IBM Security QRadar SIEM

IBM Security QRadar SIEM

IBM Security QRadar SIEM

291 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
IBM Security QRadar SIEM	Score 8.7 out of 10	N/A	IBM Security QRadar is security information and event management (SIEM) Software.	N/A

Pricing

IBM Security QRadar SIEM

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
IBM Security QRadar SIEM
Free Trial
Yes
Free/Freemium Version
No
Premium Consulting/Integration Services
No

Entry-level Setup Fee

No setup fee

Additional Details

—

More Pricing Information

Community Pulse
	IBM Security QRadar SIEM
Considered Both Products	IBM Security QRadar SIEM Verified User Administrator Chose IBM Security QRadar SIEM We chose IBM Security QRadar SIEM not only because it was a leader but because it convinced us it was a solid product suitable for multiple scenarios but most importantly we needed a really secure and powerful software for our infrastructure. Incentivized Helpful? Verified User Analyst Chose IBM Security QRadar SIEM We select a IBM Security QRadar SIEM because is better to integrate a our SIEM QRADAR. Incentivized Helpful? Marcos Vinícius Cunha Information Security Chose IBM Security QRadar SIEM Due to its performance, it is a more practical way to analyze and respond to an incident. It is a graphic with good interaction and multiple integrated platforms. Incentivized Helpful? Verified User Consultant Chose IBM Security QRadar SIEM I still don't have experience with other SIEM solutions. Incentivized Helpful? Verified User Engineer Chose IBM Security QRadar SIEM I would always recommend Splunk over IBM Security QRadar SIEM unless you're trying to save money or only onboarding and normalizing well known data sources. IBM Security QRadar SIEM doesn't seem to handle RBA and complicated, chaining correlation rules very effectively and if I … Incentivized Helpful? Saulo Prado /security Specialist Chose IBM Security QRadar SIEM The QRadar licensing process is based on EPS (Events Per Second) and there are no limitations on event collection, regardless of the origin of the logs. This becomes an advantage as the price is agreed between the parties before purchase, so you have knowledge of what you can … Incentivized Helpful? Verified User Analyst Chose IBM Security QRadar SIEM IBM Security QRadar SIEM has been quite a revolutionary siem solution compared to its counterparts. Be it the use case building to maintaining log source integrations, Qradar has proved to be one of the most efficient and easy to use solution. Having IBM SOAR along with the … Incentivized Helpful? Verified User Analyst Chose IBM Security QRadar SIEM Because is easy to use and if you don't have analysts with database language skills IBM Security QRadar SIEM is easy to use in comparison to Splunk. Incentivized Helpful? Verified User Engineer Chose IBM Security QRadar SIEM Because they are the best and most used tools in the Cyber Security market for event correlation. Incentivized Helpful? Verified User Engineer Chose IBM Security QRadar SIEM It provides practicality by containing several domains in a single tenant and being able to subdivide them in a single place, in addition to the fact that the price is very competitive in the market. Helpful? Janette Iris Contreras Reyes Gerente de Monitoreo y Respuesta a Incidentes Chose IBM Security QRadar SIEM friendly tool With reasonable costs with ease of integration Helpful? Verified User Engineer Chose IBM Security QRadar SIEM ArcSight is more difficult to understand and administer, and it looks more like a box for programming and needs a lot of high-level skills personnel. IBM Security QRadar SIEM is well suited for organization cybersecurity in large and medium organizations. IBM Security QRadar … Incentivized Helpful? Umair Javed soc Chose IBM Security QRadar SIEM Qradar is on my top choice because I have hands-on experience on it. on qradar it is much easier to investigate in case of any incident happend. Incentivized Helpful? Brandon Lowry Cyber Security Specialist Chose IBM Security QRadar SIEM IBM Security QRadar SIEM offers a wide range of features and capabilities, such as behavioral analysis, event correlation and incident management, making it a robust and effective choice. Incentivized Helpful? NILESH KUMAR SOC Analyst Chose IBM Security QRadar SIEM QRadar's open architecture is easy to integrate with a wide range of security tools and third-party applications, which are available at the IBM X-force library to enhance overall flexibility. Its powerful analytics and correlation capabilities provide advanced threat detection … Incentivized Helpful? Kenhy Dalglish Suarez Jaimes Senior Chose IBM Security QRadar SIEM QRadar is simpler when it comes to threat hunting Incentivized Helpful? Piyush Mittal Senior Manager Chose IBM Security QRadar SIEM I would take below parameters to say IBM Security QRadar SIEM is better than other SIEM tools such as netwitness SIEM" 1) Easy to Use Incentivized Helpful? Rahul Deshmukh Security Solutions Architect Chose IBM Security QRadar SIEM I found that IBM Security QRadar SIEM has better threat detection methods and the identification of cyber kill chains followed by attackers. Analysis of the data gives visibility that other SIEM solutions need to improve. Integration in IBM Security QRadar SIEM is also better … Incentivized Helpful? Verified User Analyst Chose IBM Security QRadar SIEM User friendly and use case management portal which helps to get brief idea about security posture based on mitre mapping is best thing i have experienced in qradar. Incentivized Helpful? Mahmoud younis cybersecurity engineer Chose IBM Security QRadar SIEM price, to be honest IBM Security QRadar SIEM package is very good for most customers than Splunk and Sentinel Incentivized Helpful? Verified User Analyst Chose IBM Security QRadar SIEM IBM Qradar takes the best from its competitors. Reliable and stable but sometimes very expensive, the SIEM from IBM offers a wide range of scenarios in which the customers can suite and size their own infrastructures. IBM Qradar doesn't really needs to stack up againt its … Incentivized Helpful? MM Marco Mondelli Senior Security Specialist Chose IBM Security QRadar SIEM It's in the middle of this chart, Splunk from my point of view it's still the best SIEM actually and Sentinel it's very easy to use. Incentivized Helpful? Verified User Engineer Chose IBM Security QRadar SIEM IBM Qradar is cheaper and also easy to use. For splunk you need dedicated team of experts. Incentivized Helpful? Verified User Analyst Chose IBM Security QRadar SIEM As a part of core security service provider, we could not stand with the tools that are used as a generic data processor. The compliance, log reading and events are well managed in QRadar compared to other tools Incentivized Helpful?

