Listing Thumbnail

    Rapid7 Managed Threat Complete

     Info
    Sold by: Rapid7 
    Deployed on AWS
    Attackers are everywhere. With Managed Threat Complete (MTC), so are you. With Rapid7 Managed Threat Complete, you have round the clock monitoring, triage, investigation and hunts. You have command of your attack surface by understanding what risk should be remediated first, and a team of experts on your side should a breach occur. It is the most complete MDR on the market.
    4.2

    Overview

    Managed Threat Complete is a single, integrated service that allows you to prepare for, detect, and respond to threats in your environment. MTC is delivered as a collaboration between Rapid7 and your team to accelerate your proactive, responsive, and strategic security maturity and extend your security operations by providing customized security guidance and hands-on 24x7x365 monitoring, threat hunting, incident response, and exposure management.

    Trust that your entire attack surface is under control. Our team has full coverage across your endpoints, network, users and the cloud with our XDR technology - powered by Rapid7s proprietary Threat Intelligence and Detection Engine. And with unlimited data ingestion and 13 months of storage, we will be able to see every attacker movement across your environment and dig deep into investigations.

    The complete scope of our service is fully documented. You can find the details here - https://docs.rapid7.com/services/mtc-welcome 

    Highlights

    • Reduce risks and eliminate threats - MDR is not just about detection and response. Coupled with vulnerability management It is about strengthening your security posture so you are ready for whatever comes next.
    • Coverage everywhere you need it - Trust that your entire attack surface is under control. Our team has full coverage across your endpoints, network, users and the cloud with our next-gen SIEM and XDR technology - powered by Rapid7s proprietary Threat Intelligence and Detection Engine.
    • Detection and response without limits - Partner with the only MDR to offer unlimited, end-to-end digital forensics and incident response - regardless of size, complexity, or investigation hours.

    Details

    Sold by

    Delivery method

    Deployed on AWS
    New

    Introducing multi-product solutions

    You can now purchase comprehensive solutions tailored to use cases and industries.

    Multi-product solutions

    Features and programs

    Buyer guide

    Gain valuable insights from real users who purchased this product, powered by PeerSpot.
    Buyer guide

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    Rapid7 Managed Threat Complete

     Info
    Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    12-month contract (3)

     Info
    Dimension
    Description
    Cost/12 months
    Managed Threat Complete Essential
    Starting at 300 assets
    $73,000.00
    Managed Threat Complete Advanced
    Starting at 500 assets
    $111,000.00
    Managed Threat Complete Ultimate
    Starting at 500 assets
    $175,000.00

    Vendor refund policy

    Custom pricing options

    Request a private offer to receive a custom quote.

    How can we make this page better?

    Tell us how we can improve this page, or report an issue with this product.
    Tell us how we can improve this page, or report an issue with this product.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    Software as a Service (SaaS)

    SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

    Resources

    Vendor resources

    Support

    Vendor support

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Product comparison

     Info
    Updated weekly

    Accolades

     Info
    Top
    10
    In Managed Services
    Top
    100
    In Security
    Top
    10
    In Security

    Customer reviews

     Info
    Sentiment is AI generated from actual customer reviews on AWS and G2
    Reviews
    Functionality
    Ease of use
    Customer service
    Cost effectiveness
    3 reviews
    Insufficient data
    Insufficient data
    Insufficient data
    Insufficient data
    Positive reviews
    Mixed reviews
    Negative reviews

