No more typing reviews! Try our Samantha, our new voice AI agent.

Aikido Security vs Rapid7 InsightCloudSec comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.5
Qualys TotalCloud boosts efficiency, reduces manual effort, decreases risk, and offers significant cost savings with a notable ROI.
Sentiment score
8.4
Aikido Security enhances efficiency, reduces costs, simplifies compliance, and increases productivity by automating and consolidating security tasks.
Sentiment score
6.0
Rapid7 InsightCloudSec saves costs, reduces risks, automates tasks, and streamlines compliance, enhancing security and operational efficiency.
It has saved about 90% of our time.
Senior Consultant at a consultancy with 10,001+ employees
TotalCloud has generated overall savings of 30 to 40 percent across various departments.
Security Manager at a consultancy with 10,001+ employees
CallStream helps us integrate and automate tasks.
Senior Security Consultant at CyberNxt Solutions LLP
Aikido Security caught a critical remote code execution vulnerability in my Python machine learning pipelines before it reached production.
Product Manager at Zidio development
Since we got rid of that, our productivity has increased, I believe, by thirty-two percent.
SecOps Engineer at IriusRisk
We were expecting to complete the compliance in a month, but I figured out Aikido Security could do it within a week for all our 13 repositories.
Co-Founder & CTO at Mango Giraffe
By catching issues early, Rapid7 InsightCloudSec helps us prevent costly breaches or regulatory fines; for example, automating patching and misconfiguration audits can save thousands in operational overhead.
Site Reliability Engineer at a comms service provider with 501-1,000 employees
It provides a good security posture and helps handle misconfigurations and day-to-day remediations.
Senior Cloud Security Engineer at a educational organization with 10,001+ employees
I can confirm money and time savings with Rapid7 InsightCloudSec, as we can scan the entire IP range simultaneously instead of manually checking each asset for vulnerabilities.
Junior systems engineer at a tech services company with 11-50 employees
 

Customer Service

Sentiment score
7.4
Qualys TotalCloud support is praised for efficiency and staff knowledge but criticized for delays and inconsistent quality.
Sentiment score
7.4
Aikido Security's customer service is efficient, responsive, and provides technical, proactive support with highly valued resources for quick issue resolution.
Sentiment score
4.9
Rapid7 InsightCloudSec customer service receives mixed reviews, excelling in responsiveness but needing improvement in communication and local presence.
They are helpful, respond to my queries, and can answer any question.
Developer at a consultancy with 10,001+ employees
Qualys's tech support is highly responsive, providing multiple ways to interact with them.
Service Manager, Security Operations at CDA IT SOLUTIONS
Qualys' customer service provides quality answers, but the response time is long, even though it is within the SLA.
Works at a consultancy with 10,001+ employees
Aikido Security was the easiest to use, the easiest to onboard, and the one with the most active customer support.
SecOps Engineer at IriusRisk
Their team proactively reached out after signup to ensure we were set up correctly.
Product Manager at Zidio development
Customer support is good; if you raise a query, hardly within a day, your issues get resolved.
Sr. Project Analyst [Cybersecurity] at a consultancy with 10,001+ employees
On a scale of 1 to 10, the customer support would be rated a 10, as responses are typically received within about half an hour to an hour when creating a ticket.
Senior Platform Engineer Lead at a tech services company with 1,001-5,000 employees
They have excellent support with internal Slack channels and are directly reachable through Teams.
Senior Cloud Security Engineer at a educational organization with 10,001+ employees
I interacted with customer support after an endpoint compromise incident, and they responded quickly and provided clear insights that were essential for resolving the situation.
Platform Engineer at Cedar Gate Technologies, LLC
 

Scalability Issues

Sentiment score
7.8
Qualys TotalCloud excels in scalability, efficiently supporting diverse environments and business sizes, though it may require skilled management.
Sentiment score
7.9
Aikido Security scales efficiently with multiple projects and teams, though organizational challenges and minor performance lags may occur.
Sentiment score
5.8
Rapid7 InsightCloudSec is a scalable, adaptable SaaS tool providing reliable cloud visibility but may require specific configurations.
We started our organization about nine months back. We started with about 30 users, and we now have more than 100 users.
CIO at a venture capital & private equity firm with 11-50 employees
Our organization currently uses it to manage over 1200 web applications.
Analyst, Information Security at Infosys
It is absolutely scalable, and I would rate its scalability as nine out of ten.
retired at a consultancy with 10,001+ employees
That kind of reliability becomes invisible when it works well, which is exactly what you want from a security tool running in your CI/CD pipelines.
Product Manager at Zidio development
Aikido Security scales well by supporting multiple projects, repositories, and development teams on a single platform.
Full Stack Developer at Sri Krishna Arts and Science
You can deploy it on your team, and if you have a large team, it works very well.
Sr. Project Analyst [Cybersecurity] at a consultancy with 10,001+ employees
I have not experienced performance issues as I add more assets, and everything operates smoothly within one console.
Junior systems engineer at a tech services company with 11-50 employees
 

