Item: IBM Security QRadar SIEM
Rating: 10
Author: Mahmoud younis

Use Cases and Deployment Scope

Our company are MSSP service provider, and most of our customers are integrated with our XDR ( SEIM & SOAR ) IBM Security QRadar SIEM resolved many issues with our customers, plus IBM Security QRadar SIEM has many add-ons and DSM for most endpoint and security controllers, and it's easy also to integrate it with threat intelligent platformswe have more than 300 Usecase for cloud .endpoind and firewalls

Pros and Cons

parsing
event correlation
Ease of searching and viewing payload and events

eps sizing
auto refresh on offenses page
develop use case manager add-one

Return on Investment

IBM Security QRadar SIEM helps security teams focus on the threats that matter most
IBM Security QRadar SIEM reduce the manual efforts of security analysts. They can focus on the most important tasks
IBM cloud pack doesn't have a data center in the middle east and most of the government sectors didn't allow to put data out of the middle east data center like Microsoft Sentinal now has a UAE data center

Ease of Integration

IBM Security QRadar SIEM offers several methods for integration, including APIs and DSM , making it easier for security engineering teams to connect their existing security tools and extend IBM Security QRadar SIEM's capabilities but for IBM Soar, we face some issues with integration specifically when we need to create a custom app, and one more thing for integration if you provide us easy way to integrate IBM Security QRadar SIEM with Microsoft power BI will resolved the reporting issues with the customer (puls) some time we need to upload customer logo on dashboard this option is not available - like grafana dashboard

Support Rating

We have good experience with technical customer support. Once we open the case, the response comes immediately.

Alternatives Considered

Microsoft Sentinel

price, to be honest IBM Security QRadar SIEM package is very good for most customers than Splunk and Sentinel

Key Insights

Do you think IBM Security QRadar SIEM delivers good value for the price?

Yes

Are you happy with IBM Security QRadar SIEM's feature set?

Yes

Did IBM Security QRadar SIEM live up to sales and marketing promises?

Yes

Did implementation of IBM Security QRadar SIEM go as expected?

Yes

Would you buy IBM Security QRadar SIEM again?

Yes

Other Software Used

Suricata IDS, IBM Security QRadar EDR, Splunk SOAR

Likelihood to Recommend

IBM Security QRadar SIEM is commonly used in Security Operations Centers to provide security analysts with a centralized console for monitoring, investigating, and responding to security events, For organizations with relatively small and straightforward IT infrastructures, the deployment and maintenance of IBM Security QRadar SIEM might be overly complex and costly compared to simpler SIEM solutions

IBM Security QRadar SIEM Unraveling Security Mysteries

Software Version

Modules Used

Overall Satisfaction with IBM Security QRadar SIEM