TrustRadius

IBM Security QRadar EDR vs. Qualys TruRisk Platform

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
IBM Security QRadar EDR
Score 8.3 out of 10
N/A
IBM Security QRadar EDR (formerly ReaQta) combines automation and dashboards to minimize analyst workloads, detect anomalous endpoint behavior and remediate threats in near real time. With visibility across endpoints, it combines expected features, like MITRE ATT&CK mapping and attack visualizations, with dual-engine AI and automation. For teams that need extended support, managed detection and response (MDR) services offers 24/7 monitoring and response to help keep users…N/A
Qualys TruRisk Platform
Score 8.3 out of 10
N/A
Qualys TruRisk Platform (formerly Qualys Cloud Platform, or Qualysguard), from San Francisco-based Qualys, is network security and vulnerability management software featuring app scanning and security, network device mapping and detection, vulnerability prioritization schedule and remediation, and other features to provide vulnerability management and network attack surface reduction.N/A
Pricing
IBM Security QRadar EDRQualys TruRisk Platform
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
IBM Security QRadar EDRQualys TruRisk Platform
Free Trial
YesNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeOptionalNo setup fee
Additional Details
More Pricing Information
Features
IBM Security QRadar EDRQualys TruRisk Platform
Endpoint Security
Comparison of Endpoint Security features of Product A and Product B
IBM Security QRadar EDR
8.2
9 Ratings
4% below category average
Qualys TruRisk Platform
-
Ratings
Anti-Exploit Technology8.28 Ratings00 Ratings
Endpoint Detection and Response (EDR)8.59 Ratings00 Ratings
Centralized Management8.39 Ratings00 Ratings
Hybrid Deployment Support8.08 Ratings00 Ratings
Infection Remediation8.19 Ratings00 Ratings
Malware Detection8.39 Ratings00 Ratings
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
IBM Security QRadar EDR
-
Ratings
Qualys TruRisk Platform
8.7
7 Ratings
9% above category average
Network Analytics00 Ratings8.86 Ratings
Threat Recognition00 Ratings8.37 Ratings
Vulnerability Classification00 Ratings8.77 Ratings
Automated Alerts and Reporting00 Ratings9.07 Ratings
Threat Analysis00 Ratings8.27 Ratings
Threat Intelligence Reporting00 Ratings8.97 Ratings
Automated Threat Identification00 Ratings8.77 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
IBM Security QRadar EDR
-
Ratings
Qualys TruRisk Platform
8.5
9 Ratings
4% above category average
IT Asset Realization00 Ratings8.89 Ratings
Authentication00 Ratings7.86 Ratings
Configuration Monitoring00 Ratings8.47 Ratings
Web Scanning00 Ratings8.88 Ratings
Vulnerability Intelligence00 Ratings8.67 Ratings
Best Alternatives
IBM Security QRadar EDRQualys TruRisk Platform
Small Businesses
SentinelOne Singularity
SentinelOne Singularity
Score 9.1 out of 10
ThreatDown, powered by Malwarebytes
ThreatDown, powered by Malwarebytes
Score 8.7 out of 10
Medium-sized Companies
SentinelOne Singularity
SentinelOne Singularity
Score 9.1 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Enterprises
BeyondTrust Endpoint Privilege Management
BeyondTrust Endpoint Privilege Management
Score 8.7 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
IBM Security QRadar EDRQualys TruRisk Platform
Likelihood to Recommend
8.2
(9 ratings)
8.6
(25 ratings)
Usability
-
(0 ratings)
2.0
(1 ratings)
Support Rating
-
(0 ratings)
5.0
(7 ratings)
User Testimonials
IBM Security QRadar EDRQualys TruRisk Platform
Likelihood to Recommend
IBM
IBM Security QRadaar EDR provides all the security features at one place with a reasonable price. Though for smaller organizations, the price may be quite high. Plus since it can detect threats and malwares in real time, every business should try them out.
LM
Laury Mante
Senior Software Quality Assurance Analyst
Read full review
Qualys
Qualys Cloud Platform is well suited for organizations that need additional tools to secure and bolster their security from end to end. The automated, real-time threat protection is very quick to notify an admin of potential vulnerabilities and risks, as well as recommending quick fixes to resolve/close the gap before an incident occurs. QCP excels at portraying all of these in a single pane of glass, and find that the Qualys reports are more detailed than competitor product lines. One of our big issues with QCP is that you do have to pay for each scanner, which can quickly add up to large costs. For this reason, I would rate Qualys at a ~7 due to great features and functionality, but overall value could be better for a large organization. I would also say that QCP may make more sense for smaller organizations due to this pricing model.
Verified User
Anonymous
Read full review
Pros
IBM
  • Detect known and unknown endpoint security threats
  • Remediate these threats near real time
  • Automation in threat detection
  • Threat attack attack visualization storyboards
  • Alert management authomation
Dr. Paul Nemirovsky | TrustRadius Reviewer