Features

IBM Security QRadar SIEM

Security Information and Event Management (SIEM)

Comparison of Security Information and Event Management (SIEM) features of Product A and Product B
	IBM Security QRadar SIEM 8.6 69 Ratings 9% above category average
Centralized event and log data collection	9.927 Ratings
Correlation	8.769 Ratings
Event and log normalization/management	9.527 Ratings
Deployment flexibility	7.827 Ratings
Integration with Identity and Access Management Tools	8.865 Ratings
Custom dashboards and workspaces	7.469 Ratings
Host and network-based intrusion detection	9.725 Ratings
Data integration/API management	9.07 Ratings
Behavioral analytics and baselining	7.748 Ratings
Rules-based and algorithmic detection thresholds	8.149 Ratings
Response orchestration and automation	7.75 Ratings
Reporting and compliance management	8.047 Ratings
Incident indexing/searching	8.97 Ratings

Best Alternatives
	IBM Security QRadar SIEM
Small Businesses	LevelBlue USM Anywhere Score 7.5 out of 10
Medium-sized Companies	Sumo Logic Score 9.3 out of 10
Enterprises	Sumo Logic Score 9.3 out of 10
All Alternatives	View all alternatives

User Ratings
	IBM Security QRadar SIEM
Likelihood to Recommend	8.4 (89 ratings)
Likelihood to Renew	8.4 (5 ratings)
Usability	8.1 (2 ratings)
Availability	9.0 (1 ratings)
Performance	9.0 (1 ratings)
Support Rating	8.1 (62 ratings)
In-Person Training	9.0 (1 ratings)
Online Training	9.0 (1 ratings)
Implementation Rating	8.0 (1 ratings)
Configurability	8.0 (1 ratings)
Contract Terms and Pricing Model	9.0 (1 ratings)
Ease of integration	8.0 (58 ratings)
Product Scalability	8.0 (1 ratings)
Professional Services	10.0 (1 ratings)
Vendor post-sale	9.0 (1 ratings)
Vendor pre-sale	9.0 (1 ratings)