    Overview

     Info
    AI generated from product descriptions
    Extended Detection and Response (XDR) Technology
    XDR technology with full coverage across endpoints, network, users, and cloud environments powered by proprietary Threat Intelligence and Detection Engine
    Unlimited Data Ingestion and Retention
    Unlimited data ingestion capability with 13 months of data storage for comprehensive investigation and threat visibility
    24/7 Threat Hunting and Incident Response
    Round-the-clock monitoring, triage, investigation, threat hunting, and incident response services delivered by security experts
    Vulnerability and Exposure Management
    Integrated vulnerability management and exposure management capabilities to identify and prioritize risks for remediation
    Digital Forensics and Investigation
    Unlimited end-to-end digital forensics and incident response capabilities regardless of investigation complexity or duration
    Continuous Threat Monitoring
    24x7 monitoring of networks, endpoints, and cloud environments for threat and risk detection
    Incident Detection and Response
    Managed investigations and guided response capabilities to detect and respond to critical security incidents within minutes
    Multi-Environment Coverage
    Monitoring across networks, endpoints, and cloud environments for comprehensive security visibility
    Security Operations Platform
    Arctic Wolf Platform providing the foundation for threat detection and response capabilities
    Managed Security Team
    Named security experts with cloud expertise providing security advisory and operational support
    Extended Detection and Response
    Managed XDR capabilities for detecting and responding to threats across multiple security domains
    AI-Driven Threat Analytics
    Artificial intelligence-powered analytics for threat detection and analysis across enterprise environments
    Unified Security Platform
    Centralized platform providing single source of truth for security operations across workloads, identities, endpoints, and networks
    Threat Intelligence Integration
    Deep threat intelligence capabilities integrated into security operations for enhanced threat context and decision-making
    Multi-Domain Protection
    Security coverage spanning AI, cloud, networks, endpoints, and devices within complex enterprise environments

    Contract

     Info
    Standard contract
    No
    No

    Customer reviews

    Ratings and reviews

     Info
    4.2
    14 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    43%
    57%
    0%
    0%
    0%
    1 AWS reviews
    |
    13 external reviews
    External reviews are from G2  and PeerSpot .
    Venkata Kalla

    Continuous monitoring has improved threat detection and still needs a more intuitive dashboard

    Reviewed on Jun 17, 2026
    Review provided by PeerSpot

    What is our primary use case?

    I use Rapid7 MDR  for security monitoring and easy onboarding and deployment. We primarily use Rapid7 MDR  for threat detection and incident response, where it helps us to investigate deeply into those incidents.

    What is most valuable?

    One of the best features of Rapid7 MDR is 24/7 security monitoring, expert-led threat detection and response, AI-accelerated investigations, multi-vector visibility, informed defense, and incident response support. The full visibility of SIM, SIEM , and threat hunting is one of the features of Rapid7 MDR, and it has a strong customer partnership.

    AI processes a large volume of security telemetry and helps us to speed up the triage and investigation, allowing human analysts to validate findings before action is taken. AI-accelerated investigation helps us significantly.

    I particularly like the incident response support, as Rapid7 analysts assist with the investigation, containment, and remediation parts. The detailed incident reports and forensic analysis are very helpful and aid organizations in recovering from security events.

    Rapid7 MDR has improved many policies in our organization and enhanced our ability to detect threats early before they become major incidents. It has increased our visibility across our environment, including servers, cloud resources, and user activities. Rapid7 MDR integration reduces the risk of security breaches through constant monitoring and proactive threat hunting, and it reduces filtering out false positives by focusing only on actionable threats. It saves valuable time for our internal security team because Rapid7 analysts perform initial investigations and triage, resulting in faster incident response due to timely detection.

    The overall impact increases confidence in our security posture, enabling the security team to focus on strategic initiatives instead of spending excessive time reviewing alerts. It improves compliance readiness through detailed reporting and incident investigations and reduces our operational overhead by leveraging a team of security experts without needing to expand internal staffing.

    Rapid7 MDR has helped our team to save approximately 10 to 15 hours per week by reducing the time spent on alert triage and initial investigation. It allows our security team to focus on remediation efforts and strategic security initiatives, whereas before implementing Rapid7 MDR, our security analysts used to spend significant time reviewing security alerts and triaging potential threats, which we estimate was nearly 30 to 40% of their time.

