmly believe that in order to do cyber security right, then you need to have a tool that performs this function. The problems addressed by this tool are self-evident in that it finds vulnerabilities in your environment. Now I personally think R7 goes above and beyond with their product offering in that they provide a host of other information to help you remediate the vulnerabilities and they display the information in a very digestible way. This tool is scanning all of our devices, and even helping us find what devices we are not accounting for.
Pros
- InsightVM provides rich vulnerability data that is actionable.
- This tool also has a robust reporting feature that provides a myriad of ways to look at the data and present that to others.
- The remediation instructions are excellent and the "proof" data is very useful to show other departments how the tool found the vulnerability.
Cons
- I really like the SQL reporting feature and I think they could invest more time into making that great.
- This is more of a feature request, but it would be nice to have the ability to create my own cards for their cloud reporting dashboards.
- InsightVM does a great job of reporting on vulnerability data on a device, but I think it would be also helpful to see a deeper dive into non-vulnerability related info that is related (such as last reboot or last user logged in).
- Cyber security is often considered a cost center, but it's easy to underestimate how much cost avoidance takes place when you identify and remediate a large amount of vulnerabilities.
- This tool provides board members with a big picture view of how the organization is looking from a risk and security perspective, which provides confidence and verification for decision makers.
- This tool is only as useful as the people who use it, so make sure that you hire qualified staff to operate the platform, otherwise it will just be shelfware that you're not using.
- Tenable Nessus and Nmap
I think Tenable is very comparable and they are both leaders in this space. I evaluated both of them side-by-side and ultimately decided to go with Rapid7. Tenable did have a slight edge on the amount of information I was getting from the machines, but I landed on R7 because I found the features of the InsightVM tool to be more useful. They both get the job done, but I found InsightVM a better experience to use on a day-to-day basis and had better quality of life features that I was looking for.
Do you think Rapid7 InsightVM delivers good value for the price?
Yes
Are you happy with Rapid7 InsightVM's feature set?
Yes
Did Rapid7 InsightVM live up to sales and marketing promises?
Yes
Did implementation of Rapid7 InsightVM go as expected?
Yes
Would you buy Rapid7 InsightVM again?
Yes


Comments
Please log in to join the conversation