InsightVM Reviews

Remediation projects helped a lot in assigning open findings with stakeholders and tracking in live. Assets tagging is another feature that helped me bifurcate and categorized my assets basis their criticality and exposure.

Memory consumption sometimes is at its peak. Apart from that, compared to other VM tools it has enough features with other tool even dont have as a whole solution.

Overall Threat and vulnerability management with effective tracking of assets basis their severity, usage and exposure. InsightVM helps to raise remediations projects and create automated actions on the same.

The policy builder is one of the great feature

A more convincing way of removing the assets in bulk would be great

This has been a great support when a client comes up with user defined controls for Policy Complaince

Good presentation of output of findings.

Basically it takes RAM which sometimes create difficulties.

Compare with other tools, InsightVM NEXPOSE is a good tool for the organization.

VA

Adaptive Security, live vulnerability management and endpoint analytics

Does not have the capability to do dynamic scanning of non web applications

Scanning networks for vulnerabilities

It helps in creating better security outcomes, creating device groups is very easy and API tie ins work very well.

Very frequent updates and console lockups. License isvery expensive per asset.

Provides the ability to scan for policy configuration and compare with control requirements.

its auto-scan feature, accuracy, and user-friendly dashboard

It should have a feature to add/remove/edit assets/VI.

Yes sure, I have recommended to few of my friend

Vulnerability Management

InsightVM gives our team the ability to rapidly scan our entire environment without creating a ton of noise in our SIEM tool while still providing accurate and timely vulnerability findings. The reporting and automation is top notch and really allows us to pin point where vulnerabilities are and what needs to be prioritized.

Dashboards can be a bit confusing to setup for first time users on the Insight Platform

If you are considering another product, consider true risk management, not just check the box scanning needs along with cost associated. It's easy to come to the conclusion that InsightVM is the superior product in this space.

We are finding issues that prior products simply didn't show us or provide us with a way to prioritize remediation. InsightVM does both without issue.

Definitely the Remediation Projects. No more spreadsheets, thousands of tickets, or super long PDF's that the owner is just going to throw away.

Just the waiting on them to offer a full-cloud option.

Risk-based Vulnerability Management with plenty of automation and granularity built right in.

Vulnerability metrics

Remediation Projects

Dashboards

Asset Tagging

Automated Scanning

Credentialed scanning can raise some concerns about password sniffing, but this is mitigated by installing the agent on the endpoints.

Geographic Sites with respectively placed scan engines.

The product has given us visibility into our threat landscape and has helped us significantly reduce the number of exploitable systems in our environment.

IVM has a remediation projects , a section that is a helpful tool to follows vulns state during periods between scan jobs, we can review the vulns state per group (servers, apps, workstations, others), and the person in charge and is possible to add comments and approval the remediation actions and do additional test to confirm. This feature reduces the load of work in management and is the most effective strattegy

Some times different areas have differents needs and we must to prepare a very customizable reports for each one, some times the person in charge change the idea and request a new report with other info.

We solved that with a single tool can scan internal external IP addresses, virtualizad and cloud objetives

We have a better useful manage for remediation projects with third party integrations, this info can be exported to other solutions like SIEM, or Metasploit and is more easy to do complex tasks