IBM Security QRadar SIEM v7.4.3 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
It is swift and new features make it very obvious choise .
What do you like best about the product?
Mitre integration, faster log fetching .
What do you dislike about the product?
We can't search offense by keeping multiple domain together.
What problems is the product solving and how is that benefiting you?
In comparision to Arcsight it is faster and smooth while fetching logs for advisories.
- Leave a Comment |
- Mark review as helpful
Easy to setup and Use
What do you like best about the product?
I found IBM Security QRadar very easy to set up and use in comparison to other SIEM solutions.
What do you dislike about the product?
Log collection and analysis part seems easy but setting up custom correlation rules is hard for me. I wish there could be an easy guide on setting up correlation rules.
What problems is the product solving and how is that benefiting you?
It is helping us to analyze chunks of logs in an easily visualized way, alerting security teams to the possible weak area to mitigate security threats.
Top notch protection mechanism
What do you like best about the product?
The best thing about IBM QRadar is it's monitoring dashboard. I like the way how I can see summarized threats
What do you dislike about the product?
Well, I guess there is not any missing thing in this product. However, being the giant in SIEM world they should lower the license prices
What problems is the product solving and how is that benefiting you?
With IBM Security QRadar I can monitor all my organizational security events and manage those events accordingly
Very good security solutions
What do you like best about the product?
Preloaded correlation rules and data set
What do you dislike about the product?
Granularity of making making correlation rules.
What problems is the product solving and how is that benefiting you?
Identify the security braches in network and malicious IOCs communication
Very easy to use
What do you like best about the product?
The filter features which is very easy to use and very user friendly.
What do you dislike about the product?
The market for qradar is not big and not many company use qradar
What problems is the product solving and how is that benefiting you?
They have improved the event details view and added few extra fields.
QRadar Review
What do you like best about the product?
The most helpful thing is that the talent pool that can manage QRadar is quite sizable.
Most analysts are familiar with it and easy to get.
With diverse deployment and implementations available, this becomes a big contender for compliance & audit heavy organizations.
Most analysts are familiar with it and easy to get.
With diverse deployment and implementations available, this becomes a big contender for compliance & audit heavy organizations.
What do you dislike about the product?
The interface is still quite old-fashioned.
With steep pricing, learning curve, slow query executions, it sometimes becomes quite a hefty task to just manage the overall system well.
Comparative to the new SIEMs & SOARs that are usually plug & play, QRadar still requires much hands on knowledge on the analyst side to make it effective, IMHO
With steep pricing, learning curve, slow query executions, it sometimes becomes quite a hefty task to just manage the overall system well.
Comparative to the new SIEMs & SOARs that are usually plug & play, QRadar still requires much hands on knowledge on the analyst side to make it effective, IMHO
What problems is the product solving and how is that benefiting you?
It helps us operate SOC operations at several big institutions and meet their security needs in a better way.
With correlation, threat intelligence and possibility to integrate with SOAR, it becomes quite an attractive option.
With correlation, threat intelligence and possibility to integrate with SOAR, it becomes quite an attractive option.
Good
What do you like best about the product?
I liked the system of IBM. It is the best system in the world.
What do you dislike about the product?
Actually I liked it so much. Qradar is the Best option i found.
What problems is the product solving and how is that benefiting you?
It's good to analyst for research security threats
Recommendations to others considering the product:
Yes
It is a well organised tool to enhance security operations
What do you like best about the product?
Log collection and streamlining them with which our team uses to make a decision
What do you dislike about the product?
May be the GUI could be better...it has been ages to be intuitive and creative with it
What problems is the product solving and how is that benefiting you?
Definitely the security team is at the best place while having insights and updates mainly with ever growing attack surfaces. I can vouch for the tool and have it your way.
It is a good tool for monitor the alert for all the security application.
What do you like best about the product?
It integrates with any one of the security tools abd give proper logs in the offense, which makes analysis simple.
What do you dislike about the product?
Sometimes, it doesn't work fir automation of the report which is scheduled on the Application.
What problems is the product solving and how is that benefiting you?
IBM Security vendor is very helpful for any circumstances of the alerts.
Very good product but lack support
What do you like best about the product?
Easyto use and understand for new analysts.
No steep learning curve.
Easy to integrate multiple log sources using multiple protocols.
No steep learning curve.
Easy to integrate multiple log sources using multiple protocols.
What do you dislike about the product?
Lack of quality support is major concern.
Regex and property extration can be headache sometime.
Kasper integration is a pain.
Regex and property extration can be headache sometime.
Kasper integration is a pain.
What problems is the product solving and how is that benefiting you?
Single tool to investigate any incident in depth without the need of jumping between tools to join pieces of puzzle regarding investigation.
showing 91 - 100