IBM Security QRadar SIEM v7.4.3 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
![](https://d32gc0xr2ho6pa.cloudfront.net/img/reviews/G2.png)
External reviews are not included in the AWS star rating for the product.
QRadar Review
What do you like best about the product?
The most helpful thing is that the talent pool that can manage QRadar is quite sizable.
Most analysts are familiar with it and easy to get.
With diverse deployment and implementations available, this becomes a big contender for compliance & audit heavy organizations.
Most analysts are familiar with it and easy to get.
With diverse deployment and implementations available, this becomes a big contender for compliance & audit heavy organizations.
What do you dislike about the product?
The interface is still quite old-fashioned.
With steep pricing, learning curve, slow query executions, it sometimes becomes quite a hefty task to just manage the overall system well.
Comparative to the new SIEMs & SOARs that are usually plug & play, QRadar still requires much hands on knowledge on the analyst side to make it effective, IMHO
With steep pricing, learning curve, slow query executions, it sometimes becomes quite a hefty task to just manage the overall system well.
Comparative to the new SIEMs & SOARs that are usually plug & play, QRadar still requires much hands on knowledge on the analyst side to make it effective, IMHO
What problems is the product solving and how is that benefiting you?
It helps us operate SOC operations at several big institutions and meet their security needs in a better way.
With correlation, threat intelligence and possibility to integrate with SOAR, it becomes quite an attractive option.
With correlation, threat intelligence and possibility to integrate with SOAR, it becomes quite an attractive option.
- Leave a Comment |
- Mark review as helpful
Good
What do you like best about the product?
I liked the system of IBM. It is the best system in the world.
What do you dislike about the product?
Actually I liked it so much. Qradar is the Best option i found.
What problems is the product solving and how is that benefiting you?
It's good to analyst for research security threats
Recommendations to others considering the product:
Yes
It is a well organised tool to enhance security operations
What do you like best about the product?
Log collection and streamlining them with which our team uses to make a decision
What do you dislike about the product?
May be the GUI could be better...it has been ages to be intuitive and creative with it
What problems is the product solving and how is that benefiting you?
Definitely the security team is at the best place while having insights and updates mainly with ever growing attack surfaces. I can vouch for the tool and have it your way.
It is a good tool for monitor the alert for all the security application.
What do you like best about the product?
It integrates with any one of the security tools abd give proper logs in the offense, which makes analysis simple.
What do you dislike about the product?
Sometimes, it doesn't work fir automation of the report which is scheduled on the Application.
What problems is the product solving and how is that benefiting you?
IBM Security vendor is very helpful for any circumstances of the alerts.
Very good product but lack support
What do you like best about the product?
Easyto use and understand for new analysts.
No steep learning curve.
Easy to integrate multiple log sources using multiple protocols.
No steep learning curve.
Easy to integrate multiple log sources using multiple protocols.
What do you dislike about the product?
Lack of quality support is major concern.
Regex and property extration can be headache sometime.
Kasper integration is a pain.
Regex and property extration can be headache sometime.
Kasper integration is a pain.
What problems is the product solving and how is that benefiting you?
Single tool to investigate any incident in depth without the need of jumping between tools to join pieces of puzzle regarding investigation.
IBM QRADAR REVIEW
What do you like best about the product?
Log Ingestion
Use cases creation
Enrichment
Use cases creation
Enrichment
What do you dislike about the product?
Troubleshooting issues
Bugs
App slowness
Bugs
App slowness
What problems is the product solving and how is that benefiting you?
Advance threat detection
User entity Behaviour analytics
Soar
Huge data storage
Data processing speed.
User entity Behaviour analytics
Soar
Huge data storage
Data processing speed.
Review of IBM QRadar
What do you like best about the product?
User Friendliness and ease of use than other products.
What do you dislike about the product?
Few bugs for autodiscovery of log source
What problems is the product solving and how is that benefiting you?
Provides the market's best SIEM solution which can be integrated with most technologies. Readily available use cases backed by IBM
Recommendations to others considering the product:
NA
Security Analyst & Admin
What do you like best about the product?
Qradar is user-friendly and easy to use.
What do you dislike about the product?
Log retention period.
Restoration
Down-time activity
Version upgradation
Restoration
Down-time activity
Version upgradation
What problems is the product solving and how is that benefiting you?
All functionality is easy to find.
Faster than other SIEM tool
Multi-Language
Threat intelligence website Plugins are available.
Dig-down of any data is easy (IP, Hostname, UserID)
New Watchlist, rule creation, Health checkups and data extraction are so smooth and easy.
Nontechnical candidates can learn quickly.
Faster than other SIEM tool
Multi-Language
Threat intelligence website Plugins are available.
Dig-down of any data is easy (IP, Hostname, UserID)
New Watchlist, rule creation, Health checkups and data extraction are so smooth and easy.
Nontechnical candidates can learn quickly.
Recommendations to others considering the product:
Learn log analysis and admin tasks. It will be fun while use Qradar
Loved the tool.
What do you like best about the product?
Very helpful for dfir.Really helped in going in depth for analyzing the digital forensics part.
What do you dislike about the product?
Nothing as of now. Currently practicing it.
What problems is the product solving and how is that benefiting you?
Everything is benefitiing me.
SIEM
What do you like best about the product?
SIEM product is the best and i am using it
What do you dislike about the product?
dsm feauteru needs to be a bit tricky can be omproved
What problems is the product solving and how is that benefiting you?
secuirty events and coorelation engine
showing 91 - 100