We performed a comparison between AlienVault OSSIM and IBM Security QRadar based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."AlienVault OSSIM is an enterprise solution that sells easily. It is rated highly by organizations."
"Inbuilt IDS, inbuilt integration with threat intelligence platform and with vulnerability assessment modules."
"The initial setup was straightforward. I didn't have any problems."
"The threat alerts it gives me from time to time on harmful code within the network, or if they are generating any network traffic, are very useful."
"The dashboard is the solution's most valuable aspect. It brings everything into one central point where I can actually look at it and go, "Okay, I understand what's going on.""
"OSSIM is the only solution that includes the large number of modules that we need: a vulnerability scanner, a network IDS system, a host IDS system."
"There are a lot of people you will find using OSSIM since they are also offering OTX as a service"
"The most valuable feature is the logging capability."
"QRadar UBA's most valuable feature is the risk rating of users depending on their behavior."
"Customer service is very good and very helpful."
"I have found visibility very helpful for analytics."
"In addition to using this solution for our security operations center, we are using it for our other customers."
"The product can scale."
"An engineer can live-monitor all the flow happening in real-time. This would help us a lot while investigating a case, and it would even help us with preventive actions."
"IBM has everything you need in a cybersecurity solution. If you want to build a cybersecurity operation center version then I think QRadar is a perfect solution."
"It has a good integration with the artificial intelligence engine of Watson."
"AlienVault OSSIM’s configuration and integration could be a little easier."
"There needs to be more support or some kind of training program so users can self-learn the system more effectively."
"The solution is not scalable."
"The price of this solution is very high and it could be cheaper."
"It's so hard to configure and explore something new on it."
"AlienVault OSSIM is costly."
"GUI could be improved."
"AlienVault OSSIM should improve the deployment and make it unified like the USM."
"The AI engine could be smarter."
"I would like to see some artificial intelligence and alternative solutions."
"The features that could be improved include the licensing model and the dashboards and all those presentations. Overall, the user experience part can be improved."
"I would like to see a better GUI."
"IMB should reduce the pricing, or reduce some of the features for a more economical solution for the customer."
"It doesn't have a SOAR system by default. You need to purchase it additionally, which is the main problem with QRadar."
"The solution lacks vendor support."
"The solution should include remote action capabilities."
AlienVault OSSIM is ranked 11th in Security Information and Event Management (SIEM) with 28 reviews while IBM Security QRadar is ranked 4th in Security Information and Event Management (SIEM) with 198 reviews. AlienVault OSSIM is rated 7.4, while IBM Security QRadar is rated 8.0. The top reviewer of AlienVault OSSIM writes "An easy-to-scale open-source solution used for monitoring events on devices ". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". AlienVault OSSIM is most compared with Wazuh, Elastic Security, USM Anywhere, Splunk Enterprise Security and Microsoft Defender XDR, whereas IBM Security QRadar is most compared with Splunk Enterprise Security, Microsoft Sentinel, Wazuh, LogRhythm SIEM and Elastic Security. See our AlienVault OSSIM vs. IBM Security QRadar report.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.