We performed a comparison between IBM Security QRadar and Varonis Datalert based on real PeerSpot user reviews.
Find out what your peers are saying about IBM, Splunk, Rapid7 and others in User Entity Behavior Analytics (UEBA)."It is a very good SIEM."
"I like the graphical interface. It's so good and easy."
"It does good correlation for events. It does good general analysis, and it has good apps as well."
"The simplicity of the solution is the best feature."
"I have found IBM QRadar to be stable."
"Improved our organization's TCO."
"It provides many options for searching. I can see devices from different vendors, like Cisco, in one interface, which is good for me."
"Most of the features are good. It is an excellent solution."
"The analytics would have to be our most valuable feature."
"The telemetry to capture everything and the reports are very easy to configure without having a developer degree."
"It can easily identify unusual behavior or access patterns that may pose a potential threat, while operating as a unified reporting system."
"That alerting and reporting service is great."
"The 24/7 support is the most valuable feature. They have been able to answer support questions pretty quickly."
"On the Varonis side, technical support is phenomenal. Their ability to explain is very good, and they seem to be very knowledgeable. When I get an alert that doesn't quite make sense, they dive in there and kind of take me through it. That's very useful and very good. There are some false alerts, but it is better to have a false alert than no alert at all."
"The AI engine could be smarter."
"QRadar needs a lot of fine tuning"
"The threat detection needs improvement, they have many false positives."
"I would like to see the update process simplified."
"While the interface is easy to use, it could be a little more responsive."
"GUI needs to be improved."
"There was some complexity in the initial setup due to bandwidth issues."
"SOAR is what is expected the most from QRadar. They have something called SOAR Resilient, and it would be great if that gets induced in SIEM. IBM QRadar (as well as McAfee ESM) should have analytics platform integration. Currently, SIEMs don't have full-fledged integration with analytics where we are able to dump our data in SIEM, and the same data can be called from different analytics applications. We should be able to bring this data to a platform like Hadoop for big data and run the analytics there. Currently, people are seeing the past data and taking some actions in the present, but when it comes to analytics, there should be futuristic data where you can predict something out of your present and past data. Apart from that, I would like to see a full-fledged ITSM tool in QRadar. It sometimes has some technical issues that need to be checked. It requires a dedicated QRadar engineer to completely manage it. It has different module sets, such as event collector and event processor, and some technical glitches come in between. It takes the log but doesn't exactly process it in the way we want."
"We have Microsoft Office 365. I just saw an article today which says that they're actually getting integrated with Microsoft Office 365, which would be a useful feature. For user-based reports, log on activity, and stuff like that, it doesn't seem to really be present like Log360. That could just be my inexperience with it. I've been dealing with it for only about two and a half months."
"For unstructured data monitoring, it's one of the top ones, if not the top one, due to its usability."
"The GUI should be more functional. There should be a process for connecting through Chrome, Internet Explorer, etc."
"I would like it to have cloud integration."
"I'd like to see automatic updates for this solution. Currently, it's a manual process to update all the keywords"
"It is significantly complex."
IBM Security QRadar is ranked 1st in User Entity Behavior Analytics (UEBA) with 198 reviews while Varonis Datalert is ranked 8th in User Entity Behavior Analytics (UEBA) with 6 reviews. IBM Security QRadar is rated 8.0, while Varonis Datalert is rated 8.6. The top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". On the other hand, the top reviewer of Varonis Datalert writes "Offers the ability to identify sensitive areas, allowing you to drill down into the sensitive data". IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security, whereas Varonis Datalert is most compared with Splunk User Behavior Analytics, Microsoft Defender for Identity, Exabeam Fusion SIEM and Rapid7 InsightIDR.
See our list of best User Entity Behavior Analytics (UEBA) vendors.
We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.