Sign in
Categories
Migration Mapping Assistant Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help

IBM QRadar Security Intelligence Platform Managed Host (BYOL)

IBM Security | QRadar MH v7.3.1 Patch 7 IF1

Linux/Unix, Red Hat Enterprise Linux RHEL-7.5 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

152 reviews
from G2

External reviews are not included in the AWS star rating for the product.


    Banking

Number 1 Recommendation for Monitoring

  • July 31, 2020
  • Review provided by G2

What do you like best?
1. The Console is very User Friendly like any new user can use it with ease.
2. IBM Qradar Team provide the Communtity Edition for newbie for learning without expiration which is on of the best service.
What do you dislike?
IBM Qradar supports is not up to the mark most of the time if we raise ticket. It takes long to get resolve our problem.
What problems are you solving with the product? What benefits have you realized?
Reduce Threats, Real time monitoring, Compliance


    Phan T.

Tech lead for IBM QRadar implementation project

  • July 29, 2020
  • Review verified by G2

What do you like best?
AQL, dashboard,report, alert, offensives
What do you dislike?
Object management, it is difficult to rename an object.
Network packet capture cannot decrypt ssl traffic
What problems are you solving with the product? What benefits have you realized?
Security visibility
Recommendations to others considering the product:
Have a large number of DSMs


    Muslim K.

One of the best SIEM tool

  • July 29, 2020
  • Review provided by G2

What do you like best?
It's almost a perfect product for the SIEM. It has many built in features to cover most of the things that you are always looking for in terms of security and log analysis.
What do you dislike?
There are quite a few things that I thing would really be good to have;
- There should be a lightweight version of the application as the current one is quite hefty.
- Trial process should be improved, so users can have trial version easily.
What problems are you solving with the product? What benefits have you realized?
- Network Security
- Log analysis
- OTX
Recommendations to others considering the product:
Great product, highly recommended.


    Security and Investigations

Good tool for security monitoring

  • July 26, 2020
  • Review provided by G2

What do you like best?
QRadar has a lot of options, it provides a lot information so you can make a deeply investigation about the offenses generated. It does not demand high speed internet.
What do you dislike?
Sometimes it could be very confusing for a naive person. It does not refresh automatically.
What problems are you solving with the product? What benefits have you realized?
Monitoring high severity offenses. It helps to escalate in a timely and proper manner.
Recommendations to others considering the product:
To pay a lot of attention during the Qradar training. Each day you can discover something new.


    Meherzad J.

IBM QRadar, Advanced Security

  • July 25, 2020
  • Review provided by G2

What do you like best?
Available Templates for rules and building blocks, categorisation of domain and tenants and DSM Editor
What do you dislike?
GUI needs few user friendly moves like navigating back to original page and not the home page of offences, no support for huawei devices, overall complexity of the tool.
What problems are you solving with the product? What benefits have you realized?
Insider threats, rogue devices, identification of malicious content after integrated with end point manager. Qradar has been very effective in portraying overall security posture of my organization.
Recommendations to others considering the product:
QRadar is one the most state of the art SIRM Solution and IBM watson adds value to the real time threat identification. Also if utilised efficiently if clarifies security posture of your organisation


    Computer & Network Security

BM QRadar is very good solution to assure integrity of log and prevent and detect attacks

  • July 24, 2020
  • Review verified by G2

What do you like best?
Easily deployment,smart log prioritize,ease to manage logs
What do you dislike?
Sometime use too more resources.Resource Need To be use Balenced.
What problems are you solving with the product? What benefits have you realized?
Easily priories high risk bugs the move to low level
Recommendations to others considering the product:
For log management and analysis it can help in real time.


    Neelesh D.

Qradar compete good and provide valuable security.

  • July 24, 2020
  • Review provided by G2

What do you like best?
Securing traffic that what make people believe people's data is safe
What do you dislike?
Everything seems just perfect , more use of it will let us know what we dont like about it
What problems are you solving with the product? What benefits have you realized?
Null
Recommendations to others considering the product:
Move to infinity


    Roberto P.

siem products review

  • July 23, 2020
  • Review provided by G2

What do you like best?
dashboards are well appreciated , and help at the first impact or level , Good for the native network flow analisys capability , Graphic User Interface is intuitive and good readale understanding .GUI , graphics data rappresentation.
QRadar has network traffic behavior analysis
and can be correlated across NetFlow and log
events. QRadar has Advisor using Watson to assist in threat intelligence and investigations.
Watson is an AI and still does very little for any customer out of the box—it
takes months to set up with few proof points. QRadar provides an integrated view of Log and
Event Data and provides flexibility and rich data visibility . no so much with the context.
What do you dislike?
collections is technically limited to most popular methods , you have to trouble more with unstructured data collection or customize an unknown log format such as custom logs colelction. Solution do not scales quick with hw and costs vs performances
Qradar requires most cost in hardware to get
performance . It scales
horizontally that will cause management
load with large scale deployments.
In small environments around 1K EPS, QRadar
cannot scale within an organization. · QRadar can be expensive on storage .
QRadar search capabilities seems to be slow and do not stack up , little changes
over the last years
What problems are you solving with the product? What benefits have you realized?
building a simple SIEM in a let time . Simple and quick Net-flow collection . Simple license method compared to the competition
Recommendations to others considering the product:
medium level customers with High level customer in a simple enviroment


    Retail

Excellent solution

  • July 22, 2020
  • Review provided by G2

What do you like best?
Integration with other apps and custom applications
What do you dislike?
User interface could have some improvements for enhancing user experience
What problems are you solving with the product? What benefits have you realized?
Monitoring infrastructure, accounts and apps in real time, helps a lot in incident response and log analysis
Recommendations to others considering the product:
I definitely recommend IBM QRadar for a SIEM solution and incident response plan


    Tejas S.

Easy to operate, less complex, good for log analysis and integration.

  • July 22, 2020
  • Review verified by G2

What do you like best?
The first noticeable thing is the GUI of the tool easy to operate. Dashboard configuration is good, where it easy to monitor traffic in the single frame in the visual format. Can add multiple different parameters for log searching. ability to integrate with other solutions. Good Technical Support and Documentation. You can add multiple log sources easily. A large number of users in the market so easy to find a solution to the query. Can Integrate with different security devices for logs monitoring. User Analytics Behaviour feature is available. Useful in monitoring email trace logs after trace log source integration. Able to monitor large size organization due to the log source integration. Rule creation is easy to do and Building Block feature is good.
What do you dislike?
A mobile app can be useful. Can add sound or POP UP Notifications for the offense.Use too many resources. Default QRadar rules generate more False Positive offenses, can work on it.
What problems are you solving with the product? What benefits have you realized?
The primary job is to identify the security risks of the organization. QRadar is useful while threat hunting, log analysis, and reporting. Scheduled Daily, weekly and monthly reports which are useful while identifying anomaly. Integration with HIDS logs helped in monitoring host-level logs and security. Monitoring email trace logs of the user which helps to identify phishing campaign against the organization.
Recommendations to others considering the product:
A good tool for all level of users starting from freshers to SME. Can use multiple features available in QRadar to secure your organization. Easy to operate and integrate.