1. Home
  2. Security Information and Event Management (SIEM) Software
  3. IBM Security QRadar SIEM Reviews
  4. User Review of IBM Security QRadar SIEM
Good solution, wide visibility
February 29, 2024

Good solution, wide visibility

Laura Guerrero | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Software Version

QRadar Advisor with Watson (legacy branding)

Modules Used

  • SIEM

Overall Satisfaction with IBM Security QRadar SIEM

I make the use case based on needs of the bank, based on requests to the entity.
  • Visibility to different log source types
  • Manipulation of use cases to make them conform to the need
  • Long time data correlation in real time
  • Visibility of custom searches in the profiles created for the reach of all users
  • Integration to cloud services
  • Improvements in alerting based on business needs through adaptations in use cases
  • Monitoring and visibility of events for review in real time and past time to resolve security incidents
  • Support in meeting the needs of entity requests
The integration of on-premise services is good, but you still cannot have visibility over the best-known services found in the cloud.
In my experience I have had cases in which they are not given the priority that I would expect, since perhaps they do not know the needs of the business, which is why sometimes I have had to wait a long time for attention. Other times they have not provided me with support and with documentation support I have found the solution on my own.

Yes, I have had cases in which I have received good attention, but I have also had more in which the response has been deficient.

Do you think IBM Security QRadar SIEM delivers good value for the price?

Not sure

Are you happy with IBM Security QRadar SIEM's feature set?

Yes

Did IBM Security QRadar SIEM live up to sales and marketing promises?

I wasn't involved with the selection/purchase process

Did implementation of IBM Security QRadar SIEM go as expected?

I wasn't involved with the implementation phase

Would you buy IBM Security QRadar SIEM again?

Yes

IBM Security QRadar SIEM works well in terms of event correlation, customization of use cases, visibility of log source on premise, however, when moving forward with the integration of log source in the cloud, there is no identification for the correct scope of the events. Additionally, something in visibility is lost for profiles that are not admin.

IBM Security QRadar SIEM Feature Ratings

Security Information and Event Management (SIEM)
8.0
Correlation
10
Custom dashboards and workspaces
7
Behavioral analytics and baselining
6
Rules-based and algorithmic detection thresholds
10
Reporting and compliance management
7