IBM QRadar Review

Helps us to discover any threats with their alerts and tracking

How has it helped my organization?

It helps us discover any threats with their alerts and tracking.

What is most valuable?

QNI is the most valuable feature. 

What needs improvement?

I would like for them to lower the price. 

For how long have I used the solution?

One to three years.

What do I think about the stability of the solution?

The system is quite stable, so far we haven't had any problems. Although the initial supply of the appliance was a bit faulty, the processor kept on failing. We were within the warranty so they supplied new ones. After loading logs, the system is very stable and nothing to worry about.

What do I think about the scalability of the solution?

It's very scalable. There are currently five users. We may still onboard more users depending on the requirements and their departmental level.

We do plan to increase usage. 

How are customer service and technical support?

Their support is excellent, they are available when we need them. I'm satisfied so far.

How was the initial setup?

The initial setup wasn't exactly straightforward but the vendor who set it up for was helpful. It was very straightforward with their help. The deployment took two months. 

We require two admins for maintenance. 

What about the implementation team?

We used our own people and the certified IBM vendor for the implementation. We had a very good experience with them. 

What's my experience with pricing, setup cost, and licensing?

We do licenses once a year. 

Which other solutions did I evaluate?

We also looked at LogRhythm.

What other advice do I have?

I would advise someone considering this solution to write down your use cases and evaluate them with the vendor. Evaluate the best solution based on your use cases because you are the ones who are going to use it. The vendor will try and implement and leave you with your problems.

If the solution meets your requirements and solves most of your problems, you're good to go. QRadar is the best solution we have. The only challenge is that IBM has been a closed enterprise. It should be more open to integrating with other providers at an enterprise level. We're a bank and the core banking system integration is not always straightforward and there is no integration between IBM and these products. If IBM could open up and provide a way of integrating it seamlessly, without charging more for it, that would make a big difference. 

I would rate it an eight out of ten. 

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment