Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
My experience with Qradar is awesome and I would definitely recommend to everyone
What do you like best about the product?
Like It detect almost every risk that a endpoint has.
What do you dislike about the product?
It's training material are little confusing and hard
What problems is the product solving and how is that benefiting you?
It detect almost every risk a specific endpoint has and it got me narrow my Defence surface.
- Leave a Comment |
- Mark review as helpful
QRadar EDR
What do you like best about the product?
I like the Dashboard and the way it's present the overall incident details.
It have the capability to detect the malicious behavior, easy to manage the policies and add exception.
It have the capability to detect the malicious behavior, easy to manage the policies and add exception.
What do you dislike about the product?
I feel it's little bit slow some time while opening incident details. It can be fixed I think in future versions.
What problems is the product solving and how is that benefiting you?
Its serving the purpose of AV, also help us to get secure from Endpoint attacks
It's quite efficient to detect the threats.
It's quite efficient to detect the threats.
Experience with Qradar
What do you like best about the product?
Easy to configure and setup Qradar. User friendly and flexible to analyse the detections.
What do you dislike about the product?
No drawbacks observed since I'm exploring the tool more.
What problems is the product solving and how is that benefiting you?
Making my work less by automated detection and easy to analyse.
QRadar Review by Security analyst
What do you like best about the product?
Ability to automate and variety of dashboards
What do you dislike about the product?
There are set of predefined detection rules but customising those to make it best suitable for our environment is a pain area
What problems is the product solving and how is that benefiting you?
Run time malware detection and file system alert, threat intelligence information is plus
One of the best security tool available for cybersecurity and threat detection
What do you like best about the product?
Great security tool for endpoint threat detection.
Regular updates to secure malicious threat attacks.
IBM Security QRadar is a great tool for detecting malicious phishing emails.
Regular updates to secure malicious threat attacks.
IBM Security QRadar is a great tool for detecting malicious phishing emails.
What do you dislike about the product?
Initial setup is bit tricky.
Tool is costly for mid range and small business.
Tool is costly for mid range and small business.
What problems is the product solving and how is that benefiting you?
IBM Security QRadar EDR is an advance solution for detecting online attacks, phishing emails/link, endpoint security.
It is significantly increasing the business efficiency
It is significantly increasing the business efficiency
One of the best EDR
What do you like best about the product?
The QRadar EDR is one of my personal favorite EDR.
As SOC Analyst Im always receiving logs from QRadar EDR and many of our clients using it as their EDR. The main think I love in QRadar's EDR is the Dashboards, this provide a very user friendly dashboard as their home dashboard there we can see stats of all of our endpoints in less complicated way. also the behavioral tree is next level it helping us in incident response very well and it is easy to integrate to SIEM softwares.
As SOC Analyst Im always receiving logs from QRadar EDR and many of our clients using it as their EDR. The main think I love in QRadar's EDR is the Dashboards, this provide a very user friendly dashboard as their home dashboard there we can see stats of all of our endpoints in less complicated way. also the behavioral tree is next level it helping us in incident response very well and it is easy to integrate to SIEM softwares.
What do you dislike about the product?
it require some programing knowledge to develop uses cases.
What problems is the product solving and how is that benefiting you?
its really helping me to find out the particular incident happening in all the endpoints and its giving a much good visibility to overall security.
One of the best Security tool for Blue team with a capability of intercepting the bad guys.
What do you like best about the product?
What I like the best in IBM Security Qradar EDR is their threat hunting capabilities which provides a proactive approach of finding suspicious IOC and anomalies within the environment together with their IR Automation which connects strings workflows and orchestrate playbooks and response actions to real time againts real time threats.
What do you dislike about the product?
What I dislike about the platform is the alert overload in which this happens when there is a surge or high volume alerts/incidents which could affect security analyst and their triage actions in responding to multiple events.
What problems is the product solving and how is that benefiting you?
There was a time as an analyst on which I received a critical severity alert relating to ransomware and i was shocked that IBM Qradar did its job by triggering the automated SOAR actions to isolate the device in real-time which really helps on mitigating the threat.
Best solution for endpoint threat detection
What do you like best about the product?
The best part is user interface and it's continuous update to secure from malicious threat.
What do you dislike about the product?
Cost is high and sometimes it's shows false positive
What problems is the product solving and how is that benefiting you?
Very useful for crone job set up
Feedback on IBM Qradar
What do you like best about the product?
The best part is we can perform deep analysis and investigation on phishing mails and performing this is easy in the tool.
What do you dislike about the product?
Sometime there is some conectivity issues which is found rarely, but since its rare it doesn't trouble much.
What problems is the product solving and how is that benefiting you?
From many SIEM/EDR tools finding hash values is difficult and clumsy to find, where here hash values if found for assoiated files a ease.
Has a lot of potential, but needs some improvements.
What do you like best about the product?
Alert analysis is nice, showing the process tree and information about each block.
It's really easy to setup and integrate with QRadar SIEM and SOAR.
It's really easy to setup and integrate with QRadar SIEM and SOAR.
What do you dislike about the product?
Needs programming knowledge to build your own rules.
Reports needs to be improved.
Many false positives.
Reports needs to be improved.
Many false positives.
What problems is the product solving and how is that benefiting you?
It's giving us visibility about code execution on endpoints, so we can validade what is running on servers.
showing 1 - 10