IBM Security QRadar SIEM v7.5.0UP4 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.5.0UP4 (BYOL)Linux/Unix, Red Hat Enterprise Linux 7.9 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
IBM Q-Radar Executive Review
What do you like best about the product?
There are a number of SIEMs on the market today but not all are created equal, QRadar stands the top for ease of use
What do you dislike about the product?
Nothing at the moment, eagerly waiting for further updates
What problems is the product solving and how is that benefiting you?
Mass Assignment with the work and managing organization
- Leave a Comment |
- Mark review as helpful
Agile and flexible
What do you like best about the product?
Correlation and reporting are the best features this tool
What do you dislike about the product?
Automation and customization should be more flexible
What problems is the product solving and how is that benefiting you?
Incident and co-relations are help full in identifying any incident
Cyber Security Analyst
What do you like best about the product?
IBM Qradar db is very extensive and provide real time updates and helps to trigger anomalies and respond accordingly.
What do you dislike about the product?
I don't think there is any downside in IBM Qradar.
What problems is the product solving and how is that benefiting you?
we monitor the traffic by IBM QRadar and analyze the logs and respond to the events/incidents.
Amazing tool for cyber security.
What do you like best about the product?
I like the console and its familar.
Easy to integrated any security device with them.
Easy to integrated any security device with them.
What do you dislike about the product?
Nothing. All are good. It's always no one.
What problems is the product solving and how is that benefiting you?
I did not face any problem.
Qradar Honest review
What do you like best about the product?
Correlation of logs, it gives simply reading for an administrator to see their multiple platform logs into one platform.
What do you dislike about the product?
Many options which confuse administrator, it should be simple for the administrator as lots of option leads to lots of confusion.
What problems is the product solving and how is that benefiting you?
Unauthenticated traffic from Guest subnet going to vulnerable sites and we generally not focusing on unauthenticated traffic, but due to Qradar report our attention goes to guest traffic and we implemented correct security for Guest network also.
The Best Cyber Security Operational Platform
What do you like best about the product?
The most amazing thing i like about QRadar is the simple web based platform. It is very user friendly web tool and provide many options.
What do you dislike about the product?
There are very few thing to dislike about QRadar but still Qradar have to improve their interface and sometime login issues or data load failure issues can be found.
What problems is the product solving and how is that benefiting you?
I work as Cyber Security Analyst and QRadar is our primary tool to work upon. In a day QRadar detect atleast 20 offenses and we have to analyze data of offense in QRadar.
Recommendations to others considering the product:
QRadar is good web based tool for networking or SIEM. It is easy to use and have many features compare to other tools.
Simple,Fast and Powerful.
What do you like best about the product?
Easy to Investigate.QRadar is Fast
Fileds that we can see in search results are customisable.
Grouping of search results based on Event Name,username and other fields is very Helpful.
Qradar can be integrated with so many other tools and Intelligence Platforms like carbonblack,SNOW,Anamoli.This is the best Feature.
Fileds that we can see in search results are customisable.
Grouping of search results based on Event Name,username and other fields is very Helpful.
Qradar can be integrated with so many other tools and Intelligence Platforms like carbonblack,SNOW,Anamoli.This is the best Feature.
What do you dislike about the product?
Licensing.
Licensing is based on the amount of data searched and not based on amount of data indexed.
This restricts user to be doubtful and careful when searching through huge data and with less filters
Licensing is based on the amount of data searched and not based on amount of data indexed.
This restricts user to be doubtful and careful when searching through huge data and with less filters
What problems is the product solving and how is that benefiting you?
I’m a Security operations center Analyst and i use Qradar for security incident Investigations.
Befenit of using Qradar is i can see all the logs in Qradar itself and i have to login into actual log source very less times, because Qradar has almost all the logs and very to navigate thorugh the logs
Befenit of using Qradar is i can see all the logs in Qradar itself and i have to login into actual log source very less times, because Qradar has almost all the logs and very to navigate thorugh the logs
Recommendations to others considering the product:
QRadar is the First SIEM tool i have started my carrer with Qradar and Still using.My learning with Qradar was Very smooth and Easy.Searching for required logs in a huge data is very easy and fast in Qradar when compared to other SIEM tools.Log search is eas
Traffic monitoring with QRadar
What do you like best about the product?
Explicit dashboard and offence management being used in our incident investigations.
What do you dislike about the product?
Was quite slow sometimest but it was probably due to our connection to the client environment.
What problems is the product solving and how is that benefiting you?
Network traffic anomalies and analyzing suspicious IP addresses communication.
Recommendations to others considering the product:
Very efficient and high visibility on incidents and traffic .
IBM has invested a great deal of resources to make QRadar a very versatile SIEM tool
What do you like best about the product?
Intuitive & wider Aspects of SIEM coupled with Ease of use, IBM's Dedication in Improving the tools
What do you dislike about the product?
Integration with Some kind of scripting engine to make scripting easy even for non programmers to solve specific tasks one of the best feature that is desirable & makes IBM the best SIEM in the market
What problems is the product solving and how is that benefiting you?
Other than general SIEM functionalities, Q Radar's Application provide a great deal of insights & integrations. AQL Provisioning is undoubtedly best.
Recommendations to others considering the product:
Power packed & Highly scalable SIEM with Wide range of options in terms of Customization to suite any organizational needs backed up by International Developers & International Support Matrix.
Interesting product
What do you like best about the product?
Useful information for account monitoring and providing nice overviews
What do you dislike about the product?
however, the version I used needs more updates in order to compete with other monitoring solutions. It needs to have more usability for the analysts, simulating command prompt searching
What problems is the product solving and how is that benefiting you?
Monitoring manipulation and usage of sensitive accounts
Recommendations to others considering the product:
Integrate cli searches like splunk
showing 241 - 250