Likelihood to Recommend IBM Security QRadar SOAR is versatile. All the major players in SOAR field require the administrator to have coding experience but with IBM it is different. IBM's solution is a full-fledged automation solution, and not some threat-based or limited one. Meaning whatever comes to your mind, if you can write the code, you can do it. This goes from daily tasks from SOC to daily tasks of your network or security administrator or any other administrator. You can manage your ITSM solution if you want to, IBM is a playground and there is much to discover in its capabilities. If you do not have the knowledge or if you want a SOC/Threat Based SOAR solution, meaning you want automation but you want it to be limited to an area and out-of-box, you may choose other alternatives.
Read full review Zerto is well suited for disaster recovery and virtual machine replication between multiple data centers. DR testing for audit or regulations is much easier with Zerto, great reporting, dashboard etc. It is not well suited for physical server replication for disaster recovery or as a primary backup solution.
Read full review Pros QRadar's ability to collect, analyze and normalize vast amount of security data from various sources is remarkable. QRadar allows us to define and automate incident response playbooks which have been amazing for streamlining the response to security incidents. It offers and extensive library of pre-built connectors and support for common security standards facilitating seamless integration with a wide range of security tools. Read full review Anyone with a large disk (VMDK) knows the issues of VMware snapshots. Most backup software is a "point in time backup" that uses snapshots. While the backup can be run multiple times per day the stress of the snapshot on the host and storage is eliminated by the continuous protection of Zerto log replication. A client had a the disks on a VM go missing for some reason. We had them "flip the switch" for a real fail over and press the fail over button. The VM on our DR site started to come alive as the VM at the customer site was brought down. When the DR VM was fully up, automatic reverse replication started. The DR machine was available in a few minutes (to take into account different host hardware) for access. One the vm at both sites were in sync, we had the customer again repeat the fail over process and the DR site VM was turned off and the Production site VM was brought back on line. This was a 200 GB VM and the whole process was finished in about 3 hours. Zerto also allows for "Test" fail overs that can be configured on many different functions, such as host, datastore, network and IP usage. Configuring the IPs is crucial to avoid inadvertent site cross contamination of the same VM. Zerto can also retrieve files from any VM disk on the DR site without starting a VM. Very handy for retrieving files or directories. Since Zerto is running continuous log replication, changes on the production VM are nearly instantaneously copied to the DR site. As with any data process, having sufficient bandwidth for "churn" peaks minimizes the delay in updating the DR site. Read full review Cons You still have to generate reports manually. Reports are very limited and practically not useful. The solution should not be SOAR class. Automations usually don't work. It's apparent that it's not designed for that. Lack of flexibility. Practically no support. The reported integration problems have not been resolved. Read full review Moving a VM from one protection group to another could be simplified. I would like to see an executive-style report of recovery and testing for upper management. The ability to deploy Zerto as a virtual appliance, without the need for a windows server. Read full review Likelihood to Renew It is beneficial to have a program that can run independently and be used without the supervision of a devoted employee
Read full review We really like the easy setup of this replication solution, as well as the ease of management. Not to mention, our internal IT Economist determined that the Zerto solution would provide the best ROI out of the competing solutions we analyzed. So far, his calculations have been spot on, and we have saved substantially
Read full review Usability It is very easy to navigate and run the parts that we have needed
Read full review Usability was the primary reason we purchased the software in the first place. We had compared it to several other software products in the same area, and it was by far the easiest to set up and use. Long-term maintenance proved to be similar, with updates driven by updates to VMware and vSphere, rather than the product itself.
Read full review Support Rating I have never had to contact support
Read full review Overall support is very good. We sometimes get pushback when asking Level 1 support to escalate to Level 2. This causes undue frustrations when you need a more knowledgeable support person to get involved. We've had to escalate to account reps a few times for this scenario. Zerto is very responsive and normally handles our requests very quickly.
Read full review Implementation Rating Make sure the end goal is in mind before implementing. That way results meet expectations.
Read full review Alternatives Considered Overall, IBM Security QRadar SOAR offered the same set of functionality that was needed by the organization as offered by
Splunk SOAR , but the former is less expensive and solves all the purpose within budget. In addition, integration with other IBM products was easier and made implementation of a SOAR solution much faster.
Read full review We started out using Backup Exec which was in service until we virtualized our environment where it didn't perform as well at the time. Then we switched to Veeam which worked well, but then as we started needing to do migrations and off-site DR, we found ourselves relying on Zerto more often.
Greg Goss SQL Database and Business Intelligence Manager
Read full review Contract Terms and Pricing Model For my organization, the pricing model was an upfront investment for the Zerto licenses. My organization prefers to pay upfront and not deal with month-to-month or year-to-year pricing models that most companies are moving to. But for some, the investment may be more than they can afford, and would prefer the year-to-year pricing model.
Read full review Professional Services I mean, it was 6 years ago, but we were up and going with all applications synchronizing in short order. The longest tasks was getting the 30 TB of application data synchronized between the datacenters.
Read full review Return on Investment It provides comprehensive MTTD and MTTR metrics and we are aware of how secure our systems are at any given moment. We use linux 7.7, therefore the integrations are smooth. We've been able run our online shops securely for so long. Read full review Zerto is like having the best possible insurance ... it just works, and often provides the backups taken overnight that are key in recovering data/work between overnight backups. Zerto easily enabled the move of primary datacenters by allowing easy failover to a secondary site, and failback to the primary site. Read full review ScreenShots IBM Security QRadar SOAR Screenshots