TrustRadius
IBM Security QRadar is security information and event management (SIEM) Software.IBM QRadar - A go-to SIEM productIBM QRadar SIEM was the preferred choice for enterprise clients across all the business departments who wanted to get rapid deployment and instant log visibility to meet security and compliance requirements.,Simple, flexible architecture Easy deployment Out of the box content good enough to have quick wins,Event log parsing Correlation engine needs more dynamism and flexibility,7,Postive ROI Increased and instant visibility,HP Arcsight, Splunk Enterprise and LogRhythmQradar - Big League SIEM SolutionQradar is a premium SIEM solution for medium and large businesses. Used to correlate and triage security events across the entire landscape, security teams are able to quickly respond to threats. Often times, information security departments are so inundated with raw data that things certainly get lost in the shuffle. With Qradar, all of this data is combined and processed allowing a fast view into the important things.,Rule creation is intuitive and fast which helps during emergency situations. Platform maintenance is very light while the appliance has nearly flawless uptime. Report generation is very functional and efficient.,There is a steep learning curve compared to other platforms. Qradar is incredibly powerful but does require some homework. There is a glaring lack of threat feed utilization outside of STIXX/TAXII which remains very limited at this time. May require a considerable amount of tuning during deployment with very little "out of the box" offense information.,9,Faster response times Global scalability High cost of implementation,AlienVault USM and Splunk
Unspecified
IBM QRadar
18 Ratings
Score 8.0 out of 101
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>TRScore

IBM QRadar Reviews

IBM QRadar
18 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 8.0 out of 101
Show Filters 
Hide Filters 
Filter 18 vetted IBM QRadar reviews and ratings
Clear all filters
Overall Rating
Reviewer's Company Size
Last Updated
By Topic
Industry
Department
Experience
Job Type
Role
Reviews (1-2 of 2)
  Vendors can't alter or remove reviews. Here's why.
No photo available
June 21, 2017

User Review: "IBM QRadar - A go-to SIEM product"

Score 7 out of 10
Vetted Review
Verified User
Review Source
IBM QRadar SIEM was the preferred choice for enterprise clients across all the business departments who wanted to get rapid deployment and instant log visibility to meet security and compliance requirements.
  • Simple, flexible architecture
  • Easy deployment
  • Out of the box content good enough to have quick wins
  • Event log parsing
  • Correlation engine needs more dynamism and flexibility
Best suited for a unified architecture for small to medium enterprises.
Read this authenticated review
No photo available
April 04, 2017

IBM QRadar Review: "Qradar - Big League SIEM Solution"

Score 9 out of 10
Vetted Review
Verified User
Review Source
Qradar is a premium SIEM solution for medium and large businesses. Used to correlate and triage security events across the entire landscape, security teams are able to quickly respond to threats. Often times, information security departments are so inundated with raw data that things certainly get lost in the shuffle. With Qradar, all of this data is combined and processed allowing a fast view into the important things.
  • Rule creation is intuitive and fast which helps during emergency situations.
  • Platform maintenance is very light while the appliance has nearly flawless uptime.
  • Report generation is very functional and efficient.
  • There is a steep learning curve compared to other platforms. Qradar is incredibly powerful but does require some homework.
  • There is a glaring lack of threat feed utilization outside of STIXX/TAXII which remains very limited at this time.
  • May require a considerable amount of tuning during deployment with very little "out of the box" offense information.
Due to the strength, robustness, and cost of a solution like this, I believe it is best suited for large businesses and enterprises. While a medium sized business would find value for sure, this system is not for the faint of heart or pocketbook. Qradar is well suited for environments with a lot of incoming data where manual analysis might not be an option.
Read this authenticated review

IBM QRadar Scorecard Summary

Feature Scorecard Summary

Centralized event and log data collection (2)
8.0
Correlation (2)
7.8
Event and log normalization (2)
6.5
Deployment flexibility (2)
6.9
Integration with Identity and Access Management Tools (2)
6.1
Custom dashboards and views (2)
6.8
Host and network-based intrusion detection (2)
7.8

About IBM QRadar

IBM Security QRadar is security information and event management (SIEM) Software.

IBM QRadar Technical Details

Operating Systems: Unspecified
Mobile Application:No