IBM Security QRadar SIEM v7.4.3 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Investigation made easy
What do you like best about the product?
Logging and Parsing of data with easy search capabilities.
What do you dislike about the product?
Creating use case with AQL is difficult to learn.
What problems is the product solving and how is that benefiting you?
SOC Services.
Recommendations to others considering the product:
Use UEBA that is very helpful.
- Leave a Comment |
- Mark review as helpful
Qradar SIEM
What do you like best about the product?
The solution is flexible and easy to use.
What do you dislike about the product?
It doesn't have the built in SOAR capability.
What problems is the product solving and how is that benefiting you?
DR architecture
QRadar SIEM
What do you like best about the product?
Qradar SIEM is a powerful security Analytics tool. It leverage all the industry standard.
What do you dislike about the product?
QRadar SIEM facing issue while integrating third party threat tool
What problems is the product solving and how is that benefiting you?
QRadar SIEM helps in bringing internal data together for generating alerts. These are used for detecting any kind of suspicious internal activities of a company but without proper content, people remain unaware of all of these alerts.
Cybersecurity professional
What do you like best about the product?
User friendly console and easily to understand. Excellent customer support.
What do you dislike about the product?
QRadar has nothing to dislike . But consumes a lot of memory, usage turns out to be laggy a few times.
What problems is the product solving and how is that benefiting you?
Correlation of event, wide ranges addon app, easy to analyze the event.
QRadar is a complete package for various Network and Security devices' logs monitoring and analysis.
What do you like best about the product?
Its a niche technology which is available for on premise as well as cloud solution and it helps in getting all the security logs from any type of device (Network, Security, Enduser devices) irrespective of vendor. Also, there is availability to form custom parser. One must create the cross device correlation rules to enhance security of environment.
What do you dislike about the product?
Nothing as such. Even its a great tool in the market to go for and is among the leaders as per the Gartner quadrant.
What problems is the product solving and how is that benefiting you?
Creation of custom parser for devices of different vendor and parse the logs properly. Along with that the cloud solution is good to go for any kind of scalabily issue and also allow to increase the EPS in one go.
Recommendations to others considering the product:
As the security breaches and attacks are prevalent, in order to enhance the security posture organisations can go for complete solution with all modules of IBM QRadar.
Qradar
What do you like best about the product?
Robust design. Great tool for Logging...
What do you dislike about the product?
Cost since needed to buy per sensors....
What problems is the product solving and how is that benefiting you?
Centralized logging
Recommendations to others considering the product:
Lower the cost of the product
Top security analytics platform
What do you like best about the product?
Log source integration.
Easy custom rule creation and integration
Cloud comnector
In-depth reporting
Easy custom rule creation and integration
Cloud comnector
In-depth reporting
What do you dislike about the product?
It is quite bulky. Many different components and licensing required.
What problems is the product solving and how is that benefiting you?
It provides the visibility and security posture of all our assets. Can integrate logs from on prem, cloul enviornment. Which gives complete visibility and threat response.
It’s very good tool for monitoring the alerts
What do you like best about the product?
Dashboard is very good and offense writing is easy compare to other SIEM products
What do you dislike about the product?
Nothing much but UI can be modifies a little bit
What problems is the product solving and how is that benefiting you?
Regular issues like threats and log details
QRadar SIEM TOOL
What do you like best about the product?
Detection of false & posstive alert is very efficient
What do you dislike about the product?
Device automatically un synced from Qradar server, even there is no network issue
What problems is the product solving and how is that benefiting you?
Real time botnet, malware infection & other malicious acitivity detection
Recommendations to others considering the product:
The tool is effective and various featured,
The solution is great and powerful in analyzing logs
What do you like best about the product?
analyzing the logs and data correlation.
What do you dislike about the product?
limitaion i dislike the limitaion of the sources and log sources.
What problems is the product solving and how is that benefiting you?
What problem i faced : Acutualy finding the offences fastly.
showing 171 - 180