No more typing reviews! Try our Samantha, our new voice AI agent.

Rapid7 InsightOps vs Sumo Logic Security comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightOps
Ranking in Log Management
28th
Average Rating
9.0
Reviews Sentiment
6.0
Number of Reviews
10
Ranking in other categories
No ranking in other categories
Sumo Logic Security
Ranking in Log Management
21st
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
25
Ranking in other categories
Security Information and Event Management (SIEM) (21st), Security Orchestration Automation and Response (SOAR) (14th)
 

Mindshare comparison

As of July 2026, in the Log Management category, the mindshare of Rapid7 InsightOps is 0.8%, up from 0.4% compared to the previous year. The mindshare of Sumo Logic Security is 1.3%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management Mindshare Distribution
ProductMindshare (%)
Sumo Logic Security1.3%
Rapid7 InsightOps0.8%
Other97.9%
Log Management
 

Featured Reviews

reviewer1247523 - PeerSpot reviewer
Head of Sales Services Department at a comms service provider with 51-200 employees
Customization and automation streamline workflows for seamless operations
The features of Rapid7 InsightOps that I have found most valuable are the predefined policies and the use of correlation rules, which are very valuable because they eliminate the need to spend time creating those rules. This feature detects insider threats or compromised credentials by using user behavior analytics, which can collect other compromise indicators. It makes it easier to install and implement this solution because you can run it as normal behavior of users and then switch off to look for the anomalous behavior of any entities, such as laptops and others. In any violation or restricted behavior, the system will notify you that something unusual is occurring. The machine learning algorithms in Rapid7 InsightIDR for threat detection work quite effectively as part of the user entity behavior analytic model, allowing us to focus group normal typical behavior of users and then turn on the rule to spot any unexpected behavior. The automation features of Rapid7 InsightOps are quite satisfactory, as users appreciate these features, especially when integrating with the ticketing system. If something goes wrong, InsightOps will notify the ticketing system to create a ticket and assign it to the responsible person to handle the events found in the infrastructure. The customizable dashboards in Rapid7 InsightOps are quite valuable and interesting because SOC center operators spend most of their time investigating on those dashboards, making them easy to manage. Additionally, we can configure email reports for high-level talks, sending historical data without needing to look online, which is very convenient.
MR
Senior Security Analyst at City Electric Supply Company
Security insights have enabled faster incident response and streamlined cross-team collaboration
To improve Sumo Logic Security, I would appreciate the tool being easier to use from a search perspective. For example, we have a few teams that want to use the tool itself, but they are not as savvy when it comes to creating searches from the core platform. I understand that Mobot has come out and is in the works, and it really does assist non-savvy users when it comes to querying the platform. As far as that is concerned, I wish that could be improved a bit more, but I do know that that is in the works. I would add that I wish for improved documentation. For example, we are using Sumo Playbooks and automation integrations along with that, but I have found that there has been a lack of documentation, very little to none at all when it comes to that. With regards to automation integrations as well, there are very few details included in them. I would also appreciate the AWS automation integrations to be more secure because currently, they are using access keys, which involves a user rather than roles, which is the security best practice recommended by AWS. I chose eight out of ten because to make it a nine or ten, I would lean heavily on the documentation. A lot of the times when we get around to configuring things such as playbooks or trying to understand playbooks, what I found was that documentation sometimes is not up to date or documentation is lacking. There are instances also where some security best practices are not being followed. So, if we are able to set up an integration that is not only secure, following security best practices, and has complete documentation, I believe it would alleviate the issue of having to go back and forth with support to check the documentation and things of that nature. My impression of the built-in threat intelligence feature in Sumo Logic Security is that it is comprehensive, but I would say that it could do a little bit better. For example, we have the TAXI feeds, which is STIX and TAXI integrated into the core platform, but the issue I am running into is that I am able to use that feed into a CSE alert; however, I am not able to see the contents of that feed. If I integrate CISA, which we do have integrated, I cannot see what IOCs are in that feed in the core platform, and I hope that is the case because, in order for us to better tune our alerts, we need to be able to see what is in the contents of that threat intelligence feed.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We get way more out of it than we did with SecureWorks and we pay about a third of the price."
"Once you start using InsightIDR, which works hand in glove with InsightOps, you will feel like you were operating in the stone age before."
"The machine learning algorithms in Rapid7 InsightIDR for threat detection work quite effectively as part of the user entity behavior analytic model, allowing us to focus group normal typical behavior of users and then turn on the rule to spot any unexpected behavior."
"The ability to browse logs from multiple sources at the same time really speeds up root cause analysis."
"The log aggregation and research capabilities are definitely what pays for itself."
"Easy to use and spend less time on setups/troubleshooting."
"I use it as a security incident and event management system, and it has the ability to alert and track logs from different sources."
"My advice to others is this is an easy-to-use solution and they should try it out."
"We use it to ingest Windows domain controller logs. We use this to monitor if anyone is placed in particular administration groups that potentially shouldn't be. It helps us keep track of people."
"Sumo Logic Security has positively impacted my organization by increasing engagement with different teams."
"The features I found valuable with the Sumo Logic Security solution are the search option and the ability to customize the search for the information in the logs."
"The Log Analytics platform is the most effective. If we cannot find the data in other tools, like email security or NDR, we can fetch those logs in the Log Analytics platform of Sumo Logic."
"Sumo Logic has absolutely improved our organization — 100% Sumo Logic is a great tool, it's absolutely necessary."
"Support has been excellent. Sumo Logic's support staff is really good, both their account management staff and direct support."
"Sumo Logic is an easy solution to use. You can set it up very quickly, and it includes a lot of training videos."
"It works with all our main applications, so the integration with those products is pretty seamless from my standpoint."
 