Stability Issues

Sentiment score
8.3
Qualys TotalCloud is highly stable with reliable support, 99.9% uptime, minimal bugs, and effective maintenance communication.
Sentiment score
8.8
Aikido Security is consistently reliable with no major disruptions, displaying dependable performance and precise security findings despite occasional delays.
Sentiment score
8.0
Users are pleased with Rapid7 InsightCloudSec's stability, though some experience slight slowness due to its SaaS platform.
Overall, the support provided has been excellent.
Analyst, Information Security at Infosys
It is a stable solution, which is why we chose it.
CIO at a venture capital & private equity firm with 11-50 employees
Continuous monitoring is crucial to ensure system stability and avoid vulnerabilities or threats.
Developer at a consultancy with 10,001+ employees
The platform has been reliable and provides accurate security findings.
Full Stack Developer at Sri Krishna Arts and Science
Rapid7 InsightCloudSec works without any stability issues so far.
Junior Security Analyst at a financial services firm with 51-200 employees
 

Room For Improvement

Users suggest enhancing Qualys TotalCloud with clearer reports, better integration, intuitive UI, AI risk assessments, and improved documentation.
Users want improved Jira integration, customization, niche language support, faster scans, better documentation, alerts, and affordable pricing.
Rapid7 InsightCloudSec needs UI/UX improvements, better third-party integration, enhanced reporting, and refined risk prioritization and detection capabilities.
Ideally, the scanner should automatically detect and scan all subdomains, even if not explicitly defined, ensuring comprehensive vulnerability assessment.
Analyst, Information Security at Infosys
Ideally, updates should be more immediate, enabling quicker implementation of solutions.
Project Lead at Persistent Systems
Our goal is to integrate all these functions into Qualys, creating a single dashboard for comprehensive security monitoring and management.
Senior Information Security Engineer at a consultancy with 10,001+ employees
I would love to see a Terraform module for Aikido Security.
SecOps Engineer at IriusRisk
I had a certain object with a UUID that was being considered as a private secret key or API key, which was not the case.
Co-Founder & CTO at Mango Giraffe
Aikido Security tells you what is vulnerable, but sometimes the fix suggestions are generic.
Product Manager at Zidio development
Rapid7 InsightCloudSec already provides us real-time feedback loops, but if it also provides real-time feedback to the developers, then it would help the application shift left, meaning the security will shift left as well.
Site Reliability Engineer at a comms service provider with 501-1,000 employees
Rapid7 InsightCloudSec needs improvements such as AI-driven risk prioritization, proactive cloud risk modeling, advanced IAM privilege analysis, multi-cloud attack path mapping, pre-built automated hardening, defining stronger policy as code support, better container and serverless coverage, and cost optimization insight along with safe auto-remediation with rollback improvements.
Cybersecurity analyst at Cornerstone OnDemand
If you can improve the traditional detection rules to reflect current detection rules, it would make it significantly easier for us to manage, as we constantly need to check legacy rules to update or possibly turn them off. Updating the legacy rules should be a priority.
SOC analyst at a media company with 1,001-5,000 employees
 

Setup Cost

Qualys TotalCloud's pricing is high yet justified by comprehensive features and flexibility, benefiting larger enterprises seeking robust security.
Rapid7 InsightCloudSec offers competitive, cost-efficient cloud security management with reasonable pricing, seamless licensing, and straightforward setup.
Qualys TotalCloud's pricing is currently acceptable, it is becoming increasingly expensive.
Senior Manager at a financial services firm with 10,001+ employees
Pricing is managed by our finance team; however, Qualys TotalCloud offers cost-effective licensing flexibility.
IT Manager at a consultancy with 10,001+ employees
Qualys TotalCloud is expensive, but it offers a premier solution with no headaches.
Vice President at Inspira Enterprise
I used the free trial, which was sufficient for evaluating the platform and its core features.
Full Stack Developer at Sri Krishna Arts and Science
It is cheaper.
Senior Cloud Security Engineer at a educational organization with 10,001+ employees
The more numbers you have, the less costly the product becomes, as licensing operates on volume.
Junior systems engineer at a tech services company with 11-50 employees
While it was not overly expensive, I do wish for more discounts for bulk purchases since we have implemented it widely across our cloud security posture.
Platform Engineer at Cedar Gate Technologies, LLC
 

