IBM Security QRadar is security information and event management (SIEM) Software.
N/A
Pentaho
Score 5.1 out of 10
N/A
Pentaho is a suite of open source business intelligence and analytics products, now offered and supported by Hitachi Data Systems since the June 2015 acquisition.
N/A
Pricing
IBM Security QRadar SIEM
Pentaho
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
IBM Security QRadar SIEM
Pentaho
Free Trial
Yes
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
IBM Security QRadar SIEM
Pentaho
Features
IBM Security QRadar SIEM
Pentaho
Security Information and Event Management (SIEM)
Comparison of Security Information and Event Management (SIEM) features of Product A and Product B
IBM Security QRadar SIEM
8.6
69 Ratings
8% above category average
Pentaho
-
Ratings
Centralized event and log data collection
9.927 Ratings
00 Ratings
Correlation
8.769 Ratings
00 Ratings
Event and log normalization/management
9.527 Ratings
00 Ratings
Deployment flexibility
7.827 Ratings
00 Ratings
Integration with Identity and Access Management Tools
8.965 Ratings
00 Ratings
Custom dashboards and workspaces
7.469 Ratings
00 Ratings
Host and network-based intrusion detection
9.725 Ratings
00 Ratings
Data integration/API management
9.07 Ratings
00 Ratings
Behavioral analytics and baselining
7.748 Ratings
00 Ratings
Rules-based and algorithmic detection thresholds
8.149 Ratings
00 Ratings
Response orchestration and automation
7.75 Ratings
00 Ratings
Reporting and compliance management
8.047 Ratings
00 Ratings
Incident indexing/searching
8.97 Ratings
00 Ratings
BI Standard Reporting
Comparison of BI Standard Reporting features of Product A and Product B
IBM Security QRadar SIEM
-
Ratings
Pentaho
9.0
20 Ratings
9% above category average
Pixel Perfect reports
00 Ratings
8.618 Ratings
Customizable dashboards
00 Ratings
9.918 Ratings
Report Formatting Templates
00 Ratings
8.718 Ratings
Ad-hoc Reporting
Comparison of Ad-hoc Reporting features of Product A and Product B
IBM Security QRadar SIEM
-
Ratings
Pentaho
8.7
19 Ratings
8% above category average
Drill-down analysis
00 Ratings
7.618 Ratings
Formatting capabilities
00 Ratings
8.319 Ratings
Integration with R or other statistical packages
00 Ratings
9.312 Ratings
Report sharing and collaboration
00 Ratings
9.717 Ratings
Report Output and Scheduling
Comparison of Report Output and Scheduling features of Product A and Product B
IBM Security QRadar SIEM
-
Ratings
Pentaho
9.7
20 Ratings
16% above category average
Publish to Web
00 Ratings
9.618 Ratings
Publish to PDF
00 Ratings
9.819 Ratings
Report Versioning
00 Ratings
9.713 Ratings
Report Delivery Scheduling
00 Ratings
9.917 Ratings
Delivery to Remote Servers
00 Ratings
9.310 Ratings
Data Discovery and Visualization
Comparison of Data Discovery and Visualization features of Product A and Product B
I would only recommend IBM Security QRadar SIEM in a few situations. For one, it's very easy to setup and use if all your log sources are generic from known vendors. It's also significantly cheaper than Splunk, which is nice if you're trying to save money or be more efficient. I would not recommend IBM Security QRadar SIEM for environments with a lot of custom logs and complicated detection requirements.
Pentaho is very well suited to perform data extraction & data mining from various cloud storage & transform that data using various available data models. However, the software struggles when it comes to visualizing the extracted data in an appealing manner & can be difficult for end-users to get an understanding of data tables created using those models.
Need to spend more time configuring the system to properly interpret and normalize different type of data collected from multiple resources.
While Rule creation QRadar uses that rules to detect security threats and generate alerts, but to creating and managing rules is bit complex & tedious work to complete.
IBM Security QRadar SIEM is excellent in handling large & complex systems that requires in-depth knowledge and extensive training to configure and maintain the system which includes upgrading, optimization of performance & issue troubleshooting.
I think the relative obscurity of the tool is a downside, not as many developers, consultants or peers you can tap into.
