Skip to main content
TrustRadius
IBM Security QRadar SIEM

IBM Security QRadar SIEM

Overview

What is IBM Security QRadar SIEM?

IBM Security QRadar is security information and event management (SIEM) Software.

Read more
Recent Reviews
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 13 features
  • Rules-based and algorithmic detection thresholds (34)
    9.1
    91%
  • Correlation (54)
    8.8
    88%
  • Integration with Identity and Access Management Tools (50)
    8.2
    82%
  • Custom dashboards and workspaces (54)
    7.4
    74%

Reviewer Pros & Cons

View all pros & cons
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is IBM Security QRadar SIEM?

IBM Security QRadar is security information and event management (SIEM) Software.

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.ibm.com/products/qradar…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

11 people also want pricing

Alternatives Pricing

What is Microsoft Sentinel?

Microsoft Sentinel (formerly Azure Sentinel) is designed as a birds-eye view across the enterprise. It is presented as a security information and event management (SIEM) solution for proactive threat detection, investigation, and response.

Return to navigation

Features

Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

8.6
Avg 7.8
Return to navigation

Product Details

What is IBM Security QRadar SIEM?

IBM QRadar SIEM helps users to remediate threats faster by prioritizing high-fidelity alerts to help catch threats.

QRadar analytics monitor threat intel, network and user behavior anomalies to prioritize where immediate attention and remediation is needed. When threat actors trigger multiple detection analytics, move across the network or change their behaviors, QRadar SIEM will track each tactic and technique being used. More important, it will correlate, track and identify related activities throughout a kill chain, with a single high-fidelity case, automatically prioritized for the user.


https://ibm.biz/QRadar_SIEM_product_page



IBM Security QRadar SIEM Features

Security Information and Event Management (SIEM) Features

  • Supported: Correlation
  • Supported: Integration with Identity and Access Management Tools
  • Supported: Custom dashboards and workspaces
  • Supported: Behavioral analytics and baselining
  • Supported: Rules-based and algorithmic detection thresholds
  • Supported: Reporting and compliance management

Additional Features

  • Supported: Open architecture to deploy on premises, on cloud, or as a service.
  • Supported: Investigation speed faster with automated triage and contextual intelligence
  • Supported: Better visibility by removing silos and unifying input and shared insights
  • Supported: Integrates with existing tools to leave data where it is and leveraging current environment.

IBM Security QRadar SIEM Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

IBM Security QRadar is security information and event management (SIEM) Software.

Microsoft Sentinel, Splunk Enterprise Security (ES), and LogRhythm NextGen SIEM Platform are common alternatives for IBM Security QRadar SIEM.

Reviewers rate Centralized event and log data collection highest, with a score of 9.9.

The most common users of IBM Security QRadar SIEM are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(256)

Attribute Ratings

Reviews

(1-25 of 75)
Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We use IBM Security QRadar SIEM to help us quickly analyze and respond to potential security incidents. Today it is an indispensable solution for our SOC. By having a centralized interface like IBM Security QRadar SIEM, we are able to investigate and identify with much more precision the various events related to certain suspicious behaviors.
Score 9 out of 10
Vetted Review
Verified User
Incentivized
The main goal of IBM Security QRadar SIEM is cybersecurity. We provide perimeter monitoring and active defense by blocking "bad" IPs. We monitor unusual user activity, password compromises, etc. We monitor malware activity in our organization using different IOCs from threat intelligence services and feeds. QRadar SIEM provides log storage for a definite period of time.
January 03, 2024

