IBM Security QRadar Reviews
IBM Security QRadar
Overall rating
Filter by
Company size
Time used
33 Reviews
- Industry: Semiconductors
- Company size: 10,000+ Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
A feasible solution for the detection of incidents, all our information is safe.
Reviewed on 2023/02/18
With IBM Security QRadar we reduce the risk of being vulnerable to a cyber attack, since the...
With IBM Security QRadar we reduce the risk of being vulnerable to a cyber attack, since the protection of this software is intuitive and prioritizes threats to be more effective in the security of our IT environment. It is a truly automatic process that guarantees the total protection of our data, has detailed reports and a very powerful response to cyber attacks.
Pros
It is a necessary software for all our business environment, since it guarantees that our information is safe, the dashboard is intuitive and understandable, the analyzes are effective so that threats do not enter and damage our information, I like the prioritization of threats, since neutralizes in order of importance, network forensics is very good, advanced searches are good, protection of our entire IT infrastructure is high, and we really like the trust that IBM Security QRadar places in us.
Cons
It has many features that somewhat limit the understanding of early adopters, it can be overwhelming the first time, but the quality of the results keeps our data safe and threats away.
- Industry: Information Technology & Services
- Company size: 10,000+ Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 8.0 /10
QRadar The Best SIEM Solution
Reviewed on 2024/01/30
The QRadar is the one of the best Security Information and event management (SIEM) tool. It...
The QRadar is the one of the best Security Information and event management (SIEM) tool. It collects the logs from company IT infrastructure at centralized locations and using correlation rules we can reduce the internal and external threat landscape. It makes special when we integrate different apps with like threat intel and other.
Pros
IBM QRadar has very simple user-friendly interface. The deployment and configuration of solution is very easy. The devices integration we can do easily with available Device Support Module
Cons
The integration get difficult when there is no available parser.
Alternatives Considered
Splunk EnterpriseReasons for Choosing IBM Security QRadar
We were facing multiple integration and threat intelligence issue with exiting SIEM solution. We wanted have SOAR in place and QRadar provide all capabilities.Switched From
ArcSightReasons for Switching to IBM Security QRadar
The Qraar SIEM having the capabilities as we were looking for. The feature of Qradar loke ease of navigation integration, real time monitoring is simplified.- Industry: Computer & Network Security
- Company size: 51–200 Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 3.0 /10
QRadar Gets It Mostly Done At A Cost
Reviewed on 2020/09/01
I used QRadar for over 10 years, and have found great success in using it in a reactive sense when...
I used QRadar for over 10 years, and have found great success in using it in a reactive sense when other staff bring up security or connectivity issues; the ability to quickly show normalized logs -- along with the raw log output for the skeptical staff out there -- is a real boon to quickly finding the root cause of an issue and moving on. The pricing and licensing schemes of the product have gotten more cumbersome since the purchase of the product by IBM, and their support channels exhibit the kind of mind-numbing bureaucracy you can expect out of such a large organization.
Pros
When aggregating log information, the ability to quickly click and pivot around between data sources and filter results on-the-fly worked very well for any reactive kind of events. The software also did a relatively decent job on identifying data and log sources and classifying them correctly.
Cons
The software can be very involved and cumbersome; expect to dedicate significant staff time towards it in order to keep it operational and to continually tune the software for false positives. For example, at an organization with over 2,000 employees I had to dedicate almost a single employee to perform tasks within QRadar, and nothing else. Along with that, in order to be successful your support staff must be extremely familiar with networking and understanding the reasons why devices send the logs that they do. This is not the case where you can point-and-click a few things and have a system that alerts you properly when attacks are taking place.
Reasons for Switching to IBM Security QRadar
Ultimately, we were early adopters of the product and continued to utilize our initial licensing investment repeatedly when we upgraded our hardware. It was a known quantity that my staff had good familiarity in, although over the course of 10 years we were still not able to get the product to perform all of the features it said it could. This is partly due to my inability to get additional staff resources, as well as having a network layout that was decentralized and not relatively simple.- Industry: Banking
- Company size: 10,000+ Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 9.0 /10
The Best Classical SIEM solution in the market
Reviewed on 2023/08/05
It's very convenient in terms of usage and visibility. We are mainly dealing with the Audits and...
It's very convenient in terms of usage and visibility. We are mainly dealing with the Audits and Qradar is the main factor that we've passed the Audits.
Pros
Easy to use. Learning curve is short. It's the same product compared to 10 years ago. It functions as it's expected. Expansion of the solution is easy. Reporting is inside the product and works well. Support is adequate.
