We performed a comparison between Change Auditor for Windows File Servers and IBM Security QRadar based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management."The solution's most valuable aspect is that it can be fully integrated with Microsoft solutions and it doesn't impact the productivity order."
"In terms of features, the querying is great."
"The interface is good."
"It is very stable. We have not faced interruptions in the past four and a half years."
"There are a lot of great out-of-the-box features included."
"The initial setup of QRadar is not complex because we have done it before and we are used to the development. It is getting easier all the time."
"One of the most valuable features of this solution is it has very good data correlation."
"We are using the platform version, which I like."
"It saves a lot of time. We integrate the customer's firewall with all their networking devices."
"The feature that I have found most valuable is its artificial intelligence component, Watson. Its contribution is pretty good from a machine-learning artificial intelligence perspective. This compliments the orchestration automation component, as well."
"The customer service and support could improve their approach to questioning issues. They tend to ask questions one at a time, which creates a lot of back-and-forth communication."
"The pricing could be improved. It needs to be reduced."
"The playbook guide which specifies the rules for security use cases needs to be provided to support in case the organization needs help."
"This solution is on-premise and many customers are moving to the cloud base solution."
"The implementation of the solution's technology needs to be simplified."
"The only challenge with products like IBM is the EPS. You just have to be really on the events per second, as that's where the cost factor becomes a huge issue."
"I'd like them to improve the offense. When QRadar detects something, it creates what it calls offenses. So, it has a rudimentary ticketing system inside of it. This is the same interface that was there when I started using it 12 years ago. It just has not been improved. They do allow integration with IBM Resilient, but IBM Resilient is grotesquely expensive. The most effective integration that IBM offers today is with IBM Resilient, which is an instant response platform. It is a very good platform, but it is very expensive. They really should do something with the offense handling because it is very difficult to scale, and it has limitations. The maximum number of offenses that it can carry is 16K. After 16K, you have to flush your offenses out. So, it is all or nothing. You lose all your offenses up until that point in time, and you don't have any history within the offense list of older events. If you're dealing with multiple customers, this becomes problematic. That's why you need to use another product to do the actual ticketing. If you wanted the ticket existence, you would normally interface with ServiceNow, SolarWinds, or some other product like that."
"The advanced planning management (APM) features should be included."
"The usability of interfaces could be improved."
"The solution is highly used here in Pakistan and in many sectors, they could improve it by having more SIEM connectors."
More Change Auditor for Windows File Servers Pricing and Cost Advice →
Earn 20 points
Change Auditor for Windows File Servers is ranked 55th in Log Management with 2 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. Change Auditor for Windows File Servers is rated 9.0, while IBM Security QRadar is rated 8.0. The top reviewer of Change Auditor for Windows File Servers writes "Provides granular queries of security logs and real-time alerting helps me mitigate risks". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Change Auditor for Windows File Servers is most compared with Quest InTrust, Wazuh and Splunk Enterprise Security, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.