IBM Security QRadar

RATING:

4.5

(30)

About IBM Security QRadar

Designed for businesses in automotive, consumer goods, banking, healthcare and other industries, IBM Security QRadar is a security information and event management (SIEM) solution that helps track and handle cyber threats across endpoints, networks, cloud environments and more. Key features include artificial intelligence (AI), threat investigation, incident timelines, root cause analysis, threat prioritization, remediation management and third-party integration. Additionally, it also provides customer support through email, phone, chat and more.

IBM Security QRadar Pricing

Get your pricing estimate: https://www.ibm.com/qradar/security-qradar-siem/pricing

Free trial: 

Available

Free version: 

Not Available

IBM Security QRadar track offenses
Slide 1 of 3

IBM Security QRadar Reviews

Overall Rating

4.5

Ratings Breakdown

Secondary Ratings

Ease-of-use

4.5

Customer Support

4.5

Value for money

4.5

Functionality

4.5

Most Helpful Reviews for IBM Security QRadar

1 - 5 of 28 Reviews

User Profile

Idaly

Verified reviewer

Semiconductors, 10,000+ employees

Used daily for more than 2 years

Review Source: Capterra
This review was submitted organically. No incentive was offered

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

5

CUSTOMER SUPPORT

5

FUNCTIONALITY

5

Reviewed February 2023

A feasible solution for the detection of incidents, all our information is safe.

With IBM Security QRadar we reduce the risk of being vulnerable to a cyber attack, since the protection of this software is intuitive and prioritizes threats to be more effective in the security of our IT environment. It is a truly automatic process that guarantees the total protection of our data, has detailed reports and a very powerful response to cyber attacks.

PROS

It is a necessary software for all our business environment, since it guarantees that our information is safe, the dashboard is intuitive and understandable, the analyzes are effective so that threats do not enter and damage our information, I like the prioritization of threats, since neutralizes in order of importance, network forensics is very good, advanced searches are good, protection of our entire IT infrastructure is high, and we really like the trust that IBM Security QRadar places in us.

CONS

It has many features that somewhat limit the understanding of early adopters, it can be overwhelming the first time, but the quality of the results keeps our data safe and threats away.

Machindra

Information Technology and Services, 10,000+ employees

Used daily for more than 2 years

Review Source: Capterra
This review was submitted organically. No incentive was offered

OVERALL RATING:

4

EASE OF USE

5

VALUE FOR MONEY

3

CUSTOMER SUPPORT

4

FUNCTIONALITY

4

Reviewed January 2024

QRadar The Best SIEM Solution

The QRadar is the one of the best Security Information and event management (SIEM) tool. It collects the logs from company IT infrastructure at centralized locations and using correlation rules we can reduce the internal and external threat landscape. It makes special when we integrate different apps with like threat intel and other.

PROS

IBM QRadar has very simple user-friendly interface. The deployment and configuration of solution is very easy. The devices integration we can do easily with available Device Support Module

CONS

The integration get difficult when there is no available parser.

Reason for choosing IBM Security QRadar

The Qraar SIEM having the capabilities as we were looking for. The feature of Qradar loke ease of navigation integration, real time monitoring is simplified.

Reasons for switching to IBM Security QRadar

We were facing multiple integration and threat intelligence issue with exiting SIEM solution. We wanted have SOAR in place and QRadar provide all capabilities.

Kevin

Computer & Network Security, 51-200 employees

Used daily for more than 2 years

Review Source: Capterra
This reviewer was invited by us to submit an honest review and offered a nominal incentive as a thank you.

OVERALL RATING:

3

EASE OF USE

3

VALUE FOR MONEY

2

CUSTOMER SUPPORT

2

FUNCTIONALITY

4

Reviewed September 2020

QRadar Gets It Mostly Done At A Cost

I used QRadar for over 10 years, and have found great success in using it in a reactive sense when other staff bring up security or connectivity issues; the ability to quickly show normalized logs -- along with the raw log output for the skeptical staff out there -- is a real boon to quickly finding the root cause of an issue and moving on. The pricing and licensing schemes of the product have gotten more cumbersome since the purchase of the product by IBM, and their support channels exhibit the kind of mind-numbing bureaucracy you can expect out of such a large organization.