    The biggest benefit has been operational efficiency. Instead of dedicating resources for around-the-clock monitoring, Rapid7 MDR acts as an extension of our security team, saving man-hours each month while improving detection and response capabilities. It has significantly reduced the time required for threat monitoring, alert validation, and incident investigation. The platform and analyst support help focus only on verified and actionable security incidents, which has improved efficiency and saved a considerable amount of our security operations team's time.

    What needs improvement?

    There are still a couple of areas where Rapid7 MDR can be improved. The visibility of the dashboard should be improved, and faster threat detection can also be enhanced. The dashboard visibility can be improved further, and the threat detection time also needs to be reduced to some extent.

    For how long have I used the solution?

    I have been using Rapid7 MDR for three years in my current organization.

    What was our ROI?

    This is a good return on investment, as Rapid7 MDR has saved a lot of money for this project.

    What's my experience with pricing, setup cost, and licensing?

    I feel the pricing cost of Rapid7 MDR is reasonable.

    What other advice do I have?

    Rapid7 MDR provides valuable visibility into security events, vulnerabilities, and risks, which relates to governance and security. The reporting and logging capabilities support all our readiness, help demonstrate security controls, and efficiently manage processes in our organization. The combination of AI-driven insights and expert analyst validation provides a well-balanced approach where automation improves speed while human expertise ensures accuracy. I particularly appreciate the Rapid7 analyst detections and investigations, which reduce alert fatigue, improve threat visibility, and speed up our security operations. Rapid7 MDR is a primary detection response service that makes it safer to say that our organization is well-protected.

    For compliance support, Rapid7 MDR provides good visibility into vulnerabilities, threats, and security. When suspicious login activity is detected by Rapid7 MDR, the MDR team provides detailed information, including the affected user account, source IP address, and timeline of events, which helps us validate the event. The transparency is very good for Rapid7 MDR.

    Rapid7 MDR follows a structured risk detection process that combines automated analysis and threat intelligence. It collects data, logs, and telemetry from endpoints, servers, and cloud environments, then enriches the data against multiple data sources and analyst validation.

    The multi-vector feature is one of the best features, as it analyzes and correlates data across multiple attack vectors such as endpoints, identity, cloud environments, network, email systems, and other security tools. For example, an attacker may compromise a user account through phishing email, log in from an unusual location, and then try to access sensitive cloud resources. Individually, these events might appear harmless, but Rapid7 MDR correlates and analyzes data from email, identity, and cloud environments to recognize this attack chain and generate a high-fidelity alert. The benefits of multi-vector detection include better visibility across the attack, detection of complex attack chains, reduction of blind spots, improved threat detection accuracy, faster incident investigation, and providing better context for analysts.

    The ecosystem is supported through endpoint telemetry, processing, and file activity, which has a significant positive impact on our security program. Rapid7 MDR is integrated with Microsoft and our other security tools. We are using AI-assisted risk workflows, including data ingestion, AI-based analysis, risk scoring and prioritization, analyst validation, investigation, and containment. The ecosystem supports endpoint telemetry, processing, file activity, and user behavior.

    My overall review rating for Rapid7 MDR is 7 out of 10.

    JensWolf

    Managed detection has provided constant protection and removes the need for in-house expertise

    Reviewed on Jun 04, 2026
    Review provided by PeerSpot

    What is our primary use case?

    Our main use case for Rapid7 MDR  is that they serve as our SOC.

    What is most valuable?

    Rapid7 MDR  is an IDR that does what it is supposed to do. The vulnerability management helps us keep our products and systems up to date.

    I am satisfied with the risk-aware detection feature in Rapid7 MDR and have no issues with it.

    We use the AI-assisted feature in Rapid7 sometimes, mainly to understand the logs from systems that we are not familiar with.

    The main benefits that Rapid7 MDR provides for me as an end-user are the security and that they are available 24 hours a day, always. This gives me reassurance because I do not have to be an expert on the cybersecurity part because they are. We are a quite small firm, so we do not have that in-house expertise, which is why we rely on them.

