Sign in
Categories
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

IBM Security QRadar SIEM v7.4.3 (BYOL)

IBM Security | IBM Security QRadar SIEM v7.4.3 (BYOL)

Linux/Unix, Red Hat Enterprise Linux RHEL-7.7 - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

342 reviews
from G2

External reviews are not included in the AWS star rating for the product.


    Financial Services

Q radar SIEM solution

  • April 10, 2020
  • Review provided by G2

What do you like best about the product?
Probably one of the best Siem solutions in market.
Device integration is quite easy and alert monitoring filters option are remarkably good.
Most trending n very good user interface makes it best in business.
What do you dislike about the product?
More self intelligence and default set rules should be added.
What problems is the product solving and how is that benefiting you?
Monitoring of my all security & network devices log in go quite comfortably.


    Shilpa S.

Security Assurance

  • April 10, 2020
  • Review provided by G2

What do you like best about the product?
Perfect for collecting events from different log sources.
Applications can be Customized
What do you dislike about the product?
Reporting in Qradar is quite complicated
What problems is the product solving and how is that benefiting you?
It is the best tool for creating out of the box alerts, with excellent vendor support and complex search queries.
Recommendations to others considering the product:
Correlation, Integration and real time monitoring.


    Telecommunications

Privileged Cyber Security Visibility

  • April 09, 2020
  • Review verified by G2

What do you like best about the product?
The learning curve is very fast
Layer-7 Inspection
Full visibility for your cyberspace
What do you dislike about the product?
QRadar is eager to resources
Licencing model
Risk manager not comprehensive
Very expensive
What problems is the product solving and how is that benefiting you?
Threat hunting
Visibility on the IT infrastructure
Recommendations to others considering the product:
I advise you to go ahead but be careful, QRadar is eager to resources.
Buy the QFlow license.


    Management Consulting

proactive approach to resolve threat

  • April 09, 2020
  • Review provided by G2

What do you like best about the product?
QRadar provides customizable dashboards, compliance templates, and data archiving
What do you dislike about the product?
he only downside is the alerting capabilities to know if a new update or patch has been
What problems is the product solving and how is that benefiting you?
IBM QRadar is a tightly integrated solution, that allows you to protect your environment


    E-Learning

One of the best SIEM

  • April 08, 2020
  • Review provided by G2

What do you like best about the product?
Easy to create content rules and correlating. It is easy to integrate with tools
What do you dislike about the product?
everyone must get a training before implementing this
What problems is the product solving and how is that benefiting you?
Integrating with other apps easily


    Nikhil J.

IBM Qradar: A Powerful and Intelligent SIEM solution

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
Performance- The processing capability of Qradar is excellent. Qradar can filter you data through millions of logs in just few seconds.
Threat Hunting: If you are bored with normal alerts and want to explore the possibility of attacks which your default correlation can't detect, you can use deep drive to the raw logs and can get into the details of information.
Filters: Qradar comes with excellent filter module which can be used to get the specific result.
Netflow:
What do you dislike about the product?
Reports: If you want to design the custom report for you customer or management. It's gonna be difficult for you because Qradar has very limited features.
Visuals: The defaults graphs and other visuals should be more specific and meaningful.
What problems is the product solving and how is that benefiting you?
Qradar was helping with In depth analysis of alerts, raw log, identify the suspicious traffic, create custom use cases.
Recommendations to others considering the product:
If you dealing with medium of large size organization and asset, I would recommend you to use Qradar. For small organization it's going to be difficult in terms of commercials.


    Abhishek V.

It's very good I love this tool

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
Vanurability logs siem clod platform also
What do you dislike about the product?
Just only the heavy setup nothing else .
What problems is the product solving and how is that benefiting you?
Logs siem odc information security


    Kamaltej K.

About the Qradar Productivity and features.

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
The benefits are flexible and scalable architecture, efficient reporting, The data consolidation and search capabilities, Integrate with solutions like IBM BigFix, MaaS360.
What do you dislike about the product?
Need to more focus on false positive cases, for that develop with more features and detection capabilities.
What problems is the product solving and how is that benefiting you?
So flexible, scalability architecture, Efficine reporting worked with other tools but for QRadar will having many solutions,l. if you comparing with other tools will get actually scenario of QRadar tool.
Recommendations to others considering the product:
Need to focus on false positive cases.


    Mazhar U.

Best SIEM product found so far.

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
Its enablement and customizations. And the idea of extensions make it more valuable.
What do you dislike about the product?
There are less search customisations in offenses tab.
What problems is the product solving and how is that benefiting you?
It pretty much covers everything due to its versatility.


    Telecommunications

I have a 4 years with Perform tuning of the Qradar SIEM , and integration with various systems

  • April 07, 2020
  • Review provided by G2

What do you like best about the product?
1. Easy to integration for most devices
2. UBA App and other APP
3. Offences tab easy to tracking logs and events, log activity tab
4.Easy to learn
5.Network hierarchy
What do you dislike about the product?
If they have integrated some applications with QRadar and need support for this application, you will not find full support, as the application works as a third party,
For example, if you have a site error on QRadar and have opened a ticket with the support they reported, you should open a ticket with MaxMind, because the Maxmind database is a third-party tool. IBM doesn't own it, QRadar just uses it There is nothing IBM can do about it.
Or if you encounter any problem with the CISCO FMC app, you should open a ticket with CISCO and I think they should have full support for any merger with any vendor and they have the ability to deal with the third-party linked in the Qardar system in order not to lose the advantage of this added application

I hate filter search as there no option to edit your search, you must delete the filter search and new filter.

Offenses Dashboard has sometimes error on details you need to move deeply analysis to check the MAC address as an example.
What problems is the product solving and how is that benefiting you?
You can customize rules, use cases
Real-time analysis
Recommendations to others considering the product:
I think QRadar is the best choice for you, but keep adding logs and tune it always