IBM Qradar:: The Stellar SIEM for your organization
August 28, 2024

IBM Qradar:: The Stellar SIEM for your organization

Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Software Version

QRadar Advisor with Watson (legacy branding)

Modules Used

  • SOAR

Overall Satisfaction with IBM Security QRadar SIEM

The business needed an all in one solution which can collect logs from all the devices across the organization as well as it should be user friendly enough for analysts to use (considering finding resources). IBM Security QRadar SIEM fits in the sweet spot to get both resolved. The all in one deployment to distributed, both were good according to the regions we deployed it onto.

Pros

  • User Behaviour Analytics
  • Easy log source onboarding
  • Easy reference set management for IOCs

Cons

  • Aerial searches are a little complicated
  • The UI for the event analysis looks a little dated
  • Widgets on the dashboard can be more automated
  • Reports being fetched through IBM Security QRadar SIEM is quite beneficial for management presentations.
  • Analysts having hands on over Qradar is easily available in job market. Hence saving money.
  • DSM on IBM Security QRadar SIEM supports almost all the major vendors. Hence reduced efforts by admin.
We have the IBM Security QRadar SIEM integrated with our SOAR solution, Vulnerability Management solution as well as multiple premium threat intels via STIX/TAXII. The ease of integration with all these security controls were quite seamless and worked quite well with API token integration. Third party applications for major players are easily available on IBM store.
IBM is known for one of the best supports in the industry. We have used other solutions from IBM including PAM and SOAR. They give an adequate importance to the customer via Technical account managers. Most of our issues were resolved within the stipulated SLAs. The support staff is available 24x7 to assist analysts.
IBM Security QRadar SIEM has been quite a revolutionary siem solution compared to its counterparts. Be it the use case building to maintaining log source integrations, Qradar has proved to be one of the most efficient and easy to use solution. Having IBM SOAR along with the SIEM gives a 360 degree view of the enterprise security offenses.

Do you think IBM Security QRadar SIEM delivers good value for the price?

Yes

Are you happy with IBM Security QRadar SIEM's feature set?

Yes

Did IBM Security QRadar SIEM live up to sales and marketing promises?

I wasn't involved with the selection/purchase process

Did implementation of IBM Security QRadar SIEM go as expected?

Yes

Would you buy IBM Security QRadar SIEM again?

Yes

IBM Secuirty QRadar SIEM has proven to be an industry leader time and again for multiple years. It’s user friendly historical searches, reference set management and other key features makes it easy for new SOC analysts .Its well suited for medium to large size organizations. However, it’s not an ideal solution for smaller organizations as the solution incurs a decent license cost. Small organization can manage at free SIEM solutions.

IBM Security QRadar SIEM Feature Ratings

Security Information and Event Management (SIEM)
8.2
Correlation
9
Integration with Identity and Access Management Tools
8
Custom dashboards and workspaces
8
Behavioral analytics and baselining
7
Rules-based and algorithmic detection thresholds
8
Reporting and compliance management
9

Comments

More Reviews of IBM Security QRadar SIEM

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. IBM Security QRadar SIEM Reviews
  4. User Review of IBM Security QRadar SIEM