We performed a comparison between Rapid7 InsightIDR and Trellix ESM based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We were able to identify criminals attempting to login from China and put a stop on their IP locations."
"I have seen that Rapid7 InsightIDR provides security to the networks and endpoints in the company."
"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."
"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."
"I like that it's a cloud-based solution."
"Very intuitive and easy to set up."
"The product works well. Stability-wise, I rate the solution a ten out of ten."
"Dashboards, including the main screen, provide much-needed information at a glance, without hours of coding and sifting through logs to find it. In case of an actual security incident, I have faith that insightIDR has retained all logs in a secure manner that prevents log tampering as well."
"The most valuable feature is for the security operation center because it provides visibility of all traffic within the company infrastructure."
"The solution's technical support is great."
"It has performed well and delivered the results that I have been looking for."
"The most valuable feature is the capability to correlate different events from different platforms that we feed into it."
"It blocks the things which are not to be allowed. It has an adaptive mode where it learns for itself."
"The most valuable feature is that if the scanning does find something, it quarantines it. Then you can decide what you are going to do with it."
"We are now able to completely monitor our environment so we can review what is there, which is a big win for us."
"It is easy to use and deploy. It comes with user-friendly manuals."
"The main problem lies in the processes within the client's operating systems."
"It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required."
"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."
"Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."
"They should add more configuration and security features to it."
"The APIs can be further improved in Rapid7."
"The integration capabilities of the solution have certain shortcomings where improvements are required."
"Lacks a mobile application."
"The product's stability is an area of concern where improvements are required."
"We cannot add new data sources to the most recent version."
"Cloud integration has room for improvement because they're not full-fledged to integrate with the cloud solutions that come. They use different integration platforms to bring in data, and that needs to be improved."
"I would like to see good analytics in future releases."
"Tech support is required each time there is a system update of the solution."
"I would like to see improvements to the user interface."
"We would welcome integrations with some of the new McAfee acquisitions, e.g., behavioural analytics."
"The disk space needed for events is not clear. In all clients, we had at least more than 100GB free that we could not use."
Rapid7 InsightIDR is ranked 10th in Security Information and Event Management (SIEM) with 30 reviews while Trellix ESM is ranked 19th in Security Information and Event Management (SIEM) with 34 reviews. Rapid7 InsightIDR is rated 8.4, while Trellix ESM is rated 7.4. The top reviewer of Rapid7 InsightIDR writes "Helps in the management of compliance, secret events and information". On the other hand, the top reviewer of Trellix ESM writes "Provides visibility of all the traffic within the company infrastructure". Rapid7 InsightIDR is most compared with Darktrace, Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM and IBM Security QRadar, whereas Trellix ESM is most compared with ArcSight Enterprise Security Manager (ESM), IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM and Trellix Helix. See our Rapid7 InsightIDR vs. Trellix ESM report.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.