Sign in
Sign in
or
Create a new account
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar EDR

IBM Security | 1

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

45 reviews
from G2

External reviews are not included in the AWS star rating for the product.

    Computer & Network Security

Experience with Qradar

  • April 18, 2024
  • Review provided by G2

What do you like best about the product?
Easy to configure and setup Qradar. User friendly and flexible to analyse the detections.
What do you dislike about the product?
No drawbacks observed since I'm exploring the tool more.
What problems is the product solving and how is that benefiting you?
Making my work less by automated detection and easy to analyse.

    Security and Investigations

QRadar Review by Security analyst

  • April 04, 2024
  • Review provided by G2

What do you like best about the product?
Ability to automate and variety of dashboards
What do you dislike about the product?
There are set of predefined detection rules but customising those to make it best suitable for our environment is a pain area
What problems is the product solving and how is that benefiting you?
Run time malware detection and file system alert, threat intelligence information is plus

    N G.

One of the best security tool available for cybersecurity and threat detection

  • April 04, 2024
  • Review provided by G2

What do you like best about the product?
Great security tool for endpoint threat detection.
Regular updates to secure malicious threat attacks.
IBM Security QRadar is a great tool for detecting malicious phishing emails.
What do you dislike about the product?
Initial setup is bit tricky.
Tool is costly for mid range and small business.
What problems is the product solving and how is that benefiting you?
IBM Security QRadar EDR is an advance solution for detecting online attacks, phishing emails/link, endpoint security.
It is significantly increasing the business efficiency

    sibil b.

One of the best EDR

  • April 04, 2024
  • Review provided by G2

What do you like best about the product?
The QRadar EDR is one of my personal favorite EDR.
As SOC Analyst Im always receiving logs from QRadar EDR and many of our clients using it as their EDR. The main think I love in QRadar's EDR is the Dashboards, this provide a very user friendly dashboard as their home dashboard there we can see stats of all of our endpoints in less complicated way. also the behavioral tree is next level it helping us in incident response very well and it is easy to integrate to SIEM softwares.
What do you dislike about the product?
it require some programing knowledge to develop uses cases.
What problems is the product solving and how is that benefiting you?
its really helping me to find out the particular incident happening in all the endpoints and its giving a much good visibility to overall security.

    Mark Julius M.

One of the best Security tool for Blue team with a capability of intercepting the bad guys.

  • April 03, 2024
  • Review provided by G2

What do you like best about the product?
What I like the best in IBM Security Qradar EDR is their threat hunting capabilities which provides a proactive approach of finding suspicious IOC and anomalies within the environment together with their IR Automation which connects strings workflows and orchestrate playbooks and response actions to real time againts real time threats.
What do you dislike about the product?
What I dislike about the platform is the alert overload in which this happens when there is a surge or high volume alerts/incidents which could affect security analyst and their triage actions in responding to multiple events.
What problems is the product solving and how is that benefiting you?
There was a time as an analyst on which I received a critical severity alert relating to ransomware and i was shocked that IBM Qradar did its job by triggering the automated SOAR actions to isolate the device in real-time which really helps on mitigating the threat.

    Alakesh T.

Best solution for endpoint threat detection

  • April 03, 2024
  • Review provided by G2

What do you like best about the product?
The best part is user interface and it's continuous update to secure from malicious threat.
What do you dislike about the product?
Cost is high and sometimes it's shows false positive
What problems is the product solving and how is that benefiting you?
Very useful for crone job set up

    Computer & Network Security

Feedback on IBM Qradar

  • March 29, 2024
  • Review provided by G2

What do you like best about the product?
The best part is we can perform deep analysis and investigation on phishing mails and performing this is easy in the tool.
What do you dislike about the product?
Sometime there is some conectivity issues which is found rarely, but since its rare it doesn't trouble much.
What problems is the product solving and how is that benefiting you?
From many SIEM/EDR tools finding hash values is difficult and clumsy to find, where here hash values if found for assoiated files a ease.

    Eron M.

Has a lot of potential, but needs some improvements.

  • March 20, 2024
  • Review verified by G2

What do you like best about the product?
Alert analysis is nice, showing the process tree and information about each block.
It's really easy to setup and integrate with QRadar SIEM and SOAR.
What do you dislike about the product?
Needs programming knowledge to build your own rules.
Reports needs to be improved.
Many false positives.
What problems is the product solving and how is that benefiting you?
It's giving us visibility about code execution on endpoints, so we can validade what is running on servers.

    Hrithik B.

Great Product!!!!

  • March 18, 2024
  • Review provided by G2

What do you like best about the product?
The device detects all endpoint threats and has a great realtime alert system.
The main good thing is that it has a very great user interface.
It was really easy to use it from the start itself
That sets it apart from other vendors
What do you dislike about the product?
For real time attack prevention we need to update it regularly,that was one of the disadvantages
The cost might be bit too high for small organisations
What problems is the product solving and how is that benefiting you?
It prevents all the threats that might be coming to my system and it is beneficial for every client

    Education Management

Best SEIM solution for enterprise cybersecurity team

  • March 15, 2024
  • Review provided by G2

What do you like best about the product?
Features advanced analytics with threat intelligence detection even against zero-day exploits
QRadar automated remediation helps cyber security team to predefine rules and policies to take proactive response against threats efficiently.
It seamlessly integrates with existing systems, ingest security data and analyse in real time with prompt alerts and mitigation actions.
What do you dislike about the product?
Initial setup & configuring QRadar EDR can be complex, requires expertise from both endpoint security and SIEM technologies.
EDR have additional Licensing cost which might not be suitable for small enterprise organization.
Like any other security solution QRadar may generate false positives which needs to be manually investigated by the team at times.
What problems is the product solving and how is that benefiting you?
As a cyber ops security admin we rely on Qradar EDR tool for endpoint security and advanced threat analytics to manage our infrastructure security.

showing 1 - 10