Valuable Features

Qualys TotalCloud offers comprehensive vulnerability detection, cloud security management, and automation with insightful dashboards for efficient threat management.
Aikido Security offers an intuitive interface, seamless integrations, and effective tools to enhance productivity and streamline security workflows.
Rapid7 InsightCloudSec enhances security with frameworks, threat detection, automation, and AI log searches, boosting efficiency and response speed.
This view of risk helps reduce the work we would have to do to combine multiple sources to prioritize risk.
Works at a consultancy with 10,001+ employees
It will help cybersecurity professionals monitor the cloud and find vulnerabilities.
Developer at a consultancy with 10,001+ employees
We are enjoying the new feature, FlexScan, which is valuable for Internet-facing VMs.
Senior Consultant at a consultancy with 10,001+ employees
We were able to get all codebase vulnerability fixes within a week for all our 13 or 14 repositories that we had.
Co-Founder & CTO at Mango Giraffe
Security shifted left, meaning issues were caught during development rather than after deployment.
Product Manager at Zidio development
My favorite feature is the dependency vulnerability scanning because it quickly identifies the risk in third-party packages, which saves me time in finding vulnerabilities.
Full Stack Developer at Sri Krishna Arts and Science
Using Rapid7 InsightCloudSec alongside our ManageEngine patch management module positively impacts my organization by scanning assets deeply and providing all identified vulnerabilities, from zero-day to any vulnerabilities on an asset, addressing those that ManageEngine might not identify.
Junior systems engineer at a tech services company with 11-50 employees
Rapid7 InsightCloudSec has helped us save thirty percent time in our log retrievals, and it completely changed log searching, making it really fast when we search for logs, with no prior knowledge required.
Site Reliability Engineer at a comms service provider with 501-1,000 employees
Rapid7 InsightCloudSec positively impacts my organization by integrating tightly with my existing vulnerability management process and workflows, particularly in creating a new project and implementing trigger-based scanning.
Assistant Vice President for Security Operation Center at Sohar International Bank
 

Categories and Ranking

Qualys TotalCloud
Sponsored
Ranking in Cloud Security Posture Management (CSPM)
8th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Vulnerability Management (11th), Container Security (11th), Cloud Workload Protection Platforms (CWPP) (7th), SaaS Security Posture Management (SSPM) (1st), Cloud-Native Application Protection Platforms (CNAPP) (6th)
Aikido Security
Ranking in Cloud Security Posture Management (CSPM)
18th
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
5
Ranking in other categories
Application Security Tools (16th), Static Application Security Testing (SAST) (11th), Web Application Firewall (WAF) (24th), Container Security (24th), Software Composition Analysis (SCA) (9th), Static Code Analysis (8th), Dynamic Application Security Testing (DAST) (7th), DevSecOps (7th), Application Security Posture Management (ASPM) (6th)
Rapid7 InsightCloudSec
Ranking in Cloud Security Posture Management (CSPM)
13th
Average Rating
7.8
Reviews Sentiment
6.3
Number of Reviews
13
Ranking in other categories
Cloud Management (13th), Cloud-Native Application Protection Platforms (CNAPP) (11th), AI Observability (9th)
 

Mindshare comparison

As of July 2026, in the Cloud Security Posture Management (CSPM) category, the mindshare of Qualys TotalCloud is 1.8%, up from 1.2% compared to the previous year. The mindshare of Aikido Security is 0.9%, up from 0.1% compared to the previous year. The mindshare of Rapid7 InsightCloudSec is 1.3%, down from 1.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
Qualys TotalCloud1.8%
Rapid7 InsightCloudSec1.3%
Aikido Security0.9%
Other96.0%
Cloud Security Posture Management (CSPM)
 

