G2 Crowd builds the world's largest business commerce platform fueled by $100M in funding 馃殌
IBM QRadar

IBM QRadar

4.3
(16)

IBM QRadar

Work for IBM QRadar?

Learning about IBM QRadar?

We can help you find the solution that fits you best.

IBM QRadar Reviews

Ask IBM QRadar a Question
Write a Review
Filter Reviews
Filter Reviews
  • Ratings
  • Company Size
  • User Role
  • Industry
Ratings
Company Size
User Role
Industry
Showing 16 IBM QRadar reviews
LinkedIn Connections
IBM QRadar review by Ruben A.
Ruben A.
Validated Reviewer
Review Source

"Basic Features of IBM QRadar"

What do you like best?

IBM QRadar allows organizations to improve in terms of detecting attacks, respond to incidents more quickly and facilitate the work of security analysts, this technology provide a real-time analysis of security alerts originated by the hardware and the network software. IBM's QRadar is the only one capable of dealing with the growing sophistication and volume of information security threats.

What do you dislike?

IBM QRadar can be affected by vulnerabilities, such as vulnerable to denial of service, by mistake in a function.

Recommendations to others considering the product

If you are looking for automation, the IBM QRadar Security platform is the most indicated, it is excellent and simple in its implementation and management, it offers extensive content in terms of security intelligence and a large extension of pre-established integration modules, I recommend it .

What business problems are you solving with the product? What benefits have you realized?

IBM QRadar with a common user interface, database and application platform, guarantees the massive registry management without compromising the SIEM's real-time intelligence, nor the network behavior analytics, allows a general solution for all the research functions, correlation, anomaly detection and information. The user interface is the one that allows constant access to each of the functions of management, registration, flow analysis, incident management, vulnerabilities, configuration, panel and information.

Sign in to G2 Crowd to see what your connections have to say about IBM QRadar
IBM QRadar review by Mark A.
Mark A.
Validated Reviewer
Review Source

"QRadar Newbie."

What do you like best?

I like the discussed inter-operability between QRadar and other data sources that can be used as feeds or a database. I also like that it can be tailored to any environment with not too much effort if the environment is mature.

What do you dislike?

We have run into a timestamp issue whereby QRadar timestamps an event when it receives the data and creates an alert based on that timestamp vs when the event actually happened on the Network.

Recommendations to others considering the product

Have a mature environment that is well documented, a well organized process flow for Security as a whole and well defined roles and responsibilities. It's always good to have done your homework on any product as it relates to your environment so as to have the ability to identify any gaps in either process flow or data sources availability/use in QRadar.

What business problems are you solving with the product? What benefits have you realized?

We are implementing QRadar to better consolidate and cross correlate data to one console.

What Security Information and Event Management (SIEM) solution do you use?

Thanks for letting us know!
IBM QRadar review by Administrator in Information Technology and Services
Administrator in Information Technology and Services
Validated Reviewer
Verified Current User
Review Source

"IBM SECURITY QRADAR SIEM"

What do you like best?

Probably the most comprehensive and powerful SIEM we鈥檝e seen...We鈥檝e seen with the added benefit of many next-gen features and superlative correlation...Excellent price for a very flexible SIEM with lots of features... Easy installation, configuration and management... Very fast search, quick and easy log source integration, easy and clear report and rule preparation, etc...

What do you dislike?

Qradar running stable can become inconsistent when we install some extention to qradar ...

is it possible cross query in two events and than match the same property and than two other events merges and than create new table/search/report from these matched events?

Recommendations to others considering the product

You should definitely try it before deciding on any siem product...

What business problems are you solving with the product? What benefits have you realized?

It meets almost all our needs for siem.

IBM QRadar review by Brandon B.
Brandon B.
Validated Reviewer
Verified Current User
Review Source

"IBM QRadar "

What do you like best?

Honestly the best thing about IBM QRadar is the support. It's a very complex tool and can be very daunting to newer admins. But an email here or there or a ticket can get almost any question possible answered in a friendly and professional manner.

What do you dislike?

It's a very complex tool and can be daunting for new admins not familiar with it. Depending on the situation there can be a bit of a steep learning curve.

Recommendations to others considering the product

Try the new free 50 eps version of QRadar to test it in a small environment.

What business problems are you solving with the product? What benefits have you realized?

Security visibility

IBM QRadar review by samir c.
samir c.
Validated Reviewer
Review Source

"Qradar is a very good product"

What do you like best?

Qradar is very simple to use

we can integrate it with different log sources

I like that we can install application on Qradar (pulse, users behavior...)

What do you dislike?

qradar dosn't support some IBM product (IBM switch and IBM domino) for exemple

Qradar can't be integrated with TSM

What business problems are you solving with the product? What benefits have you realized?

we get our PCI-DSS certificate using Qradar

we use Qradar every day to resolve network issues

IBM QRadar review by Joe A.
Joe A.
Validated Reviewer
Verified Current User
Review Source

"Undecided"

What do you like best?

Nothing particular. Layout is similar to other SIEM applications.

What do you dislike?

searching is not intuitive. Quick filter doesn't offer any tips or command/syntax help.

What business problems are you solving with the product? What benefits have you realized?

