We performed a comparison between Rapid7 InsightVM and SecurityScorecard based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Qualys, Rapid7 and others in Risk-Based Vulnerability Management."The pricing is reasonable."
"The most valuable features are its reporting capabilities and the host discovery functionality."
"We feel the interface is very good. It is very easy to use, even a nontechnical person can use it."
"It is good and fits well with pretty much all of our use case needs."
"I like Rapid7's scan optimization options."
"We can create our own templates."
"The product is scalable."
"When you connect any new device to the network, Rapid7 has the ability to detect the new device immediately. It can scan that device to detect if it has any vulnerability. It tells you what is vulnerable and what has been misconfigured. It also tells you what is the risk of that misconfiguration or lack of patches and how to resolve the problem."
"The solution helps identify our environment's vulnerabilities."
"I rate the product's initial setup phase a nine on a scale of one to ten, where one is a difficult setup phase, and ten is an easy setup process."
"One of its most effective features for risk identification is its enterprise-ready automation for third-party risk measurements."
"With its automated approach, nothing is missed on the IPs your organization is related to."
"There is room for improvement on its cloud side. In the next release I would like to see better reporting."
"This solution integrates with another module in Metasploit, that doesn't exist in the other solutions. It is subscribed to on our roadmap, but we chose to implement both Nexppose and AppSpider."
"The product does not have the capability to do dynamic scanning of non-web applications."
"Within InsightVM, there is no feature to assign a ticket. If we can have more API calls, we can do that from InsightVM."
"I would say that it improved our visibility, but it left things open."
"A definite improvement would be to make it easier to run ad-hoc scans without needing to assign the asset to a site or group."
"The solution could improve by being more secure."
"It is still not a fully cloud-based solution. It will be helpful for customers if it is a complete cloud solution. It is a hybrid solution at the moment."
"The tool needs to have the ability to mitigate vulnerabilities with alternative solutions."
"They could improve the process with a questionnaire module for the product."
"There could be more information in regards to solving problems like hints on what specifically to look for."
"SecurityScorecard's technical team's response time is an area that my company expects to be made faster."
Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews while SecurityScorecard is ranked 5th in IT Vendor Risk Management with 4 reviews. Rapid7 InsightVM is rated 8.0, while SecurityScorecard is rated 8.0. The top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". On the other hand, the top reviewer of SecurityScorecard writes "Easy-to-deploy product with good technical support services ". Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Rapid7 InsightIDR, whereas SecurityScorecard is most compared with Bitsight Third-Party Risk Management, Recorded Future, RiskRecon, Tenable Nessus and Black Kite.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.