We performed a comparison between IBM Security QRadar, Quest InTrust, and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Datadog, Wazuh and others in Log Management."It allows us to search data both on-premises and on the cloud."
"The ability to transition from microscopic to macroscopic view, instantly, is very good."
"We find predictive analysis capabilities valuable."
"IBM QRadar has improved my organization by introducing many functions. It collects logs from all of our systems in the organization and has functioned very well. It alerts and correlates the aggregate events or offenses we receive through all the applications we use."
"I like that it's easy to use and the performance is good."
"The visibility it gives you into your infrastructure has been great."
"The most valuable feature is the integration with the GRD, for banking."
"IBM Security QRadar has significantly improved our incident response procedures."
"I would rate the technical support very well as they are knowledgeable and quick to respond."
"The most valuable feature is the DSS, also known as SPL, because it allows users to script advanced queries with limited knowledge."
"It's basically one of the best SIEM products on the market."
"The graph visualization is the most valuable feature."
"The feature that we use the most is the correlation search engine within ES."
"In the past we used the different application to collect logs. We used SurfWatch and VMware to do so. But, we found that the Splunk has more capacity to do more in less time. They provide a aster speed to index all the events , and this is a huge asset."
"Its integration is most valuable. Its UI is also pretty much easy."
"To get visibility from your network devices, servers, and security devices is a great feature."
"Splunk has facilitated the correlation of information security logs to look for incidents which could cause damage to the company's infrastructure, as well as financial losses from leaks."
"I don't give it a 10 because it is something we have to request. I would love it if UBA was included out of the box like Microsoft."
"The whole process for support is something that needs to be improved."
"The dashboards are all legacy and old."
"The solution lacks some maturity."
"Technical support is good, but not great."
"The threat detection needs improvement, they have many false positives."
"The user interface and configurability of IBM QRadar User Behavior Analytics can be improved. It has a lot of pre-configured settings and not many things can be changed. It also needs more integrations. Currently, User Behavior Analytics is integrated only with IBM QRadar. It could have deeper integrations. It can also have more complicated scoring models. Currently, it has a very simple linear scoring model for users."
"We sometimes get an error about the hard drive. Approximately once in two months, we can't find the logs, and they go missing, which is a terrible issue. We are getting support for this issue from our support company."
"It needs to have better reporting. "
"It was very complex. There was poor native correlation. "
"The price of the solution could be cheaper."
"Splunk's ability to analyze malicious activities scores an 8 out of 10, but there's room for improvement. By analyzing emerging patterns, Splunk could identify and predict potential threats more effectively."
"It needs more formatting control without having to be an admin."
"On the technical side, it would be nice to see aspects of the recent acquisition of Phantom make it into the core Splunk Enterprise, not just become a part of the premium Enterprise Security."
"Enterprise security: Splunk must work on clarifying the solution to customers and explain how to gain more from it."
"The administration of the cluster and app deployment to indexers or search heads can be done only using ssh access and command line, there is no GUI tools for that."
"It needs more thoroughly tested releases. Every new big version (6, 7, etc.) has had so many bugs that it makes me wary of customers upgrading right away."
"Their technical support sucks."
Earn 20 points