Item: IBM Security QRadar SIEM
Rating: 10
Author: Eduardo Ramirez

Use Cases and Deployment Scope

Mainly IBM Security QRadar at Tristate is for SIEM, but also we use features for early threat detection.

Pros and Cons

100% SIEM
Robust, logging collector
Good integration, through API with other platforms

I think API could be easier, I mean for non API experts.
Also I think upgrades can be more friendly for non Red Hat experts!!!

Return on Investment

ROI has been positive for TSGT, we were able to fix many other things to save money using QRadar.

Alternatives Considered

Recently used ExtraHop, Vectra Cognito, and SolarWinds Log collector.

Other Software Used

ExtraHop Reveal(x), SolarWinds Database Performance Analyzer

In my last 3-4 years of exposure to QRadar as SIEM, I would say it is the best. We are able to see all traffic detailed on a single pane of glass. The only thing is like any other SIEM you need to know what to do with all information, otherwise, it could be useless so definitely training is needed.

IBM Security QRadar Is the Best Option for SIEM and Log Collector!

Software Version

Overall Satisfaction with IBM Security QRadar

Use Cases and Deployment Scope

Pros and Cons

Most Important Features

Return on Investment

Alternatives Considered

Key Insights

Do you think IBM Security QRadar SIEM delivers good value for the price?

Are you happy with IBM Security QRadar SIEM's feature set?

Did IBM Security QRadar SIEM live up to sales and marketing promises?

Did implementation of IBM Security QRadar SIEM go as expected?

Would you buy IBM Security QRadar SIEM again?

Other Software Used

Likelihood to Recommend

IBM Security QRadar SIEM Feature Ratings