Dr. Paul Nemirovsky
Cybersecurity Advisor
Read full review
Qualys
  • It really does well at vulnerability scanning, which it is well known for. It's accuracy at finding vulnerabilities is top notch, more so than a lot of other vulnerability tools out there. In an organization/company you want this kind of accuracy at finding vulnerabilities in your network/endpoints
  • It is very good at managing endpoints on a consistent basis, meaning you can add endpoints to Qualys and have the platform scan/track/protect for vulnerabilities on an ongoing basis, without user intervention
  • It does really well at separating out and identifying what levels of criticality each vulnerability should fall into. This way, an organization/company can attack the more critical vulnerabilities first
Verified User
Anonymous
Read full review
Cons
IBM
  • use AI to review previous false negatives that contributed wrongly in the AI suggestion on the follow alerts
  • easily run a script based on values from an hash, ips, path inside the boxes on the behavioral tree
  • apply the remediation to a range of endpoint instead to only the endpoint of the current alert
  • use ajax for example to update the alert page automatically while actions are happening
  • for api have profiles that allow only get actions, or just post on some actions
  • create users in bulk
Verified User
Anonymous
Read full review
Qualys
  • This program is really complicated, the multiple functions that are presented to us are not very clear and in some cases, it is a matter of intuition to execute a function, it is not very informative.
  • The interface of this program can be a real problem; for our taste, this program looks a bit messy, and the interface does not help or guide you to find the options you need.
Henry Coronel | TrustRadius Reviewer
Henry Coronel
Systems Product Engineer
Read full review
Usability
IBM
No answers on this topic
Qualys
Again, the usability of Qualys has been a pinpoint for this entire review. It was easily the worst thing about the product and because of this, I would not recommend Qualys to anybody in my field. This should be something that Qualys strives to improve if they wish to stay in business.
Verified User
Anonymous
Read full review
Support Rating
IBM
No answers on this topic
Qualys
They had a support page within the WAS to report any concerns or seek help. But the UI of that is not smooth. Regardless support staff were pretty responsive and helpful. They scheduled calls to understand and address our problems. Email support is good as well.
Verified User
Anonymous
Read full review
Alternatives Considered
IBM
Bitdefender GravityZone combines multiple security services into a single platform to reduce the cost of building a trusted environment for endpoints. bit the IBM provides a vast support and always there to guide when in need With the majority of our users working in hybrid mode we needed a strong security control that could provide top-class protection with the minimum amount of False Positives (and, of course, of True Positives).
Verified User
Anonymous
Read full review
Qualys
As described before Qualys is used to scan periodically the environment in order to check if there are some packages (Linux) or Applications (Windows) outdated, generating reports to the Service Owners, fulfilling what's is expected from us, attending all our expectations regarding the tool. That's why we'd choose Qualys to our organization.
Verified User
Anonymous
Read full review
Return on Investment
IBM
  • Positive impact is customizable detection strategy.
  • Other positive impact is pin processes in the tree investigation.
  • Negative impact is little bit expense.
sandeep kamboj | TrustRadius Reviewer
sandeep kamboj
Software Engineer
Read full review
Qualys
  • Big time-saving tool vs. having to comb through several system reports which ultimately can still have you missing unapproved software.
  • Quick snapshot via the dashboard provided a nice summary of where you're assets meet or do not meet your organization's policy requirements.
Verified User
Anonymous
Read full review
ScreenShots

IBM Security QRadar EDR Screenshots

Screenshot of Behavioral tree: A behavioral tree provides full alert and attack visibility.Screenshot of Behavioral tree storyline: A visual storyline is automatically created as an attack unfolds, including mapping to MITRE ATT&CK, for full visibility.Screenshot of Cyber Assistant alerts: The Cyber Assistant, an AI-powered alert management system, can autonomously handle alerts, reducing analysts’ workloads.Screenshot of Cyber Assistant recommends: The Cyber Assistant learns from analyst decisions, then retains the intellectual capital and learned behaviors to make recommendations and help reduce false positives.Screenshot of Custom detection strategies: Detection Strategy (DeStra) scripting allows users to build custom detection strategies — beyond preconfigured models — to address compliance or company-specific requirements without the need to reboot the endpoint.