IBM Security QRadar SIEM v7.4.3 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Excellent SIEM
What do you like best about the product?
It is a very complete tool that includes the Zero Trust cybersecurity model, in addition to being incorporated with many products on the market as well as its easy handling and the components that can be incorporated. This tool has a high level of analysis of the offenses with the use of X-Force and Watson, also the generation of the graphical relationships of these offenses are very structured and allows a greater vision of each event.
What do you dislike about the product?
Nothing so far the tool is excellent and meets all requirements, but It could improve its graphical interface by adapting to new technologies so that it has a more user-friendly design, as well as improve the reporting that allows more customization in them, as well as the more dynamic dashboard.
What problems is the product solving and how is that benefiting you?
With the implementation of the solution, the adjustment of security policies has been drastically improved, as well as the monitoring and discarding of false positives in a faster and more efficient way. It has also helped us to monitor users and measure their level of risk, as well as vulnerability scans scheduled on specific dates to systems and network equipment to initiate mitigation plans for these vulnerabilities and to be able to correct them according to their level of criticality.
Recommendations to others considering the product:
It is an excellent tool that has many elements that complement the management of security events. I recommend it for all types of organizations since it helps a lot with the management and monitoring of the entire infrastructure to prevent security incidents and maintain an adequate level of risk and have a broader vision of the network infrastructure and services.
- Leave a Comment |
- Mark review as helpful
IBM QRadar great SIEM
What do you like best about the product?
Easy integration of log sources. Very good reports.
What do you dislike about the product?
The price can be more competitive—nothing else.
What problems is the product solving and how is that benefiting you?
Collect and analyze security events.
Recommendations to others considering the product:
We reccomend IBM Qradar. A solid and stable SIEM and vulnerability manager.
Test
What do you like best about the product?
Everything. Downtime is minimized and bugs are fixed almost instantly. Other than poor support for free users, I would recommend this to my colleagues.
What do you dislike about the product?
nothing was used to be disliked while using it
What problems is the product solving and how is that benefiting you?
All problems
Best SIEM on the market
What do you like best about the product?
There's a lot of SIEMs on the market, but only one Security Intelligence and Event monitoring system ... using the intelligence cycle in your investigations sure helps.
What do you dislike about the product?
The older pricing models with EPS and FPM can be complicated, but the more recent CloudPak licensing model alleviates this.
What problems is the product solving and how is that benefiting you?
QRADAR helps our customers to consolidate their security relevant event and flow information for concise, top down security investigations.
That is a great product I have experience
What do you like best about the product?
I like qRadar console and QRadar Qflow collector
What do you dislike about the product?
There have nothing to dislike about this product
What problems is the product solving and how is that benefiting you?
That’s help me to view real time network information and help me to response accordingly
Recommendations to others considering the product:
Yes
King of the SIEM
What do you like best about the product?
IBM Qradar is the most effective tool in Security Information and Event Management erea.
What do you dislike about the product?
If you want to increase your disk area or EPS it might be boring for you.(You need to discuss about Cost and Operating system management.)
What problems is the product solving and how is that benefiting you?
We use with our SOC team this tool .We are managing our all network,server and security tools include user logs .
IBM Security QRadar provides high security level and one of things and must have .
What do you like best about the product?
With IBM you can guarantee high security level and you can feel save from any hack and also the software is very easy to use .
What do you dislike about the product?
really there is nothing to dislike because IBM always provide excellent software service and solutions.
What problems is the product solving and how is that benefiting you?
IBM QRadar can provide you with high security level, with IBM Sure you are in the save side.
Recommendations to others considering the product:
highly recommended because of the high performance.
IBM is one of the leading companies in technology and had a great experience using their security
What do you like best about the product?
Easy to use and it is user friendly and i hope to see it use more
What do you dislike about the product?
Nothing was bad to the point where it will effect the experience
What problems is the product solving and how is that benefiting you?
Time management
Best SIEM for managed security operations
What do you like best about the product?
MultiTenancy, Multi component Deployment models(AIO, Distributed), Tech Support, Frequent Version Management, Diverse Log source support and integration availability, RestAPI, Indepth design, customized config
What do you dislike about the product?
No Threat intel auto ingestion from multiple sources, defects in Multi tenancy support in applications, No alert segregation into attack life cycle, Hardware requirement
What problems is the product solving and how is that benefiting you?
Multi tenancy, Centralized console, Collection capability at each component, Diverse platform Support, API for SOAR utlization
Qradar SIEM for SOC operations
What do you like best about the product?
The most powerful tab of Qradar is to make custom rules where you can configure alerts for SOC analyst to identify threats or any policy violations within your environment.
What do you dislike about the product?
It's logs parsing engine must be some maturity to parse raw events received from different log sources. Most of the time you need to manually write regex to extract the desired data.
What problems is the product solving and how is that benefiting you?
With single console you can manage and track the whole activity of your organisation. We can track administrators activity, policy violations, communication with external IPs etc. In simple words it provides insight view of your organisation to identify the loop hole in your organisation.
Recommendations to others considering the product:
Ease to use, implement and tune. If you are looking for complex jobs with ease solution then siem will be helpful for you to achieve your target.
showing 181 - 190