Sign in
Categories
Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help

IBM QRadar Security Intelligence Platform Managed Host (BYOL) v7.3.2 P1

IBM | QRadar MH v7.3.2 Patch 1

Linux/Unix, Red Hat Enterprise Linux RHEL-7.5 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

190 reviews
from G2

External reviews are not included in the AWS star rating for the product.


    lalit u.

Above average product

  • August 15, 2020
  • Review provided by G2

What do you like best?
Best in creating use cases. You need not to be a query master to create use case. Just need to have a logic. Hence, much user friendly.
What do you dislike?
Scaling, integration with other products is a bit difficult and for minor help IBM support keeps on pushing to take their professional services help(which comes at a cost).
What problems are you solving with the product? What benefits have you realized?
For creating use cases, integration of other security products. Fine tuning of ise cases etc.
It's user friendly and interactive web features.
Recommendations to others considering the product:
Professional services should be ease out for cusromers and a lot more competitive offerings should be there i.e. cost, assistance in scaling. Client issues should be taken up very seriously. IBM support quality should be enhanced.


    Information Services

Greater visibility of your network

  • August 15, 2020
  • Review provided by G2

What do you like best?
It can be integrate with most of the devices ( Routers, Servers, DB Servers, Critical Devices, Critical Applications etc.,), Its highly scalable and gives greater visibility also good in event management.
What do you dislike?
It's much complicated in implementation and usage
What problems are you solving with the product? What benefits have you realized?
With the help of Qradar proactively control the security events in our organization
Recommendations to others considering the product:
Do prepare the use cases and do a proof of concept at least a month then take a right decision


    Saiteja T.

QRadar is a Wonderful SIEM tool-- Easy to understand and work

  • August 13, 2020
  • Review provided by G2

What do you like best?
Adding or removing devices to QRadar and applying filters is easy.
Creating new rules, reports is very simple.
Network flow feature is amazing.
What do you dislike?
Cannot find anything at this point but will definitely edit this review if i find any.
What problems are you solving with the product? What benefits have you realized?
Detecting malicious traffic in the network, unusual behavior of systems, new variants of malware by adding hash values.


    Mohammad I.

Recommended one for SOC.

  • August 10, 2020
  • Review provided by G2

What do you like best?
Customisation as per requirement and details of information in events and logs.
What do you dislike?
I think technical support could have been better.
What problems are you solving with the product? What benefits have you realized?
Monitoring the logs of devices and fine tuning those devices with best practices.


    Murad I.

Excellent product that works using infrastructure logs

  • August 10, 2020
  • Review provided by G2

What do you like best?
Dashboards give good insights to management and technical workers. Event monitoring improves if the logs provided to qradar are specific.
What do you dislike?
Unable to expand storage easily using lvm.
What problems are you solving with the product? What benefits have you realized?
Infrastructure security, threat intelligence, management reports on security of infrastructure.
Recommendations to others considering the product:
It's a really nice product, specially when you use threat intelligence component and Watson analyzer


    Mohd D.

QRadar is still a Leader in SIEM Technology

  • August 08, 2020
  • Review provided by G2

What do you like best?
It's scalability and advanced correlation capabilities to detect cyber threats. User Interface is prety easy to use for user level analysts and for SIEM Administrators as well. I worked as an Analyst and you can easily drill down on an alert and investigate thoroughly with available logs and search for more related logs and create your investigation with searching related artifacts and create watchlists , alerts.
Easily integrate with most of industry standard tools, which is the most important to get full fledged benefits of compete security posture.
Integrated QRadar with our automation tool and it worked very well with automation of incident response and Threat intelligence feeds.
What do you dislike?
A bit lack of automation capabilities for quick Incident Response
What problems are you solving with the product? What benefits have you realized?
Incident Response, Threat Hunting, Cyber security incident monitoring , Audit compliance
Recommendations to others considering the product:
Go for it , it;s the market leader in SIEM technology improving day by day with latest features to comply with sophisticated methods of detecting cyber attacks. I would highly recommend QRadar for a Big size Organization, it can handle thousands of devices to be integrated with it and there is no challenges in scalability. Overall good product to invest and get your organization secure with market's best on the top technology.


    soumya b.

Security logs

  • August 07, 2020
  • Review provided by G2

What do you like best?
Ingest vast amounts of data from on-prem and cloud sources.
Applies built-in analytics to accurately detect threats.
Correlate related activities to prioritize incidents.
Automatically parses and normalizes logs.
Threat intelligence and support for STIX/TAXII.
What do you dislike?
You can send a denial of service. The Linux kernel used by QRadar is vulnerable to a denial of service due to an error in functionality.
What problems are you solving with the product? What benefits have you realized?
Use of analytics to eliminate threats .
Analyze the offenses .


    Computer & Network Security

Qradar is a best tool if you are looking for SIEM solutions. It's great tool for threat hunting.

  • August 07, 2020
  • Review provided by G2

What do you like best?
It's great tool for threat hunting & log analysis
What do you dislike?
It's complex somewhat , difficult to analyse the logs.
What problems are you solving with the product? What benefits have you realized?
We use for log reporting & Analysis


    Security and Investigations

the platform is friendly and robust and It has many advantages to be exploited to the fullest

  • August 05, 2020
  • Review provided by G2

What do you like best?
the platform is friendly and robust and It has many advantages to be exploited to the fullest, which are of great help in detecting vulnerabilities and threats.
What do you dislike?
la sección de reenvío de eventos no está muy bien definida y desarrollada ya que he tenido inconvenientes al tratar de realizar el reenvío hacia otro siem por decisión del cliente.
What problems are you solving with the product? What benefits have you realized?
collection of general team events, rules for detecting threats, the benefits is that the platform already includes several rules that are highly supportive.


    Bala M.

QRadar feedback

  • August 05, 2020
  • Review provided by G2

What do you like best?
vendor direct integration
2FA support for login
What do you dislike?
threat intelligence need more improvement
What problems are you solving with the product? What benefits have you realized?
better visibility