    What needs improvement?

    Regarding points for improvement in Rapid7 MDR, I do not have to do anything with them unless I have a problem. The less I hear from them, the better, because they contact us when there is a problem. We have our monthly meeting, and that is fine by me. That is pretty much it; I get what I want, and I do not want anything else.

    The price of Rapid7 MDR could definitely be lower, as these are expensive systems, especially if you have the MDR. They could work on the price.

    For how long have I used the solution?

    I have been working with Rapid7 MDR for about two years.

    What do I think about the stability of the solution?

    I would rate Rapid7 MDR as a 10 for stability; it has always been there and has never been down.

    What do I think about the scalability of the solution?

    The ability to scale Rapid7 MDR is really super easy, so I would rate it a 10 as well.

    How are customer service and support?

    I would rate Rapid7 technical support as definitely a 10, because whenever we have had any problems, it is really fast and sensitive to our knowledge. I get the help I really need, and it is fast, so it is really good.

    Which solution did I use previously and why did I switch?

    I have only worked with Rapid7 when it comes to MDR; I have no experience with other products.

    How was the initial setup?

    Based on my experience, it is really easy to start working with Rapid7 MDR; you are up and running in a day or two.

    The initial setup process for Rapid7 MDR is really easy; it was really easy for us.

    What about the implementation team?

    We did the setup processes in-house for Rapid7 MDR ourselves.

    Which other solutions did I evaluate?

    The main competitor for Rapid7 MDR would be CrowdStrike, in my opinion.

    I have not looked into CrowdStrike; I do not know the specifics of what they call it, but they have the big offerings as well.

    What other advice do I have?

    I would definitely recommend Rapid7 MDR to other users. I would rate this review a 10.

    reviewer2686596

    Managed detection has transformed our soc by improving visibility and speeding incident response

    Reviewed on Jun 03, 2026
    Review provided by PeerSpot

    What is our primary use case?

    Rapid7 MDR  is our managed service that serves as our SOC and represents our starting point in utilizing a solution for cybersecurity. Rapid7 MDR  is the primary use case for our company's SOC.

    What is most valuable?

    The consulting and monthly consulting and reporting are very useful features that we find most valuable.

    Having a dedicated cybersecurity advisor through Rapid7 MDR helps us align our cybersecurity strategy to the up-to-date measurements and controls that we can take, which impacts how we align our security program with business needs.

    With a very small IT operations team, we have experienced a positive impact from Rapid7 MDR. In the past, we had much effort to handle incidents, and now with the SOC on our side, the process is more streamlined, and we are much faster than before.

    My impression of the Risk-Aware Detection features is positive; they work well for us.

    We are starting to get into the AI solutions from Rapid7 MDR for our SIEM , but we are in the very beginning stages, focusing on AI-assisted Risk-Aware Investigation workflows.

    We are using the integrated MDR for Microsoft environments feature. Up to now, it works well regarding its detection and response capabilities for Microsoft-centric environments.

    Now we have a clear view of what has happened in our tenant, which has impacted our incident recovery process positively; before, we did not have this view. We have many signals, so we can control them and check if we are on the right path or if it is just a false incident, and it works very well. In the last several months, we have seen more than we have seen in the previous two years.

    What needs improvement?

    AI is present, and I think Rapid7 MDR could add good reporting, more reporting, and perhaps more templates in the future to make the product even better.

    For how long have I used the solution?

    Since the beginning of the year, we have been using this tool.

    What do I think about the stability of the solution?

    Rapid7 MDR works really well; we are completely satisfied with it. It is a nice service and I believe we have everything we need. From my perspective, I have no improvements to suggest. There is much more we have to discover.

    What do I think about the scalability of the solution?

    I do not think there are scalability issues regarding extending usage in the future.

    How are customer service and support?

    When ten is the best, I would rate their technical support at a ten.

    Which solution did I use previously and why did I switch?

