External reviews
82 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Promising SIEM Tool
What do you like best about the product?
Incident Response and Excellent SIEM Tool.
What do you dislike about the product?
The GUI could be made more interesting and user friendly.
What problems is the product solving and how is that benefiting you?
Correlation of event and reporting
Recommendations to others considering the product:
Yes
Overall I found InsightIDR to be an excellent products
What do you like best about the product?
Security management program for organization
What do you dislike about the product?
Nothing special as I learned most of things
What problems is the product solving and how is that benefiting you?
For regular issues
Recommendations to others considering the product:
Best place
InsightIDR- Best Cloud SIEM tool
What do you like best about the product?
The Best part of InSightidr, which I like is Attack Behaviour Analytics feature. It help me to analysis what kind of attack has been happening or what type of attack attacker has been performing in my product. Another Feature that is Network Traffic Analysis help me to understand from where traffic is coming from and at which time my system observe load.
What do you dislike about the product?
While using Insightidr still now, I didn't find any dislike in this tool. I will update if I found any dislike.
What problems is the product solving and how is that benefiting you?
InSightIDR helps to understand what type of attacks has been happening on my server, and traffic analysis allows me to be upscale and downscale my server capacity.
Recommendations to others considering the product:
I would recommend InsightIDR for those who are very keen regarding attack happening in server and traffic analysis
Awesome
What do you like best about the product?
Service is most satisfactory and eye catcher
What do you dislike about the product?
Portals should be more user Friendly with regard to customers perspective
What problems is the product solving and how is that benefiting you?
It helps customer in getting incident detection and response well in advance
InsightIDR one stop solution
What do you like best about the product?
InsigthIDR has been an amazing addition to my Cyber Security program. InsightIDR allows for global visibility from a centrally managed and deployed environment. The tool is well constructed, easy to use and has very few limitations. I have been very happy with InsightIDR from deployment through ongoing usage. The Rapid 7 team is great to work with and the enhancements to the product make it a cornerstone in my Cyber Security tool box.
What do you dislike about the product?
Incident reporting lacks some enhancement
What problems is the product solving and how is that benefiting you?
Lack of visibility was the primary business problem that prompted this purschase.
Incident response
What do you like best about the product?
The thorough incident detection that it picks up
What do you dislike about the product?
I thought the tool was awesome and simple to use. The only thing I disliked was the lack of training for it. However, it is very user-friendly.
What problems is the product solving and how is that benefiting you?
What suspicious activity is common and how we can prevent dangerous IPs from contacting our system.
Wonderful Tool InsightIDR
What do you like best about the product?
Asset Inventory tracking, Anomaly detection using artificial intelligence,
What do you dislike about the product?
Become slow when the volume of data increases
What problems is the product solving and how is that benefiting you?
Security Incident and Event Management (SIEM Solution), Advance dashboard to create KPI
Recommendations to others considering the product:
It is one of the best SIEM tool in the market, It works best if you have the other tool integrated from Rapid 7 family. need some improvement in Elasticity search, but the overall experience is pleasing, especially its advanced dashboard.
Its quite interactive, quick-easy integration and easy handling!
What do you like best about the product?
Great visibility for threat incident response, I was moved with its feature on analysing the user and attackers behaviour leading to automated solutions.
What do you dislike about the product?
Overall functionality is great but enhancing new features would require extra cost for licensing.
What problems is the product solving and how is that benefiting you?
Fantastic replacement or my SIEM solution and providing me with a real insight into threat analysis in my client environment.
Good features and Powerful SIEM
What do you like best about the product?
The range of data ingestion options available. It'll ingest pretty much anything you send its way. If you happen to find something out of the norm, I found the product team was really keen to help solve our challenges and come up with solutions. If like us, you happen to use other products such as InsightVM, this product has excellent integration into it. and they continue to merge in other integration components from other 3rd party systems, which I think is great. A key differentiator, I believe, is that the solution doesn't charge based on data storage costs; This is a hugely positive thing, in my mind. When you start looking at SIEM solutions you're going to be asked by other vendors to calculate how much data you need to ingest. If you're new on a journey of implementing a full-featured SIEM, that question is like asking a question 'how long is a piece of string'. You might know what you're currently ingesting, but that's going to grow exponentially as you use the products. (If you have Cyber Insurance coverage, your insurers are going to want to see 12 months of logs held). With Insight IDR you're pricing is based on the number of assets monitored, not how much your logs will be. This makes your budget forecasts easier to plan. Another big plus.. given your data is all cloud-stored, that means you don't have to resort to tricks, as with other vendors, of archiving older data back to on-premise (to seemingly reduce costs).. ultimately that's going to cause you more management overhead as you now have to additionally back up that 'cold data' and have additional systems and processes to manage all of that - just do it the properly first time around (with Insight IDR)
What do you dislike about the product?
I'd like to see the same level of feature functionality with Azure, as they currently provide with AWS. Granted I was an early adopter of Insight IDR, Rapid7 (like many other vendors) went with AWS first. In our business, we manage both Azure and AWS. Many 'Microsoft houses' will use Azure, because of their enterprise agreements.. well ahead of AWS, so I'd have liked to have seen earlier stage product investment in Azure. I'd like to see more features added to try and get near to feature parity with Azure Sentinel (as I think the overall meta-analysis done by Rapid 7 using the Sonar dataset helps give me more contextual views into your risk). Additionally, RBAC needs prioritization they are working to address this, but it's something they do need to sort out. I'm trying to bring other departments into using Insight IDR, but at the moment as the access controls aren't there, I can't open it out to other teams at this time.
What problems is the product solving and how is that benefiting you?
We have a myriad of many different systems, many different vendors, many different work styles. We have a large global workforce who are highly mobile. I often say to people that trying to get all your systems to do what you want is like herding cats.. so I worked my way through all the vendors who could provide a system with a full feature set which would allow us to have 'once a source of truth', or 'one glass of pain' from which I could understand my risk areas that needed to be tackled. Hence Rapid7 was selected for the job. If and when we get to the stage where the alerting becomes too much, we can bring in their consulting arm (who knows the product) to take over the reins to further help us.
Best incident detection and response, authentication monitoring tool
What do you like best about the product?
Incident detection speed and accuracy is very good
What do you dislike about the product?
The monitoring tool view should be made better
What problems is the product solving and how is that benefiting you?
It helps us to identify unauthorized access and also helps up to identify internal and external threats
showing 31 - 40