Featured Reviews

RO
IT Security Expert at Alior Bank S.A.
Unified risk scoring has improved our cloud visibility and simplifies remediation priorities
Qualys TotalCloud provides unified vulnerability and threat assessment across both IAS and SaaS. This solution provides a single prioritized view of risk, which helps reduce the work I would have to do. We are no longer based on CVSS; we are based on Qualys risk scoring, which is based on CVSS plus internal findings made by Qualys, and then assigns its own score. The TruRisk insight feature has found a small number of assets with high vulnerability scores, though I am cautious since some information is classified. Qualys TotalCloud has positively impacted our bank's performance, and we have definitely seen benefits after implementing this solution.
B Goswami - PeerSpot reviewer
Product Manager at Zidio development
Security has shifted left and now catches vulnerabilities early in our development workflow
There are a few areas for improvement. The first is scan speed. For large repositories, initial scans can be slow. Incremental scanning helps, but full scans still take considerable time. The second thing is the false positive rate. While Auto-Triage is good, it is not perfect. Occasionally, genuine issues get filtered out and real false positives slip through. The third one is remediation guidance. Aikido Security tells you what is vulnerable, but sometimes the fix suggestions are generic. More specific, actionable remediation steps would save developer time. The fourth one is IDE integrations. It currently works best in CI/CD pipelines. A proper VS Code or JetBrains plugin for real-time scanning while coding would be a significant improvement. From a customer point of view, the following things could change. The first thing is documentation for custom rules. Aikido Security allows you to create custom scanning rules, but the documentation for this feature is surprisingly thin. I spent considerable time in community forums and with trial and error just to configure basic custom rules. Step-by-step guides with real-world examples would make this feature much more accessible. The second thing is better Slack and communication integrations. Currently, security alerts come through email and dashboard notifications, but our team lives in Slack. A more configurable Slack integration that sends contextual alerts directly to the relevant developer, not just a generic channel notification, would dramatically improve response time. The third one is historical trend reporting. While Aikido Security shows current vulnerability status well, generating historical reports showing security posture improvement over time is limited. For presenting security progress to management or stakeholders, better exportable trend reports would be very valuable.
Arun Babu - PeerSpot reviewer
SOC analyst at a media company with 1,001-5,000 employees
Daily endpoint monitoring has improved investigations and saved time but detection rules still need tuning
It is important to note that Rapid7 InsightCloudSec's features are not 100% precise, but I find about 70% of the time it is satisfactory. I would like to suggest that you improve it to be more precise, ideally making it 100% if possible. Some cases in Rapid7 InsightCloudSec indicate that the log is not enough, as they mostly just generate alerts, and the synchronization between data connectors is often problematic, particularly in terms of not being in sync always, especially between the AD and Rapid7 alerts, which generates numerous false positives. Additionally, the traditional rules should be updated, as this is a main point worth mentioning since we spend a lot of time fine-tuning these traditional rules. I suggest improving the legacy detection rules. If there are any authentication cases, such as impossible travel activity where a user has their SharePoint hosted in a different location, Rapid7 can often trigger alerts, creating confusion as we cannot fine-tune it properly. Another issue is with honeypot access. We sometimes lack necessary logs because Defender's advanced threat protection scanning gets detected as honeypot activity by Rapid7, leading to annoying and noisy alerts that we need to constantly close. If you can improve the traditional detection rules to reflect current detection rules, it would make it significantly easier for us to manage, as we constantly need to check legacy rules to update or possibly turn them off. Updating the legacy rules should be a priority.
report
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
17%
Financial Services Firm
14%
Construction Company
8%
Comms Service Provider
7%
Comms Service Provider
11%
Manufacturing Company
11%
Financial Services Firm
10%
Computer Software Company
8%
Financial Services Firm
10%
Manufacturing Company
9%
Comms Service Provider
9%
Insurance Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise4
Large Enterprise29
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise2
Large Enterprise2
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise4
Large Enterprise8
 

Questions from the Community

What needs improvement with Qualys TotalCloud?
Areas that need improvement in every solution include the remediation part. The remediation steps should be simple en...
What is your primary use case for Qualys TotalCloud?
Our use case involves the assets that we have under cloud, the assets exposed to the internet, and the internal appli...
What needs improvement with Aikido Security?
There are a few areas for improvement. The first is scan speed. For large repositories, initial scans can be slow. In...
What is your primary use case for Aikido Security?
I have been using Aikido Security for approximately more than one year, primarily for securing our development pipeli...
What advice do you have for others considering Aikido Security?
I have several practical pieces of advice for anyone considering Aikido Security. The first one is to connect all rep...
What is your experience regarding pricing and costs for Rapid7 InsightCloudSec?
The pricing, setup cost, and licensing for Rapid7 InsightCloudSec are reasonable, and since our organization is growi...
What needs improvement with Rapid7 InsightCloudSec?
I would say that because Rapid7 InsightCloudSec does not have automatic patching capabilities, it provides recommenda...
What is your primary use case for Rapid7 InsightCloudSec?
In my role, my main use case for Rapid7 InsightCloudSec is for vulnerability management, where I scan my machines to ...
 

Also Known As

Qualys TotalCloud with FlexScan
No data available
DivvyCloud
 

Overview

 

Sample Customers

Information Not Available
FinTech GoCardless ZIP CertifID HealthTech Dental Intelligence PE & Group Techstars Cronos Group Security Tech Human Security Tines HR Tech Simployer Recruitee Agency November Five Other Lighthouse (Hospitality Tech) Smokeball (LegalTech) Runna (B2C Tech) GEA Group (Manufacturing) Community fibre (Telecom) n8n (Software Development)
Fannie Mae, 3M, PizzaHut, Spotify, Autodesk, Discovery
Find out what your peers are saying about Aikido Security vs. Rapid7 InsightCloudSec and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.