    We have Rapid7 IVM and SIEM , and we are still using them. We have now added Rapid7 MDR as a service, which reflects our previous positive experience with Rapid7 solutions.

    How was the initial setup?

    I cannot speak to how the initial setup was because we had Rapid7 IVM and SIEM before, and that setup occurred before my time. The setup for Rapid7 MDR was very simple because we already had half of the infrastructure in place.

    Which other solutions did I evaluate?

    We evaluated many other solutions for various situations, but ultimately we chose Rapid7 MDR because of the price and the service, which were perfect for us.

    What other advice do I have?

    I find the pricing reasonable and competitive.

    Rapid7 MDR is hybrid regarding whether it is on-premises, cloud-based, or hybrid.

    I purchased Rapid7 MDR through our IT supplier.

    Five people, at most, are working with the product in our company, indicating the usage is currently pretty limited.

    The interface is very handy and user-friendly.

    I would say Rapid7 MDR is popular; Rapid7 is a well-known name in my region.

    I would rate this product a ten out of ten.

    Shrikrishna Kashid

    Threat detection has improved for AI-driven traffic but confidence in AI security remains low

    Reviewed on May 29, 2026
    Review provided by PeerSpot

    What is our primary use case?

    Our primary use cases focus on threat detection and network-related security concerns, with an emphasis on cybersecurity-related areas.

    What is most valuable?

    My team is satisfied with the current capabilities, though there are certainly areas for improvement. Rapid7 MDR  has not covered all the areas we need, which is why we also utilize Zscaler. For personalized security for developers, testers, and other audiences who are exposing their network to risk, we definitely need very micro-level monitoring of requests and network activity.

    All stakeholders claim that Rapid7 MDR  is very effective at identifying threats in today's AI era. It is quite difficult for all of us to identify what type of code or requests are coming through. This improvement is very important to the product itself and its realignment. We raised a request, and Rapid7 MDR has made changes to their product by conducting extensive research and development with thorough testing.

    What needs improvement?

    There are multiple areas for improvement, especially regarding generative AI-related threats. Secondly, proxy communication happens through agentic AI, making it very difficult to identify whether it is agentic AI, a human, or a hacker. That filtering and identification will need to be improved in Rapid7 MDR. Many products still do not make that effort, but Rapid7 MDR has started to address this; however, this remains a drawback at the moment. We moved our own artificial intelligence product, and our developers and testers are using it, but we still restrict its use to inside our Fujitsu  premises. We cannot allow it to go outside because we do not have that level of trust at the moment.

    It is quite difficult to specify all areas at the moment, but there are multiple features needed. Based on our transformation with a combination of cloud technology and artificial intelligence, we are using co-pilot and multiple AI models will require many enhancements aligned with new technology trends in the market. I cannot articulate or name all of them, but we are still not confident in asking customers to use AI in their environment. They are reluctant at the moment because of security concerns and other myths around AI. There should definitely be a tool that gives us the confidence that whatever AI model we are using is secured through that tool. That tool should assure customers that there is a 90% or 98% guarantee that their code or utilization of AI technology will meet the mark. Currently, customers are not flexible in beginning to utilize AI, especially for financial institutions, research and development institutes, or places where sensitive business operations occur or large customer volumes exist. No one can risk it at the moment. People are using co-pilot, chatbots, or bot services, but they are still not confident in utilizing them without taking risks. No one can claim that they are 100% secure in providing those services. We are expecting that type of confidence from Rapid7 MDR and other technologies playing a role in the market.

    For how long have I used the solution?

    We have been using this solution for more than four years.

    How are customer service and support?

    Getting responses from any service industry is challenging. We have an SLA, especially those SLAs from which we really need support based on our customer expectations, particularly for our developers. Every machine has Rapid7 MDR installed. We have our own IT department that is enabled with all training. The thing is that we do not directly rely on Rapid7 MDR for support, but we have built up our own competency with Rapid7 MDR. Only for very urgent issues do we get support from Rapid7 MDR, but that also depends upon the contract. We do not have extensive experience where we frequently interact with Rapid7 MDR, but wherever there is a setting, configuration management, or something similar, we are getting support from their technical or non-technical staff. It is about how you build your relationship with them. We are training our employees and providing them with training, and once they are trained, we believe this is a common shared responsibility.

