Try our new research platform with insights from 80,000+ expert users

ArcSight Analytics vs Rapid7 InsightIDR comparison

OpenText and Rapid7 are both solutions in the User Entity Behavior Analytics (UEBA) category. OpenText is ranked #13 with an average rating of 9.0, while Rapid7 is ranked #5 with an average rating of 8.0. OpenText holds a 1.4% mindshare in UBA, compared to Rapid7’s 8.1% mindshare. Additionally, 66% of OpenText users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.
ArcSight Analytics
Read 15 ArcSight Analytics reviews
  • 337 Views
  • 310 Comparison Views
66% willing to recommend
Rapid7 InsightIDR
Read 32 Rapid7 InsightIDR reviews
  • 6,825 Views
  • 1,024 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Feb 4, 2025

Rapid7 InsightIDR and ArcSight Analytics compete in the cybersecurity platform category, focusing on threat detection and response. Rapid7 InsightIDR seems to have the upper hand in ease of use and cost-effectiveness, whereas ArcSight Analytics excels in offering a robust feature set for more advanced security needs.

Features: Rapid7 InsightIDR offers intuitive threat detection, user-friendly integration, and comprehensive forensic depth. ArcSight Analytics provides a powerful correlation engine, customizable dashboards, and complex data analysis capabilities tailored for advanced security environments.

Room for Improvement: Rapid7 InsightIDR could enhance its complex alert management, improve data visualization, and expand integration with third-party solutions. ArcSight Analytics might simplify its user interface, streamline setup and deployment processes, and improve resource management to cater to smaller teams.

Ease of Deployment and Customer Service: Rapid7 InsightIDR ensures streamlined deployment with extensive support, offering a more straightforward onboarding. ArcSight Analytics requires a more complex setup, potentially challenging for organizations with limited resources, though it provides robust capabilities once implemented.

Pricing and ROI: Rapid7 InsightIDR is characterized by lower setup costs and a quicker return on investment, appealing to budget-conscious organizations. Despite its higher initial costs, ArcSight Analytics promises long-term value through its extensive features and scalability, aligning with organizations prioritizing feature-rich solutions.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed ArcSight Analytics vs. Rapid7 InsightIDR Report (Updated: September 2025).
Buyer's Guide
ArcSight Analytics vs. Rapid7 InsightIDR
September 2025
Download the complete report
Helped 869,202 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

ArcSight Analytics
Ranking in User Entity Behavior Analytics (UEBA)
13th
Average Rating
6.8
Reviews Sentiment
6.7
Number of Reviews
15
Ranking in other categories
No ranking in other categories
Rapid7 InsightIDR
Ranking in User Entity Behavior Analytics (UEBA)
5th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
32
Ranking in other categories
Security Information and Event Management (SIEM) (14th), Endpoint Detection and Response (EDR) (25th), Threat Deception Platforms (4th), Extended Detection and Response (XDR) (17th)
 

Mindshare comparison

As of October 2025, in the User Entity Behavior Analytics (UEBA) category, the mindshare of ArcSight Analytics is 1.4%, up from 1.2% compared to the previous year. The mindshare of Rapid7 InsightIDR is 8.1%, down from 9.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Entity Behavior Analytics (UEBA) Market Share Distribution
ProductMarket Share (%)
Rapid7 InsightIDR8.1%
ArcSight Analytics1.4%
Other90.5%
User Entity Behavior Analytics (UEBA)
 

Q&A Highlights

Navin Rehnius - PeerSpot reviewer
Aug 10, 2021
What SOC product do you recommend?
I haven't used these big-name ones like Splunk etc. but I feel they're overpriced. I think they charge an arm and a leg for each module. The ROI justification is not there. Why not try a cheaper and robust alternative like Elasticsearch?
See all answers
 

Featured Reviews

Subhadip Pakrashi - PeerSpot reviewer
A scalable solution that provides a deeper insight and threat analysis about the network
ArcSight Analytics is used to get a deeper insight and threat analysis about the network. The solution's threat analysis gives a good view of the network. We can then compare those vulnerabilities and CVS scores worldwide and get a good understanding of how likely the network is to be hit. The kind of report ArcSight Analytics gives is really good. ArcSight Analytics is a very scalable solution that is easy to deploy.
Read full review
Asim Naeem - PeerSpot reviewer
Providing comprehensive insight into alerts while working towards AI enhancement
I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The data collection and the integration with different products are valuable features."
"This solution allows us to identify connections for all users."
"One of the most valuable features is the alerts."
"The most valuable features are that you get lots of connectors, which make it easy to log in to my ASM, and lots of prebuilt roles from the company."
"ArcSight Analytics is used to get a deeper insight and threat analysis about the network."
"The correlation engine is good."
"The most valuable feature is the log monitoring."
"Less resource consumption in terms of memory and processing."
More ArcSight Analytics pros
"The technical support is a solid 10 out of 10 as they take the time to answer any questions or problems which may arise in a reasonable time frame."
"Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling."
"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."
"InsightIDR’s ability to process millions of transactions per day, and to notify me of the most critical ones, is priceless. InsightIDR has the alerts tuned, and has the ability to quickly drill down to determine the threat level."
"Log search allows us to dive deep into aggregated logs and query all event types at once.​"
"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."
"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."
"Features for user behavior analytics and the rules for attack review are good."
More Rapid7 InsightIDR pros
 

