We performed a comparison between ArcSight Logger and IBM Security QRadar based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's an efficient solution."
"Some of the most valuable features I really appreciate are the performance, how quick the solution is, and how easy it is to create a query."
"The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console."
"ArcSight's robustness is its most valuable feature."
"The machine learning is a good feature."
"The log digestion features from threat intelligence platforms like Recorded Future or Talos are valuable."
"In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer."
"The technical support team is good...It is a scalable solution."
"The ability to add extensions is the most valuable feature. For example, extensions that provide valuable test ports."
"The product provides a complete platform for ingesting the log, doing the correlations and handling the runtime."
"I think this is a good product for enterprises because of the performance and out-of-the-box rules and use cases. If they want to reach the maturity level early, they can use these out-of-the-box rules and use cases. That will help them a lot."
"The tool helps with infrastructure, application, and network monitoring."
"IBM Qradar's ability to simplify the number of events, not only on a technical level but by making that information easy to pan through the orchestration deduplication. It is very impressive given that we have hundreds of devices that send event logs through."
"The most valuable feature is the machine learning module."
"It is incredibly easy to deploy. All the appliances are flexible in the roles that they serve and are all managed the in the same way."
"It'll get you from point A to B."
"I would like to see better scheduling in the next release of this solution."
"The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved."
"We find that the search and access functionality is quite slow."
"The next release should have AI capabilities."
"I had some latency issues for two months. I had to increase our storage capacity significantly to reduce the latency."
"I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this."
"It's not a new product and is a bit complex. So, it requires a person dedicated to working on it and to know about it in and out. It is a huge product, and the search operation is a bit complicated for a new user or someone who has not used it for long. So for that person, it becomes a bit difficult."
"The initial setup was a little bit complex."
"The threat detection needs improvement, they have many false positives."
"IBM needs to invest more into the collaboration with other vendors."
"It is not app based."
"IBM Security QRadar’s GUI could be improved."
"They should speed up the incident response and also, at the same time, reduce the amount of manual effort that is required."
"QRadar log integration of various applications can be a tough job at times. There may be occasions when you will not find any QRadar guide on adding logs of a particular application. Even if you come across one, adding a log process is not an easy one."
"The product does not have a team for investigating malware."
"There could be improvements made to the UI, the user interface. Though the newer version, 7.3.2, might already have this improvement in place."
ArcSight Logger is ranked 29th in Log Management with 30 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. ArcSight Logger is rated 7.8, while IBM Security QRadar is rated 8.0. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". ArcSight Logger is most compared with Splunk Enterprise Security, Elastic Security, Wazuh, LogRhythm SIEM and VMware Aria Operations for Logs, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Securonix Next-Gen SIEM. See our ArcSight Logger vs. IBM Security QRadar report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.