Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
User friendly SIEM tool
What do you like best about the product?
UI is compatible and friendly, easy to understand and easy to use, real time monitoring made easy to track every Event or in a particular time frame.
What do you dislike about the product?
Sometime it takes more time to configure the system to properly interpret and normalize different type of data collected from multiple resources
What problems is the product solving and how is that benefiting you?
It is parsing data for analysis in such a way that is easy to understand and analyse to classify the alerts.
- Leave a Comment |
- Mark review as helpful
Is it really protecting our organization?
What do you like best about the product?
In addition to its advanced threat detection capabilities, IBM Security QRadar SIEM offers a range of features that make it a popular choice among organizations. One notable aspect is its centralized log management functionality.
What do you dislike about the product?
Complexity of Implementation as we have found the initial implementation and setup of QRadar SIEM to be complex and time consuming process. The platform's rich feature set and extensive configuration options may require experienced personnel or additional training to fully utilize its capabilities
What problems is the product solving and how is that benefiting you?
One of the significant challenges in is managing and analyzing security event logs from various sources. QRadar SIEM provides a centralized platform for collecting, storing, and analyzing logs from network devices, servers, applications, and endpoints and There it is benefiting us
IBM Security QRadar SOAR
What do you like best about the product?
IBM Security QRadar SOAR is Security Orchestration, Automation and Response. It is used to generate automatic response against any malicious activity performed overall the infrastructure of any organization. we can create playbooks to automate the process . Like if any user is trying to access a website that is being blocked over the firewall, hence we can block the IP of the user on firewall so he may not access the blocked website.
What do you dislike about the product?
Creating playbooks requires a programming development skill such as one must learn python language so he can easily create playbooks. We can disable active directory user through SOAR against any malicious activity.
What problems is the product solving and how is that benefiting you?
IBM Security QRadar SOAR is used to generate automatic response. So it can be used as incident register and also for incident response through customized build playbooks.
Very user friendly tool interface with Ease in Administration
What do you like best about the product?
Seamless interface with Log sources.
Out of the box support to many log sources.
Good dashboard creation tools.
Out of the box support to many log sources.
Good dashboard creation tools.
What do you dislike about the product?
Search queries should be made more simpler.
Syntax needs to be available on demand
Syntax needs to be available on demand
What problems is the product solving and how is that benefiting you?
High volume data ingestion. Mitigating the hassle of managing logs
Best SIEM
What do you like best about the product?
IBM QRadar is very easy to use, we will easily manage our dashboard according to us. Easy to create rules and building blocks.
What do you dislike about the product?
DSM update alert comes frequently and its not going away after the TAC help.
What problems is the product solving and how is that benefiting you?
IBM QRadar helps us in monitoring the real-time alerts; from here we will easily monitor our whole infra, create rules according to our requirements.
Intuitive
What do you like best about the product?
Ease of use. It makes your job easy unlike other overly complicated competitors
What do you dislike about the product?
Easy to use, hard to master. But that is how everything should be.
What problems is the product solving and how is that benefiting you?
Comparatively better than our previous EDR.
Deep dive into what's happening in your network!
What do you like best about the product?
Very easy to dive deep into a situation to view how incidents are linked.
What do you dislike about the product?
Can be overwhelming if you have no training. Realy requires training or you will get lost.
What problems is the product solving and how is that benefiting you?
The best thing I like about QRadar is that it can automatically launch other tools when an incident happens
IBM Security ReaQta
What do you like best about the product?
IBM Security ReaQta is an advanced threat detection and response platform designed to detect and respond to advanced persistent threats (APTs) and malware attacks in real-time. The platform uses advanced AI algorithms and behavioral analysis to identify and block suspicious activities and prevent data breaches.
One of the upsides of using IBM Security ReaQta is its ability to detect and respond to sophisticated attacks that other security tools might miss. The platform's AI-powered detection and response capabilities enable it to identify and stop zero-day attacks and new and unknown threats that traditional signature-based solutions can't detect.
Additionally, IBM Security ReaQta provides real-time threat intelligence and automated incident response, which helps security teams respond to security incidents faster and more effectively. The platform also offers comprehensive threat hunting and forensic analysis capabilities, which allow security teams to investigate and remediate security incidents quickly and thoroughly.
Overall, IBM Security ReaQta is a powerful and effective security solution that can help organizations detect and respond to advanced threats quickly and efficiently
One of the upsides of using IBM Security ReaQta is its ability to detect and respond to sophisticated attacks that other security tools might miss. The platform's AI-powered detection and response capabilities enable it to identify and stop zero-day attacks and new and unknown threats that traditional signature-based solutions can't detect.
Additionally, IBM Security ReaQta provides real-time threat intelligence and automated incident response, which helps security teams respond to security incidents faster and more effectively. The platform also offers comprehensive threat hunting and forensic analysis capabilities, which allow security teams to investigate and remediate security incidents quickly and thoroughly.
Overall, IBM Security ReaQta is a powerful and effective security solution that can help organizations detect and respond to advanced threats quickly and efficiently
What do you dislike about the product?
the platform can be complex to set up and requires a significant amount of configuration and customization to achieve optimal results,the platform can generate a high volume of alerts, which can be overwhelming for smaller security teams.
What problems is the product solving and how is that benefiting you?
the platform is designed to solve several critical problems in the cybersecurity industry, including:
Advanced Threat Detection: IBM Security ReaQta can detect and respond to advanced and sophisticated threats that traditional security solutions might miss, including zero-day attacks and new and unknown malware.
Real-Time Incident Response: The platform provides real-time threat intelligence and automated incident response capabilities, enabling security teams to respond to security incidents quickly and effectively.
Threat Hunting and Forensic Analysis: IBM Security ReaQta offers comprehensive threat hunting and forensic analysis capabilities, which allow security teams to investigate and remediate security incidents quickly and thoroughly.
Advanced Threat Detection: IBM Security ReaQta can detect and respond to advanced and sophisticated threats that traditional security solutions might miss, including zero-day attacks and new and unknown malware.
Real-Time Incident Response: The platform provides real-time threat intelligence and automated incident response capabilities, enabling security teams to respond to security incidents quickly and effectively.
Threat Hunting and Forensic Analysis: IBM Security ReaQta offers comprehensive threat hunting and forensic analysis capabilities, which allow security teams to investigate and remediate security incidents quickly and thoroughly.
Good
What do you like best about the product?
Can help companies protect their critical data and assets from being compromised by cybercriminals.This makes it possible to detect new and emerging threats that may not have been seen before.
What do you dislike about the product?
May be too complex for some users to understand and use effectively. Its interface and features can be overwhelming, especially for non-technical users.Expensive for small businesses or individuals who don't have a large budget for cybersecurity solutions.
What problems is the product solving and how is that benefiting you?
One common problem in cybersecurity is the detection and response to advanced persistent threats (APTs), which are sophisticated and long-lasting attacks that can go undetected for extended periods of time. APTs are often designed to steal sensitive data, disrupt operations, or gain control of systems for future exploitation.
Complete infrastructure visibility helped to increase security posture and combat advanced threats
What do you like best about the product?
User friendly
Performance
Infrastructure interoparatbility
Easy requirements fullfill
Performance
Infrastructure interoparatbility
Easy requirements fullfill
What do you dislike about the product?
Support issues
Featured enhancement required
Third party integration issues
Featured enhancement required
Third party integration issues
What problems is the product solving and how is that benefiting you?
Latest threat combating
showing 51 - 60