Cons
There's no DataBroker or in short Kafka etc for filtering. AI and ML models is missing. Within the digital transformation and cloud migrations, it falls behind for the 3rd party integrations. I need to do the integration from the scratch for Saas or Paas services. Api integrations does not work well compared to similar solutions.
Reasons for Choosing IBM Security QRadar
We have switched over the Symantec SIEM. It's dropped the product and solution.Reasons for Switching to IBM Security QRadar
Symantec SIM, HP Arcsight, Elastic, Splunk are the other vendors. Symantec is dropping the product SIM.HP Arcsight has a high maintenance cost and lacks in expansion.Elastics is super costly in terms of operation and getting Elastic support is cumbersome.Splunk is a high cost alternative as we have a very big EPS-Storage rates.- Industry: Information Technology & Services
- Company size: 501–1,000 Employees
- Used Daily for 6-12 months
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
IBM Qradar - an excellent tool for protecting our Digital security fortress
Reviewed on 2023/06/24
We needed a comprehensive security tool which can provide SIEM, SOAR, Threat intel, threat...
We needed a comprehensive security tool which can provide SIEM, SOAR, Threat intel, threat hunting and UBA and IBM Qradar provides all, hence the overall experience has been superb. Also, the excellent support from OEM makes it a win-win proposition.
Pros
IBM Qradar is the most stable and well known product in the market when it comes to the selection of SIEM tool and hence is an obvious choice for any . Excellent support from IBM OEM and management connect makes things simple to implement and support.
Cons
At this stage, we are liking all features about the product.
- Industry: Wine & Spirits
- Company size: 201–500 Employees
- Used Daily for 6-12 months
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
QRadar is the best!!!
Reviewed on 2019/05/08
IBM QRadar is very good solution to assure integrity of logs. You can add all your log sources,...
IBM QRadar is very good solution to assure integrity of logs. You can add all your log sources, monitor logs, offenses. Also you can prevent and detect attacks and investigate incidents.
Pros
Easy to use. Easy integration with log sources. Assure security of logs is easy with QRadar.
Cons
Sometime use too more resources. The user manual can be more detailed.
Alternatives Considered
Splunk EnterpriseReasons for Switching to IBM Security QRadar
The price is good. Very good resilience. Easy to use- Industry: Retail
- Company size: 51–200 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
IBM QRadar SIEM
Reviewed on 2019/05/20
Collect in secure mode all critical events from our critical resources. Identify and analysis...
Collect in secure mode all critical events from our critical resources. Identify and analysis incidents and attacks.
Pros
The IBM QRadar SIEM is a powerful tool. A mature solution to collect event and investigate incidents and attacks. The tool store in secure mode all events. The tool is easy to use. Easy to add log sources and analysis offenses.
Cons
The documentation of the tool can be more detailed.
Alternatives Considered
Splunk EnterpriseReasons for Switching to IBM Security QRadar
Easy to use. Mature solution that assure security of the events.- Industry: Information Technology & Services
- Company size: 5,001–10,000 Employees
- Used Weekly for 6-12 months
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 9.0 /10
IBM QRadar- Captures everything
Reviewed on 2024/07/12
Excellent . Highly recommend for SIEM monitoring.
Excellent . Highly recommend for SIEM monitoring.
Pros
Its UI , Features, Policy definitions , Integrations.
Cons
Nothing as such . Its a fantastic Product
- Industry: Education Management
- Company size: 11–50 Employees
- Used Daily for 6-12 months
-
Review Source
Overall rating
- Ease of Use
- Likelihood to recommend 8.0 /10
Secure your Network with QRadar
Reviewed on 2023/03/12
Pros
1. It is one of the best software of SIEM in the market.2. Any offense can be monitored easily on a single console.3. Customer Support is amazing
Cons
1. It is a bit expensive when you buy it for local servers.2. One of the most expensive tools for cloud-based SIEM tools.3. It's a bit professional tool and that's why beginners get issues when using it.
- Industry: Information Services
- Company size: 201–500 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
High-quality monitoring that protects us from threats.
Reviewed on 2023/01/05
We integrated IBM Security QRadar because it is a much more functional SIEM software than the...
We integrated IBM Security QRadar because it is a much more functional SIEM software than the others, the usability, security, analysis and incident resolution features are amazing, it also allows a quick response to threats found in the network. It is the perfect software to monitor our infrastructure and prevent threats from entering and damaging our system.
Pros
I like that it has an easy to understand user interface, detection of threats is accurate and neutralizes them before they cause damage to our system, it is customizable and reduces the risk of damage to our system. It has detailed reports that help us understand what is happening and does not detect false positives.
Cons
It is a high quality SIEM product, it has big differences in functions and results compared to others and although it is not so easy to use the software for the first time, it has a simple interface that you can learn to use and customize in a short time.
