No more typing reviews! Try our Samantha, our new voice AI agent.

Rapid7 InsightIDR vs SentinelOne Singularity Identity comparison

Rapid7 and SentinelOne are both solutions in the Threat Deception Platforms category. Rapid7 is ranked #6 with an average rating of 7.5, while SentinelOne is ranked #1 with an average rating of 9.5. Rapid7 holds a 8.1% mindshare in TDP, compared to SentinelOne’s 8.4% mindshare. Additionally, 96% of Rapid7 users are willing to recommend the solution, compared to 95% of SentinelOne users who would recommend it.
Rapid7 InsightIDR
Read 32 Rapid7 InsightIDR reviews
  • 9,277 Views
  • 371 Comparison Views
96% willing to recommend
SentinelOne Singularity Ide...
Read 22 SentinelOne Singularity Identity reviews
  • 4,426 Views
  • 354 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 5, 2026

Rapid7 InsightIDR and SentinelOne Singularity Identity compete in the cybersecurity domain. Rapid7 InsightIDR is preferred for its comprehensive support and competitive pricing, while SentinelOne Singularity Identity is acclaimed for advanced features, making it appealing for those prioritizing cutting-edge technology.

Features: Rapid7 InsightIDR offers robust threat detection, user behavior analytics, and automated incident response. SentinelOne Singularity Identity excels with its AI-driven operations, real-time attack mitigation, and detailed threat intelligence integration.

Room for Improvement: Rapid7 InsightIDR could enhance integration with third-party products and refine its alerting to reduce noise. Also, expanding its threat intelligence feeds would be beneficial. SentinelOne Singularity Identity may improve by streamlining deployment processes, reducing false positives, and offering more granular control within its user interface.

Ease of Deployment and Customer Service: Rapid7 InsightIDR provides a straightforward deployment process with accessible customer support, facilitating seamless system integration. SentinelOne Singularity Identity, while slightly more complex in deployment, offers comprehensive support, guiding users efficiently through the setup phase.

Pricing and ROI: Rapid7 InsightIDR is recognized for its competitive setup costs, yielding a strong ROI via effective threat management solutions. SentinelOne Singularity Identity, although more expensive initially, justifies its cost through enhanced security capabilities and operational efficiencies, attracting organizations focused on long-term security investments.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Rapid7 InsightIDR vs. SentinelOne Singularity Identity Report (Updated: April 2026).
Buyer's Guide
Rapid7 InsightIDR vs. SentinelOne Singularity Identity
April 2026
Download the complete report
Helped 893,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightIDR
Ranking in Threat Deception Platforms
6th
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
32
Ranking in other categories
Security Information and Event Management (SIEM) (23rd), User Entity Behavior Analytics (UEBA) (10th), Endpoint Detection and Response (EDR) (39th), Extended Detection and Response (XDR) (23rd)
SentinelOne Singularity Ide...
Ranking in Threat Deception Platforms
1st
Average Rating
9.0
Reviews Sentiment
7.3
Number of Reviews
22
Ranking in other categories
Vulnerability Management (21st), Advanced Threat Protection (ATP) (14th), Identity Threat Detection and Response (ITDR) (5th)
 

Mindshare comparison

As of May 2026, in the Threat Deception Platforms category, the mindshare of Rapid7 InsightIDR is 8.1%, down from 13.3% compared to the previous year. The mindshare of SentinelOne Singularity Identity is 8.4%, down from 11.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Threat Deception Platforms Mindshare Distribution
ProductMindshare (%)
SentinelOne Singularity Identity8.4%
Rapid7 InsightIDR8.1%
Other83.5%
Threat Deception Platforms
 

