OpenText Enterprise Security Manager vs Rapid7 InsightIDR comparison

OpenText Enterprise Security Manager vs. Rapid7 InsightIDR

Download the complete report

Helped 879,259 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

OpenText Enterprise Securit...

Ranking in Security Information and Event Management (SIEM)

21st

Average Rating

7.8

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Rapid7 InsightIDR

Ranking in Security Information and Event Management (SIEM)

15th

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (6th), Endpoint Detection and Response (EDR) (23rd), Threat Deception Platforms (4th), Extended Detection and Response (XDR) (17th)

Mindshare comparison

As of December 2025, in the Security Information and Event Management (SIEM) category, the mindshare of OpenText Enterprise Security Manager is 1.6%, up from 1.2% compared to the previous year. The mindshare of Rapid7 InsightIDR is 2.3%, down from 2.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM) Market Share Distribution
Product	Market Share (%)
Rapid7 InsightIDR	2.3%
OpenText Enterprise Security Manager	1.6%
Other	96.1%

Security Information and Event Management (SIEM)

Featured Reviews

Namdev Magar

Senior Security Engineer at Valuepoint Systems

Interpreting data effectively despite challenges in integration and support

If someone lacks the budget for a new SIEM tool with advanced capabilities, I would recommend ArcSight Enterprise Security Manager (ESM). However, if they have the budget, I would suggest looking into other options. Overall, I would give ArcSight Enterprise Security Manager (ESM) a rating of seven out of ten.

Read full review

SohailHyder

Head of Cyber Security at Super Secure

Has supported compliance needs for mid-sized organizations but lacks customization and advanced integration

If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature sets of a complete SIEM solution. Most common in the market is QRadar, but it is depleting now. It has been taken over by some other products such as Splunk and LogRhythm. If we compare these things with Rapid7 InsightIDR, then there are definitely some gaps that need to be filled. Data retention is also one concern because Rapid7 InsightIDR is cloud-based and operates on a subscription model. Whatever data you want to retain, it has to be paid for separately or it has a cost. Other solutions that are on-premises can have their own infrastructure or they provide some data retention for a month or in some capacity-wise, they provide that solution to them which makes them more attractive.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It has absolutely improved the efficiency of our security team. We use it internally as well. It is such a powerful tool that our internal security team became a customer of our ArcSight managed service."

"I value the event correlation of this product."

"The real-time analysis adds value."

"ArcSight Enterprise Security Manager (ESM) is very cheap compared to other tools."

"It makes maintenance very easy."

"The feature that I have found the most useful is that it can be deployed to the cloud."

"It is a vital tool for live monitoring and helps us to understand the traffic alerts of any major issue on the network, thereby reducing hacking attempts."

"The solution offers very good monitoring."

More OpenText Enterprise Security Manager pros

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."

"It is a very stable solution."

"I definitely recommend Rapid7 InsightIDR."

"Features for user behavior analytics and the rules for attack review are good."

"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."

"Log search allows us to dive deep into aggregated logs and query all event types at once."

"I rate Rapid7 nine out of 10 for affordability"

More Rapid7 InsightIDR pros

Cons

"The tool should improve its UI. It also should make data more searchable."

"ArcSight is incredibly complex when configuring and deploying, and if your organization doesn't know what they want and what they need, ArcSight will be a challenge for them."

"ArcSight ESM could improve by adding more features and documentation. There needs to be more documentation."

"ArcSight ESM's UI is a little cumbersome and complex, especially for first-time and occasional users using the console manager."

"I would like to have a feature that gives us an entire report listing what devices are integrated."

"We have pricing issues. ArcSight ESM may not be the most user-friendly option, and its interface is quite traditional. However, despite these aspects, we find it a good cybersecurity solution. It needs to improve the dashboards, documentation, and support as well."

"ArcSight ESM is not easy to use and it should be integrated with other tools that have infrastructure capabilities."

"Customer service during the transition from HPE to Micro Focus was abysmal where it became disruptive to our service delivery."

More OpenText Enterprise Security Manager cons

"I feel it would greatly benefit from more supported log sources."

"The APIs can be further improved in Rapid7."

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"The ability to tune the collector for custom logs would greatly help."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"They should add more configuration and security features to it."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"ArcSight ESM is an affordable solution, it cost approximately $200,000 for three years. This price was at a substantial discount."

"It is best to be an institutional buyer and directly contact the sales team, as they can provide over-the-top discounts for bulk orders."

