Skip to main content
TrustRadius
IBM Security QRadar SIEM

IBM Security QRadar SIEM

Overview

What is IBM Security QRadar SIEM?

IBM Security QRadar is security information and event management (SIEM) Software.

Read more
Recent Reviews
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 13 features
  • Rules-based and algorithmic detection thresholds (34)
    9.1
    91%
  • Correlation (54)
    8.8
    88%
  • Integration with Identity and Access Management Tools (50)
    8.2
    82%
  • Custom dashboards and workspaces (54)
    7.4
    74%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is IBM Security QRadar SIEM?

IBM Security QRadar is security information and event management (SIEM) Software.

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.ibm.com/products/qradar…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

11 people also want pricing

Alternatives Pricing

What is Microsoft Sentinel?

Microsoft Sentinel (formerly Azure Sentinel) is designed as a birds-eye view across the enterprise. It is presented as a security information and event management (SIEM) solution for proactive threat detection, investigation, and response.

Return to navigation

Features

Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

8.6
Avg 7.8
Return to navigation

Product Details

What is IBM Security QRadar SIEM?

IBM QRadar SIEM helps users to remediate threats faster by prioritizing high-fidelity alerts to help catch threats.

QRadar analytics monitor threat intel, network and user behavior anomalies to prioritize where immediate attention and remediation is needed. When threat actors trigger multiple detection analytics, move across the network or change their behaviors, QRadar SIEM will track each tactic and technique being used. More important, it will correlate, track and identify related activities throughout a kill chain, with a single high-fidelity case, automatically prioritized for the user.


https://ibm.biz/QRadar_SIEM_product_page



IBM Security QRadar SIEM Features

Security Information and Event Management (SIEM) Features

  • Supported: Correlation
  • Supported: Integration with Identity and Access Management Tools
  • Supported: Custom dashboards and workspaces
  • Supported: Behavioral analytics and baselining
  • Supported: Rules-based and algorithmic detection thresholds
  • Supported: Reporting and compliance management

Additional Features

  • Supported: Open architecture to deploy on premises, on cloud, or as a service.
  • Supported: Investigation speed faster with automated triage and contextual intelligence
  • Supported: Better visibility by removing silos and unifying input and shared insights
  • Supported: Integrates with existing tools to leave data where it is and leveraging current environment.

IBM Security QRadar SIEM Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

IBM Security QRadar is security information and event management (SIEM) Software.

Microsoft Sentinel, Splunk Enterprise Security (ES), and LogRhythm NextGen SIEM Platform are common alternatives for IBM Security QRadar SIEM.

Reviewers rate Centralized event and log data collection highest, with a score of 9.9.

The most common users of IBM Security QRadar SIEM are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(256)

Attribute Ratings

Reviews

(1-25 of 75)
Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Incentivized
IBM Security QRadar SIEM works well in terms of event correlation, customization of use cases, visibility of log source on premise, however, when moving forward with the integration of log source in the cloud, there is no identification for the correct scope of the events. Additionally, something in visibility is lost for profiles that are not admin.
January 03, 2024

IBM Qradar Review

Umair Javed | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
monitoring network traffic is much easier while having siem in your organization and the scenario where siem is less apricated is installing adding logs source making rules according to your desire or the last thing ibm support team not proving the good feedback on instant basis in case of any critical scenarios.
Brandon Lowry | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
IBM Security QRadar SIEM has all the features to protect real-time threats and protect critical data effectively in a financial services company. It is highly suitable in scenarios where large volumes of data are handled and a fast and effective response to cyber threats is required. However, in smaller or resource-constrained environments.
Paige Jenkins | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
It works for any department of the business organization, be it small, medium, or large, as long as you want the entire system to run smoothly and safely. It has, in an integral way, the artificial intelligence processes and above all the essential detection of any threat in real and constant time. It has a very capable technical service and is always willing to help whenever necessary, which is why this tool is necessary for your company.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
It has adequate and specific functions to have an improved system, such as analysis, threat alerts, monitoring, integration with various platforms, among several other features. QRadar has managed to significantly improve our organization, it is a much freer system to work comfortably. It has the ability to eliminate threats in a short time, always with an ideal alert system to be aware of what is happening instantly. QRadar is the perfect solution to avoid bad times with threats to our system, with perfect detection and elimination of threats.
Abhishek Kumar | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
IIBM Security QRadar SIEM is one of the best tools for real-time monitoring of unethical activity or Occurrence on Qradar-connected servers or devices. We can easily find logs and activity by using the AQl and advanced search options. If any occurrence or unethical activity has been identified, the offenses will be automatically triggered using CRE.
NILESH KUMAR | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
IBM Security QRadar SIEM is the one of best tools for real-time monitoring of unethical activity performed on servers or devices that are connected with Qradar. Using the AQl and advanced search options, we can find easily logs and activity that was performed. If any event is compromised then the offences will automatically triggered with the help of CRE.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
It's well suited If you have a complex big network when you need a simple but reliable platform. It is not suited for companies that want a tool that does everything because there are some tools that are less reliable, maybe smaller, but have a lot of features. So if you are looking for a lot of features, these might not be the tool, but if you are looking for a reliable platform that integrates well and you know that it is going to work, it is the tool for you.
Piyush Mittal | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
It is well suited for large scale enterprises who are concerned about their data. It helps them in improving their security posture by giving them insights on possible attacks or can give them insights on risky user behaviour. With the help of its AI and ML technology, analysts can see the attack pattern and respond to them. It is not suited for startups and small scale enterprises because of its cost.
Stephan van der Merwe | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
If your looking for a robust SIEM solutions that can ingest data from multiple sources, and then visualize this data. The QRadar SIEM is perfect for you. It can also be enhanced with other modules which makes it and easier choice as well
Rahul Deshmukh | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
If you are looking for end-to-end visibility of what actions the threat actor performed, which vulnerability he used, or phishing he triggered, you will get to know and be able to plug the loopholes. If you want quick analysis and need results within 1 or 2 minutes then IBM Security QRadar SIEM is not for you.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
IBM QRadar as an SIEM tool is very good at parsing the Microsoft events when properly integrated and behaves well with the firewall events. This will be very useful in such scenarios, but, in some cases, the log sources will not parse properly that time it will be very difficult to troubleshoot.
August 10, 2023

Goes above and beyond

Score 9 out of 10
Vetted Review
Verified User
Incentivized
The IBM Security QRadar SIEM tool is a proper management tool that performs exactly as you would hope. If you and/or your organization are in need of a screening and management tool that will assist you in compiling data from organizational logs; detecting threats in what is close to real time; and analyzing the behavior of your users, this is the tool for you.
Mahmoud younis | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
IBM Security QRadar SIEM is commonly used in Security Operations Centers to provide security analysts with a centralized console for monitoring, investigating, and responding to security events, For organizations with relatively small and straightforward IT infrastructures, the deployment and maintenance of IBM Security QRadar SIEM might be overly complex and costly compared to simpler SIEM solutions
Score 10 out of 10
Vetted Review
Verified User
Incentivized
IBM QRadar is well suited for medium/large companies that needs to monitor their IT infrastructure on a trasversal level. Given that a SIEM is fundamental for a good cybersecurity environment, IBM QRadar is the rocksteady answer to all the needs that an IT Operation or SOC team may ask. Both on premise or in cloud, all-in-one or distributed, QRadar is scalable for any kind of scenario. This is a cutting edge product that needs to be followed constantly so it can be less appropriate for companies that doesn't have the required workforce to keep the product healty and up to date.
Return to navigation