We performed a comparison between Rapid7 InsightVM and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Qualys, Rapid7 and others in Risk-Based Vulnerability Management."The reports in Rapid7 InsightVM are useful when compared to competitors."
"I rate InsightVM eight out of 10 for ease of setup. It takes two or three engineers to deploy. The solution requires some maintenance. It's mainly cleaning up data."
"The solution works well."
"InsightVM's most valuable feature is risk scoring, a formula based on different vectors like the ease of exploitation and the availability of the machine."
"It's easy to use. It's fast, it's a powerful easy to access tool."
"The solution is good because it has a lot of options."
"When you connect any new device to the network, Rapid7 has the ability to detect the new device immediately. It can scan that device to detect if it has any vulnerability. It tells you what is vulnerable and what has been misconfigured. It also tells you what is the risk of that misconfiguration or lack of patches and how to resolve the problem."
"Has great reporting features."
"Ease of correlation, creating correlation searches are easy and you can combine multiple sources with little effort"
"The initial setup is simple, not very complex. Initial deployment takes around 10 to 15 minutes to set up the entire base for Splunk including all three tiers."
"We primarily use it to correlate logs throughout the enterprise for both searching and use in investigations."
"Visualizations are the best way to understand deviation techniques from the norm."
"The completeness of the solution is what we like the most."
"The feature that we use the most is the correlation search engine within ES."
"We can ingest and correlate data from virtually any type of system."
"Splunk Enterprise Security is able to process a huge amount of data without any issues."
"Reporting could be expanded."
"The InsightVM cannot scan if we connect to our customer by the VPN."
"There are not enough templates, and the reporting is weak with this solution."
"There have been instances where technical support takes a long time to update the status of a ticket, which is something that can be improved."
"Some of our customers want to be completely cloud based, and Rapid7 doesn't offer this as an option."
"It would be nice to have an additional feature that would provide reports on who has logged onto the console or who did what on the console."
"There are end-user needs and expectations that are being overlooked in the development that could be addressed by appointing a customer advisory board."
"The solution needs to improve its vulnerability design to include CVC results."
"We had an instance when Splunk failed and it took us a couple of days to recover."
"The glass table feature does not perform as expected."
"It is a good product, but the Achilles heel for a lot of organizations is the cost model for it because it gets expensive. That's because the model is based on how much data it processes a day, which can be prohibitive, especially if you have a lot of data. A lot of customers may not be ready for the sticker shock on how to fully leverage the product. I realized that the reason for that is that when it was originally designed, it was kind of like a big data modeling application. If they want to have a bigger customer base, they can come out with subsets of their product that are focused on specific things and have different pricing models. It may help with the cost."
"Splunk could have more built-in use case presets that customers can build on and customize."
"Splunk should have more regional data centers in the Middle East."
"The UI can be improved. Dashboards and reports can be better in terms of graphics."
"It works as intended for us, and we are getting everything that we need out of it. If anything, its initial setup can be improved a bit."
"Integrating tools and creating use cases could be easier. It's hard for a junior security engineer with only a couple of years of experience to write use cases. They can do it, but it's much easier in a solution like IBM QRadar. Setting conditions is like a multiple-choice type of thing. It's a more user-friendly process."
Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews while Splunk Enterprise Security is ranked 1st in Security Information and Event Management (SIEM) with 246 reviews. Rapid7 InsightVM is rated 8.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Wiz, whereas Splunk Enterprise Security is most compared with Wazuh, IBM Security QRadar, Dynatrace, Elastic Security and Microsoft Sentinel.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.