IBM Security QRadar

IBM Security QRadar

Customer Verified
Top Rated
Score 8.2 out of 10
Top Rated
IBM Security QRadar

Overview

What is IBM Security QRadar?

IBM Security QRadar is security information and event management (SIEM) Software.
Read more

Recent Reviews

QRadar user review

9 out of 10
February 01, 2023
We use IBM QRadar for SIEM application which takes security events from multiple security products such as Web application firewall , bot …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of IBM Security QRadar, and make your voice heard!

Return to navigation

Pricing

View all pricing

Cloud

$800.00

Cloud
per month

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.ibm.com/qradar/security…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services
Return to navigation

Product Demos

IBM QRadar: The Intelligent SIEM
01:53
Return to navigation

Product Details

What is IBM Security QRadar?

IBM Security QRadar XDR is a threat detection and response solution that works to eliminate threats faster.

IBM Security QRadar helps security teams detect, understand and prioritize threats that matter most to the business. The solution ingests asset, cloud, network, endpoint, and user data, correlates it against vulnerability information and threat intelligence, and applies advanced analytics to identify and track the most serious threats as they progress through the kill chain.

Once a credible threat is identified, AI-powered investigations provide rapid, intelligent insights into the root cause and scope of the threat, with the goal of enabling organizations to support their first-line security analysts, accelerate security operations processes and reduce the impact of incidents. An open, connected approach helps organizations manage increasing number of cloud applications.

With QRadar, the user can integrate EDR, SIEM, NDR, SOAR and Threat Intelligence, while leaving data where it is for a complete XDR approach, connecting existing tools and automating SOC using IBM and open third-party integrations.

Threat intel is fed from the IBM X-Force Threat Intelligence platform, which enables sharing of research on security threats, aggregation of intelligence, and collaboration with peers.

The QRadar XDR is a suite of threat detection and response products that includes:

  • IBM QRadar XDR Connect, connects tools, automates your SOC and streamlines workflows.
  • IBM QRadar SIEM is intelligent security analytics for actionable insight into the most critical threats.
  • IBM QRadar NDR detects hidden threats on the network.
  • IBM QRadar SOAR responds to security incidents with confidence, consistency and collaboratively.

IBM Security QRadar Features

  • Supported: Open architecture to deploy on premises, on cloud, or as a service.
  • Supported: Investigation speed faster by 60x with automated triage and contextual intelligence
  • Supported: Better visibility by removing silos and unifying input and shared insights
  • Supported: Integrate with existing tools to leave data where it is and leveraging current environment.

IBM Security QRadar Video

See how IBM QRadar helps security teams accurately detect and prioritize threats across the enterprise. QRadar provides intelligent insights that enable teams to accelerate security operations processes to reduce the impact of incidents. Visit our web page to learn more or request a demo: https://ibm.co/2LeRvgY

IBM Security QRadar Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

IBM Security QRadar is security information and event management (SIEM) Software.

Microsoft Sentinel, Splunk Enterprise Security (ES), and LogRhythm NextGen SIEM Platform are common alternatives for IBM Security QRadar.

Reviewers rate Support Rating highest, with a score of 9.4.

The most common users of IBM Security QRadar are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

 (186)

Attribute Ratings

Reviews

(1-25 of 36)
Companies can't remove reviews or game the system. Here's why
February 01, 2023