Featured Reviews

SohailHyder - PeerSpot reviewer
SohailHyder
Head Of Cyber Security at Super Secure
Has supported compliance needs for mid-sized organizations but lacks customization and advanced integration
If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature sets of a complete SIEM solution. Most common in the market is QRadar, but it is depleting now. It has been taken over by some other products such as Splunk and LogRhythm. If we compare these things with Rapid7 InsightIDR, then there are definitely some gaps that need to be filled. Data retention is also one concern because Rapid7 InsightIDR is cloud-based and operates on a subscription model. Whatever data you want to retain, it has to be paid for separately or it has a cost. Other solutions that are on-premises can have their own infrastructure or they provide some data retention for a month or in some capacity-wise, they provide that solution to them which makes them more attractive.
Read full review
Roftiel Constantine - PeerSpot reviewer
Roftiel Constantine
Global Chief Information Security Officer at Barry-Wehmiller
Provides proactive threat remediation, reduces alert volume, and enhances incident response capabilities
During our pre-purchase evaluation of SentinelOne's EDR capabilities three years ago, we were consistently impressed by the positive relationships customers reported having with SentinelOne's engineers, sales teams, and customer success managers. These strong relationships, evident in the customers' unsolicited feedback, highlighted the "soft skills" and intangible qualities that SentinelOne possessed. This positive customer experience has been mirrored in our own interactions with them. Their responsiveness to our needs, particularly when addressing a couple of challenges we faced, has been excellent. They proactively scheduled weekly meetings to demonstrate their commitment to resolving our issues, a customer-centric approach I admire. SentinelOne's dedication to customer service, including their rapid technology updates and responsiveness to our suggestions, has been crucial to our success in protecting our organization. Their ability to quickly incorporate our needs into new releases is truly impressive and sets them apart. Overall, I highly recommend SentinelOne based on our positive interactions across all levels of their organization.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The platform offers unlimited storage and agent-based solutions."
"The incident case management is the most valuable feature, and the ability to quickly sort through all the logs, network and endpoint data, and add it to an incident case as part of the investigation, with automatic timelining and correlation to other notable events and activities on the network, results in a huge improvement in our overall confidence that we have quickly traced down the right source of an issue."
"During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an application belongs to a known ransomware group. The system rates the threat, offering a clear detection ratio, such as 97 out of 100. It not only identifies threats but also illustrates the associated behaviors, helping us understand the potential risk to a particular endpoint."
"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."
"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."
"Previously, when something happened, such as when a hacker was attacking one of our customers, we were always behind, or we did not know that we were hacked until the ransomware started, but with the Rapid7 solution, at every step, we could online see what a person was doing, and we could prevent ransomware."
"Features for user behavior analytics and the rules for attack review are good."
"InsightIDR has allowed us to find potential security issues that we did not know existed, and get remediation quickly."
More Rapid7 InsightIDR pros
"The response is a valuable aspect of SentinelOne."
"All the features within the XDR are valuable as a whole for our organization."
"The biggest value for us is getting a much better picture of what our risks are."
"Having high visibility into all of our network concerns and a customizable UI are the most valuable features."
"The product's initial setup phase is straightforward."
"The protection provided by SentinelOne Singularity Identity is the most valuable feature."
"They have different levels of support. We have the highest level where they are constantly checking all the endpoints. If at any certain point, they identify that a computer has been triggered by a virus, a link, or something else, they would automatically tell us that within 15 seconds. If they notice something, they automatically send us an email saying that they noticed something in the computer, and they are going to block it."
"Their ability to quickly incorporate our needs into new releases is truly impressive and sets them apart."
More SentinelOne Singularity Identity pros
 

Cons

"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."
"The product allows us to make only 30 custom rules."
"If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is."
"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."
"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."
"The searching feature in Rapid7 InsightIDR needs to evolve"
"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."
"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."
More Rapid7 InsightIDR cons
"The policies could be more precise, and Singularity should use more templates like alternative solutions have. Endpoint management is poor. We cannot manage individual endpoints and must rely on policies, exclusions, or block lists to apply settings to a group instead of the individual agent. If I have to make settings for one computer, I need to create a group, apply the configuration, and move the agent there. It's challenging to manage endpoints that way."
"Our engineers are dealing with issues to add exclusions to the antivirus for custom applications."
"To improve SentinelOne, I would suggest adding a network detection and response capability."
"The resolution turnaround from SentinelOne Singularity Identity's support should be improved."
"The primary reason for this discontent is that we frequently encounter performance issues with our servers."
"Our company has different locations, such as Sunbury, Oklahoma, and Alabama. I have my devices by location, and I have not found a way to choose all the endpoints and then push the update automatically. I have been doing it one by one."
"Agent connectivity can be improved, as it is one aspect of the product with certain shortcomings."
"I don't like SentinelOne's reporting tools. Their reports seem fine theoretically, but the issue is the sample size. For example, it will report that there were four incidents, and that equals 25 percent fewer incidents compared to the previous months. It would be a great improvement if I could expand the range to see reports for the last six months, but it's always one month. That would be an easy thing for them to resolve."
More SentinelOne Singularity Identity cons
 

