What users are saying about
105 Ratings
3 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 9 out of 100
105 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener'>trScore algorithm: Learn more.</a>
Score 8.6 out of 100

Likelihood to Recommend

Elastic Security

I believe Endgame is well suited to organizations that have their own Cybersecurity department. Its not well suited for organizations that don't have a Cybersecurity department.
Anonymous | TrustRadius Reviewer

IBM QRadar

If you have a small-to-large company looking for a SIEM solution that "does the job" and is easy to deploy/use, QRadar is your tool. If you're looking for a complex solution that supports integration with data-mining solutions (e.g. ELK), then you may need a different solution. Overall, QRadar fits the needs of 99% of the companies. It is one of the easiest SIEM solutions to deploy and use.
Anonymous | TrustRadius Reviewer

Feature Rating Comparison

Security Information and Event Management (SIEM)

Elastic Security
IBM QRadar
8.6
Centralized event and log data collection
Elastic Security
IBM QRadar
9.3
Correlation
Elastic Security
IBM QRadar
9.0
Event and log normalization/management
Elastic Security
IBM QRadar
9.2
Deployment flexibility
Elastic Security
IBM QRadar
8.8
Integration with Identity and Access Management Tools
Elastic Security
IBM QRadar
8.3
Custom dashboards and workspaces
Elastic Security
IBM QRadar
7.9
Host and network-based intrusion detection
Elastic Security
IBM QRadar
8.2
Data integration/API management
Elastic Security
IBM QRadar
8.3
Behavioral analytics and baselining
Elastic Security
IBM QRadar
8.0
Rules-based and algorithmic detection thresholds
Elastic Security
IBM QRadar
8.8
Response orchestration and automation
Elastic Security
IBM QRadar
7.7
Reporting and compliance management
Elastic Security
IBM QRadar
9.2
Incident indexing/searching
Elastic Security
IBM QRadar
8.5

Pros

Elastic Security

  • Identify 0-day malware.
  • Provides a few forensic details on endpoints.
  • Very easy to administer.
Anonymous | TrustRadius Reviewer

IBM QRadar

  • It allows us to have visibility to potential problems both on premise and in the cloud which was key as we have become a hybrid consumer.
  • It has automated monitoring which has allowed us to see threats faster and also allowed us to be proactive.
  • By having over 20,000 employees, QRadar has also allowed us to be aware of internal threats that are brought into the company by unsuspecting employees.
Anonymous | TrustRadius Reviewer

Cons

Elastic Security

  • I would love that it provided more memory analysis details.
  • Being able to edit sensor profiles after creating them.
  • I would love it if it provided more automation features.
Anonymous | TrustRadius Reviewer

IBM QRadar

  • There is a steep learning curve compared to other platforms. Qradar is incredibly powerful but does require some homework.
  • There is a glaring lack of threat feed utilization outside of STIXX/TAXII which remains very limited at this time.
  • May require a considerable amount of tuning during deployment with very little "out of the box" offense information.
Anonymous | TrustRadius Reviewer

Support Rating

Elastic Security

Elastic Security 7.0
Based on 2 answers
Even though their support is good, I think there are some areas where they need to provide more thorough solutions to issues, some of their solutions are pretty basic and have already been tried.
Anonymous | TrustRadius Reviewer

IBM QRadar

IBM QRadar 8.6
Based on 4 answers
I've had many issues with QRadar, and the support would hear and respond to my question all the time (more so than in the case of IBM Resilient support). They were very quick to respond, were helpful, and provided remote access.
larbi belmiloud | TrustRadius Reviewer

Alternatives Considered

Elastic Security

Endgame is based on the MITRE framework which has proven to be a successful framework to identify various attack patterns that attackers use. Also, compared to the others it's easier to administer and manage.
Anonymous | TrustRadius Reviewer

IBM QRadar

IBM QRadar is a very complete tool that includes the Zero Trust Cyber Security model.This means QRadar can also integrate with many products on the market as well as handle a high level of analysis of the offenses with the use of Watson AI and XForce. It also provides a very structured vision to allow a greater view of each event that is generated by the tool
Anonymous | TrustRadius Reviewer

Return on Investment

Elastic Security

  • Being able to identify threats we couldn't identify before.
  • Easier management of endpoints.
  • Being able to immediately isolate endpoints remotely that have high severity threats.
Anonymous | TrustRadius Reviewer

IBM QRadar

  • Our organization has been able to expand its security portfolio based on the implementation of IBM QRadar.
  • We have successfully used the tool to identify when others are inspecting our network and put plans in place to address situations pre-emptively.
  • The annual cost is worth the pay, but I would like to see pricing model changes.
Ronald Barrett | TrustRadius Reviewer

Pricing Details

Elastic Security

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Elastic Security Editions & Modules

Additional Pricing Details

IBM QRadar

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

IBM QRadar Editions & Modules

Edition
Cloud$800.001
  1. Per Month
Additional Pricing Details

Rating Summary

Likelihood to Recommend

Elastic Security
9.0
IBM QRadar
9.0

Support Rating

Elastic Security
7.0
IBM QRadar
8.6

Add comparison