We performed a comparison between IBM Security QRadar and Sophos MDR based on real PeerSpot user reviews.
Find out in this report how the two Managed Detection and Response (MDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The customization has been the most valuable aspect and was really the reason we ended up selecting Binary Defense. They worked with us to provide exactly the level of support, features, response, and collaboration we needed."
"The case interface is Binary Defense MDR's most valuable feature."
"The speed at which their services are reactive is valuable. Nowadays, when a threat hits an endpoint, you've got minutes, not hours or days. Their average response time is about four minutes on an alert. For anything that needs to be sent to us, it's about fourteen minutes, which is pretty good. They're the third SOC that I've used in fifteen years. By far, they are the quickest ones to act. When you're looking at prevention, that's a key factor."
"The best part about Binary Defense MDR is that it runs on everything, and they keep an eye on things 24/7."
"Binary Defense's most valuable feature is the 24/7 monitoring and threat hunting. Their team checks the latest breaches and how they're done."
"The most valuable features are the SIEM and the ticketing function; the latter is very smooth and easy to read and understand. We don't have any issues looking at the ticketing information when we're trying to identify what's going on."
"Binary Defense has a human service department that provides live monitoring for our systems."
"The most valuable part of Binary Defense is its team of cybersecurity analysts. Their analysts filter out the noise and only forward the critical threats that require a response instead of false positives."
"It is really helpful to us from the compliance point of view."
"The event collector, flow collector, PCAP and SOAR are valuable."
"On the back-end, Watson helps me figure out an exact problem, sometimes giving me the result."
"The flexibility is good in terms of pulling log files."
"It has a powerful GUI where you can put together your use cases, and don't have to write your own scripts."
"It does good correlation for events. It does good general analysis, and it has good apps as well."
"It's user-friendly when compared to other products."
"It has improved comprehensive visibility for what is going on in the perimeters, and on the inside, as well."
"It is a stable solution...It is a scalable solution."
"The product’s most valuable features are integration and endpoint protection."
"The most valuable aspect of this solution is the ability to interact with the firewall and workstations seamlessly to shut down the threats. Additionally, you are able to control the workstations remotely."
"Sophos MDR has improved the threat detection process by identifying and addressing the issues before they become severe."
"Sophos MTR will stop the threat as it is happening. Intercept X, which is a part of it, has the ability to roll back, so the attack is undone. And then the advanced edition of MTR lets me handle the threat by talking on the phone. I don't have to deal with it. I don't have to just go through emails back and forth. We don't have to pay extra for Rapid Response services. If something is happening, they're right on top of it."
"There is a feature called XDR Central. With this, Sophos can connect to third-party security solutions."
"The most valuable feature is the ability to integrate multiple functions into a single dashboard regardless of the vendors being integrated."
"The user doesn't need a technician; it offers 24/7 support to identify and manage your infrastructure and take complete care of any technological incidents."
"It's hard to think of anything that they need to improve on, but just to point out something, I would like to see them provide advanced XDR."
"Binary Defense MDR could be even better with additional features, like automatic scans and file quarantine."
"We should be able to isolate devices faster. They should shorten the time between clicking on a device to contain it and carrying out the action. That would be a welcome improvement."
"I would like to get more reports from Binary Defense about what they're blocking."
"We found that an earlier version of the agent had high memory usage and that was a bit concerning, but we raised the concern with their support team and they immediately replied that they had noticed the same thing and had a candidate fix already available... it totally fixed the issue."
"We found a couple of bugs in the user interface."
"The current reporting system could benefit from improvement."
"If I were shopping for an MDR solution today, I would not only look for a company that has the ability to alert, detect, and remediate, but also the ability to integrate vulnerability management. That's a big thing that they're lacking today."
"The user interface is a bit clunky, a bit hard to find what you need."
"The reporting system could use some upgrading."
"IMB should reduce the pricing, or reduce some of the features for a more economical solution for the customer."
"It would be better if it were more stable and more secure. The price for maintenance could be better. It's too high. In the next release, I think they should focus on the price and the operation."
"QVM is another instance where they need to revise the vulnerability scoring and the proper remediation details."
"Their technical support is not good. We opened a lot of cases and from my experience, they are not complicated issues but it takes forever to get an answer."
"The modularity could be improved."
"Dashboards and reports could provide better visualization of SIEM activity."
"Sophos MDR's support and basic training of their devices could be improved."
"The solution is expensive for customers."
"Endpoint protection is very slow."
"One of the limitations that we have found is with communications and the languages in different countries."
"Threat intelligence is an area for improvement for MDR."
"It could be more secure."
"The product's pricing could be less expensive."
"Once in a great while, an update fails."
IBM Security QRadar is ranked 10th in Managed Detection and Response (MDR) with 198 reviews while Sophos MDR is ranked 5th in Managed Detection and Response (MDR) with 20 reviews. IBM Security QRadar is rated 8.0, while Sophos MDR is rated 8.4. The top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". On the other hand, the top reviewer of Sophos MDR writes "Proactive protection, scalability, and cloud-based efficiency". IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security, whereas Sophos MDR is most compared with CrowdStrike Falcon Complete, SentinelOne Vigilance, Arctic Wolf Managed Detection and Response, Trend Micro Managed XDR and Bitdefender MDR. See our IBM Security QRadar vs. Sophos MDR report.
See our list of best Managed Detection and Response (MDR) vendors.
We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
