Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar EDR

IBM Security | 1

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

47 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Mark Julius M.

One of the best Security tool for Blue team with a capability of intercepting the bad guys.

  • April 03, 2024
  • Review provided by G2

What do you like best about the product?
What I like the best in IBM Security Qradar EDR is their threat hunting capabilities which provides a proactive approach of finding suspicious IOC and anomalies within the environment together with their IR Automation which connects strings workflows and orchestrate playbooks and response actions to real time againts real time threats.
What do you dislike about the product?
What I dislike about the platform is the alert overload in which this happens when there is a surge or high volume alerts/incidents which could affect security analyst and their triage actions in responding to multiple events.
What problems is the product solving and how is that benefiting you?
There was a time as an analyst on which I received a critical severity alert relating to ransomware and i was shocked that IBM Qradar did its job by triggering the automated SOAR actions to isolate the device in real-time which really helps on mitigating the threat.

    Mark Julius M.

One of the best Security tool for Blue team with a capability of intercepting the bad guys.

  • April 03, 2024
  • Review provided by G2

What do you like best about the product?
What I like the best in IBM Security Qradar EDR is their threat hunting capabilities which provides a proactive approach of finding suspicious IOC and anomalies within the environment together with their IR Automation which connects strings workflows and orchestrate playbooks and response actions to real time againts real time threats.
What do you dislike about the product?
What I dislike about the platform is the alert overload in which this happens when there is a surge or high volume alerts/incidents which could affect security analyst and their triage actions in responding to multiple events.
What problems is the product solving and how is that benefiting you?
There was a time as an analyst on which I received a critical severity alert relating to ransomware and i was shocked that IBM Qradar did its job by triggering the automated SOAR actions to isolate the device in real-time which really helps on mitigating the threat.

    Alakesh T.

Best solution for endpoint threat detection

  • April 03, 2024
  • Review provided by G2

What do you like best about the product?
The best part is user interface and it's continuous update to secure from malicious threat.
What do you dislike about the product?
Cost is high and sometimes it's shows false positive
What problems is the product solving and how is that benefiting you?
Very useful for crone job set up

    Alakesh T.

Best solution for endpoint threat detection

  • April 03, 2024
  • Review provided by G2

What do you like best about the product?
The best part is user interface and it's continuous update to secure from malicious threat.
What do you dislike about the product?
Cost is high and sometimes it's shows false positive
What problems is the product solving and how is that benefiting you?
Very useful for crone job set up

    Computer & Network Security

Feedback on IBM Qradar

  • March 29, 2024
  • Review provided by G2

What do you like best about the product?
The best part is we can perform deep analysis and investigation on phishing mails and performing this is easy in the tool.
What do you dislike about the product?
Sometime there is some conectivity issues which is found rarely, but since its rare it doesn't trouble much.
What problems is the product solving and how is that benefiting you?
From many SIEM/EDR tools finding hash values is difficult and clumsy to find, where here hash values if found for assoiated files a ease.

    Eron M.

Has a lot of potential, but needs some improvements.

  • March 20, 2024
  • Review verified by G2

What do you like best about the product?
Alert analysis is nice, showing the process tree and information about each block.
It's really easy to setup and integrate with QRadar SIEM and SOAR.
What do you dislike about the product?
Needs programming knowledge to build your own rules.
Reports needs to be improved.
Many false positives.
What problems is the product solving and how is that benefiting you?
It's giving us visibility about code execution on endpoints, so we can validade what is running on servers.

    Eron M.

Has a lot of potential, but needs some improvements.

  • March 20, 2024
  • Review verified by G2

What do you like best about the product?
Alert analysis is nice, showing the process tree and information about each block.
It's really easy to setup and integrate with QRadar SIEM and SOAR.
What do you dislike about the product?
Needs programming knowledge to build your own rules.
Reports needs to be improved.
Many false positives.
What problems is the product solving and how is that benefiting you?
It's giving us visibility about code execution on endpoints, so we can validade what is running on servers.

    Hrithik B.

Great Product!!!!

  • March 18, 2024
  • Review provided by G2

What do you like best about the product?
The device detects all endpoint threats and has a great realtime alert system.
The main good thing is that it has a very great user interface.
It was really easy to use it from the start itself
That sets it apart from other vendors
What do you dislike about the product?
For real time attack prevention we need to update it regularly,that was one of the disadvantages
The cost might be bit too high for small organisations
What problems is the product solving and how is that benefiting you?
It prevents all the threats that might be coming to my system and it is beneficial for every client

    Hrithik B.

Great Product!!!!

  • March 18, 2024
  • Review provided by G2

What do you like best about the product?
The device detects all endpoint threats and has a great realtime alert system.
The main good thing is that it has a very great user interface.
It was really easy to use it from the start itself
That sets it apart from other vendors
What do you dislike about the product?
For real time attack prevention we need to update it regularly,that was one of the disadvantages
The cost might be bit too high for small organisations
What problems is the product solving and how is that benefiting you?
It prevents all the threats that might be coming to my system and it is beneficial for every client

    Education Management

Best SEIM solution for enterprise cybersecurity team

  • March 15, 2024
  • Review provided by G2

What do you like best about the product?
Features advanced analytics with threat intelligence detection even against zero-day exploits
QRadar automated remediation helps cyber security team to predefine rules and policies to take proactive response against threats efficiently.
It seamlessly integrates with existing systems, ingest security data and analyse in real time with prompt alerts and mitigation actions.
What do you dislike about the product?
Initial setup & configuring QRadar EDR can be complex, requires expertise from both endpoint security and SIEM technologies.
EDR have additional Licensing cost which might not be suitable for small enterprise organization.
Like any other security solution QRadar may generate false positives which needs to be manually investigated by the team at times.
What problems is the product solving and how is that benefiting you?
As a cyber ops security admin we rely on Qradar EDR tool for endpoint security and advanced threat analytics to manage our infrastructure security.

showing 11 - 20