The key element, claims IBM, is IBM Qradar Advisor with Watson, which taps Watson's database of security knowledge and correlates that with threats being churned out from the platform. Watson also generates reports on these threats in a matter of minutes, which greatly speeds the time between detecting a potential event and my security team's ability to respond accordingly.
What do you dislike?
To extend Cognitive SOC to endpoints, IBM Security has also announced a new endpoint detection and response (EDR) solution, called IBM BigFix Detect. This is intended to help organisations gain greater visibility into the constantly changing endpoint threat landscape, while bridging the gap between malicious behaviour detection
What business problems are you solving with the product? What benefits have you realized?
* We monitor all IBM QRadar Advisor with Watson reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.