Rapid7 InsightIDR vs Sentinel comparison

Rapid7 InsightIDR
Read 31 Rapid7 InsightIDR reviews
  • 6,420 Views
  • 3,425 Comparison Views
95% willing to recommend
Sentinel
Read 15 Sentinel reviews
  • 1,554 Views
  • 1,625 Comparison Views
80% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Rapid7 InsightIDR and Sentinel based on real PeerSpot user reviews.

Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Rapid7 InsightIDR vs. Sentinel Report (Updated: June 2024).
Buyer's Guide
Rapid7 InsightIDR vs. Sentinel
June 2024
Download the complete report
Helped 787,061 peers since 2012
 

Categories and Ranking

Rapid7 InsightIDR
Ranking in Security Information and Event Management (SIEM)
9th
Average Rating
8.4
Number of Reviews
31
Ranking in other categories
User Entity Behavior Analytics (UEBA) (3rd), Endpoint Detection and Response (EDR) (21st), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (12th)
Sentinel
Ranking in Security Information and Event Management (SIEM)
16th
Average Rating
7.6
Number of Reviews
15
Ranking in other categories
No ranking in other categories
 

Market share comparison

As of June 2024, in the Security Information and Event Management (SIEM) category, the market share of Rapid7 InsightIDR is 4.0% and it increased by 25.5% compared to the previous year. The market share of Sentinel is 5.7% and it increased by 508.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
Unique Categories:
User Entity Behavior Analytics (UEBA)
13.1%
Endpoint Detection and Response (EDR)
0.8%
No other categories found
 

Featured Reviews

Agustinus DWIJOKO - PeerSpot reviewer
Nov 7, 2023
A tool to detect malicious activities and provide security to networks and endpoints
Rapid7 InsightIDR helps me detect any malicious activities in any endpoints in my company I have seen that Rapid7 InsightIDR provides security to the networks and endpoints in the company. With Rapid7 InsightIDR, you must install the Insight Agent, after which you may get to see some of the

Read full review
JaideepSingh - PeerSpot reviewer
Jul 26, 2023
An automated solution that helped me detect threats in less than half the time it used to take
Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network. We also got multiple kinds of logs. By running some queries from the logs, we could find and fix the anomalies in the environment. Sentinel's threat visibility was great at telling us if we had something going on in our environment. We had to set up alerts in our environment based on the logs. If we had the right alerts set up, we got notified about threats and where security was lacking, so we could also take care of that. Sentinel's threat intelligence helped us prepare and take proactive steps for potential threats before they hit. Having preparation before a threat has helped our security operations. When I was using it, I used to keep going into my dashboards and looking for any threats on a weekly basis, or maybe two or three times a week. Based on that, we would recommend certain changes to the server and infrastructure teams to block or allow some ports. Sentinel's threat intelligence helped plan security against risks.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Integration with threat modeling from the Metasploit and InsightIDR repositories."
"Features for user behavior analytics and the rules for attack review are good."
"Log search allows us to dive deep into aggregated logs and query all event types at once.​"
"Another very important part of insightIDR is the ability to collect data from endpoint devices via agent software. With a large remote workforce, this allows visibility into the endpoints that are connected to the internet, but not to the corporate network."
"The solution is very stable and works very well for what I need it to do."
"The web interface is great — very useful and user-friendly."
"It improved my organization by building a security alerting program."
"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."
More Rapid7 InsightIDR pros
"The solution lets us get all the logs properly and regularly monitor customer infrastructure."
"The stability is phenomenal and we never had any issues with downtime or even had to restart."
"The most valuable feature of this solution is that it provides a central locking system for many event sources."
"The tool is simple to use."
"The most valuable feature is the flexible log for identifying security threats inside an application. Sentinel is very good at this."
"The solution's Kusto Query Language (KQL) execution time is pretty good."
"One of the most valuable features is the business intelligence engine. It's very important because it keeps track of everything that's happening and alerts us if something is different than expected. The first time I used it, I was shocked at how well it performed. Another valuable feature that I think makes this product worth the price you pay for it is that it connects to basically every system that provides some form of logging, and it's very easy to set up what triggers this."
"The native integration with out-of-the box format is hassle free and allows data to be used advantageously."
More Sentinel pros
 

Cons

"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses.​"
"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."
"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."
"Needs a better ability to customize the check within the console."
"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."
"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."
"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."
"It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required."
More Rapid7 InsightIDR cons
"I rate Sentinel a six out of ten for scalability."
"There is no integration in the web-side of the tool."
"I would like to see a better reporting work structure on the dashboard."
"This product's connection to certain types of cloud systems could be improved. We can do Microsoft, Google, and Amazon, but there are a lot of other things happening in the cloud that we do not connect well enough to. This product could be improved with better connection to cloud-based solutions."
"It is an ancient product."
"The solution does not allow outsourced authorizations."
"You need a lot of Unix scripting knowledge in order to manage the tool, which is one of the main issues that we faced."
"Creating a drag-and-drop dashboard or workbook in Sentinel is a little more complex compared to other tools like LogRhythm and IBM QRadar."
More Sentinel cons
 

