1. Home
  2. Security Information and Event Management (SIEM) Software
  3. IBM Security QRadar SIEM Reviews
  4. User Review of IBM Security QRadar SIEM
One of the best SIEM solution for monitoring end points and network.
October 06, 2023

One of the best SIEM solution for monitoring end points and network.

Piyush Mittal | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Software Version

QRadar Advisor with Watson (legacy branding)

Modules Used

  • SIEM

Overall Satisfaction with IBM Security QRadar SIEM

It is the best in industry Security information and event management software that we are using in our organisation to tackle cyber threats in real time. It provides us network and user behaviour analystics along with risk score so that analyst can respond to attacks. It basically helping us in securing our end points and network from external and internal attacks.
  • Provides alerts in real time with less false positives.
  • Prioritise the high severity alerts so that analyst can focus on severe ones.
  • Identify external as well as internal attacks and risky user behavior
  • Also comes as SAAS software
  • Collecting logs from windows is somewhat painful
  • Scope for improvement in user interface
  • It ia very costly product which could be reduced.
  • Higher chances of Compliance with internal policies and external regulations
  • Customers are happy because their data are secure.
  • Effective reporting to senior management and board members
Yes, i agree that IBM Security QRadar SIEM can be easily integrated with other tools such as RSA Archer GRC, service now ticketing system and other network security tools such as checkpoint and trendmicro. It is because it provides open architecture and application programming interface for developers to consume its APIs and integrate it with other tools.
Yes, i am giving this rating because it has a dedicated customer support and community portal where we can raise the case and search for known issues as well. Support agents are effective in addressing queries and technical issues. They have a service level agreements also to resolve high severity issues on priority.
I would take below parameters to say IBM Security QRadar SIEM is better than other SIEM tools such as netwitness SIEM"

1) Easy to Use
2) Easy to Setup
3) Meet Requirements
4) Easy for admins
5) Quality of Support
6) Future roadmap and new features
These points helped me decide that i should go with IBM Security QRadar SIEM.

Do you think IBM Security QRadar SIEM delivers good value for the price?

Yes

Are you happy with IBM Security QRadar SIEM's feature set?

Yes

Did IBM Security QRadar SIEM live up to sales and marketing promises?

Yes

Did implementation of IBM Security QRadar SIEM go as expected?

Yes

Would you buy IBM Security QRadar SIEM again?

Yes

It is well suited for large scale enterprises who are concerned about their data. It helps them in improving their security posture by giving them insights on possible attacks or can give them insights on risky user behaviour. With the help of its AI and ML technology, analysts can see the attack pattern and respond to them. It is not suited for startups and small scale enterprises because of its cost.

IBM Security QRadar SIEM Feature Ratings

Security Information and Event Management (SIEM)
9.7
Correlation
10
Integration with Identity and Access Management Tools
10
Custom dashboards and workspaces
9
Behavioral analytics and baselining
9
Rules-based and algorithmic detection thresholds
10
Reporting and compliance management
10