Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar SIEM v7.3.2 P1 - Console (BYOL)

IBM Security | QRadar Console v7.3.2 Patch 1

Linux/Unix, Red Hat Enterprise Linux RHEL-7.5 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

393 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Information Technology and Services

IBM SECURITY QRADAR SIEM

  • August 24, 2018
  • Review verified by G2

What do you like best about the product?
Probably the most comprehensive and powerful SIEM we’ve seen...We’ve seen with the added benefit of many next-gen features and superlative correlation...Excellent price for a very flexible SIEM with lots of features... Easy installation, configuration and management... Very fast search, quick and easy log source integration, easy and clear report and rule preparation, etc...
What do you dislike about the product?
Qradar running stable can become inconsistent when we install some extention to qradar ...
is it possible cross query in two events and than match the same property and than two other events merges and than create new table/search/report from these matched events?
What problems is the product solving and how is that benefiting you?
It meets almost all our needs for siem.
Recommendations to others considering the product:
You should definitely try it before deciding on any siem product...

    Juan Carlos Q.

Qradar buena solución monitorización.

  • July 17, 2018
  • Review provided by G2

What do you like best about the product?
Es una herramienta muy util en monitorización de sistemas de alerta temprana.
What do you dislike about the product?
En mi opinion da la sensacion de estar muy limitado, no ofrece nada diferente.
What problems is the product solving and how is that benefiting you?
Analisis de eventos para generar alertas y reportes.
Recommendations to others considering the product:
Un buen sistema de monitorización. Es aceptable.

    Hospital & Health Care

Needs improvement.

  • March 27, 2018
  • Review provided by G2

What do you like best about the product?
Results are fast. Supports hybrid environments.
What do you dislike about the product?
No inverted index. I would like to see this feature.
What problems is the product solving and how is that benefiting you?
Suspicious activity.

    Financial Services

happy with ibm siem tool

  • March 20, 2018
  • Review provided by G2

What do you like best about the product?
event querralation. easy to add end points. easy to save events
What do you dislike about the product?
hard to navigate, too many buttons to click
What problems is the product solving and how is that benefiting you?
anamoly detection

    Information Technology and Services

Easy to learn for beginners

  • January 19, 2018
  • Review provided by G2

What do you like best about the product?
IBM QRadar is a very good tool for the beginners. It has a good UI which allows us to get the information required easily. The tabs provide an easy overview of the events.
What do you dislike about the product?
It doesn't provide all the details required. The raw data isn't enough for detailed analysis!
What problems is the product solving and how is that benefiting you?
We are able to determine which event is getting triggered more often and are able to check what is happening.

    Retail

Threat analysis at its best

  • December 19, 2017
  • Review provided by G2

What do you like best about the product?
It is better than other SIEM out there in the market currently
What do you dislike about the product?
A touch on the costlier side and need to have good back ground in SIEM to use this
What problems is the product solving and how is that benefiting you?
Advanced and persistent threat detection
Recommendations to others considering the product:
The SIEM system in the market currently with lot more potential to grow in the right direction

    Joe A.

Undecided

  • November 14, 2017
  • Review verified by G2

What do you like best about the product?
Nothing particular. Layout is similar to other SIEM applications.
What do you dislike about the product?
searching is not intuitive. Quick filter doesn't offer any tips or command/syntax help.
What problems is the product solving and how is that benefiting you?
We haven' identified business problems to solve yet.

    Financial Services

QRadar Review - Rick Jesse

  • November 14, 2017
  • Review provided by G2

What do you like best about the product?
Ease of use. The ability to quickly find information. Rules are fairly straight forward to create and/or edit.
What do you dislike about the product?
Auto detecting log sources are sometimes inaccurate, leading to duplicate and sometimes triplicate log sources. DSMs have a lot of issues with parsing for certain log sources, and there is a lack of some common DSMs. Specific reports can be difficult to create, the time series reports specifically give us the most issues.
What problems is the product solving and how is that benefiting you?
We are using QRadar as both a logger and SIEM. Detecting and Alerting of malicious activity has been the biggest benefit.

    Mark A.

QRadar Newbie.

  • November 14, 2017
  • Review provided by G2

What do you like best about the product?
I like the discussed inter-operability between QRadar and other data sources that can be used as feeds or a database. I also like that it can be tailored to any environment with not too much effort if the environment is mature.
What do you dislike about the product?
We have run into a timestamp issue whereby QRadar timestamps an event when it receives the data and creates an alert based on that timestamp vs when the event actually happened on the Network.
What problems is the product solving and how is that benefiting you?
We are implementing QRadar to better consolidate and cross correlate data to one console.
Recommendations to others considering the product:
Have a mature environment that is well documented, a well organized process flow for Security as a whole and well defined roles and responsibilities. It's always good to have done your homework on any product as it relates to your environment so as to have the ability to identify any gaps in either process flow or data sources availability/use in QRadar.

    Information Technology and Services

Flexible, fast, data-intensive, and evolving at a rapid pace

  • November 11, 2017
  • Review provided by G2

What do you like best about the product?
The fact that it natively deals with flows and log sources. The QRadar app exchange is just putting the platform on steroids and expanding its capabilities limitlessly. The correlation and offense engine is very powerful, as is the framework for integrating threat and intel feeds. Tight integration with QVM, Forensics.
What do you dislike about the product?
The dashboards need more visualization options and flexibility.
What problems is the product solving and how is that benefiting you?
Orchestrating security incident response around IBM QRadar, with increased identification rates, faster triage, greater visibility into incidents from network flows and other security context sources.

showing 381 - 390