IBM Qradar Review

Umair Javed | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
In our organization we use Qradar for network monitoring been in the SOC Team We monitor logs evets and offences triggered. investigate them take action if required and closed them.
as we have integrated most of our sensitive servers in SIEM so it would help to monitor the activity going on these serves.
Brandon Lowry | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
IBM Security QRadar SIEM is a comprehensive, robust and effective platform that plays a critical role in our financial services organization to address cyber security challenges. This platform provides accurate and prioritized alerts that ensure a high level of cyber security, I have witnessed how this platform has enhanced our ability to quickly detect and respond to threats in real time, leading to greater protection of our critical assets and data.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
We used for security information and event management, helping organizations detect and respond to security threats. Its scope includes log and event analysis, threat intelligence, and compliance reporting, addressing issues like unauthorized access and data breaches. Specific use cases vary depending on organizational needs and security requirements.
Paige Jenkins | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
This tool is of great help in taking full control of the different IBM options that we are using in the company; it is highly compatible with any other software that is available. Security Qradar will maintain total security in each of the departments of your organization, providing confidence in everything elaborated, so any threat or attack that may exist and damage any result is immediately visualized, so it is constantly analyzed and efficient.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Working with total confidence is our goal and with this IBM Security QRadar has come to the organization. A tool that helps to be free of internal threats in our system, analyzes and executes strategies to get rid of all possible threats. It's powerful and feature-rich, which is what we were looking for, with the ability to customize it. QRadar has had the best time in detecting the threats having an immediate response, in addition to giving a report with all the details of what happened.
Abhishek Kumar | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
IBM Security Qradar help our Organization by real-time Monitoring of Logs and events to Provide a safe and secured Environment and Interface. we use multiple servers and router switches and end devices are connected to each others ,Qradar helps to monitor all logs and events of all intregated devices and gives update with customs rules engine. If any misbehavior happens in server or in any devices ,it was investigated with Qradar and Creates offenses and give us alert of unethical activity.
NILESH KUMAR | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
IBM Security QRadar SIEM is used for real-time monitoring of logs of different servers based on different locations and logs of devices where QRadar agents are deployed to collect logs. The data collector helps to collect all the logs from the device and server. Data processors help a data store and create a custom rule; Data search provides graphs, reports, and offenses. With the help of all of them, we can easily manage the security posture of our clients.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
We are a SOC and a security that is a security operation center and a center of incident response. So we have a lot of clients. All of these clients have a lot of locks, a lot of information security, information security events, and security alarms. We use this product to put each client in a separate bucket and all its security logs in each bucket. So if any of our clients have an incident, an alarm of a cybersecurity threat, we can see it in a dashboard. So we use this tool to correlate all the information so we can alert our clients that they are under attack
Piyush Mittal | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
It is the best in industry Security information and event management software that we are using in our organisation to tackle cyber threats in real time. It provides us network and user behaviour analystics along with risk score so that analyst can respond to attacks. It basically helping us in securing our end points and network from external and internal attacks.
Stephan van der Merwe | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
We use QRadar SIEM at one of our customers to ingest, event and alert data from multiple sources. And then correlate this into actionable data that we for monitoring. Best thing of QRadar SIEM is that you can literally ingest data from any source. And the Built in dashboard library makes visualizing this data so simple.
Rahul Deshmukh | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
I used IBM Security QRadar SIEM when it was integrated with IBM Watson. We had issues with the analytics of IoC and it was extremely difficult to identify attacks in our customer network. The challenge was to identify the threat actor and the actions they performed to attack our customers' data. Having evaluated IBM Security QRadar SIEM, we found it suitable for our customer environment and expectations.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
We use IBM QRadar as a main SIEM tool and we as a soc team completely depend on it. We do a primary investigation as per the building blocks and rules we organize. Whenever the alert triggers as per the rule we wrote. We go to a particular event and check the payload if we can find any suspicious things and proceed with further investigation.

August 10, 2023

Goes above and beyond

Score 9 out of 10
Vetted Review
Verified User
Incentivized
In my organization, IBM Security QRadar SIEM is used to manage data collected from logs. In addition, it is also used to monitor general network activity and to analyze and monitor the behaviors of the organization's users. This is a fairly large organization with a significant number of employees, so it is important to ensure that departments are kept abreast of trends in activity.
August 09, 2023

User friendly Qradar

Score 9 out of 10
Vetted Review
Verified User
Incentivized
I used it to onboard various devices. Extract the logs and parsing logs is very easy in Qradar. Creating use cases and creating dashboard is very user friendly. Rule management also support Mitre mapping which helps in fine tune security posture.
Mahmoud younis | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Our company are MSSP service provider, and most of our customers are integrated with our XDR ( SEIM & SOAR ) IBM Security QRadar SIEM resolved many issues with our customers, plus IBM Security QRadar SIEM has many add-ons and DSM for most endpoint and security controllers, and it's easy also to integrate it with threat intelligent platformswe have more than 300 Usecase for cloud .endpoind and firewalls
Score 10 out of 10
Vetted Review
Verified User
Incentivized
IBM QRadar is one of the best SIEM available. Year of experience, continous improvements and constant innovations makes this product one of the most stable and reliable Cybersecurity platforms in commerce. I use QRadar on a daily basis both on operational and administrative levels in order to address the cybersecurity issues in my company and other companies.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
The IBM QRadar provides quiet robust security incident and event manager. It's functionalities including CRE, tenant management is also very good and functional. The event collector and processor works exceptionally. Also, the X-force threat intel helps to detect and mitigate potential threats in a good manner. The interface is user friendly and allows analysts to analyse the alerts in more efficient manner. The UBA also works as per the expectations and allows to monitor insider threats very efficiently.But we expect more development with the integration of Qradar with various 3rd party tools for example EDR.As a MSSP sometimes it is necessary to put the client demands on front while deploying such powerful tools and integrating it with the 3rd party ones. In conclusion, IBM QRadar SIEM has become an indispensable part of our cybersecurity arsenal. Its sophisticated threat detection, user-friendly interface, and seamless integrations have significantly improved our security operations. We highly recommend IBM QRadar SIEM to any organization looking to enhance their cybersecurity posture and gain better control over their network security.,
Return to navigation