Sign in
Categories
Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help

IBM QRadar Security Intelligence Platform Managed Host (BYOL) v7.4.1

IBM Security | QRadar MH v7.4.1

Linux/Unix, Amazon Linux RHEL-7.5 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

214 reviews
from G2

External reviews are not included in the AWS star rating for the product.


    Computer & Network Security

Good and easy way for log analysis and treat hunting

  • November 30, 2021
  • Review provided by G2

What do you like best?
Treat hunting, logs analysis ,different tools integration
What do you dislike?
No. Nothing all good will the tool .many companies already using in there security operational centres
What problems are you solving with the product? What benefits have you realized?
Treat hunting,Malware identify,dashboard creations alert generation.access and compromised system issues ,phishing emails logs Ised in Resolving SOC Issues
Recommendations to others considering the product:
Good one used


    Information Technology and Services

Advanced SIEM Tool IBM QRadar

  • November 22, 2021
  • Review provided by G2

What do you like best?
GUI is very user friendly... Tabs provided to nevigate is very easy to work with. Easy to integrate multiple network devices. Creating custom rules are user friendly. Putting filter for perfirming search is also very easy.
What do you dislike?
Not much i came through till now... QRadar is best SIEM tool in the market currently.
What problems are you solving with the product? What benefits have you realized?
I am working on QRadar for analysing real time attack in client environment. Also creating custom dashboard to monitor unusual traffic. Also creating manual and automatic reports to be shared with client. All in one tool.


    Financial Services

Very wide range of features, but it is complicated

  • November 10, 2021
  • Review provided by G2

What do you like best?
Very wide range of features, alot of inigration with other IBM security products, truely it is a do covery the needs in correlation, very fat system, specially in logs retrieval
What do you dislike?
Very complicated product, hard to Manage, bad support, to much issues, requires alot of resources
What problems are you solving with the product? What benefits have you realized?
Is is cover siem solution and provide good correlation rules in addyion to network configuration analysis
Recommendations to others considering the product:
Make sure to get professional services from IBM directly, or at least make sure local vendor have enough experience to implement the solution

Make aure you need all the features in the system, if not go with other solution which may cover your requirements and have less issue and easier in support and implementation


    Nikhil K.

IBM Security QRadar a SIEM tool

  • November 06, 2021
  • Review provided by G2

What do you like best?
This SIEM tool is now available in on premises and cloud environment also, which make us very confident during analysis the log of every configured devices ,servers, workstations and app which are available on own network or cloud based.
What do you dislike?
Tool should be available live chat bot to support to their user if they have any operational or logical queries during the operational activities.Price is little high it's should be simplified.
What problems are you solving with the product? What benefits have you realized?
Live event analysis like trigger the logs,operational events filtering the data events to high end analysis . correlates of data events with particularly applications and systems.
Recommendations to others considering the product:
Yes,I would like to recommend to the users.


    Information Technology and Services

One of the best SIEM software available in budget terms

  • September 16, 2021
  • Review provided by G2

What do you like best?
It gives you all-around visibility of account data or customer data, whether on on-premise infrastructure or cloud infrastructure, on one page.
What do you dislike?
It usually gives support issues and syncing issues when used with any third-party threat management tool.
What problems are you solving with the product? What benefits have you realized?
We use it for threat management and alerting.
Automation cuts down the manual effort, which consists of human errors.
Search query is always easy to understand.


    Information Technology and Services

A SIEM and much more

  • September 02, 2021
  • Review verified by G2

What do you like best?
One of the most complete SIEMs that allows integrations with multiple elements in a simple way.
What do you dislike?
The way to quote is complicated and can make the solution too expensive.
What problems are you solving with the product? What benefits have you realized?
It allows you to review the events and obtain the offenses in a simple way and have a total vision of what is happening on the network. In addition to allowing modeling of user behavior.
Recommendations to others considering the product:
Do not think that it will be a more expensive solution than the others, surely there is an architecture capable of being competitive.


    Jonathan S.

Excellent SIEM

  • August 17, 2021
  • Review verified by G2

What do you like best?
It is a very complete tool that includes the Zero Trust cybersecurity model, in addition to being incorporated with many products on the market as well as its easy handling and the components that can be incorporated. This tool has a high level of analysis of the offenses with the use of X-Force and Watson, also the generation of the graphical relationships of these offenses are very structured and allow a greater vision of each event.
What do you dislike?
Nothing so far the tool is excellent and meets all requirements.
What problems are you solving with the product? What benefits have you realized?
With the implementation of the solution, the adjustment of security policies has been drastically improved, as well as the monitoring and discarding of false positives in a faster and more efficient way. It has also helped us to monitor users and measure their level of risk, as well as vulnerability scans scheduled on specific dates to systems and network equipment to initiate mitigation plans for these vulnerabilities and to be able to correct them according to their level of criticality.
Recommendations to others considering the product:
It is an excellent tool that has many elements that complement the management of security events. I recommend it for all types of organizations since it helps a lot with the management and monitoring of the entire infrastructure to prevent security incidents and maintain an adequate level of risk and have a broader vision of the network infrastructure and services.


    Security and Investigations

SIEM360+

  • August 04, 2021
  • Review verified by G2

What do you like best?
I like best the integration with the IBM Security SOAR Plattform. And the new way of investigation of Offenses using the IBM Security Analyst Workflow App.
What do you dislike?
I dislike nothing special. The downside of QRadar is to deal with assets.
What problems are you solving with the product? What benefits have you realized?
I solve the problem of detecting possible IoCs in a more automated and intelligent way. That saves time and resources.


    Halim D.

IBM Security QRadar provides high security level and one of things and must have .

  • July 07, 2021
  • Review provided by G2

What do you like best?
With IBM you can guarantee high security level and you can feel save from any hack and also the software is very easy to use .
What do you dislike?
really there is nothing to dislike because IBM always provide excellent software service and solutions.
What problems are you solving with the product? What benefits have you realized?
IBM QRadar can provide you with high security level, with IBM Sure you are in the save side.
Recommendations to others considering the product:
highly recommended because of the high performance.


    muhammet furkan .

Overall good but there are some minor flaws

  • July 02, 2021
  • Review verified by G2

What do you like best?
It supports many protocols in terms of logging. It has a lot of options on the configuration side. Thanks to its architecture, you don't experience any contraction problems. Making rules for SOC teams is easy. The reporting side is very flat but successful. The interface design looks a bit old, but it is good in terms of functionality. When you want to enlarge your structure, you can add new physical or virtual devices. If you're going to get your logs from a different city, it's nice to be able to set up an event collector there and transfer it over that device.
What do you dislike?
We had some very serious problems. You cannot easily make improvements such as disk upgrades on devices. Wincollect can't fully manage its agents, it gets in the way. While updating, you may cause log interruption for a short time.
What problems are you solving with the product? What benefits have you realized?
SOC and logging