"The cost of the solution is not very high, although hiring a qualified analyst to work with the product is expensive."

"The product licenses are inexpensive."

"Pricing is good, I'd rate the pricing a seven out of ten, with ten being low price. It's better than Splunk and IBM QRadar because their pricing is based on EPS."

"The licensing cost is affordable if you get an enterprise license. The licensing is based on EPS, so you can probably provide a package of license for multiple ESMs with their correlational end fees. It is cost-effective."

"We have a license to use this solution. The price of ArcSight Enterprise Security Manager is expensive."

"It's a good price, it's one of the cheaper solutions."

More OpenText Enterprise Security Manager pricing and cost advice

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

"The pricing and licensing are competitive."

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

879,259 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees

Jun 28, 2015

Qradar vs. ArcSight

Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…

Read full review

Top Industries

By visitors reading reviews

Manufacturing Company

11%

Financial Services Firm

10%

Computer Software Company

10%

Performing Arts

Computer Software Company

12%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	37
Midsize Enterprise	14
Large Enterprise	57

By reviewers
Company Size	Count
Small Business	20
Midsize Enterprise	5
Large Enterprise	6

Questions from the Community

Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?

In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was pretty good. Now a lot of them are looking for a more effective solution due to ...

What do you like most about ArcSight Enterprise Security Manager (ESM)?

We utilize ArcSight ESM for real-time threat detection in our organization. We have custom rules that we've developed on top of the WAN services, along with scheduled licensing activities.

What is your experience regarding pricing and costs for ArcSight Enterprise Security Manager (ESM)?

ArcSight Enterprise Security Manager (ESM) is very cheap compared to other tools. It is worth the investment if you are considering the cost.

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

Trellix ESM vs OpenText Enterprise Security Manager

Comparisons

Compared 19% of the time

IBM Security QRadar vs OpenText Enterprise Security Manager

Compared 10% of the time

Splunk Enterprise Security vs OpenText Enterprise Security Manager

Compared 7% of the time

SurfWatch Labs SurfWatch vs OpenText Enterprise Security Manager

Compared 7% of the time

Elastic Security vs OpenText Enterprise Security Manager

Compared 5% of the time

More OpenText Enterprise Security Manager Competitors

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 7% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 7% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 6% of the time

Darktrace vs Rapid7 InsightIDR

Compared 5% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

OpenText Enterprise Security Manager

Download OpenText Enterprise Security Manager product report

OpenText Enterprise Security Manager report

Rapid7 InsightIDR

Download Rapid7 InsightIDR product report

Also Known As

Micro Focus ArcSight, HPE ArcSight, ArcSight

InsightIDR

Overview

OpenText Enterprise Security Manager enables real-time threat detection through scalable and adaptable solutions, integrating seamlessly with multiple platforms for complex security scenarios across different environments.

OpenText Enterprise Security Manager offers extensive security monitoring capabilities, combining log analysis and incident management to enhance cybersecurity and compliance. Its powerful event correlation engine provides real-time alerts for rapid incident response. Users benefit from customizable dashboards and comprehensive log collection, making it a significant tool in the SIEM market. Flexible deployment options cater to both on-premises and cloud environments, supporting enterprises in managing IT infrastructure and threat detection efficiently.

What are the key features of OpenText Enterprise Security Manager?

Event Correlation Engine: Real-time threat detection with advanced correlation capabilities.
Scalability: Adapts to enterprise-level demands and complex security needs.
Integration: Seamlessly integrates with multiple platforms and third-party tools.
Customizable Dashboards: Tailored views and active lists enhance user experience.
Advanced Alerting: Provides timely incident response and security alerts.

Why should users look for reviews when evaluating OpenText Enterprise Security Manager?

Timely Incident Responses: Fast alerting and action against threats.
User-Friendly Experience: Customizable dashboards simplify monitoring tasks.
Comprehensive Security Management: Integrated log management and threat detection across domains.
Adaptability and Scalability: Supports both on-premises and cloud deployments.

In industries such as finance, healthcare, and energy, OpenText Enterprise Security Manager is implemented for monitoring critical systems and ensuring compliance with regulatory needs. Enterprises leverage its capabilities for forensic investigations and active threat management, serving as a central hub for cybersecurity operations across diverse IT infrastructures.

OpenText

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

Lake Health, U.S. Department of Health and Human Services, Bank AlJazira, Banca Intesa, and Obrela.

Liberty Wines, Pioneer Telephone, Visier

OpenText Enterprise Security Manager vs. Rapid7 InsightIDR