Cons

"Since I used the beta, improvements are to be expected. The dashboard options could have been clearer, but I believe it is more a problem with the limited documentation available at the time."
"There were some difficulties in product setup, but after those issues were resolved, there were no issues."
"Improvement is needed in the dashboard of InsightOps, especially for less technical users."
"Rapid7 InsightOps could improve by making the search query better. There are times when the search query is broken and it does not find anything."
"The searching capability, or when you ask real time questions, is pretty decent but it's still not up to par with, say, Splunk."
"The solution takes a little bit of time when we load the website for the first time."
"There are a few things I would like to do with a few more complex queries which I am not able to do right now, because it is a SaaS solution."
"It would be nice to have an improved ability to scroll through logs within a time frame. Right now, we can search for specific errors. However, if we want to look for "before and after" within a specific time frame, it's not easy using the tool. This would be an improvement."
"The API integration in Sumo Logic Security could improve. There are delayed connections or they stop and then automatically start. Having a seamless log collection would be beneficial."
"A more transparent roadmap as to what Sumo Logic Security is trying to achieve would be beneficial. Sumo often gives information in three-month cycles, which makes it hard for planning purposes."
"The initial setup is the most stressful, like learning how to use it."
"The correlation rules and log mapping are not as mature compared to other SIM tools like Splunk."
"The integration with multiple sources could be better."
"We would like to have some type of predefined setup for the logs, making the setup easier by default."
"Sumo Logic needs to make sure integrating solutions are seamless."
 

Pricing and Cost Advice

"The product is cheap."
"Purchasing the solution through the AWS Marketplace is very easy."
"I don't pay the bill. I've heard the AWS Marketplace pricing is high, but I like the value."
"The AWS Marketplace pricing is fairly reasonable for what it does. I wouldn't call it expensive, but I wouldn't call it cheap. It is pretty good."
"We chose to go through the AWS Marketplace because it makes it a lot easier when we bill our customers. Rather than having to get multiple different sources of information then correlate a monthly bill for our customers, it is just included in the AWS usage charges."
"The license pricing model is based on the events that are processed through the solution."
"Storing logs in Sumo Logic Security is charged GB-wise, which is a little higher than other products."
"The price scaling comes in a bit expensive."
"If we went to ELK Stack, which is open source, it would have been less costly, but it would have required more development from our side."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
903,933 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
13%
Construction Company
13%
Educational Organization
7%
Media Company
6%
Manufacturing Company
12%
Financial Services Firm
11%
Outsourcing Company
10%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise2
Large Enterprise3
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise4
Large Enterprise16
 

Questions from the Community

What needs improvement with Rapid7 InsightOps?
In my opinion, there are no specific areas of Rapid7 InsightIDR that need improvement because all solutions in the SIEM market, including InsightOps and its competitors, are doing the same things b...
What is your primary use case for Rapid7 InsightOps?
The usual use cases for Rapid7 InsightOps that I work with are to meet standard requirements such as PCI DSS and ISO standards, collecting data and protecting event logs. Rapid7 InsightOps plays a ...
What advice do you have for others considering Rapid7 InsightOps?
The integration capabilities of Rapid7 InsightIDR with other security or IT management tools are quite simple. To integrate with another solution, you just need that solution to push system logs in...
What is your experience regarding pricing and costs for Sumo Logic Security?
I would say that the pricing for Sumo Logic Security is in the medium part of the market. If you go to the well-known vendors such as Azure Sentinel or other tools like Splunk, you are going to fin...
What needs improvement with Sumo Logic Security?
I would say there are a few more things that Sumo Logic Security can improve on. It is not the tool; it is a technical part. From the app point of view, I would say when we need to include a few la...
 

Also Known As

InsightOps, Logentries
No data available
 

Overview

 

Sample Customers

Trimble Navigation Limited
Information Not Available
Find out what your peers are saying about Rapid7 InsightOps vs. Sumo Logic Security and other solutions. Updated: June 2026.
903,933 professionals have used our research since 2012.