Pricing and Cost Advice

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."
"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."
"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help.​"
"It is a reasonably priced solution."
"The pricing is good, and it is not very expensive."
"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."
"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."
More Rapid7 InsightIDR pricing and cost advice
"The pricing is a bit high."
"Their pricing has been fair, especially in the current market, and they haven't excessively increased prices at renewal times like many vendors do."
"SentinelOne Singularity Identity's pricing is cheaper than CrowdStrike and is really good."
"The price of SentinelOne Singularity Identity is relatively high, but it offers numerous features and capabilities that make it well worth the investment."
"Ideally, I would like SentinelOne to lower their prices a little bit."
"SentinelOne seemed to offer more while being priced lower than its competitors."
"There is a need to make yearly payments towards the licensing charges associated with the product...I think the prices associated with the product are okay and it is not too expensive."
"The cost of SentinelOne Singularity Identity is better than CrowdStrike."
More SentinelOne Singularity Identity pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Threat Deception Platforms solutions are best for your needs.
See recommendations
893,311 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
9%
Computer Software Company
9%
Manufacturing Company
9%
Comms Service Provider
7%
Computer Software Company
9%
Manufacturing Company
8%
Financial Services Firm
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business21
Midsize Enterprise5
Large Enterprise6
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise5
Large Enterprise13
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightIDR?
The product pricing is very cheap.
See all answers
What needs improvement with Rapid7 InsightIDR?
If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature...
See all answers
What is your experience regarding pricing and costs for SentinelOne Singularity Identity?
I have no visibility into pricing, setup costs, or licensing as the government handles these aspects directly with SentinelOne. We do the integrating, and they process the payments.
See all answers
What needs improvement with SentinelOne Singularity Identity?
Regarding improvements, I believe that API integration in third-party applications could be better. The Singularity tool uses its own credential in the record features.
See all answers
What is your primary use case for SentinelOne Singularity Identity?
One of the main use cases I describe is that we face lateral movement in our customer's server side. The customer is using 50 or more servers for the news channel, Daily Thanthi. Among those, one s...
See all answers
 

Comparisons

Splunk Enterprise Security vs Rapid7 InsightIDR Logo
Splunk Enterprise Security vs Rapid7 InsightIDR
Compared 4% of the time
Microsoft Sentinel vs Rapid7 InsightIDR Logo
Microsoft Sentinel vs Rapid7 InsightIDR
Compared 4% of the time
CrowdStrike Falcon vs Rapid7 InsightIDR Logo
CrowdStrike Falcon vs Rapid7 InsightIDR
Compared 3% of the time
Adlumin Security Operations vs Rapid7 InsightIDR Logo
Adlumin Security Operations vs Rapid7 InsightIDR
Compared 3% of the time
Vectra AI vs Rapid7 InsightIDR Logo
Vectra AI vs Rapid7 InsightIDR
Compared 3% of the time
More Rapid7 InsightIDR Competitors
Huntress Managed ITDR vs SentinelOne Singularity Identity Logo
Huntress Managed ITDR vs SentinelOne Singularity Identity
Compared 14% of the time
Wiz vs SentinelOne Singularity Identity Logo
Wiz vs SentinelOne Singularity Identity
Compared 6% of the time
Tenable Vulnerability Management vs SentinelOne Singularity Identity Logo
Tenable Vulnerability Management vs SentinelOne Singularity Identity
Compared 5% of the time
Microsoft Defender for Identity vs SentinelOne Singularity Identity Logo
Microsoft Defender for Identity vs SentinelOne Singularity Identity
Compared 5% of the time
Adlumin Security Operations vs SentinelOne Singularity Identity Logo
Adlumin Security Operations vs SentinelOne Singularity Identity
Compared 3% of the time
More SentinelOne Singularity Identity Competitors
 

Product Reports

Buyer's Guide
Rapid7 InsightIDR
April 2026
Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
Buyer's Guide
SentinelOne Singularity Identity
April 2026
SentinelOne Singularity Identity reportDownload SentinelOne Singularity Identity product report
 

Also Known As

InsightIDR
No data available
 

Overview

Rapid7 InsightIDR is a cloud-based security information and event management solution known for its user behavior analytics, offering rapid detection and response capabilities while facilitating seamless integration across systems.

