A SIEM that works
July 21, 2021
A SIEM that works
Score 10 out of 10
Vetted Review
Verified User
Overall Satisfaction with IBM Security QRadar SIEM
This is our enterprise-wide solution for SIEM. We run this in our IT department and send many different application logs to the SIEM. We use the IBM QRadar tool as one of the applications we display on our 6x6 SOC. The application is fundamental to our security posture, we track log-in failures, VPN connections, lateral movement, and other key pieces of information that we deem important to cybersecurity.
- Ingest logs from other application
- Clean graphical displays of key security metrics
- Filter data events
- High end analytics
- Correlation of data events across disparate applications
- The tool needs a collaboration feature like an internal chat tool
- Pricing model is very high
- Pricing structure could be simplified
- Enhancements could be faster
- Our organization has been able to expand its security portfolio based on the implementation of IBM QRadar.
- We have successfully used the tool to identify when others are inspecting our network and put plans in place to address situations pre-emptively.
- The annual cost is worth the pay, but I would like to see pricing model changes.
IBM QRadar is the best SIEM in its class. We looked at Splunk, but you need a full time person to manage the tool. When we last looked at Splunk it had an enormous overhead cost associated with it.
Do you think IBM Security QRadar SIEM delivers good value for the price?
Yes
Are you happy with IBM Security QRadar SIEM's feature set?
Yes
Did IBM Security QRadar SIEM live up to sales and marketing promises?
Yes
Did implementation of IBM Security QRadar SIEM go as expected?
Yes
Would you buy IBM Security QRadar SIEM again?
Yes