PROS

When aggregating log information, the ability to quickly click and pivot around between data sources and filter results on-the-fly worked very well for any reactive kind of events. The software also did a relatively decent job on identifying data and log sources and classifying them correctly.

CONS

The software can be very involved and cumbersome; expect to dedicate significant staff time towards it in order to keep it operational and to continually tune the software for false positives. For example, at an organization with over 2,000 employees I had to dedicate almost a single employee to perform tasks within QRadar, and nothing else. Along with that, in order to be successful your support staff must be extremely familiar with networking and understanding the reasons why devices send the logs that they do. This is not the case where you can point-and-click a few things and have a system that alerts you properly when attacks are taking place.

Reason for choosing IBM Security QRadar

Ultimately, we were early adopters of the product and continued to utilize our initial licensing investment repeatedly when we upgraded our hardware. It was a known quantity that my staff had good familiarity in, although over the course of 10 years we were still not able to get the product to perform all of the features it said it could. This is partly due to my inability to get additional staff resources, as well as having a network layout that was decentralized and not relatively simple.

Anonymous

10,000+ employees

Used daily for more than 2 years

Review Source: Capterra
This reviewer was invited by us to submit an honest review and offered a nominal incentive as a thank you.

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

5

CUSTOMER SUPPORT

4

FUNCTIONALITY

4

Reviewed August 2023

The Best Classical SIEM solution in the market

It's very convenient in terms of usage and visibility. We are mainly dealing with the Audits and Qradar is the main factor that we've passed the Audits.

PROS

Easy to use. Learning curve is short. It's the same product compared to 10 years ago. It functions as it's expected. Expansion of the solution is easy. Reporting is inside the product and works well. Support is adequate.

CONS

There's no DataBroker or in short Kafka etc for filtering. AI and ML models is missing. Within the digital transformation and cloud migrations, it falls behind for the 3rd party integrations. I need to do the integration from the scratch for Saas or Paas services. Api integrations does not work well compared to similar solutions.

Reason for choosing IBM Security QRadar

Symantec SIM, HP Arcsight, Elastic, Splunk are the other vendors. Symantec is dropping the product SIM.HP Arcsight has a high maintenance cost and lacks in expansion.Elastics is super costly in terms of operation and getting Elastic support is cumbersome.Splunk is a high cost alternative as we have a very big EPS-Storage rates.

Reasons for switching to IBM Security QRadar

We have switched over the Symantec SIEM. It's dropped the product and solution.

Rajesh

Information Technology and Services, 501-1,000 employees

Used daily for less than 12 months

Review Source: Capterra
This reviewer was invited by us to submit an honest review and offered a nominal incentive as a thank you.

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

5

CUSTOMER SUPPORT

5

FUNCTIONALITY

5

Reviewed June 2023

IBM Qradar - an excellent tool for protecting our Digital security fortress

We needed a comprehensive security tool which can provide SIEM, SOAR, Threat intel, threat hunting and UBA and IBM Qradar provides all, hence the overall experience has been superb. Also, the excellent support from OEM makes it a win-win proposition.

PROS

IBM Qradar is the most stable and well known product in the market when it comes to the selection of SIEM tool and hence is an obvious choice for any . Excellent support from IBM OEM and management connect makes things simple to implement and support.

CONS

At this stage, we are liking all features about the product.

Reason for choosing IBM Security QRadar

We needed a comprehensive security tool which can provide SIEM, SOAR, Threat intel, threat hunting and UBA and IBM Qradar provides all. Also, the excellent support from OEM makes it a win-win proposition.

Reasons for switching to IBM Security QRadar

The product is unstable and support is not good