IBM Security QRadar SIEM v7.5.0UP4 (BYOL)
IBM Security | IBM Security QRadar SIEM v7.5.0UP4 (BYOL)Linux/Unix, Red Hat Enterprise Linux 7.9 - 64-bit Amazon Machine Image (AMI)
Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Very effective and user friendly product for financial institution
What do you like best about the product?
Log Monitoring, Analysing and investigation
What do you dislike about the product?
Nothing, everything is user friendly and easy to understand
What problems is the product solving and how is that benefiting you?
Analysis and Investigation and resolution of the issues raised by clients
- Leave a Comment |
- Mark review as helpful
Because it is a very easy approach.
What do you like best about the product?
The way the dashboard is arranged. Which inturn makes the user comfortable.
What do you dislike about the product?
Sometimes the troubleshooting part feels a bit difficult.
What problems is the product solving and how is that benefiting you?
We basically solve investigation part.
Recommendations to others considering the product:
Qradar is the best SIEM tool for companies who wants to start their journey in CyberSecurity Domain.
IBM Qradar is a good tool for log analysis , it is fast and user friendly.
What do you like best about the product?
In IBM Qradar almost all customization can be done from GUI only, We can create custom parser/user cases/co relation rule from gui which is very friendly.
What do you dislike about the product?
IBM Qradar crashes because of heavy search which I will keep as a negative point as other SIEM tool are competing in this area.
What problems is the product solving and how is that benefiting you?
I solved problems like getting analytics/report about top malicious domain visit. co relation between multiple device logs for better cyber protection. Created custom parser easily in GUI for important raw logs.
IBM QRadar review of product.
What do you like best about the product?
QRadar deployment and log integration are easy. it can consolidate data from anywhere. Monitor traffic & analyze user behavior. capability it detect threats & vulnerabilities.
What do you dislike about the product?
IBM Qradar licensing model are complicated compare to other SIEM
What problems is the product solving and how is that benefiting you?
IT provide solving the minimize the risk of cyber Security breach
Recommendations to others considering the product:
Licensing need to make more easy.
The user interface is very good when compared to others and
What do you like best about the product?
The dashboards are the best as we can have full control on what we want and what not
What do you dislike about the product?
Once we gets comfortable with all the features it's hard to do the work manually
What problems is the product solving and how is that benefiting you?
Full network and interface monitaring
Threat and incident alerts
Escalations and remainders
24/7 monitoring on overall security
Latest patches and continuous support forum
Threat and incident alerts
Escalations and remainders
24/7 monitoring on overall security
Latest patches and continuous support forum
Recommendations to others considering the product:
It's overall a great security management tool and the security learning academy has all the course content for free to learn as well as great support forums online
wonderful experience efficient and scale-able SIEM solution but its bi costly
What do you like best about the product?
IBM Qradar UBA module its very helpful to detect the unknown attacks
What do you dislike about the product?
should be more user friendly and cost should be less so that small org can able to use it
What problems is the product solving and how is that benefiting you?
Log aggregation, Alert generation complete security posture of our organization
Recommendations to others considering the product:
N/A
Feedback on QRadar
What do you like best about the product?
It gives us accurate results and save us spending time in False positives
What do you dislike about the product?
Unable to analyse the past logs in the Histories
What problems is the product solving and how is that benefiting you?
Man Power
Recommendations to others considering the product:
Need more knowledge Based Articles.
Easy, fast, simple, stable, and the best
What do you like best about the product?
Provides real-time visibility, Produces detailed data access and user activity reports
What do you dislike about the product?
For now I don't have some thing that I don't like
What problems is the product solving and how is that benefiting you?
Real-time visibility, security analyst investigations
QRadar is a more aesthetic and intuitive siem, it can be very effective if it is set up correctly.
What do you like best about the product?
API can be configured to pull logs from almost anything
What do you dislike about the product?
There is little assistance in the initial configuration of the siem. A more tailored approach or dedicated team would reduce the internal overhead for clients.
What problems is the product solving and how is that benefiting you?
All of the data you need is available in one place.
Recommendations to others considering the product:
QRadar is a good solution for larger organizations.
User Friendly Interface of Qradar
What do you like best about the product?
Qradar providing the ease of use for analyst and administrator as well. User friendly interface helps to easilu configure new use cases as well search for events is easy as compared to other SIEM. Qradar also offer Jflow and Qflow to analyze the traffic flows.
What do you dislike about the product?
Customizing features having some limits.
What problems is the product solving and how is that benefiting you?
Its a SIEM, to analyze and investigate suspicious traffic.
showing 271 - 280