Cons

"I would like to see integration with automation products, such as Phantom Automation."
"ArcSight is not a user-friendly solution and the interface needs to be improved."
"The reporting and the way it is worded needs to be improved in future releases. The dashboards are quite poorly designed."
"The customer service could be improved, and additional integrations with other APIs could be added."
"It needs more user analytics and aggregation user queries. And it's slow. When you query over ArcSight, it is very slow."
"ArcSight's features that can be improved include anything related to its visualization capabilities and user friendliness."
"The GUI interface is not always intuitive and easy for non-technical users to work with."
"I faced stability issues with Windows Operating System. The installed connectors hang if they remain idle for a long period of time."
More ArcSight Analytics cons
"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."
"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."
"There are certain limitations with Rapid7 that I am working on."
"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."
"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."
"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."
"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."
"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."
More Rapid7 InsightIDR cons
 

Pricing and Cost Advice

"My customers pay a yearly licensing fee for ArcSight Analytics."
"ArcSight Analytics is a bit expensive compared with other tools in terms of licensing costs, training, hardware implementation, and support."
"This solution is expensive."
"In addition to the costs of standard licensing fees, there is the cost of labor for maintenance."
"The monthly licensing fee is around $20,000. There aren't any costs in addition to the standard licensing fee."
"It can range between $30,000 and $40,000 USD, and can go up to $500,000 and $600,000 USD."
"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."
"The pricing of the solution depends on the user. But there is a yearly licensing cost."
"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."
"It is more reasonably priced than other vendors."
"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help.​"
"Rapid7 InsightIDR's pricing is reasonable."
"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."
"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."
More Rapid7 InsightIDR pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which User Entity Behavior Analytics (UEBA) solutions are best for your needs.
See recommendations
869,202 professionals have used our research since 2012.
 

Answers from the Community

Navin Rehnius - PeerSpot reviewer
Aug 10, 2021
Aug 10, 2021
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, remember that any EDR/XDR should integrate to the SIEM/SOAR and a strong threat intel source. If you consider SOC outsourcing take your time and find one you can integrate like a virtual team member. They a...
2 out of 12 answers
KM
Jul 26, 2021
I haven't used these big-name ones like Splunk etc. but I feel they're overpriced. I think they charge an arm and a leg for each module. The ROI justification is not there. Why not try a cheaper and robust alternative like Elasticsearch?
Read full answer
KA
Jul 26, 2021
We are using LogRthythm SIEM complete case management and offer SIEM/SOC as service.
Read full answer
See all 12 answers
 

Top Industries

By visitors reading reviews
No data available
Computer Software Company
14%
Financial Services Firm
8%
Manufacturing Company
7%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise4
Large Enterprise7
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise5
Large Enterprise6
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What do you like most about ArcSight Analytics?
ArcSight Analytics is used to get a deeper insight and threat analysis about the network.
See all answers
What is your experience regarding pricing and costs for ArcSight Analytics?
My customers pay a yearly licensing fee for ArcSight Analytics.
See all answers
What do you like most about Rapid7 InsightIDR?
During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightIDR?
The product pricing is very cheap.
See all answers
What needs improvement with Rapid7 InsightIDR?
There is a future in AI with Rapid7, however, it is not fully operated. There are certain limitations with Rapid7 that I am working on. I have already opened a list of features with Rapid7, and the...
See all answers
 

Comparisons

No data available
Rapid7 InsightVM vs Rapid7 InsightIDR Logo
Rapid7 InsightVM vs Rapid7 InsightIDR
Compared 8% of the time
Darktrace vs Rapid7 InsightIDR Logo
Darktrace vs Rapid7 InsightIDR
Compared 8% of the time
Microsoft Sentinel vs Rapid7 InsightIDR Logo
Microsoft Sentinel vs Rapid7 InsightIDR
Compared 7% of the time
CrowdStrike Falcon vs Rapid7 InsightIDR Logo
CrowdStrike Falcon vs Rapid7 InsightIDR
Compared 6% of the time
Splunk Enterprise Security vs Rapid7 InsightIDR Logo
Splunk Enterprise Security vs Rapid7 InsightIDR
Compared 6% of the time
More Rapid7 InsightIDR Competitors
 

Product Reports

Buyer's Guide
ArcSight Analytics
October 2025
ArcSight Analytics reportDownload ArcSight Analytics product report
Buyer's Guide
Rapid7 InsightIDR
September 2025
Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
 

Also Known As

ArcSight User Behavior Analytics, ArcSight UBA
InsightIDR
 

Overview

ArcSight User Behavior Analytics offers enterprises the ability to monitor and detect from internal and external security threats and fraud.

OpenText

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7
 

Sample Customers

Information Not Available
Liberty Wines, Pioneer Telephone, Visier
Buyer's Guide
ArcSight Analytics vs. Rapid7 InsightIDR
September 2025
Free Report: ArcSight Analytics vs. Rapid7 InsightIDR
Find out what your peers are saying about ArcSight Analytics vs. Rapid7 InsightIDR and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,202 professionals have used our research since 2012.
See our ArcSight Analytics vs. Rapid7 InsightIDR report.
See our list of best User Entity Behavior Analytics (UEBA) vendors.

We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.