    What's my experience with pricing, setup cost, and licensing?

    The setup cost is reasonable and not so expensive. It is simple and straightforward.

    What other advice do I have?

    We are primarily on Microsoft with a platinum contract, so all products we evaluate are in line with Microsoft's technology stack. Rapid7 MDR and Zscaler are both well-equipped and support Microsoft technology. Since Microsoft has its own products like Defender and others, we still use them for our daily work. I would rate my overall experience with customer service as a 3 out of 10.

    AbhijeetSharma

    Security team has gained deeper analytics and now maintains a stronger risk‑based posture

    Reviewed on May 07, 2026
    Review from a verified AWS customer

    What is our primary use case?

    I am using Rapid7 MDR  for all the devices in a single data center. We have different devices including Windows servers, firewalls, endpoints, and various Arista devices. All those devices log different incidents that are managed by Rapid7 MDR .

    We are using a Microsoft environment for our endpoints. We are collecting syslog logs for that. We also use EDR, and the correlation is quite useful. We have been getting new kinds of alerts and more insight into the endpoints. This proved valuable because we integrated EDR with it.

    What is most valuable?

    We were using an in-house SIEM  before with different use cases and analytics. However, it did not give us more insight into the logs that we were fetching. The benefits that came with Rapid7 MDR is the analysis we are getting now, which is quite useful. Apart from that, we also got user behavior analytics and EDR integration, which helped us considerably.

    Regulatory compliance basically guides us at the moment. Our infrastructure is quite critical, so security posture needs to be well maintained. We are relying on Rapid7 MDR and have had a good experience. It is fulfilling our strategy. We have a risk matrix ourselves that maps with the risk posture we have. We are relying on our in-house risk matrix at the moment, but we also have a good feature with Rapid7 MDR.

    What needs improvement?

    We currently come across more false positives. The tool is a bit more aggressive than other tools. However, this can be fixed with tuning. We are working on tuning it better. Our infrastructure is expanding a lot, so we are getting lots of logs. The ingestion then becomes an issue from a cost perspective. These are the main areas for improvement.

    For how long have I used the solution?

    I have been using the solution for one and a half years now.

    How are customer service and support?

    If we talk about different vendors, there is competition, but the user interface of Rapid7 MDR is quite useful for us. The support is also good. There are different vendors which have more experienced staff. However, Rapid7 MDR has been the best in zero-day attacks and the vulnerabilities that come into picture. We prefer that.

    Which solution did I use previously and why did I switch?

    We were using an in-house SIEM  before with different use cases and analytics. It did not give us more insight into the logs that we were fetching. The benefits that came with Rapid7 MDR is the analysis we are getting now, which is quite useful.

    How was the initial setup?

    It is very easy.

    What about the implementation team?

    We have a team, though we do not have a segregated team for it at the moment. We have around fifty individuals in different places and different responsibilities.

    What's my experience with pricing, setup cost, and licensing?

    The log ingestion is the main criteria that comes into picture. I would not say it is cheap, but it is more efficient. It is economical for us. We evaluated different tools and services before. If we check the functional requirement and financial perspective, this is the best service.

    What other advice do I have?

    We generally do not get into the telemetry part of it, and that is impacting a few things that align with our strategy at the moment. However, we should use it more. We will be contacting the support team for that.

    Regarding scalability, I would rate it a nine. If an organization is looking for an edge in security and they have any kind of on-prem, hybrid, or cloud solution, I think they should go for Rapid7 MDR. Based on my experience, I have evaluated different vendors and this came out to be the better solution for us. I would recommend this. My overall rating for this product is nine.

    View all reviews