User Testimonials
	IBM Security QRadar SIEM
Likelihood to Recommend	IBM I would only recommend IBM Security QRadar SIEM in a few situations. For one, it's very easy to setup and use if all your log sources are generic from known vendors. It's also significantly cheaper than Splunk, which is nice if you're trying to save money or be more efficient. I would not recommend IBM Security QRadar SIEM for environments with a lot of custom logs and complicated detection requirements. Incentivized Verified User Anonymous Read full review
Pros	IBM Enables identification and prioritization of vulnerabilities in IT infrastructure for corrective action. Facilitates security incident investigation and forensic analysis. Provides a real-time view of security events, enabling immediate incident response. Can integrate with external threat intelligence sources to enrich data and improve threat detection. Enables the generation of detailed and customized reports. Incentivized Brandon Lowry Cyber Security Specialist Read full review
Cons	IBM Need to spend more time configuring the system to properly interpret and normalize different type of data collected from multiple resources. While Rule creation QRadar uses that rules to detect security threats and generate alerts, but to creating and managing rules is bit complex & tedious work to complete. IBM Security QRadar SIEM is excellent in handling large & complex systems that requires in-depth knowledge and extensive training to configure and maintain the system which includes upgrading, optimization of performance & issue troubleshooting. Incentivized NP Neel Patel Sr Cloud Architect Read full review
Likelihood to Renew	IBM QRadar is an established and stable product, we have been using it for many years and want to continue to focus on it. Anyone who has used the product and knows it knows how reliable it is and how it facilitates continuous monitoring of threats from outside and inside. it is an exceptional product that is very useful for us. Incentivized Verified User Anonymous Read full review
Usability	IBM As a grade I give 8 as QRadar is not easy to learn. It requires some time to master it. It also needs a team of people actively working on the product. Once you learn to use it the software works very well and it is easy to correlate and understand detected threats. It only takes time to learn how to use it well and configure it properly. Incentivized Verified User Anonymous Read full review
Support Rating	IBM Customer support is Good of IBM, While Using IBM QRadar its deployment is to slow and suddenly stop working and crashed we have contacted IBM Support and Rised a Ticket within a few minute we get call back from customer support and Query Resolved by them Fast And Rapid Support of Ibm Incentivized Abhishek Kumar Assistant Manager Read full review
In-Person Training	IBM The training was very useful and the people who taught us were very knowledgeable. Although the software may initially seem difficult to learn they made things much easier for us. Incentivized Verified User Anonymous Read full review
Online Training	IBM The training was very useful and the people who taught us were very knowledgeable. Although the software may initially seem difficult to learn they made things much easier for us. Incentivized Verified User Anonymous Read full review
Implementation Rating	IBM Initial patience is required to learn how to use the product, and it takes a dedicated team to use it. One person is not enough, and it's not enough to just set it up and check it once in a while. It has to be used daily and kept under control to be used effectively Incentivized Verified User Anonymous Read full review
Alternatives Considered	IBM IBM Qradar takes the best from its competitors. Reliable and stable but sometimes very expensive, the SIEM from IBM offers a wide range of scenarios in which the customers can suite and size their own infrastructures. IBM Qradar doesn't really needs to stack up againt its competitors because it already sets an example in the SIEM world. Incentivized Verified User Anonymous Read full review
Return on Investment	IBM Offense investigation was really helped in tackling the incidents. It was accurate and brief The automation with IBM resilient (SOAR) was a milestone in elimination of user mistakes The X-Force threat intelligence supported us in getting the work done without any 3rd party enterprise OSINT database Incentivized Verified User Anonymous Read full review
ScreenShots	IBM Security QRadar SIEM Screenshots