Instana, an IBM company since the December 2020 acquisition, provides APM services for SOA, microservices, containerized applications and Kubernetes, and cloud native applications, as well as discovery and monitoring for IT assets.
$75
per month per Managed Virtual Server (MVS)
IBM Security QRadar SIEM
Score 8.7 out of 10
N/A
IBM Security QRadar is security information and event management (SIEM) Software.
With enterprise IT assets in a multitude of ecosystems, cloud infrastructures and sometimes still left stuck in a legacy on prem architecture, IBM Instana makes it easy to get the right data to drive development and / or DevSecOps processes with tangible input from the target environment itself.
I would only recommend IBM Security QRadar SIEM in a few situations. For one, it's very easy to setup and use if all your log sources are generic from known vendors. It's also significantly cheaper than Splunk, which is nice if you're trying to save money or be more efficient. I would not recommend IBM Security QRadar SIEM for environments with a lot of custom logs and complicated detection requirements.
Can monitor application(s) and system(s) with very large throughput of transactions by the second ( it gets everything !!!)
Provide strong drill down for your applications and will tell you where the points of failure of an application's is ( servers , network , Databases , etc you name it )
Very easy to set up and have it up and running when using the SaaS solution. There's an on premise solution which works just as well but requires more effort and preparation from an infrastructure point of view for your teams to implement.
Continuously improve their features and their agents auto-update and keep up. All while not interfering with your applications.
Let's you create your own dashboards and visualizations that can be tailored for different kind of users with the data collected.
Create your own events and smart alerts so you can know on the spot if something is happening or is likely to happen that needs addressing on your applications / systems
It's very difficult to create custom dashboards, only a handful of scenarios can be visualized to dashboards.
Extracting information from Instana to further analysis into excel for example is something that can be improved. Using an API to get data is very limiting.
Open telemetry features which allow to send application data to Instana is not working as documented.
Need to spend more time configuring the system to properly interpret and normalize different type of data collected from multiple resources.
While Rule creation QRadar uses that rules to detect security threats and generate alerts, but to creating and managing rules is bit complex & tedious work to complete.
IBM Security QRadar SIEM is excellent in handling large & complex systems that requires in-depth knowledge and extensive training to configure and maintain the system which includes upgrading, optimization of performance & issue troubleshooting.
Instana has been able to fulfill our all requirement and provide out of box solution for multiple component like AWS RDS Monitoring and real time alerting setup on basis of that. it is also easy to integrate with other open-source alerting and monitoring tools which makes it easier to incorporate into our solutions
QRadar is an established and stable product, we have been using it for many years and want to continue to focus on it. Anyone who has used the product and knows it knows how reliable it is and how it facilitates continuous monitoring of threats from outside and inside. it is an exceptional product that is very useful for us.
IBM Instana totally alters our monitoring approach since it increases the stability of the system and simplifies the process of problem solving. And since it helps to lower the degree of alert exhaustion that we experience, it is a total game changer for us.
As a grade I give 8 as QRadar is not easy to learn. It requires some time to master it. It also needs a team of people actively working on the product. Once you learn to use it the software works very well and it is easy to correlate and understand detected threats. It only takes time to learn how to use it well and configure it properly.
Customer support is Good of IBM, While Using IBM QRadar its deployment is to slow and suddenly stop working and crashed we have contacted IBM Support and Rised a Ticket within a few minute we get call back from customer support and Query Resolved by them Fast And Rapid Support of Ibm
The training was very useful and the people who taught us were very knowledgeable. Although the software may initially seem difficult to learn they made things much easier for us.
The training was very useful and the people who taught us were very knowledgeable. Although the software may initially seem difficult to learn they made things much easier for us.
Initial patience is required to learn how to use the product, and it takes a dedicated team to use it. One person is not enough, and it's not enough to just set it up and check it once in a while. It has to be used daily and kept under control to be used effectively
As a DevOps engineer, I've explored various Application Performance Monitoring (APM) tools, including New Relic for real-time insights, AppDynamics for code-level visibility, Dynatrace for AI-driven monitoring, Datadog for comprehensive observability, Splunk for log management, Stackify Retrace for error tracking, and Raygun for crash reporting. Each tool offers distinct features, and the choice depends on specific use cases, technology stacks, and organizational needs. Thorough evaluations, considering factors like ease of use, integration capabilities, and scalability, help in selecting the most suitable APM solution for effective application monitoring in a DevOps environment.
IBM Qradar takes the best from its competitors. Reliable and stable but sometimes very expensive, the SIEM from IBM offers a wide range of scenarios in which the customers can suite and size their own infrastructures. IBM Qradar doesn't really needs to stack up againt its competitors because it already sets an example in the SIEM world.