Rapid7 InsightIDR is designed to enhance threat detection and investigation through its efficient user behavior analytics and advanced threat intelligence framework. The platform's cloud-based deployment ensures rapid setup and comprehensive event monitoring across diverse IT environments, including endpoints and Office 365. Its intuitive interface supports seamless data collection, honing in on threat detection through honeypot utilization and intelligent alerting. However, it is noted for lacking some customization features and better integration, especially with Microsoft and ITSMs.

What are the key features of Rapid7 InsightIDR?
  • User Behavior Analytics: Detects threats by analyzing patterns and anomalies.
  • Cloud Deployment: Enables quick setup and scalability.
  • Comprehensive Monitoring: Monitors events across systems and platforms like Office 365.
  • Honeypots and Alerting: Utilizes honeypots to reduce false positives and alert fatigue.
  • Threat Intelligence Framework: Supports effective threat hunting and remediation.
What benefits should users consider in reviews when evaluating Rapid7 InsightIDR?
  • Enhanced Detection: Improves threat detection with user behavior analysis.
  • Easy Integration: Integrates across systems for a streamlined security approach.
  • Rapid Response: Facilitates quick action against identified threats.
  • Operational Efficiency: Offers a cohesive view of security operations.

Rapid7 InsightIDR is prominently used in security operation centers to manage events, detect threats, and respond effectively. Industries apply it for network behavior monitoring, compliance, and vulnerability management. Companies integrate it with security tools to boost threat investigation, ensuring full SIEM functionalities and robust log management capacities. Its application spans behavioral and intrusion analytics, aiding in monitoring and addressing malicious activities.

Rapid7

SentinelOne Singularity Identity offers AI-driven detection, prevention, and cloud protection, providing real-time coverage and streamlined security management through its unified console and customizable interface.

Singularity Identity enhances threat detection with dynamic capabilities, facilitating real-time protection and easy user workflows. Its management console offers a unified view for deeper risk analysis, boosting operational security. Through behavioral analysis and adaptable interfaces, threat response becomes efficient. Key elements include identity guarding and quick incident mitigation. Automated remediation options and rollback features are impactful, ensuring decreased response times. Challenges include improving user accessibility, especially for non-IT individuals, and enhancing customer support with faster solutions and robust reporting. Performance issues like CPU usage demand solutions, while endpoint management and agent updates could benefit from automation. Adding network response features and lowering costs may enhance engagement.

What are the most important features?
  • AI-Based Detection: Leverages AI to identify threats dynamically.
  • Real-Time Protection: Offers immediate threat mitigation.
  • Unified Management Console: Provides a comprehensive security overview.
  • Behavioral Analysis: Enhances response capabilities with activity tracking.
  • Identity Protection: Secures against credential misuse and unauthorized access.
What benefits and ROI should be expected?
  • Automated Remediation: Minimizes response time by resolving threats automatically.
  • Rollback Options: Ability to reverse system changes to maintain security.
  • Fast Incident Response: Quick turnaround on handling threats and breaches.
  • Improved Security Posture: Ensures stronger defenses and risk management.

Industries leverage SentinelOne Singularity Identity for comprehensive threat monitoring across networks. It ensures cloud and endpoint security, plus control over identity and data breaches. By replacing outdated antivirus systems, organizations emphasize proactive defense, visibility, incident response, and detecting lateral movements. Implementing this solution supports strong network and endpoint security, enhances cloud management, and maintains a robust security framework.

SentinelOne
 

Sample Customers

Liberty Wines, Pioneer Telephone, Visier
Information Not Available
Buyer's Guide
Rapid7 InsightIDR vs. SentinelOne Singularity Identity
April 2026
Free Report: Rapid7 InsightIDR vs. SentinelOne Singularity Identity
Find out what your peers are saying about Rapid7 InsightIDR vs. SentinelOne Singularity Identity and other solutions. Updated: April 2026.
DOWNLOAD NOW
893,311 professionals have used our research since 2012.
See our Rapid7 InsightIDR vs. SentinelOne Singularity Identity report.
See our list of best Threat Deception Platforms vendors.

We monitor all Threat Deception Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.