We performed a comparison between ArcSight Logger and IBM Security QRadar based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We check a lot of logs in ArcSight Logger because we're running a massive database platform."
"Some of the most valuable features I really appreciate are the performance, how quick the solution is, and how easy it is to create a query."
"The technical support team is good...It is a scalable solution."
"The ability to customize the solution in great detail is its most valuable features. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is quite impressive."
"The most valuable feature is the search capability, which is simple to use."
"The solution provides information about the risk factors."
"ArcSight provides the basic information that we want."
"It's an efficient solution."
"Customer service is very good and very helpful."
"The timeline and machine learning features are great."
"The threat protection network is the most valuable feature, because when you get an offense, you can actually trace it back to where it originated from, how it originated, and why."
"It has a logical, user-friendly GUI."
"What's most valuable in IBM QRadar User Behavior Analytics is its higher availability than other tools."
"IBM QRadar is great help from its security event monitoring to data center and NOC troubleshooting of issues hard for other departments to spot."
"I have found IBM QRadar to be scalable."
"I think the QDI is very good."
"You have limited reporting capabilities and I wouldn't choose ArcSight Logger for this purpose."
"We find that the search and access functionality is quite slow."
"The solution must provide readymade connectors for different applications."
"We have had problems with archiving."
"In the next release, I want to see more intelligence."
"The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved."
"The next release should have AI capabilities."
"It is really difficult to work in ArcSight Logger, as it is very slow."
"I have also been working with other SIEM solutions, and I have observed that they have extensive Linux-based and Unix-based integrations. They have been able to support some of the Linux-based agents, which is useful to investigate and process the information on the Linux and Unix side."
"IBM technical support is always terrible."
"We sometimes get an error about the hard drive. Approximately once in two months, we can't find the logs, and they go missing, which is a terrible issue. We are getting support for this issue from our support company."
"The only challenge with products like IBM is the EPS. You just have to be really on the events per second, as that's where the cost factor becomes a huge issue."
"IBM Security QRadar lacks automated response. With this feature, there's no need to visit VirusTotal or other sites for IP reputation. There should be a small plug-in where users can click to retrieve details about the reputation and organization of public IP."
"The implementation and configuration are not easy."
"Technical support is good, but not great."
"I would like to see some artificial intelligence and alternative solutions."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. ArcSight Logger is rated 7.8, while IBM Security QRadar is rated 8.0. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". ArcSight Logger is most compared with Splunk Enterprise Security, Elastic Security, Wazuh, LogRhythm SIEM and VMware Aria Operations for Logs, whereas IBM Security QRadar is most compared with Splunk Enterprise Security, Microsoft Sentinel, Wazuh, LogRhythm SIEM and Cortex XSIAM. See our ArcSight Logger vs. IBM Security QRadar report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.