QRadar user review

Score 9 out of 10
Vetted Review
Verified User
When it comes to SIEM , we have only two major players Splunk and QRadar. Even though splunk offers some great features in terms of response and ease of use but IBM QRadar is much more advanced with lots of customisation available. Also the support from IBM is top notch and if you run into any issue they got your back
Score 7 out of 10
Vetted Review
Verified User
The best feature of Qradar which makes it valuable is that it provides a single window in system network flows and risk management of our assets while on the other hand for Splunk it is not so. Where the complete packet capture system is integrated into Qradar, in Splunk you need a separate complete packet capture system.
Daniela Carrasco | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
The finalization of the product was greatly influenced by cost and integrations. After taking into account all of these variables, QRadar was selected. We also had client endorsements from reputable sources.
Priyansh Kothari | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
I have carefully evaluated various SIEM platforms to determine the best solution for my business. After considering several options, I ultimately decided to select IBM Security QRadar for a number of reasons. One of the main factors that influenced my decision was it's comprehensive capabilities. As a comprehensive security platform, it is able to handle a wide range of security tasks, including threat detection and response, vulnerability management, and compliance management. This made it well suited for my business, which has complex security needs. Another factor that influenced my decision was it's strong integration capabilities. With a range of APIs and integration options, it can be easily integrated with other tools and technologies in my security tech stack. This was important to me as I wanted a platform that would seamlessly integrate with my other security tools and technologies. Finally, I was also impressed with IBM Security QRadar's strong support options. I was able to purchase additional support options, such as premium support or on-site support, as needed to meet my specific needs.
Score 9 out of 10
Vetted Review
Verified User
Well we choose QRadar based on its flexibility and open platform for integrations. Compared to the other tools that we review QRadar just had the most of the features that we felt were relevant.
Muhammed Ali CETİN | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
IBM is more user-friendly if we compare it with ELK stack and ArcSight. Much reliable, and have better Support. Onboarding data, creating correlation searches, and easier to integrate with 3rd party solutions as well. LogOps projects and less time-consuming products. Qradar saves your time.
Score 8 out of 10
Vetted Review
Verified User
Both solutions are similar in functionality and reputation; however, our team was able to get a better combination of security tools from IBM that would have provided us with end-to-end capabilities for our security requirements. Additionally, our existing team already had experience working with IBM QRadar, so we wanted to avoid the learning curve in using a new tool like Splunk. Also, product resources and integration with IBM QRadar provide added benefits.
May 11, 2021

Efficient in SOC

Score 9 out of 10
Vetted Review
Verified User
I previously used AlienVault OSSIM in my former job and I can really tell that QRadar is a much more powerful SIEM as compared to AlienVault OSSIM. In QRadar, you can perform advanced queries that make use of AQL. This makes my investigation a lot easier. One of the things I truly adore in QRadar is that you can perform queries to see all the events for an offense or multiple offenses. You can also see which of the events were seen on an offense in the Log activity view. I think the only thing I liked in AlienVault is their UI, QRadar may need to up its game on that but overall a really great SIEM solution.
December 24, 2019

The force of IBM Qradar

Score 9 out of 10
Vetted Review
Reseller
There is a full integration between QRadar and Resilient. This two-way integration helps investigators to enhance and use the strongest version of QRadar, more so than the use of Xforce and other threat sources to investigate and get the IOC feeds. There are many applications to use and integrations with many threat sources. To put it simply, I like to use QRadar!
Score 10 out of 10
Vetted Review
Verified User
IBM QRadar is way easier to deploy and use than the other SIEM tools. In literally hours you have a whole environment up and running. Also, QRadar comes with way more out-of-the-box parsers (called DSMs) than any other tool. Also, recently, QRadar released their app store, in which you can download extension packs for your QRadar, so you can easily deploy things such as User Behavior Analytics (UBA) and interactive dashboards.
November 14, 2019

IBM QRadar Review

Douglas Concepcion | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Reseller
Splunk Enterprise Security I've found is the easiest of all major SIEM's to deploy due to its event normalization capabilities. It lags behind QRadar in event correlation but is better in user GUI customization. One issue where QRadar beats it is in cost. Splunk starts off cheap, but as you expand (due to it's licensing model), it quickly becomes very expensive. It is the monster that keeps on feeding.
Samuel Hadid | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
While the product performs really well and helped a lot in our overall security project, one of the most notorious offers for us was the support we received from the vendor. They're really experts in their environments and all communications were always polite, useful and attentive. Important to add that price may differ between options.
Score 10 out of 10
Vetted Review
Verified User
User friendly interface and easy to install and implementation. A lots of Log source types ( more than 400) and DSM Editor with standard regexp. Demo version IBM Qradar CE help to practice and learn how it's work and allow you to test scripts before applying them on deployment infrastructure.
Score 10 out of 10
Vetted Review
Verified User
We selected IBM QRadar SIEM because it is the best SIEM solution on the market. Great support from the vendor. A great user community that offers support for different problems. The price is good for product functionalities. The implementation was easy. The vendor offered support for sources integration.
Score 10 out of 10
Vetted Review
Verified User
QRadar is one of the best SIEM solutions with great integrations. They offer a lot of options. It has a great interface and great integration with log source from network devices, servers, and core systems. There is great support from the vendor and great online community forums.
Return to navigation