- Industry: Mechanical or Industrial Engineering
- Company size: 1,001–5,000 Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 9.0 /10
one of best solution in the market
Reviewed on 2025/01/11
We decided to use QRadar as SIEM for our SOC system based on comparison of products 5 years ago
We decided to use QRadar as SIEM for our SOC system based on comparison of products 5 years ago
Pros
Robust SIEM product with a hybrid on-premise and cloud delivery model, one of the best in the market
Cons
price model only based on EPS and overall price compared to other solution
Reasons for Switching to IBM Security QRadar
was best of market at the moment of choice- Industry: Information Technology & Services
- Company size: 11–50 Employees
- Used Weekly for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 7.0 /10
A Good SIEM for a SOC
Reviewed on 2023/05/11
QRadar has been acting as the go to SIEM tool in many SOC deployments due to its ease of deployment...
QRadar has been acting as the go to SIEM tool in many SOC deployments due to its ease of deployment and the straightforward integrations being available out of the box. Threat and incident prioritisation allows the effective response to possible attacks compared to other SIEM platforms with ease of hunting for dormant and persistent threats.
Pros
The ease of deployment in the all-in-one VM appliance coupled with the simple log integrations are really helpful in the deployment of the platform, onboarding of log sources and to perform troubleshooting and development of custom parsers. Further, intuitive dashboards makes the administration and analysis more easier compared to other SIEM platforms.
Cons
Compared to other SIEM solutions, QRadar would require the integration with a separate solution to achieve the FIM capabilities. Similar to above, getting logs from windows servers can be of a bit tricky. The solution has a number of features and capabilities and deployments in distributed architecture could be troublesome if the team is either new to product or have not got a comprehensive idea about the architecture and features.
- Industry: Financial Services
- Company size: 5,001–10,000 Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 9.0 /10
Best SIEM for highly productive teams
Reviewed on 2022/09/23
Very pleased and would definitely recommend for any sized company. For teams starting with a SIEM...
Very pleased and would definitely recommend for any sized company. For teams starting with a SIEM solution it is highly recommended
Pros
Easy to implement correlation rules. Provides a very user friendly interface and with a few clicks can easily build monitoring rules. Has built in alert management tool
Cons
I think the UBA component can be improved to include machine learning. Rather it is currently based on static correlation rules
Alternatives Considered
Splunk EnterpriseReasons for Switching to IBM Security QRadar
Easy to work with and cost effective- Industry: Information Technology & Services
- Company size: 10,000+ Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
Protect your environment from cyber threats Using Qradar
Reviewed on 2022/07/23
Best Siem.
Good UI, very user-friendly.
We can use both ariel query as well as GUI for working on...
Best Siem.
Good UI, very user-friendly.
We can use both ariel query as well as GUI for working on logs or alerts.
Pros
It is one of the most user friendly SIEM tool, I have worked with. UI is quite good and navigation is very easy.
As being a part of SOC team, it is helpful in detecting, investigating and prioritizing threats/alerts.
We can create use cases based on threat condition, which will trigger an alert in case of threat defined in the use case, which will make our threat monitoring easier.
It helps in securing our assets, endpoints, network everything.
We can create dashboards and download reports.
We can create reference sets for any IOCs or any other data which will be helpful in usecase creations or finetuning.
it can be integrated with soar solutions for our ease.
Cons
Sometimes due to less EPS, we might face Event drops during heavy flow of data.
Creating dashboards for any real time detection can be difficult.
Sometimes API calls fails while working on SOAR for the automated usecases.
- Industry: Computer & Network Security
- Company size: 501–1,000 Employees
- Used Weekly for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
One of best and Power Full tool for SIEM logs.
Reviewed on 2022/06/25
Overall this is one of the greatest solution and helps securing the organization from silent...
Overall this is one of the greatest solution and helps securing the organization from silent threats. With bit expertise available in SOC, this can be huge saver for organization from different threats.
Pros
To collect Security logs at one place is one of most important and critical feature for any organization. Further we can have different use cases applied on the logs and we will be able to identify threats easily by applying expert analysis from the tool.
Cons
I think there is a gap in UI, it can be more improved and easy to use.
- Industry: Information Services
- Company size: 201–500 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 8.0 /10
QRader - The SIEM
Reviewed on 2019/06/21
Pros
Qrader is best tool for information security. we have integrated qrader with our firewall and proxy, we work on offenses which are generated by qrader when it detects or find any suspicious behavior. we can write policies to get alerts in qrader.