Lack of a solid user community held us back, looking at Power BI and Qlik, they have huge user communities that help each other out. Would have liked that here.
Smaller company means smaller sales force, and the lack of a local presence made it hard to only interact online with the account rep. Other companies have someone local who often stops by with pre-sales developers to just pitch in free of charge when they have time.
QRadar is an established and stable product, we have been using it for many years and want to continue to focus on it. Anyone who has used the product and knows it knows how reliable it is and how it facilitates continuous monitoring of threats from outside and inside. it is an exceptional product that is very useful for us.
I will use Pentaho until I find a better tool with a better, easier to use report designer client. For now, Pentaho has been the most powerful reporting tool for our clients because of its ability to connect to Odoo, integrate in Odoo (reports are accessible in Odoo) and the flexibility in report design and parameter integration
As a grade I give 8 as QRadar is not easy to learn. It requires some time to master it. It also needs a team of people actively working on the product. Once you learn to use it the software works very well and it is easy to correlate and understand detected threats. It only takes time to learn how to use it well and configure it properly.
The Pentaho tools are designed so you can start playing around on your own. Of course, you will need guidance at some point, but the training teams are good at guiding new users, and the online documentation is usually pretty up-to-date.
Some of the tools, such as the Pentaho Data Integration tool and the Pentaho Server, are pretty self-explanatory. The other tools maybe are not so quickly and obvious to use, but again, with some documentation and some customer support, you can find your way around them.
Customer support is Good of IBM, While Using IBM QRadar its deployment is to slow and suddenly stop working and crashed we have contacted IBM Support and Rised a Ticket within a few minute we get call back from customer support and Query Resolved by them Fast And Rapid Support of Ibm
They were responsive to our questions when we raised issues. They gave us workarounds when required. They were quite knowledgeable when it came to issue analysis and providing fixes. They were forthright in informing us if a bug was not due for release soon.
The training was very useful and the people who taught us were very knowledgeable. Although the software may initially seem difficult to learn they made things much easier for us.
The training was very useful and the people who taught us were very knowledgeable. Although the software may initially seem difficult to learn they made things much easier for us.
Course Taken: DI1000 Pentaho Data Integration Fundamentals Setup A week before your class started, the instructor will start sending out class material and lab setup instructions. This is helpful so that you understand how the environment is laid out and can start reviewing the content. Ultimately it saved about a 1/2 day trying to setup with 10 other people online which was great! The Course The 3-day course was laid out like many other technical classes with 15-30 minutes instruction and 15-60 minutes of lab exercises. The instructor was very knowledgeable with the functionality from version to version and answered questions as we went along. I was amazed at some of the functionality that was available that I was not using at the time and quickly implemented changes to many existing transformations and jobs. The novice users seemed to catch on quickly and more experienced users explained how some of the functionality was used in their home environments. Towards the end there was enough time so that we were able to ask very directed questions about our own environments. Overall, I really found the class to be informative and deliver enough information to be dangerous. My skills improved and I was able to design better and efficient transformations for the HIE. Course Description: https://training.pentaho.com/instructor-led-training/pentaho-data-integration-fundamentals-di1000
Initial patience is required to learn how to use the product, and it takes a dedicated team to use it. One person is not enough, and it's not enough to just set it up and check it once in a while. It has to be used daily and kept under control to be used effectively
Get the right people in before starting implementation. Start small and build as you go approach is time consuming and involves lot of rework. Evangalize within the organization the capabilities and limitations equally so that correct delivery expectations are set. Set expectations with the Customer that the tool cannot replace proprietary software in terms of stability/usability and that timelines could change given the new ness of the product.
IBM Qradar takes the best from its competitors. Reliable and stable but sometimes very expensive, the SIEM from IBM offers a wide range of scenarios in which the customers can suite and size their own infrastructures. IBM Qradar doesn't really needs to stack up againt its competitors because it already sets an example in the SIEM world.
Since the Pentaho platform offers a range of broad functionality across data preparation and advanced analytics, it also can be easily integrated to support many data sources and machine-learning frameworks. Based on that fact, we selected Pentaho to be used in our internal department. It also supports many of our BI use cases as required by company management or the business user. Last but not least, the Pentaho license is cheaper than their competitor.