We haven' identified business problems to solve yet.

IBM QRadar review by Poonam K.
Poonam K.
Validated Reviewer
Review Source

"IBM QRadar SIEM"

What do you like best?

1. Detecting anomalies in the network

2. Speed of alert generation and notification

3. Customized rule development

What do you dislike?

1. IBM Customer Service Support

2. Cost of product compared to others in the industry

Recommendations to others considering the product

1. Consider pricing compared to other products in the Gartner Magic Quadrant for SIEM

2. Consider integration with legacy devices

What business problems are you solving with the product? What benefits have you realized?

Security Incident and Event Monitoring. It has significantly automated incident resolution.

IBM QRadar review by Administrator in Financial Services
Administrator in Financial Services
Validated Reviewer
Review Source

"QRadar Review - Rick Jesse"

What do you like best?

Ease of use. The ability to quickly find information. Rules are fairly straight forward to create and/or edit.

What do you dislike?

Auto detecting log sources are sometimes inaccurate, leading to duplicate and sometimes triplicate log sources. DSMs have a lot of issues with parsing for certain log sources, and there is a lack of some common DSMs. Specific reports can be difficult to create, the time series reports specifically give us the most issues.

What business problems are you solving with the product? What benefits have you realized?

We are using QRadar as both a logger and SIEM. Detecting and Alerting of malicious activity has been the biggest benefit.

IBM QRadar review by Juan Carlos Q.
Juan Carlos Q.
Validated Reviewer
Review Source

"Qradar buena soluci贸n monitorizaci贸n."

What do you like best?

Es una herramienta muy util en monitorizaci贸n de sistemas de alerta temprana.

What do you dislike?

En mi opinion da la sensacion de estar muy limitado, no ofrece nada diferente.

Recommendations to others considering the product

Un buen sistema de monitorizaci贸n. Es aceptable.

What business problems are you solving with the product? What benefits have you realized?

Analisis de eventos para generar alertas y reportes.

IBM QRadar review by Consultant
Consultant
Validated Reviewer
Review Source

"Flexible, fast, data-intensive, and evolving at a rapid pace"

What do you like best?

The fact that it natively deals with flows and log sources. The QRadar app exchange is just putting the platform on steroids and expanding its capabilities limitlessly. The correlation and offense engine is very powerful, as is the framework for integrating threat and intel feeds. Tight integration with QVM, Forensics.

What do you dislike?

The dashboards need more visualization options and flexibility.

What business problems are you solving with the product? What benefits have you realized?

Orchestrating security incident response around IBM QRadar, with increased identification rates, faster triage, greater visibility into incidents from network flows and other security context sources.

IBM QRadar review by User in Information Technology and Services
User in Information Technology and Services
Validated Reviewer
Review Source

"Easy to learn for beginners"

What do you like best?

IBM QRadar is a very good tool for the beginners. It has a good UI which allows us to get the information required easily. The tabs provide an easy overview of the events.

What do you dislike?

It doesn't provide all the details required. The raw data isn't enough for detailed analysis!

What business problems are you solving with the product? What benefits have you realized?

We are able to determine which event is getting triggered more often and are able to check what is happening.

IBM QRadar review by Consultant in Retail
Consultant in Retail
Validated Reviewer
Review Source

"Threat analysis at its best"

What do you like best?

It is better than other SIEM out there in the market currently

What do you dislike?

A touch on the costlier side and need to have good back ground in SIEM to use this

Recommendations to others considering the product

The SIEM system in the market currently with lot more potential to grow in the right direction

What business problems are you solving with the product? What benefits have you realized?

Advanced and persistent threat detection

IBM QRadar review by Administrator
Administrator
Validated Reviewer
Review Source

"Good tool"

What do you like best?

It helps find and apply info easily Its one of the best tools been used

What do you dislike?

There is nothing in particular that is disliked about this

What business problems are you solving with the product? What benefits have you realized?

Notable benefits are there it helps in interacting, conveying problem solving

IBM QRadar review by Administrator in Entertainment
Administrator in Entertainment
Validated Reviewer
Review Source

"Glad to be using QRadar"

What do you like best?

The ease of searching through massive amounts of data

What do you dislike?

Not easy to deploy log sources especially wincollect, we have never been able to get auto log source creation to work correctly

What business problems are you solving with the product? What benefits have you realized?

Compliance and security monitoring

IBM QRadar review by Administrator
Administrator
Validated Reviewer
Review Source

"happy with ibm siem tool"

What do you like best?

event querralation. easy to add end points. easy to save events

What do you dislike?

hard to navigate, too many buttons to click

What business problems are you solving with the product? What benefits have you realized?

anamoly detection

IBM QRadar review by User
User
Validated Reviewer
Review Source

"Needs improvement. "

What do you like best?

Results are fast. Supports hybrid environments.

What do you dislike?

No inverted index. I would like to see this feature.

What business problems are you solving with the product? What benefits have you realized?

Suspicious activity.

Learn more about IBM QRadar

IBM QRadar Videos

Kate from G2 Crowd

Learning about IBM QRadar?

I can help.
* We monitor all IBM QRadar reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.
IBM QRadar
4.3
(16)