IBM Security QRadar SIEM v7.3.2 P1 - Console (BYOL)
IBM Security | QRadar Console v7.3.2 Patch 1Linux/Unix, Red Hat Enterprise Linux RHEL-7.5 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
IBM Security QRadar SIEM
What do you like best about the product?
IBM Security QRadar SIEM is very helped full to searching the incident and its dashboard has shown al the event and incident our all team like the IBM Security QRadar SIEM.
What do you dislike about the product?
nothing is dislike in IBM Security QRadar SIEM our team always like the IBM Security QRadar SIEM
What problems is the product solving and how is that benefiting you?
to give the free training to all bcz if people train in their will be more jobs is created .
- Leave a Comment |
- Mark review as helpful
Qradar review
What do you like best about the product?
I have been using qradar since February 2022, great tool to use and the thing I like the most about qradar is coalescing and group by functionality.
What do you dislike about the product?
The interface is quite messy need to improve dashboards as well.
What problems is the product solving and how is that benefiting you?
I think coalescing function helps me alot in incident response.
System/Security Engineer
What do you like best about the product?
Providing Advanced threat intelligence and Analytics capabilities;
Log Management and Event Collection.
Integration Capability.
Log Management and Event Collection.
Integration Capability.
What do you dislike about the product?
Its Complexity
Customixation difficulty
Limited feature
Customixation difficulty
Limited feature
What problems is the product solving and how is that benefiting you?
Providing Advanced threat intelligence and Analytics capabilities;
Log Management and Event Collection.
Integration Capability.
Realtime Event correlation
Collecting and analyzing necessary security event data.
Investigation Easiness.
Log Management and Event Collection.
Integration Capability.
Realtime Event correlation
Collecting and analyzing necessary security event data.
Investigation Easiness.
Qradar SIEM evaluation
What do you like best about the product?
Qradar is more simpler and user friendly then in comparison to RSA netwitness or any other tool and in this creation of use cases or device integration is also easy
What do you dislike about the product?
Although there is nothing to dislike over here , because all integration of devices or use cases creation documents are easily available on internet so i can say there nothing to dislike over here.
What problems is the product solving and how is that benefiting you?
This SIEM is helping our client by analyzing the raw and meta deta and creating incidents against it and also helps in deep dive of malware analysis . Qradar graphical interpretation helps our L1 analyst to detect logs variation
A powerful siem solution
What do you like best about the product?
IBM security qradar siem has great features like log ingestion.
Advanced threat detection capabilities.
Analytics monitor threat Intel, network and user behavior anomalies to prioritize where immediate attention and remediation is needed.
Advanced threat detection capabilities.
Analytics monitor threat Intel, network and user behavior anomalies to prioritize where immediate attention and remediation is needed.
What do you dislike about the product?
It could be a problem with my side but the platform becomes slow to respond when working on huge amounts of data.
What problems is the product solving and how is that benefiting you?
IBM security qradar siem provides real time visibility into our IT infrastructure which helps in threat detection and prioritization.
IBM QRadar: A Powerful and User-Friendly SIEM Solution
What do you like best about the product?
The things I like about IBM QRadar was it has Powerful threat detection and response capabilities and User-friendly interface and QRadar is a scalable solution that it can be deployed on-premises or in the cloud, and it can be scaled up or down as needed.The things that I find most helpful was the ability to correlate data from multiple sources, The ability to automate threat response & The ability to integrate with other security solutions
What do you dislike about the product?
Things that I find least helpful about IBM Security QRadar SIEM was The lack of a built-in threat intelligence feed, The lack of a centralized dashboard this can make it difficult to get a complete view of all security events,The lack of integration with other security solutions this can make it difficult to get a single view of the security posture of an organizat
What problems is the product solving and how is that benefiting you?
QRadar SIEM help organization solve a variety of security problems, including Incident detection and response, QRadar help organization detect and respond to security incidents more quickly and effectively. By correlating data from multiple sources, QRadar can provide a complete picture of an incident, which can help analysts to identify the root cause and take action to mitigate the damage, QRadar can help organizations to assess and manage their security risk. By identifying and tracking threats, QRadar can help organizations to take steps to mitigate those threats and reduce their overall risk exposure
Qradar: Best SIEM tool for Monitoring Endpoints & Cloud
What do you like best about the product?
Basically Qradar is a SIEM Tool which is made by IBM, by using Qradar we can monitor our endpoints as well as cloud.
Alerts from Endpoints will come under Events and activity related to networking will come under Flows.
If it find any suspicious activity then it will create Offense.
So if i want to investigate any incident for that you can go to offense it contains rich information.
So you can also integrate Qradar with Qradar SIEM for Automation purpose.
Alerts from Endpoints will come under Events and activity related to networking will come under Flows.
If it find any suspicious activity then it will create Offense.
So if i want to investigate any incident for that you can go to offense it contains rich information.
So you can also integrate Qradar with Qradar SIEM for Automation purpose.
What do you dislike about the product?
So if you are new to Qradar SIEM, first you need to understand the general architecture of Qradar then all features of Qradar.
Although it gives us variety of features Qradar is more costly than any other tool.
Although it gives us variety of features Qradar is more costly than any other tool.
What problems is the product solving and how is that benefiting you?
So if your organisation needs a SIEM helps us monitor endpoints, network analysis and Cloud Monitoring then one can Qradar SIEM tool using this tool we can monitor our whole infrastructure.
SIEM IBM QRadar
What do you like best about the product?
The most valuable about Qradr is a single pan or single window into your network. It will always capture the full packet. Less overhead like query writing. It will narrow down the search with full packet normalization, Best in behavior analysis and less hardware utilization to run effectively
Small to medium enterprises and best for large organization
Small to medium enterprises and best for large organization
What do you dislike about the product?
The tool is excellent, nothing much about to dislike the product. but only one i would say High cost for small organization
What problems is the product solving and how is that benefiting you?
Provide a centralized paltform to Monitoring and analyze the logs and discard the false positives. Monitor the risk and scan the vulnerability on scheduled dates.
Collectively admiring
What do you like best about the product?
The user interface is simpler and has enamourous of plugin.
The threat intelligence is fantastic.
As a beginners in monitoring area i feel very easy and seamless.
The threat intelligence is fantastic.
As a beginners in monitoring area i feel very easy and seamless.
What do you dislike about the product?
As a beginner i dont feel any hurdle while working with such best UI.
By the process if i face any difficulties i will definitely go ahead and put a feedback and get it resolved.
By the process if i face any difficulties i will definitely go ahead and put a feedback and get it resolved.
What problems is the product solving and how is that benefiting you?
The intergrated features which is available in IMB
QRadar called ibm xforce exchange. Which helps a analyst to furthermore analyse the reputation and the detail activity of a particular ip.
QRadar called ibm xforce exchange. Which helps a analyst to furthermore analyse the reputation and the detail activity of a particular ip.
Alert handling tool - SIEM
What do you like best about the product?
1) User friendly
2) Has advanced treat detection capabilities
3) CRE works effectively and helps to get logs in well classified form
4) Makes workflow easy and compatible
2) Has advanced treat detection capabilities
3) CRE works effectively and helps to get logs in well classified form
4) Makes workflow easy and compatible
What do you dislike about the product?
When working on huge ammount of data or when we check query for long time period then it lags a bit and sometimes stop responding.
What problems is the product solving and how is that benefiting you?
It is helping to keep environment clean by alerting each and every event for every particular time across the organisation.
showing 11 - 20