IBM Security QRadar SIEM v7.4.3 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
superior SoC capabilities along with threat hunting
What do you like best about the product?
Integration with third party security solutions for better security posture
What do you dislike about the product?
Parcing of logs from custom Solution with AI and ML capabilities
What problems is the product solving and how is that benefiting you?
Automation, visibility and control
Recommendations to others considering the product:
NA
- Leave a Comment |
- Mark review as helpful
Reliable
What do you like best about the product?
its network devices, host assets and operating systems
What do you dislike about the product?
vulnerabilities and user activities and behaviours
What problems is the product solving and how is that benefiting you?
Cloud solution
IBM QRadar - Designing, Deploying and day 2 day operations.
What do you like best about the product?
IBM QRadar is a pretty decent tool in my view, it is quick and easy to install, has a simple architecture, easy to ingest logs, console/dashboard is simple and comprehensive, has good out-of-the-box integration capabilities.
What do you dislike about the product?
Based on our experience some of the issues we encountored were integration capabilities with custom, less known or homegrown applications. Other area's when compared to next generation SIEM's - inhernt capabilities and advantages of data lake, data management, SOAR platform benefits and reporting and searching capabilities are basic and limited. Cost of ownership is also on higher side which i belive can be simplified, at times it is difficult to get right support from OEM.
What problems is the product solving and how is that benefiting you?
QRadar is our single source to ingest important security audit logs from our estate, helps us do log correlation, perform key analysis on security incident management, address compliance local and international compliance requirements.
IBM Security QRadar
What do you like best about the product?
I like this software it collects user log data from an enterprise, monitors user activity the tool is awesome easy to use on the front end and back end and the design is fantastic.
What do you dislike about the product?
I dislike this software it bad supports, is very complicated, then things get stuck up at times and ultimately it leads to the cancellation of respective searches and it does not offer anything different.
What problems is the product solving and how is that benefiting you?
Exploit vulnerabilities & timely monitor suspicious activities.
Recommendations to others considering the product:
I recommend to others using this software which is fast and easy to use software to exploit and maintain logs.
Excellent Product in line with Business Requirement and Compliance
What do you like best about the product?
The tool is fabulous and works well to manage the changing business requirements. Its a tool that helps you in your day to day risk assessments and scalability.
With other tools like splunk and logrhythm it is all about data and more the data to injest the better it will be. Qradar can be deployed quickly and start working from day one. I would say immediately it is a very easy to setup and work with sort of a tool.
With other tools like splunk and logrhythm it is all about data and more the data to injest the better it will be. Qradar can be deployed quickly and start working from day one. I would say immediately it is a very easy to setup and work with sort of a tool.
What do you dislike about the product?
The major issue is with connectors of legacy applications. It needs to work at par with the competition or excel as it is found wanting the soar platform or what you may call as next generation soc. I also felt it was wanting in the data management domain be with structured or unstructured data. Cost wise as well it is a huge overhead
What problems is the product solving and how is that benefiting you?
It is a no brainer and easy to implement sort of solution so you can achieve immediate compliance with your KPI's. We have found the solution extremely scalable and much easy to work with. If you understand the solution the day to day monitoring and reporting activity can save a lot of man hours. The connectors for known applications are easy to integrate with and hence works wonders. The threat hunting activity is an added bonus.
Recommendations to others considering the product:
This is a good tool if you dont plan to invest in manpower. I would recommend outsource the operations and sit tight. This tool will do your monitoring job at the backend but if you have plans for onsite soc go for something like splunk.
An all in one SIEM Solution! Kudos!
What do you like best about the product?
An excellent SIEM Solution in the market which for network devices, host assets, operating systems, applications, vulnerabilities, and user activities and behaviors monitoring!
What do you dislike about the product?
None as of now. Thank you IBM Security QRadar!
What problems is the product solving and how is that benefiting you?
SIEM Solution for log collection and analysis in order to detect threat and vulnerabilities.
Recommendations to others considering the product:
Go without a doubt thought if you actually want to secure your assets with absolute zero compromise!
Great experience with ibm qradar
What do you like best about the product?
I loved all features it helps in monitoring all offense very efficiently . It helps to magiticate and investigate the offense very efficiently
What do you dislike about the product?
Its searches are very difficult to build sometimes it takes alot of time
What problems is the product solving and how is that benefiting you?
Monitoring got easy and investigation got very much and need to more simply things
User friendly, easy to filter and extraction of data,
What do you like best about the product?
Use case management, customized dashboards, AQL filters , user account management and ease of integrations with available documentation.
What do you dislike about the product?
Sometimes performance degradation issues occur in older versions.
What problems is the product solving and how is that benefiting you?
Threat Hunting
Logs storage
Automation of playbooks by integrating it with SOAR platforms.
Logs storage
Automation of playbooks by integrating it with SOAR platforms.
Best Security Monitoring tool
What do you like best about the product?
It has easy to use interface as compared to tools like Splunk, easy to write correlation rules which helps in giving insights across environments and help in detecting threats and act on it immediately.
IBM threat feed support is great and also you get benifit of adding open source threat feeds like STIIX AND TAXII.
Solution supports almost all of the data sources and great support for custom devices
IBM threat feed support is great and also you get benifit of adding open source threat feeds like STIIX AND TAXII.
Solution supports almost all of the data sources and great support for custom devices
What do you dislike about the product?
sometimes it gets difficult to parse unknown data. It takes times. Asset management is also a pain.
What problems is the product solving and how is that benefiting you?
We have been using ibm qradar for compliance issues in multiple bank projects. it's affordable.
D.Director of Application Operations Center
What do you like best about the product?
Dashboard of QRadar very helpful for end-user to using
What do you dislike about the product?
Log Collector some time can not integration with all device
What problems is the product solving and how is that benefiting you?
IBM need to review the log connector and enhancement
Recommendations to others considering the product:
Enhance core system to run the application as lightweight, faster and smooth
showing 151 - 160