Coming October 25: PeerSpot Awards will be announced! Learn more
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 0
  • 66

What is your experience regarding pricing and costs for Rapid7 InsightIDR?


We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

PeerSpot user
8 Answers
Security Officer at a tech consulting company with 51-200 employees
Real User
Top 5
12 August 22

It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year.

KimeangSuon - PeerSpot reviewer
Pre-Sale Consultant at Yip In Tsoi Co., LTD.
Real User
Top 5Leaderboard
13 October 21

InsightIDR is quite expensive. But with on-prem solutions, you need to wait for delivery then spend more money on maintenance and hardware. So any customer who understands cloud applications knows they just need to buy the license for the year. Then they can use it, and it's not hard to manage.

Midhun Kumar - PeerSpot reviewer
Head of Infrastructure at Pearl Data Direct
Real User
Top 5Leaderboard
08 September 21

Licensing costs are based on a subscription model. The solution is very cost-effective because they are not charging based on the EPS but on the number of assets.

Davide Baudanza - PeerSpot reviewer
CoFounder & Head of Technology at intuity
Real User
Top 5
21 July 21

You can scale the license as needed. It's really easy to update and upgrade.

Linux admin at a wholesaler/distributor with 51-200 employees
Real User
Top 5
05 April 21

It is a reasonably priced solution.

Enterprise Sales at a tech vendor with 11-50 employees
Real User
19 July 20

If you look at any other SIEM solution, the license is based on events per second or EPS based licensing. Here, the licensing is the number of assets, and the number of days the log would be retained on their cloud. That is one of the huge differences between this solution and the competition.

Find out what your peers are saying about Rapid7, Splunk, Microsoft and others in Security Information and Event Management (SIEM). Updated: September 2022.
633,572 professionals have used our research since 2012.
Information Security Manager at a tech vendor with 51-200 employees
Real User
02 October 18

Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement.

Security Manager
Real User
22 April 18

The pricing and licensing are competitive. Licensing is simple and straightforward.

Related Questions
Navin Rehnius - PeerSpot reviewer
Security Engineer at a tech services company with 201-500 employees
Aug 02, 2021
What is the difference between Incident Detection Response (IDR) e.g. in Rapid7 InsightIDR and Endpoint Detection and Response (EDR) in other solutions? Thanks.
See 1 answer
John Rendy - PeerSpot reviewer
CTO at Systema Global Solusindo
02 August 21
Hi @Navin Rehnius, The IDR focus is on the correlation of the host system vulnerability with the exploit activity. In a way, it will classify if an exploit or attack event is most potentially an incident.  However, IDR works by scanning the whole segment of the target hosts while EDR is running continuously at the endpoint level. With the correct implementation of EDR, you could actually correlate EDR events with vulnerability assessment information and achieve the same objectives of IDR. 
PeerSpot user
Computer & Network Systems Administrator at a aerospace/defense firm with 1,001-5,000 employees
Mar 13, 2019
My organization has one last piece to the puzzle in our completion for NIST 800-171 compliance. I know nothing about Network Security and Event Management. I have a team of two Systems and Network Admins that already spend a lot of time ensuring the organization is running smooth, dealing with any technical issues, and ensuring the infrastructure is performing well. What solution is recommended...
2 out of 39 answers
PeerSpot user
Senior Consultant at Redrock IT & Security Solutions
28 March 18
There are many good SIEM products on the market today. Our company evaluated several SIEM products, LogRhythm, Splunk, AlienVault, Fortinet, and EventTracker. They all are great products. We settled on EventTracker and purchase the licenses through a 3rd party. Because these companies have internal teams of trained security analysts. They take on the heavy lifting of reviewing alerts, threat analysis, etc. The required manpower is a critical piece when evaluating SIEMs.
it_user420948 - PeerSpot reviewer
Sales Leader with 1,001-5,000 employees
28 March 18
amongst SIEM solutions marketed by editors, the leading products are Splunk, Qradar both solutions offer a complete NIST compliance. what is the most important to know is to what extent these solutions are able to communicate with other solutions and applications this is mainly what qualifies Qradar as the leader in the SIEM field, since on top of being an IBM product as a guarantee in itself, IBM Qradar has a great list of connectors to third party solutions and finds itself in the heart of a wide portfolio of security products ans solutions. the lask of technical resources is not a problem when adopting a Qradar solution, IBM proposes it in SaaS mode which can be advantageous to multiple customers and for those who are not yet adopting a cloud-based solution they ca still have their own in-premises implementation but managed remotely from Qradar Experts with very attractive monthly fees.
Download Free Report
Download our free Security Information and Event Management (SIEM) Report and find out what your peers are saying about Rapid7, Splunk, Microsoft, and more! Updated: September 2022.
633,572 professionals have used our research since 2012.