Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar SIEM v7.4.3 (BYOL)

IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)

Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

336 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Prashant M.

Best SIEM

  • April 28, 2023
  • Review verified by G2

What do you like best about the product?
IBM QRadar is very easy to use, we will easily manage our dashboard according to us. Easy to create rules and building blocks.
What do you dislike about the product?
DSM update alert comes frequently and its not going away after the TAC help.
What problems is the product solving and how is that benefiting you?
IBM QRadar helps us in monitoring the real-time alerts; from here we will easily monitor our whole infra, create rules according to our requirements.

    Robert J. L.

Deep dive into what's happening in your network!

  • April 18, 2023
  • Review provided by G2

What do you like best about the product?
Very easy to dive deep into a situation to view how incidents are linked.
What do you dislike about the product?
Can be overwhelming if you have no training. Realy requires training or you will get lost.
What problems is the product solving and how is that benefiting you?
The best thing I like about QRadar is that it can automatically launch other tools when an incident happens

    Azar N.

Rapid Threat Hunting and SIEM Solution

  • February 14, 2023
  • Review provided by G2

What do you like best about the product?
IBM QRadar is the fastest platform to analyze and detect incidents in real-time.
What do you dislike about the product?
Long deployment time and not available for debian-based operating systems.
What problems is the product solving and how is that benefiting you?
I configure agent and send system logs, then it starts to work, detects all types of incidents.

    Sriram P.

"Empowering Your Security Team with IBM QRadar SIEM's Advanced Analytics"

  • January 27, 2023
  • Review verified by G2

What do you like best about the product?
Advanced threat detection capabilities: IBM Security QRadar SIEM uses a combination of correlation, behavioral analysis, and machine learning to detect and prioritize potential security threats in real-time.
What do you dislike about the product?
High costs: The cost of purchasing and maintaining IBM Security QRadar SIEM can be high, especially for smaller organizations. and High resource requirements: IBM Security QRadar SIEM can be resource intensive and may require significant hardware resources to run effectively.
What problems is the product solving and how is that benefiting you?
Comprehensive security visibility: QRadar SIEM collects and correlates data from a wide range of sources, including network, endpoint, and cloud, providing a holistic view of the organization's security posture.

Automated incident response: The platform can automatically respond to security incidents through its built-in incident response framework, enabling security teams to take immediate action to contain and mitigate threats.

Compliance and regulatory support: QRadar SIEM supports compliance with a wide range of regulations and standards, including PCI DSS, HIPAA, and SOC 2.

    Jatin .

An Easy to Implement SIEM Solution

  • December 07, 2022
  • Review provided by G2

What do you like best about the product?
I have worked on multiple SIEM solutions and find Qradar easy among them to onboard log sources. Also, it supports a wide range of log sources integration as Out of Box. Though the custom rule set present is not that useful, creating new rules is easy compared to other SIEMs.
What do you dislike about the product?
The UI is not very friendly for security guys. Also the search query language is complicated to work with. While searching data for long durations, Qradar becomes irresponsive. Difficult to understand how event buffer works; hence often observe event drops.
What problems is the product solving and how is that benefiting you?
The SIEM solutions help gather logs from various tools used across the organization and perform correlation on them to check for any abnormal or malicious behavior. They also alert analysts to avoid any significant compromise or breach.

    PRANAV S.

Good SIEM product to use with impressive threat intel feeds

  • November 24, 2022
  • Review provided by G2

What do you like best about the product?
The threat intel feeds integrated with QRadar is excellent and very insightful.
The GUI of the tool is also really impressive and is well constructed for analysts.
What do you dislike about the product?
The license cost is really expensive and customisation requests and use cases that that are required to be configured cost extra each time. Support team take a long time to respond.
What problems is the product solving and how is that benefiting you?
IBM QRadar is a useful SIEM tool that helped add to our portfolio of offerings along with our MDR services. It also gives good insights into latest cyber threats and log types for monitoring team.

    Information Technology and Services

One of the best SIEM tool in the market

  • October 20, 2022
  • Review provided by G2

What do you like best about the product?
QRadar UI is very user-friendly. It doesn't require query-based search like other leading SIEM tools in the market. Its graphs and reports also provide detailed information about your Infrastructure.
What do you dislike about the product?
I don't find any downsides to QRadar. It might be because QRadar was the first SIEM tool I used in my career. Later I used other tools but found QRadar to be the best.
What problems is the product solving and how is that benefiting you?
With more than 40,000 computers and servers involved, it becomes difficult to track and prevent your infrastructure against security attacks. IBM QRadar makes soc teams' life easy by getting rid of false positives and providing detailed information about attacks.

    Computer & Network Security

One stop SIEM solution

  • August 30, 2022
  • Review provided by G2

What do you like best about the product?
QRadar can be a one stop SIEM someone with its capabilities to integrate with TI feeds and UEBA. Is very easy to use and takes the focus off of the tool to help focus on what's important- Security.
What do you dislike about the product?
The UI looks pretty outdated and boring and could be worked upon. Compared to its rivals like Splunk and other MDR tools that are now taking over the market, QRadar looks very bland.
What problems is the product solving and how is that benefiting you?
Helps deliver accurate and timely security alerts to our clients. Can also be used to perform proactive threat hunts to make sure that the clients are safe from security threats.

    Ranesh K.

Perfect SIEM solution to depend against threats.

  • August 30, 2022
  • Review provided by G2

What do you like best about the product?
The flexibility that QRadar offers helps security team deduct, understand and prioritize threats to the environment. Also it performs in depth network forensics and store complete network logs.
What do you dislike about the product?
It could be complicated for beginners, prior knowledge is required to operate. Threat analysis could be more simplified and also managing the database of threat reports is not easy.
What problems is the product solving and how is that benefiting you?
It provides automative solution of threat protection. There are advanced search queries which are easy to understand which allows user to perform specific searches that really speed up the investigation.

    Computer & Network Security

In-depth network forensics and integration with other tools

  • August 30, 2022
  • Review provided by G2

What do you like best about the product?
It helps in threat detection and response solution to remediate the threat. It has open architecture to deploy on premises, on cloud or as a service. We can integrate EDR, SIEM, SOAR and other threat intelligence while leaving data where it is for to complete the XDR approach.
What do you dislike about the product?
The EPS cap limits the amount of logs that can be integrated in Qradar can generate many false positives. Not a much user friendly, a bit difficult to set the rules.
What problems is the product solving and how is that benefiting you?
It is a good solution to monitor,investigate detect and respond to threats on devices and endpoints of the environment. Logs retention capability is good. It collate large amount of data from the cloud and on-site sources.

showing 41 - 50