Pricing and Cost Advice

"It is more reasonably priced than other vendors."
"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."
"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help.​"
"​Accurately predict your licensing counts as this is a subscription based product.​"
"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
"The pricing and licensing are competitive."
"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."
"Rapid7 InsightIDR charges us based on the endpoints we connect to."
More Rapid7 InsightIDR pricing and cost advice
"We receive a pricing discount because of our ongoing partnership with Micro Focus."
"We inquired about getting support from the vendor, Micro Focus, but the cost was very high."
"Sentinel is a subscription-based solution."
"Sentinel is moderately priced."
"Sentinel's slightly on the expensive side."
"The solution’s pricing is aligned with its competitors."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
787,061 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Manufacturing Company
8%
Financial Services Firm
8%
Government
6%
Computer Software Company
17%
Government
11%
Financial Services Firm
10%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What do you like most about Rapid7 InsightIDR?
During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightIDR?
We chose Rapid7 because of its price. IBM QRadar charges us based on data storage. Rapid7 InsightIDR charges us based on the endpoints we connect to. We are satisfied with the product’s price.
See all answers
What do you like most about NetIQ Sentinel?
The solution lets us get all the logs properly and regularly monitor customer infrastructure.
See all answers
What is your experience regarding pricing and costs for NetIQ Sentinel?
Sentinel is moderately priced.
See all answers
What needs improvement with NetIQ Sentinel?
While it is great with Microsoft, there is a need for more flexibility in customization, especially when working with different vendors and platforms. Also, it would be helpful if we could easily s...
See all answers
 

Comparisons

Darktrace vs Rapid7 InsightIDR Logo
Darktrace vs Rapid7 InsightIDR
Compared 15% of the time
Microsoft Sentinel vs Rapid7 InsightIDR Logo
Microsoft Sentinel vs Rapid7 InsightIDR
Compared 13% of the time
Splunk Enterprise Security vs Rapid7 InsightIDR Logo
Splunk Enterprise Security vs Rapid7 InsightIDR
Compared 8% of the time
Rapid7 InsightVM vs Rapid7 InsightIDR Logo
Rapid7 InsightVM vs Rapid7 InsightIDR
Compared 7% of the time
IBM Security QRadar vs Rapid7 InsightIDR Logo
IBM Security QRadar vs Rapid7 InsightIDR
Compared 4% of the time
More Rapid7 InsightIDR Competitors
IBM Security QRadar vs Sentinel Logo
IBM Security QRadar vs Sentinel
Compared 31% of the time
Splunk Enterprise Security vs Sentinel Logo
Splunk Enterprise Security vs Sentinel
Compared 30% of the time
Google Chronicle Suite vs Sentinel Logo
Google Chronicle Suite vs Sentinel
Compared 16% of the time
Wazuh vs Sentinel Logo
Wazuh vs Sentinel
Compared 12% of the time
USM Anywhere vs Sentinel Logo
USM Anywhere vs Sentinel
Compared 1% of the time
More Sentinel Competitors
 

Product Reports

Buyer's Guide
Rapid7 InsightIDR
May 2024
Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
Buyer's Guide
Sentinel
May 2024
Sentinel reportDownload Sentinel product report
 

Also Known As

InsightIDR
NetIQ Sentinel, Novell SIEM
 

Learn More

Rapid7
OpenText
 

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Sentinel is a full-featured Security Information and Event Management (SIEM) solution that simplifies the deployment, management and day-to-day use of SIEM, readily adapts to dynamic enterprise environments and delivers the true "actionable intelligence" security professionals need to quickly understand their threat posture and prioritize response.

 

Sample Customers

Liberty Wines, Pioneer Telephone, Visier
Faysal Bank, GaVI, Handelsbanken, ISC MÂȘnster, Lambeth Council, Swisscard, The Municipality of Siena, Tukes, University of Dayton, University of the Sunshine Coast
Buyer's Guide
Rapid7 InsightIDR vs. Sentinel
June 2024
Free Report: Rapid7 InsightIDR vs. Sentinel
Find out what your peers are saying about Rapid7 InsightIDR vs. Sentinel and other solutions. Updated: June 2024.
DOWNLOAD NOW
787,061 professionals have used our research since 2012.
See our Rapid7 InsightIDR vs. Sentinel report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.