Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar SIEM v7.4.3 (BYOL)

IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)

Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

339 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Computer & Network Security

A decent SIEM solution

  • May 30, 2022
  • Review provided by G2

What do you like best about the product?
*we use around 1500 EPS*
The SIEM offers an impressive parse logging ability.
What do you dislike about the product?
In general I think that the integrations offered by QRadar are not being kept up to date (Sometimes some integrations that I think are pretty standard just don't exist).
In addition i think that the system itself demands tons of resources and can be quite expensive in terms of infratstructure
What problems is the product solving and how is that benefiting you?
it helps us monitor applications and evnironments that do not have out-of-the-box alerts such as CSP's, server logging (syslog level).

    Education Management

QRadar

  • May 29, 2022
  • Review provided by G2

What do you like best about the product?
Single window into your network and risks of the assets.
What do you dislike about the product?
Legacy Ticketing system..but older one..
What problems is the product solving and how is that benefiting you?
Granular log and root cause analysis

    Muhammad U.

Excellent

  • May 28, 2022
  • Review provided by G2

What do you like best about the product?
I love the integrations of log sources easy parsers
What do you dislike about the product?
Unncessary plugins and bundles. Also work on robustness on long queries
What problems is the product solving and how is that benefiting you?
its basically giving us insights of intrusions catering mostly and very important insider threat i.e. TOP RISK
Recommendations to others considering the product:
My Advice is to must do POC IBM Qradar while evaluating different SIEM solutions

    satish kumar k.

It is good experience working with IBM QRadar for the last 4 years

  • May 27, 2022
  • Review provided by G2

What do you like best about the product?
choice of log collection from different protocols and narrow down the searches adding field like domain, log source type .
I like to work more on Redhat Linux.
What do you dislike about the product?
Sometimes delay in response from support when having issue with product.
Also no detailed note on the case how the issue got resolved.
What problems is the product solving and how is that benefiting you?
Data can be corelate with different data, can be parsed some custom fields of our own.
Also creating custom DSM when it is not supported.

    Information Technology and Services

IBM QRadar : The SIEM Solution

  • May 25, 2022
  • Review provided by G2

What do you like best about the product?
There are many log ingestion built-in connectors, This makes our task easier for ingestion of logs.
What do you dislike about the product?
The QRadar User Interface looks very complex and need a lot of time to understand where some features are present.
What problems is the product solving and how is that benefiting you?
We use QRadar to ingest logs from various sources and based on rules offense gets triggered and passe into our SOAR platform where our SOC team resides.

    Information Technology and Services

Protect your networks with this intelligent platform - IBM Security Radar

  • May 17, 2022
  • Review provided by G2

What do you like best about the product?
Real-time monitoring: This tool provides you with the capability to scan your network in real-time. Incidents can be identified and captured based on live network traffic and by using IBM's intelligence service which is backing this tool, it sends out notifications which can help prevent malicious activities, before they even happen.
Simple Implementation: The deployment of this platform in your company's environment is very easy and on top of that it has a Cloud-based offering as well, which can easily be integrated with your company's network services and you need not worry about the platforms updates and maintenance activities as well.
Logs retention capacity: is huge. Years of logs can easily be stored within the tool for compliance purposes.
What do you dislike about the product?
The initial collection so logs can be slow with older versions of operating systems. This can be fixed by using better algorithms under the hood. For example: If integration happens with Windows XP or equivalent, the logs will be pulled in a lot longer time as compared to the latest versions of Windows.
What problems is the product solving and how is that benefiting you?
This tool is being used as a network security perimeter within our organisation. All the network traffic, to and fro from companies' assets is being monitored by dedicated teams via this tool.

    Banking

Siem Qradar and I have ever best experience with with Qradar as compared to other SIEM.

  • May 17, 2022
  • Review provided by G2

What do you like best about the product?
Ioc based hunting and fetching massive accurate logs form various devices. User interface was simple and easy to understand for new comers. Reporting made more easy from Qradr.
What do you dislike about the product?
As per current era IBM should have to update its products because from starting onwards they have not highlighted any new functionality. Some forensics features they have removed.
What problems is the product solving and how is that benefiting you?
Working on Alerts which triggers on daily basis. Maintain all log sources data on priority. Easy to create daily, monthly dashboard from Qradr. Reduces some level of time to do IOC based hunting.
Recommendations to others considering the product:
Strong

    Nam T.

IBM Security QRadar is a very good SIEM solution

  • May 17, 2022
  • Review provided by G2

What do you like best about the product?
First, it has enough functions of a standard, modern SIEM. Second, its interface is rather intuitive for use. Third, IBM offers free learning from its academy if you want to have deep knowledge of its solution. Last but not least, its support team offer great service.
What do you dislike about the product?
Its User Behavior Analytics and automated investigation (offenses) look great, but in reality it is difficult to correspond the findings to the real context.
What problems is the product solving and how is that benefiting you?
To comply with the regulations and to have a good solution for incident response.
Recommendations to others considering the product:
You should buy it.

    Information Technology and Services

Qradar security Review

  • May 16, 2022
  • Review provided by G2

What do you like best about the product?
Use cases building and logs parsing was easy. You can manage all the use cases from an app.
What do you dislike about the product?
UI throws unexpected errors and logs search takes a lot of time.
What problems is the product solving and how is that benefiting you?
Single pane for all the logs coming from cloud,infra and network.
Recommendations to others considering the product:
Make sure you check the available integration and make sure it meets your requirements.

    Research

Efficient and overall good experience

  • May 16, 2022
  • Review provided by G2

What do you like best about the product?
I like the way we can integrate many systems, and keep the flow and correlation between them, able to create rules in a convienet way.
What do you dislike about the product?
Slow response times, usually the requested is not being solved, and gets delayed until we reach a conclusion together with IBM team. also takes time for them to understand who should be able to work on the request, even tho details are written.
What problems is the product solving and how is that benefiting you?
To be honest, my enterprise uses it and its the second SIEM i've used, first was ArcSight. I can say its much more convienet to the eye.

showing 101 - 110