Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar SIEM v7.4.3 (BYOL)

IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)

Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

339 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Management Consulting

proactive approach to resolve threat

  • April 09, 2020
  • Review provided by G2

What do you like best about the product?
QRadar provides customizable dashboards, compliance templates, and data archiving
What do you dislike about the product?
he only downside is the alerting capabilities to know if a new update or patch has been
What problems is the product solving and how is that benefiting you?
IBM QRadar is a tightly integrated solution, that allows you to protect your environment

    E-Learning

One of the best SIEM

  • April 08, 2020
  • Review provided by G2

What do you like best about the product?
Easy to create content rules and correlating. It is easy to integrate with tools
What do you dislike about the product?
everyone must get a training before implementing this
What problems is the product solving and how is that benefiting you?
Integrating with other apps easily

    Nikhil J.

IBM Qradar: A Powerful and Intelligent SIEM solution

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
Performance- The processing capability of Qradar is excellent. Qradar can filter you data through millions of logs in just few seconds.
Threat Hunting: If you are bored with normal alerts and want to explore the possibility of attacks which your default correlation can't detect, you can use deep drive to the raw logs and can get into the details of information.
Filters: Qradar comes with excellent filter module which can be used to get the specific result.
Netflow:
What do you dislike about the product?
Reports: If you want to design the custom report for you customer or management. It's gonna be difficult for you because Qradar has very limited features.
Visuals: The defaults graphs and other visuals should be more specific and meaningful.
What problems is the product solving and how is that benefiting you?
Qradar was helping with In depth analysis of alerts, raw log, identify the suspicious traffic, create custom use cases.
Recommendations to others considering the product:
If you dealing with medium of large size organization and asset, I would recommend you to use Qradar. For small organization it's going to be difficult in terms of commercials.

    Abhishek V.

It's very good I love this tool

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
Vanurability logs siem clod platform also
What do you dislike about the product?
Just only the heavy setup nothing else .
What problems is the product solving and how is that benefiting you?
Logs siem odc information security

    Kamaltej K.

About the Qradar Productivity and features.

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
The benefits are flexible and scalable architecture, efficient reporting, The data consolidation and search capabilities, Integrate with solutions like IBM BigFix, MaaS360.
What do you dislike about the product?
Need to more focus on false positive cases, for that develop with more features and detection capabilities.
What problems is the product solving and how is that benefiting you?
So flexible, scalability architecture, Efficine reporting worked with other tools but for QRadar will having many solutions,l. if you comparing with other tools will get actually scenario of QRadar tool.
Recommendations to others considering the product:
Need to focus on false positive cases.

    Mazhar U.

Best SIEM product found so far.

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
Its enablement and customizations. And the idea of extensions make it more valuable.
What do you dislike about the product?
There are less search customisations in offenses tab.
What problems is the product solving and how is that benefiting you?
It pretty much covers everything due to its versatility.

    Telecommunications

I have a 4 years with Perform tuning of the Qradar SIEM , and integration with various systems

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
1. Easy to integration for most devices
2. UBA App and other APP
3. Offences tab easy to tracking logs and events, log activity tab
4.Easy to learn
5.Network hierarchy
What do you dislike about the product?
If they have integrated some applications with QRadar and need support for this application, you will not find full support, as the application works as a third party,
For example, if you have a site error on QRadar and have opened a ticket with the support they reported, you should open a ticket with MaxMind, because the Maxmind database is a third-party tool. IBM doesn't own it, QRadar just uses it There is nothing IBM can do about it.
Or if you encounter any problem with the CISCO FMC app, you should open a ticket with CISCO and I think they should have full support for any merger with any vendor and they have the ability to deal with the third-party linked in the Qardar system in order not to lose the advantage of this added application

I hate filter search as there no option to edit your search, you must delete the filter search and new filter.

Offenses Dashboard has sometimes error on details you need to move deeply analysis to check the MAC address as an example.
What problems is the product solving and how is that benefiting you?
You can customize rules, use cases
Real-time analysis
Recommendations to others considering the product:
I think QRadar is the best choice for you, but keep adding logs and tune it always

    Ankit C.

Very effective and user friendly product for financial institution

  • April 05, 2020
  • Review provided by G2

What do you like best about the product?
Log Monitoring, Analysing and investigation
What do you dislike about the product?
Nothing, everything is user friendly and easy to understand
What problems is the product solving and how is that benefiting you?
Analysis and Investigation and resolution of the issues raised by clients

    Computer Software

Because it is a very easy approach.

  • April 05, 2020
  • Review provided by G2

What do you like best about the product?
The way the dashboard is arranged. Which inturn makes the user comfortable.
What do you dislike about the product?
Sometimes the troubleshooting part feels a bit difficult.
What problems is the product solving and how is that benefiting you?
We basically solve investigation part.
Recommendations to others considering the product:
Qradar is the best SIEM tool for companies who wants to start their journey in CyberSecurity Domain.

    Manish J.

IBM Qradar is a good tool for log analysis , it is fast and user friendly.

  • April 05, 2020
  • Review provided by G2

What do you like best about the product?
In IBM Qradar almost all customization can be done from GUI only, We can create custom parser/user cases/co relation rule from gui which is very friendly.
What do you dislike about the product?
IBM Qradar crashes because of heavy search which I will keep as a negative point as other SIEM tool are competing in this area.
What problems is the product solving and how is that benefiting you?
I solved problems like getting analytics/report about top malicious domain visit. co relation between multiple device logs for better cyber protection. Created custom parser easily in GUI for important raw logs.

showing 261 - 270