IBM Security QRadar SIEM v7.5.0UP4 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.5.0UP4 (BYOL)Linux/Unix, Red Hat Enterprise Linux 7.9 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
IBM QRadar is quite convenient SIEM
What do you like best about the product?
It is easy to deploy, user-friendly interface, informative manuals, responsive and helpful technical support.
What do you dislike about the product?
Integrating ESET logs are still in progress. I think it is a matter of time and technical support will resolve this issue soon.
What problems is the product solving and how is that benefiting you?
It collects logs from different sources and detects potential threats.
- Leave a Comment |
- Mark review as helpful
Have 7 years for deployment and operation IBM Qradar
What do you like best about the product?
Friendly GUI and helpful rules, help me monitor overall
What do you dislike about the product?
Sometimes GUI responds slowly and some rule is not helpful
What problems is the product solving and how is that benefiting you?
IBM Qradar has large communication and have more rules for security
Nice tool for getting an overview of daily cyber attacks.
What do you like best about the product?
Easy to use, compatible, and scalability according to your use and the size of the infrastructure that you currently have. And the customizable dashboards give a nice touch to it.
What do you dislike about the product?
The need for a continuous upgrade because of the app's support issue. This gets a hectic task as we might face issues if we have a huge environment with multiple components.
What problems is the product solving and how is that benefiting you?
It helps to get a clear picture of daily cyber-attacks that are being done against your organization and UBA also helps to detect insider threats which give an upper hand in this changing digital world.
It is easy to learn with good GUI experience.
What do you like best about the product?
Its ability to write custom UDSM and integrate custom applications to cover the security in a broader way. Also the Pulse dashboard app that they provide is really good and customizable helps to have breif understanfing about whats going on in the environment.
What do you dislike about the product?
Pricing for the license is a little bit higher as small firms that are not so big and developed have to think a lot before buying and implementing this SIEM solution.
What problems is the product solving and how is that benefiting you?
It is providing our clients an overview of external and as well as of internal threats. Now a days ransomware attacks have risen drastically and this solution helps to track down the lateral movements as well if configured correctly.
A SIEM solution to fit all your needs
What do you like best about the product?
The GUI of Qradar is easy to use, we can add dashboards as per our requirements, check the health status of our devices and even go through all the admin tabs in such a way that is easy to understand.
What do you dislike about the product?
The price to deploy Qradar on a big level is very high as compared to the competition, which offers much more malleability at a low price point.
What problems is the product solving and how is that benefiting you?
Qradar is providing live data feeds, which helps us in identifying and mitigating various security risks, & attacks.
Recommendations to others considering the product:
For every SOC center, we need a SIEM, and Qradar is probably the best SIEM to go with.
Qradar experience in last 4 years
What do you like best about the product?
The tool itself is pretty user-friendly, to begin with, on top of that, it is easily malleable, scalable and overall a good SIEM tool to get the results one would want.
What do you dislike about the product?
DSM guide needs to be expanded for more tools and integrations and parsing steps need to be automated.
What problems is the product solving and how is that benefiting you?
As the SIEM itself is providing us the logs from all the devices, making it easy for us to get the results we want and come to a conclusion regarding identification of a incident, and which category it falls in.
Recommendations to others considering the product:
If you are looking to integrate a SIEM, I would suggest that this is the tool you'd wanna begin with
I am working on qradar siem since 3 years and it was great to work on Qradar siem
What do you like best about the product?
Security and capabilities of use case creation
What do you dislike about the product?
Gui is slow many times
And the cost of deployment is high compared to competitors
And the cost of deployment is high compared to competitors
What problems is the product solving and how is that benefiting you?
Log visibility is very easy , qdi makes health status visible
Recommendations to others considering the product:
It's a good SIEM to begin with and is easy to deploy and scale further.
A good product to begin with
What do you like best about the product?
The thing I like the best about Qradar is user friendliness.
It's easy to use, pretty malleable and efficient.
On the top of it, it can handle any kind of logs and give us appropriate results.
It's easy to use, pretty malleable and efficient.
On the top of it, it can handle any kind of logs and give us appropriate results.
What do you dislike about the product?
The biggest gripe with QRadar is data ingest is super cumbersome and unnecessarily complicated. Hardware requirements are also expensive with Qradar to begin with.
What problems is the product solving and how is that benefiting you?
It's providing us the logs from all the security devices; helping us in analysing them and prevent security breaches by the means of Incident Response and Threat Hunting.
Recommendations to others considering the product:
IBM Qradar is just the tool you need, and you would need.
It's easy to use, and scalable.
It's easy to use, and scalable.
One of the best SIEM Tool
What do you like best about the product?
Report creation, alerts and log monitoring
What do you dislike about the product?
Too much manual work. GUI seems lagging.
What problems is the product solving and how is that benefiting you?
Real time log monitoring, report generation. It helps to keep eye on the environment for any malicious activity.
Recommendations to others considering the product:
One of the best SIEM Tools out there. Easy to use
Q- radar review
What do you like best about the product?
The thing i like the most about q radar is we can customise everything according to ourself
What do you dislike about the product?
As the q radar on which i am working is deployed on cloud so it gets slow when multiple instances are opened .
What problems is the product solving and how is that benefiting you?
Whenever something malicious is happening in our environment we get the alerts for that if someone is communicating with malicious IP , some malicious hash is captured on EDR .
showing 61 - 70