We performed a comparison between IBM Resilient, ServiceNow Security Operations, and VMware Carbon Black Cloud based on real PeerSpot user reviews.
Find out what your peers are saying about VMware, ServiceNow, IBM and others in Security Incident Response."Stability-wise, I rate the solution a ten out of ten...Scalability-wise, I rate the solution a ten out of ten."
"The initial setup of IBM Resilient is not that complex since my company already has a support license that we use internally. In general, the product's deployment phase is not that complex."
"What I like most about IBM Resilient is that it has a complete stack, which means you don't need to use different OEM products because you have all you need under the IBM Resilient umbrella. You don't need to worry much about integrations and components because you're working with tested and proven architecture."
"The solution is simple to use and to integrate with IBM QRadar."
"It's really simple and has a flexible interface."
"The most valuable thing about it is how easy it is to navigate the user interface."
"It is a stable solution...It is a scalable solution."
"The solution is easy to use."
"The "follow" feature is really good. If the user is not responding, there's an option to "follow". Just click on the button, and it will automatically trigger an email to the end user."
"ServiceNow Security Operations also takes care of GRC, governance, risk and compliance, enabling it to provide risk assessment."
"The most valuable aspect of working with ServiceNow is its meaningful and feature-rich product."
"Reduces time to closure and closure metrics for vulnerabilities."
"The solution is available over the cloud and is easy to manage."
"The solution is stable."
"It gives you the ability to bring data into the system. The workflows are out of the box, and it gives you the ability to auto-assign the incidents based on criteria and vulnerabilities."
"The ease of use is great."
"The most valuable features are its lightweight design, ensuring minimal impact on end-users, and its real-time protection."
"Integration and scalability are the most valuable."
"The most valuable features are the threat-hunting and the batch console."
"Setting up and managing the setup for this solution is okay. It is stable, scalable, and it runs just fine. No issues with technical support."
"The most valuable feature is its ability to seek out abnormal activity and to create alerts."
"The most valuable feature of VMware Carbon Black Cloud is the possibility of securing any PC worldwide."
"The ability to quickly isolate a system from the network, while still being able to perform some forensics and mitigation work remotely, was of great value to us since we had many mobile and distributed systems."
"The ability to isolate an endpoint with only the host name and a click of a button is a major time saver."
"IBM Resilient is quite complex, including its configuration."
"The initial setup is complex."
"This product could be improved with better customization. This product isn't the best on the market like QRadar, but it's actually a good solution. However, some competitors' solutions contain more integration, support, automation, or flexibility."
"There are shortcomings with IBM Resilient's technical support team that can be considered for improvement in the future."
"One thing to improve is how it handles data formats, which currently might require scripting for conversion to CSV before uploading."
"It is not very straightforward to set up custom integrations, especially with services like Azure. You need an additional server for integration."
"Its price needs improvement."
"The product must provide more integration with other tools."
"The initial setup is difficult."
"The product is called SecOps, but it is not security operations in terms of SIEM solutions."
"The threat intelligence module needs a better dashboard."
"Process framework and best practices for ease of integration between IT and security teams via incident, problem, and change."
"In future releases, I would like to add a follow-up and reminder feature. For the tickets in our queue, we could set reminders. This would help us prioritize older tickets before moving on to new ones."
"We'd like customization to be easier in terms of the UI and using the dashboards."
"It doesn't interact with things very well."
"They should stick to the roadmap and continue to build plugins and integrations with other third parties, enhance the UI, and enhance the reporting. It's all good. They should just continue enhancing the releases."
"One area for improvement is the maturity of its vulnerability features."
"There have been some performance issues when deploying on Windows Server, but I believe Carbon Black is working on that."
"The product detects too many false positives initially and it could integrate better with other security solutions."
"It's not simple."
"Setup is incredibly complex and poorly documented. Every time an upgrade was needed we would need to engage Professional Services for troubleshooting help. Certificates and web services proved to be the most significant sticking points. Since the product runs on a Linux platform, perhaps having staff with more Linux experience could have alleviated some difficulty."
"The support team of Carbon Black CB Response needs improvement. At present, they need a lot of information. Then they give you an answer that they already gave you. You tell them it didn't work, and then they take a long time."
"Training and education for both partner and customer, including product marketing need to be improved."
"The dashboard should be more user-friendly."
More ServiceNow Security Operations Pricing and Cost Advice →