IBM Security QRadar SIEM v7.4.3 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Siem Qradar and I have ever best experience with with Qradar as compared to other SIEM.
What do you like best about the product?
Ioc based hunting and fetching massive accurate logs form various devices. User interface was simple and easy to understand for new comers. Reporting made more easy from Qradr.
What do you dislike about the product?
As per current era IBM should have to update its products because from starting onwards they have not highlighted any new functionality. Some forensics features they have removed.
What problems is the product solving and how is that benefiting you?
Working on Alerts which triggers on daily basis. Maintain all log sources data on priority. Easy to create daily, monthly dashboard from Qradr. Reduces some level of time to do IOC based hunting.
Recommendations to others considering the product:
Strong
- Leave a Comment |
- Mark review as helpful
IBM Security QRadar is a very good SIEM solution
What do you like best about the product?
First, it has enough functions of a standard, modern SIEM. Second, its interface is rather intuitive for use. Third, IBM offers free learning from its academy if you want to have deep knowledge of its solution. Last but not least, its support team offer great service.
What do you dislike about the product?
Its User Behavior Analytics and automated investigation (offenses) look great, but in reality it is difficult to correspond the findings to the real context.
What problems is the product solving and how is that benefiting you?
To comply with the regulations and to have a good solution for incident response.
Recommendations to others considering the product:
You should buy it.
Qradar security Review
What do you like best about the product?
Use cases building and logs parsing was easy. You can manage all the use cases from an app.
What do you dislike about the product?
UI throws unexpected errors and logs search takes a lot of time.
What problems is the product solving and how is that benefiting you?
Single pane for all the logs coming from cloud,infra and network.
Recommendations to others considering the product:
Make sure you check the available integration and make sure it meets your requirements.
Efficient and overall good experience
What do you like best about the product?
I like the way we can integrate many systems, and keep the flow and correlation between them, able to create rules in a convienet way.
What do you dislike about the product?
Slow response times, usually the requested is not being solved, and gets delayed until we reach a conclusion together with IBM team. also takes time for them to understand who should be able to work on the request, even tho details are written.
What problems is the product solving and how is that benefiting you?
To be honest, my enterprise uses it and its the second SIEM i've used, first was ArcSight. I can say its much more convienet to the eye.
Working with QRadar
What do you like best about the product?
Threat detection system for providing a complete protection
What do you dislike about the product?
Everything is working perfectly but little bit improvement required to filter threats
What problems is the product solving and how is that benefiting you?
Network security issues which means threats detection
IBM Security Qradar Genuine Review
What do you like best about the product?
Easy to use with all GUI pre design tool
What do you dislike about the product?
I didn't find deep scanner that is very very important for vulnerability assessment. You need to focus deep scanner and more AI features specially cloud security
What problems is the product solving and how is that benefiting you?
I found multiple security tools in one platform that is very impressive and for VA and SoC Analyst. Analyst can easily to use this tool, nothing too much complex.
Recommendations to others considering the product:
Those who wants to use a best security tools, I think this tools I'll recomend to use. Your work load will reduce and you can do other security works.
User Friendly and easy to setup
What do you like best about the product?
GUI and the ability to drill down deep in logs for investigation, Qradar apps which provide enhanced functions and widely supported integrations to a lot of third party products.
What do you dislike about the product?
The GUI works great but it looks outdated. Most modern SIEMs nowadays have better-looking interfaces which attract analysts who have to look at it most of the time.
What problems is the product solving and how is that benefiting you?
Offence investigation, SOC monitoring, Incident Management, Third Party integrations, SOC reporting. Qradar has a wide range of features which can be utilized in the form of different Apps.
Qradar for SOC
What do you like best about the product?
simple to use and understand and requires limited knowledge on working of SIEM
What do you dislike about the product?
Time to pull logs is slow compared to others
What problems is the product solving and how is that benefiting you?
SOC monitoring for small to medium organizations and benefits include low cost and minimum SIEM knowledge for starters
Recommendations to others considering the product:
Good for small to medium scale enterprises with servers/data points (log sources) less than 100
Leader for a reason
What do you like best about the product?
Fast log search, onboarding protocols, content creation ease and flexibility.
What do you dislike about the product?
Not so user-friendly User Interface for log search.
What problems is the product solving and how is that benefiting you?
Need flexible autoscaling model.
Best in analysis but bad support
What do you like best about the product?
Good for analysis. Group by function is really good.
UEBA feature is really good.
UEBA feature is really good.
What do you dislike about the product?
UEBA machine learning function not working since years and support not bale to solve issues. Use creation not so easy. Option should be provided to add new condition. Regex feature should be added in reference set.
What problems is the product solving and how is that benefiting you?
Analysis is very easy compared to other siem tools. Historical correlation feature not seen with other siems. Resilient not so good when it comes to work with qradar.
showing 111 - 120