IBM Security QRadar SIEM v7.5.0UP4 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.5.0UP4 (BYOL)Linux/Unix, Red Hat Enterprise Linux 7.9 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Product is oriented to enterprise only in my oppinun.
What do you like best about the product?
It is really good product i like the way new functionalities can be added.
What do you dislike about the product?
Hard to manage,EPS license, UBA is not good.
What problems is the product solving and how is that benefiting you?
Pure SOC tasks. Monitoring security events. It is doing it's job as expected.
- Leave a Comment |
- Mark review as helpful
Good and user friendly
What do you like best about the product?
First of all, this tool has documentation for everything even for writing regex. Ibm security learning academy helps us with the video tutorials. Sample use cases. Ibm support is there to help us if we face any issue. Overall it is very easy and user friendly to use.
What do you dislike about the product?
Some of the dsm are not there. For that we have to raise RFE and it will take months to develop in their end. But as from customer requirement, we need to ask permission regarding this.
What problems is the product solving and how is that benefiting you?
So far it is nice. While upgrading qradar version we have faced some issues and contacted ibm support. They have resolved the issue within minutes.
Recommendations to others considering the product:
Kindly use qradar for better understanding of the logs and integration of log sources is simple.
IBM qradar
What do you like best about the product?
Usability of the product is quite good. Easy correlation and integration. Great features for automation
What do you dislike about the product?
User interface can get more friendly. I haven't used much complex features yet
What problems is the product solving and how is that benefiting you?
Security logging and aggregation, user account managements
Recommendations to others considering the product:
Yes sure it is great product, but splunk is also in competetion
Best tool for SIEM
What do you like best about the product?
I must say it is a good tool for event monitoring and event analysis compare to its competitor. Every detail of the event is positive for IBM QRadar. Also, a tool can Analyze bulk data is an advantage.
What do you dislike about the product?
As of now, I didn't feel any downside of this, just Newbie maybe take time to understand so the interface could be improved or simplify!
What problems is the product solving and how is that benefiting you?
We offer cybersecurity solutions, so it a really helpful tool for SIEM.
Recommendations to others considering the product:
QRadar is good, but when comes to price it is quite expensive and every organization can't purchase. Rest is fine, improve the QoS and add new security features.
IBM review
What do you like best about the product?
IBM has lots of feauters and advanced threat intelligence,vulnerability assessment, SOAR integration
What do you dislike about the product?
Their is nothing I dislike in ibm qradar
What problems is the product solving and how is that benefiting you?
Log monitoring solution, incident response, vulnerability assessment,SOAR integration
Very capable product
What do you like best about the product?
Once it's tuned and running it's pretty straightforward to add custom use cases
What do you dislike about the product?
Tuning the product to ingest some feeds was quite troublesome and involved lots of engineering assistance.
What problems is the product solving and how is that benefiting you?
Identifying and creating custom use cases, in addition to the products existing ones was very beneficial
Recommendations to others considering the product:
After some initial teething problems regarding set up, it soon began to add value
One of the best SIEM.
What do you like best about the product?
IBM QRadar is a SIEM that is easy to use. You can integrate different log sources. Easy to configure events and alert.
What do you dislike about the product?
Dashboard seems to be hard to read. And too expensive
What problems is the product solving and how is that benefiting you?
SOC issues like threat hunting, malwares.
Really Fast SIEM Solution
What do you like best about the product?
Best part about qradar is ability to process large numbers of events and also log management is smooth and fast
What do you dislike about the product?
As of now.. i really don't find any kind of issues while using qradar
What problems is the product solving and how is that benefiting you?
It really help to make rules as per customer requirements as their are wide variety of rules already available
Recommendations to others considering the product:
It really helped organisation's to manage security of customers very fast and in correct manner
I have a 4 year of experince kn deployment and administration and analyst of qradar.
What do you like best about the product?
Qradar is a very easy for administration and it will help the analyst to perform more analytical and threat hunting. Very good product then other siem products.
What do you dislike about the product?
Ibm support is take too much time in resolve issue. Ibm have to work on this.
What problems is the product solving and how is that benefiting you?
It help in to view whole organization overwiew. It will help in tbreat hunting it will help in automation custom dashboards etc
Recommendations to others considering the product:
Qradar is the best siem in comparision of other siem. It is easy tk manage a great visibility, very helpful in analysis.
Excellent log co-relational tool for enterprise business application security monitoring !!!
What do you like best about the product?
Gets quick insight and log intelligence.
What do you dislike about the product?
false positives findings and importing into csv.
What problems is the product solving and how is that benefiting you?
CLoud Application log monitoring and intelligence information about security.
showing 291 - 300