Cons
Most of the offenses which qrader generated are false positive so it should develop their with more features and detection capabilities
- Industry: Computer Software
- Company size: 10,000+ Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Ease of Use
- Likelihood to recommend 8.0 /10
Security at it's peak
Reviewed on 2019/07/10
Pros
Security Innovation event management system is excellent as it has endless layers of security for a company's firewall
Cons
To be sincere, the only way this system can be flawed is when pass codes are compromised within
- Industry: Banking
- Company size: 201–500 Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
Documented Product. Easy Installation. Meet Our Expectation
Reviewed on 2018/12/24
Meet our expectation. All features that we need. Collect all critical events based on our configurat...
Meet our expectation. All features that we need. Collect all critical events based on our configuration
Pros
It was a good experience. Implementation was easy.
Cons
Too much documentation. Complicated instructions.
- Industry: Telecommunications
- Company size: 1,001–5,000 Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 6.0 /10
Full featured SIEM solution - at a price
Reviewed on 2021/01/21
A robust SIEM solution that requires a fair amount of tuning to reduce the number of false positives
A robust SIEM solution that requires a fair amount of tuning to reduce the number of false positives
Pros
Overall product stability
Predefined log normalization functionnality
Diverse feature set
Perpetual licensing
Cons
Licensing model: the EPS (events per second) cap limits the amount of logs that can be ingested in Qradar
Can produce a lot of false positives
Alternatives Considered
Splunk Enterprise- Industry: Government Relations
- Company size: 51–200 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
Qradar
Reviewed on 2022/05/01
Best security tools market leader
Best security tools market leader
Pros
User friendly easy to manage, customisable dashboard.
Cons
Some part of qradar is little bit complicated.
- Industry: Internet
- Company size: 10,000+ Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 9.0 /10
Unlock insights and quickly detect and eliminate security threats faster
Reviewed on 2022/06/27
Great integration and streamlined workflow with improved speed of threat investigation with...
Great integration and streamlined workflow with improved speed of threat investigation with automated in-built intelligence.
Pros
Powerful product with advanced threat detection capability and excellent automation and analytical functionality that provides us with data-driven insight and helps gain full visibility into the root cause and take immediate action.
Cons
Great integration with most products in use and a highly flexible product to future business demands and deployment options to choose from. Nothing to dislike.
- Industry: Information Technology & Services
- Company size: 11–50 Employees
- Used Daily for 6-12 months
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
The best SIEM ever
Reviewed on 2019/05/15
Store in secure mode all our critical events. Help to prevent and investigate attacks and incidents.
Store in secure mode all our critical events. Help to prevent and investigate attacks and incidents.
Pros
Easy to implement and administrate. Good price. The vendor offer good support. Big user community. Run fast. Easy to add and manage log sources.
Cons
Nothing. We like this tool. And recommend to other to use it
Alternatives Considered
Splunk EnterpriseSwitched From
Splunk EnterpriseReasons for Switching to IBM Security QRadar
Good price. Good functionality.- Industry: Computer & Network Security
- Company size: 11–50 Employees
- Used Daily for 6-12 months
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 8.0 /10
Easy Way To Monitor Your Assets
Reviewed on 2021/05/15
In my opinion, IBM QRadar is a very good choice. Because I'm currently working with few customer...
In my opinion, IBM QRadar is a very good choice. Because I'm currently working with few customer locations where IBM QRadar established. So it was very easy to learn and get audit logs and do security auditing with this IBM QRadar SIEM.
Pros
IBM QRadar is one of the best SIEM in the industry. Also, it's providing a wide range of inbuild functionalities that you can customize with your requirements. Furthermore, it has a very unique and simple GUI design.
Cons
Even we bought the number one SIEM in the industry, we need to do the correlation part to fine-tune the SIEM to get the valuable output. So, the correlation was difficult with IBM QRadar.
- Industry: Information Technology & Services
- Company size: 51–200 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 9.0 /10
Leader of SIEM
Reviewed on 2018/10/10
We chose QRadar as this is one of the most competitive SIEMs in the market. I would suggest QRadar....
We chose QRadar as this is one of the most competitive SIEMs in the market. I would suggest QRadar. It's a great product.
Pros
I have used QRadar for a few years. We run it in a big environment. The benefits are flexible and scalable architecture, efficient reporting, the data consolidation and search capabilities.
Cons
The dashboards should be improved. Generally, we absolutely satisfied with QRadar, but I did not compare it with some other tools.
- Industry: Internet
- Company size: 1,001–5,000 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
My Recommendation for IBM Security QRadar
Reviewed on 2022/06/03
Investigate, detect and remediate cybersecurity threats.
Investigate, detect and remediate cybersecurity threats.
Pros
I like how IBM Security QRadar easily investigate, detect and respond to threats on devices and endpoints on company network.
Cons
Our internal support team eradicates issues as soon as they arise.