IBM Security QRadar SOAR vs. Proofpoint Threat Response Auto-Pull

IBM Security QRadar SOAR

Proofpoint Threat Response Auto-Pull

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
IBM Security QRadar SOAR	Score 8.5 out of 10	N/A	IBM Security® QRadar® SOAR is designed to help your security team respond to cyberthreats with confidence, automate with intelligence and collaborate with consistency. It guides your team in resolving incidents by codifying established incident response processes into dynamic playbooks.	N/A
Proofpoint Threat Response Auto-Pull	Score 9.0 out of 10	N/A	Proofpoint Threat Response Auto-Pull (TRAP) enables messaging and security administrators to automatically retract threats delivered to employee inboxes and emails that turn malicious after delivery to quarantine. It is also a powerful solution to retract messages sent in error as well as inappropriate, malicious, or emails containing compliance violations and also follows forwarded mail and distribution lists and creates an audit-able activity trail. With Proofpoint Threat Response…	N/A

Pricing

IBM Security QRadar SOAR

Proofpoint Threat Response Auto-Pull

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
IBM Security QRadar SOAR	Proofpoint Threat Response Auto-Pull
Free Trial
No	Yes
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

Usage-based pricing: This simple, scalable option allows starting small with an initial users and capabilities and scaling up as more users are added, as well as capabilities and data. Enterprise-wide pricing: This option is based on either the size of the enterprise-wide IT infrastructure or the size and type of data sources being secured.

—

More Pricing Information

Explore pricing

Community Pulse
	IBM Security QRadar SOAR	Proofpoint Threat Response Auto-Pull
Top Pros	Pro Take action Pro Customer support Pro Team support	Pro Malicious emails Pro Phishing emails Pro Automatically pull
Top Cons	Minus Useful data Minus Customer service Minus Data reports	Minus Integrated system Minus Cloud version Minus Learning curve

Features

IBM Security QRadar SOAR

Proofpoint Threat Response Auto-Pull

Incident Response Platforms

Comparison of Incident Response Platforms features of Product A and Product B
	IBM Security QRadar SOAR - Ratings	Proofpoint Threat Response Auto-Pull 8.4 3 Ratings 1% below category average
Integration with Other Security Systems	00 Ratings	9.03 Ratings
Attack Chain Visualization	00 Ratings	8.02 Ratings
Centralized Dashboard	00 Ratings	6.03 Ratings
Machine Learning to Prevent Incidents	00 Ratings	9.01 Ratings
Live Response for Rapid Remediation	00 Ratings	10.03 Ratings

Best Alternatives
	IBM Security QRadar SOAR	Proofpoint Threat Response Auto-Pull
Small Businesses	No answers on this topic	ThreatDown, powered by Malwarebytes Score 8.7 out of 10
Medium-sized Companies	Splunk SOAR Score 8.3 out of 10	CrowdStrike Falcon Score 9.1 out of 10
Enterprises	Palo Alto Networks Cortex XSOAR Score 8.5 out of 10	Hoxhunt Score 9.3 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	IBM Security QRadar SOAR	Proofpoint Threat Response Auto-Pull
Likelihood to Recommend	8.5 (13 ratings)	9.0 (4 ratings)
Likelihood to Renew	8.0 (1 ratings)	- (0 ratings)
Usability	8.0 (1 ratings)	9.0 (1 ratings)
Support Rating	6.0 (1 ratings)	9.0 (1 ratings)

User Testimonials
	IBM Security QRadar SOAR	Proofpoint Threat Response Auto-Pull
Likelihood to Recommend	IBM IBM Security QRadar SOAR is versatile. All the major players in SOAR field require the administrator to have coding experience but with IBM it is different. IBM's solution is a full-fledged automation solution, and not some threat-based or limited one. Meaning whatever comes to your mind, if you can write the code, you can do it. This goes from daily tasks from SOC to daily tasks of your network or security administrator or any other administrator. You can manage your ITSM solution if you want to, IBM is a playground and there is much to discover in its capabilities. If you do not have the knowledge or if you want a SOC/Threat Based SOAR solution, meaning you want automation but you want it to be limited to an area and out-of-box, you may choose other alternatives. Incentivized Verified User Anonymous Read full review	Proofpoint If your email admins spend time manually pulling malicious emails, this tool will save them countless hours of work and will do it for them 24 x 7. So if a user receives a malicious email after-hours, TRAP will auto pull it from the affected user's mailbox and potentially save you from an IT disaster. Incentivized Chris Bash IS Systems Analyst Read full review
Pros	IBM QRadar's ability to collect, analyze and normalize vast amount of security data from various sources is remarkable. QRadar allows us to define and automate incident response playbooks which have been amazing for streamlining the response to security incidents. It offers and extensive library of pre-built connectors and support for common security standards facilitating seamless integration with a wide range of security tools. Incentivized SJ Sarah Jones CMO (Chief Marketing Officer) Read full review	Proofpoint Auto pull works great, even with our hybrid situation with 2 on premise exchange organizations. Reporting is good, nice graphs of all the actions. Incentivized Verified User Anonymous Read full review
Cons	IBM You still have to generate reports manually. Reports are very limited and practically not useful. The solution should not be SOAR class. Automations usually don't work. It's apparent that it's not designed for that. Lack of flexibility. Practically no support. The reported integration problems have not been resolved. Incentivized DS Dominik Siekierski Applications Engineer Read full review	Proofpoint Learning curve is steep. Interface can be clunky. Some interface items seem counter-intuitive. Incentivized Fraser Clark Network Engineer Read full review
Likelihood to Renew	IBM It is beneficial to have a program that can run independently and be used without the supervision of a devoted employee Incentivized JS june smith Legal Secretary Read full review	Proofpoint No answers on this topic
Usability	IBM It is very easy to navigate and run the parts that we have needed Incentivized JS june smith Legal Secretary Read full review	Proofpoint It's easy to use and requires very little administrator hands on. Incentivized Chris Bash IS Systems Analyst Read full review
Support Rating	IBM I have never had to contact support Incentivized JS june smith Legal Secretary Read full review	Proofpoint They are quick to respond and have talented support personnel. Incentivized Chris Bash IS Systems Analyst Read full review
Alternatives Considered	IBM Overall, IBM Security QRadar SOAR offered the same set of functionality that was needed by the organization as offered by Splunk SOAR, but the former is less expensive and solves all the purpose within budget. In addition, integration with other IBM products was easier and made implementation of a SOAR solution much faster. Incentivized Verified User Anonymous Read full review	Proofpoint I have never evaluated TRAP against another product. Incentivized Verified User Anonymous Read full review
Return on Investment	IBM It provides comprehensive MTTD and MTTR metrics and we are aware of how secure our systems are at any given moment. We use linux 7.7, therefore the integrations are smooth. We've been able run our online shops securely for so long. Incentivized Verified User Anonymous Read full review	Proofpoint Chances of phishing attacks has decreased. Your employees don't have to do anything, so no impact on productivity. Incentivized Verified User Anonymous Read full review
ScreenShots	IBM Security QRadar SOAR Screenshots