IBM QRadar Review

Helps a company when investigating a case and with preventive actions


What is our primary use case?

I used the IBM QRadar product from 2015 until 2017.

How has it helped my organization?

When the WannaCry attack happened, QRadar helped the company a lot with the investigation of the firewall, antivirus, and other appliances.

What is most valuable?

The "Network Activity" feature was really good. An engineer can live monitor all the flow happening in real-time. This would help us a lot while investigating a case, and it would even help us with preventive actions.

What needs improvement?

QRadar needs to be improved on the storage side, particularly when the disc exceeded the maximum threshold.

For how long have I used the solution?

One to three years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest

Sign Up with Email