IBM QRadar Reviews

87 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 9.0 out of 100

Do you work for this company? Manage this listing

TrustRadius Top Rated for 2019

Overall Rating

Reviewer's Company Size

Last Updated

By Topic

Industry

Department

Experience

Job Type

Role

Filtered By:

Reviews (1-19 of 19)

Larbi Belmiloud | TrustRadius Reviewer
December 23, 2019

The force of IBM Qradar

Score 9 out of 10
Vetted Review
Reseller
Review Source

Alternatives Considered

There is a full integration between QRadar and Resilient. This two-way integration helps investigators to enhance and use the strongest version of QRadar, more so than the use of Xforce and other threat sources to investigate and get the IOC feeds. There are many applications to use and integrations with many threat sources. To put it simply, I like to use QRadar!
Read Larbi Belmiloud's full review
Douglas Concepcion | TrustRadius Reviewer
November 13, 2019

IBM QRadar Review

Score 7 out of 10
Vetted Review
Reseller
Review Source

Alternatives Considered

Splunk Enterprise Security I've found is the easiest of all major SIEM's to deploy due to its event normalization capabilities. It lags behind QRadar in event correlation but is better in user GUI customization. One issue where QRadar beats it is in cost. Splunk starts off cheap, but as you expand (due to it's licensing model), it quickly becomes very expensive. It is the monster that keeps on feeding.
Read Douglas Concepcion's full review
Samuel Hadid | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Alternatives Considered

While the product performs really well and helped a lot in our overall security project, one of the most notorious offers for us was the support we received from the vendor. They're really experts in their environments and all communications were always polite, useful and attentive. Important to add that price may differ between options.
Read Samuel Hadid's full review
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Alternatives Considered

IBM QRadar is way easier to deploy and use than the other SIEM tools. In literally hours you have a whole environment up and running. Also, QRadar comes with way more out-of-the-box parsers (called DSMs) than any other tool. Also, recently, QRadar released their app store, in which you can download extension packs for your QRadar, so you can easily deploy things such as User Behavior Analytics (UBA) and interactive dashboards.
Read this authenticated review
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Alternatives Considered

We selected IBM QRadar SIEM because it is the best SIEM solution on the market. Great support from the vendor. A great user community that offers support for different problems. The price is good for product functionalities. The implementation was easy. The vendor offered support for sources integration.
Read this authenticated review
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Alternatives Considered

User friendly interface and easy to install and implementation. A lots of Log source types ( more than 400) and DSM Editor with standard regexp. Demo version IBM Qradar CE help to practice and learn how it's work and allow you to test scripts before applying them on deployment infrastructure.
Read this authenticated review
Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Alternatives Considered

QRadar is one of the best SIEM solutions with great integrations. They offer a lot of options. It has a great interface and great integration with log source from network devices, servers, and core systems. There is great support from the vendor and great online community forums.
Read this authenticated review
Ruben Albornoz | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Alternatives Considered

I had initially selected AlienVault, as security software and as software protection for the sales office with the objective of safeguarding the database. However, I selected QRadar, although both are solutions capable of offering attractive functionalities for each type of organization. I selected IBM QRadar because the organization in which it is implemented uses Linux. In this case, both solutions offer clear, functional and efficient reports that allow you to have complete visibility of the connected networks.
Read Ruben Albornoz's full review
Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source

Alternatives Considered

With IBM supplying this solution, you're inherently getting the globally recognized IBM support environment as well. As an enterprise solution, Qradar is among stiff competition but the reliability and availability make it a cut above the rest. While I also recommend AlienVault for small-medium sized businesses, there aren't many others that afford the same experience and piece of mind.
Read this authenticated review

Feature Scorecard Summary

Centralized event and log data collection (20)
9.5
Correlation (20)
9.9
Event and log normalization (20)
9.5
Deployment flexibility (20)
9.0
Integration with Identity and Access Management Tools (19)
8.7
Custom dashboards and views (20)
9.1
Host and network-based intrusion detection (18)
8.8

About IBM QRadar

IBM Security QRadar is security information and event management (SIEM) Software.

IBM QRadar Technical Details

Operating Systems: Unspecified
Mobile Application:No