Sign in
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar SIEM v7.3.2 P1 - Console (BYOL)

IBM Security | QRadar Console v7.3.2 Patch 1

Linux/Unix, Red Hat Enterprise Linux RHEL-7.5 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

402 reviews
from G2

External reviews are not included in the AWS star rating for the product.


    Muhammad T.

Review for SIEM tool IBM Qradar

  • May 25, 2023
  • Review provided by G2

What do you like best about the product?
It's use full very friendly and easiet tool use for person or Cyber Security Analyst it's desig to Event and Logs analysis in one certerlized platform
What do you dislike about the product?
Facing for someone trouble shoot during the deployment or generate the Regex
What problems is the product solving and how is that benefiting you?
IBM Qradar to solve in different asset logs to generate in different platform to cover in a single platform


    Information Technology and Services

QRadar Review

  • May 22, 2023
  • Review provided by G2

What do you like best about the product?
The Rules building system now using QRadar Case Manager app is very useful!
What do you dislike about the product?
The old GUI view and the heavy code that need heavy hardware.
What problems is the product solving and how is that benefiting you?
The data segregation for MSSP like rules, searches etc...


    PRASHANT KUMAR P.

Excellent tool and user friendly

  • May 17, 2023
  • Review provided by G2

What do you like best about the product?
Log ingestion and querying is the best feature in qardar. It has best user interface and anyone can make the query easily. Best tool keep your environment secure.
What do you dislike about the product?
sometimes it is slow, when you ingest large amount of data or run a queury for longer time. they can increase the memory. support can be improved otherwise a best siem tool available in the market.
What problems is the product solving and how is that benefiting you?
It's helping to keep our environment secure. Analyst can do their analysis in details and can mitigate the issue based on the logs. IR and threat can be done on qradar.


    Financial Services

Good SIEM Soltuion with Great features and it keeps on updating.

  • May 13, 2023
  • Review provided by G2

What do you like best about the product?
QRadar is one of the best SIEM solution I have ever worked. First of all, The deployment of the solution is quite easy compared with other SIEM solutions. Integration of Flows in addition the events makes it unique from other SIEM solutions. Integration of log sources with the QRadar is really easy and the current versions have DSM editor feature, which makes us easy to write custom parser. Processing capabilities in QRadar really strong, CRE works without any issues. We can also integrate several third party apps which is also an addition advantage. The conventional dashboards are not attractive however, new Pusle Dashboard gives a great visibility. Also, the conventional user interface is nor really attractive, but there is an app called analyst workflow, with that it is also sorted. One important drawback of this product is the vendor support, some technicians doesn't actually check the issue in detail and ask us to upgrade the product simply and response time is also not that good."
What do you dislike about the product?
Vendor support is bad, Often for issues, they ask us to upgrade the device without checking for actual solutions.
What problems is the product solving and how is that benefiting you?
Threat Detection and Monitoring: QRadar SIEM collects and analyzes vast amounts of security event data from various sources, such as network devices, servers, applications, and endpoints. It uses advanced analytics and correlation techniques to identify security incidents and potential threats in real-time. By detecting and alerting on malicious activities promptly, it enables organizations to respond swiftly and prevent potential damage.


    Abdul M.

Very user friendly tool interface with Ease in Administration

  • May 12, 2023
  • Review provided by G2

What do you like best about the product?
Seamless interface with Log sources.
Out of the box support to many log sources.
Good dashboard creation tools.
What do you dislike about the product?
Search queries should be made more simpler.
Syntax needs to be available on demand
What problems is the product solving and how is that benefiting you?
High volume data ingestion. Mitigating the hassle of managing logs


    Prashant M.

Best SIEM

  • April 28, 2023
  • Review verified by G2

What do you like best about the product?
IBM QRadar is very easy to use, we will easily manage our dashboard according to us. Easy to create rules and building blocks.
What do you dislike about the product?
DSM update alert comes frequently and its not going away after the TAC help.
What problems is the product solving and how is that benefiting you?
IBM QRadar helps us in monitoring the real-time alerts; from here we will easily monitor our whole infra, create rules according to our requirements.


    Robert J. L.

Deep dive into what's happening in your network!

  • April 18, 2023
  • Review provided by G2

What do you like best about the product?
Very easy to dive deep into a situation to view how incidents are linked.
What do you dislike about the product?
Can be overwhelming if you have no training. Realy requires training or you will get lost.
What problems is the product solving and how is that benefiting you?
The best thing I like about QRadar is that it can automatically launch other tools when an incident happens


    Azar N.

Rapid Threat Hunting and SIEM Solution

  • February 14, 2023
  • Review provided by G2

What do you like best about the product?
IBM QRadar is the fastest platform to analyze and detect incidents in real-time.
What do you dislike about the product?
Long deployment time and not available for debian-based operating systems.
What problems is the product solving and how is that benefiting you?
I configure agent and send system logs, then it starts to work, detects all types of incidents.


    Sriram P.

"Empowering Your Security Team with IBM QRadar SIEM's Advanced Analytics"

  • January 27, 2023
  • Review verified by G2

What do you like best about the product?
Advanced threat detection capabilities: IBM Security QRadar SIEM uses a combination of correlation, behavioral analysis, and machine learning to detect and prioritize potential security threats in real-time.
What do you dislike about the product?
High costs: The cost of purchasing and maintaining IBM Security QRadar SIEM can be high, especially for smaller organizations. and High resource requirements: IBM Security QRadar SIEM can be resource intensive and may require significant hardware resources to run effectively.
What problems is the product solving and how is that benefiting you?
Comprehensive security visibility: QRadar SIEM collects and correlates data from a wide range of sources, including network, endpoint, and cloud, providing a holistic view of the organization's security posture.

Automated incident response: The platform can automatically respond to security incidents through its built-in incident response framework, enabling security teams to take immediate action to contain and mitigate threats.

Compliance and regulatory support: QRadar SIEM supports compliance with a wide range of regulations and standards, including PCI DSS, HIPAA, and SOC 2.


    Jatin .

An Easy to Implement SIEM Solution

  • December 07, 2022
  • Review provided by G2

What do you like best about the product?
I have worked on multiple SIEM solutions and find Qradar easy among them to onboard log sources. Also, it supports a wide range of log sources integration as Out of Box. Though the custom rule set present is not that useful, creating new rules is easy compared to other SIEMs.
What do you dislike about the product?
The UI is not very friendly for security guys. Also the search query language is complicated to work with. While searching data for long durations, Qradar becomes irresponsive. Difficult to understand how event buffer works; hence often observe event drops.
What problems is the product solving and how is that benefiting you?
The SIEM solutions help gather logs from various tools used across the organization and perform correlation on them to check for any abnormal or malicious behavior. They also alert analysts to avoid any significant compromise or breach.