Compare IBM QRadar vs. SolarWinds LEM

IBM QRadar is ranked 3rd in Security Information and Event Management (SIEM) with 45 reviews while SolarWinds LEM is ranked 12th in Security Information and Event Management (SIEM) with 8 reviews. IBM QRadar is rated 8.4, while SolarWinds LEM is rated 7.6. The top reviewer of IBM QRadar writes "Enables us to handle the most critical attacks and integrates well with other solutions". On the other hand, the top reviewer of SolarWinds LEM writes "Can be used across many platforms and has a user-friendly GUI". IBM QRadar is most compared with Splunk, LogRhythm NextGen SIEM and ELK Logstash, whereas SolarWinds LEM is most compared with Splunk, AT&T AlienVault USM and IBM QRadar. See our IBM QRadar vs. SolarWinds LEM report.
Cancel
You must select at least 2 products to compare!
IBM QRadar Logo
39,552 views|27,868 comparisons
SolarWinds LEM Logo
5,499 views|3,412 comparisons
Most Helpful Review
SolutionsEngnr67
Find out what your peers are saying about IBM QRadar vs. SolarWinds LEM and other solutions. Updated: January 2020.
397,983 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The ability to transition from microscopic to macroscopic view, instantly, is very good.Providing real-time visibility for threat detection and prioritization - QRadar SIEM provides contextual and actionable surveillance across the entire IT infrastructure.It is very stable. We have not faced interruptions in the past four and a half years.It has improved comprehensive visibility for what is going on in the perimeters, and on the inside, as well.This solution has allowed us to correlate logs from multiple sources.We get events and make the correlation, or rules. In IBM, we can implement our customer's rules. We can have very clear status threats and severity of antigens.Provided that the report is prebuilt and I can find what I am looking for, the reporting is the most valuable feature in this solution.This solution provides me with various alarms, and I have found security issues with some of my other products.

Read more »

This tool is simple to use.The most valuable feature is the reporting.The graphical user interface is very user-friendly. SolarWinds is a hybrid solution so you can use it across many platforms.The most valuable feature of this solution is the visibility into both attempted and failed logins.We did previously use a different solution, but SolarWinds is much better. It's easy to interact with SolarWinds. It's easy to operate, easy to configure and is generally easier compared to what we were working with before.It performs network behavior monitoring, log monitoring, and disaster recovery monitoring.The most valuable feature is the ease of use for the end user.

Read more »

Cons
I would like to see a better GUI.AI is superb but need improvements.Technical support is good, but not great.We would like to see better instrumentation for debugging changes in the log flow.The interface is very old. IBM should remake it into a more modern interface.There are reports that I would like to generate that are either not included, or I cannot find.There is a lot of manual configuration required in order for the product to run smoothly, and I think that it could be made more automatic.It is very difficult to activate all of the network equipment, and it would help if it were made easier.

Read more »

I would like to have a more customizable dashboard.There is no correlation made between log entries, so no threat information is presented.The reporting could be more robust. It can be a lot more granular and that will make it a lot more useful in comparison to how it is incorporated at the moment.I would like to be able to dig deeper into the visibility of events or incidents to determine whether they are malicious, such as by doing behavior analysis.The solution's technical support is okay, but we don't have an SLA, and sometimes the response times are very slow.Training for this solution needs to be improved, as new employees are sometimes unfamiliar with the product.It can be difficult for users who are inexperienced with the solution.

Read more »

Pricing and Cost Advice
The pricing needs to be such that they are more competitive with other vendors.There are additional costs, such as the cost associated with the different hardware required for implementation and deployment. Along with the add-on apps, these are all additional costs, and they require licensing as well.In terms of additional costs, it depends on the subscription that you choose. There are plenty of options to choose from.Our licensing costs for this solution is on a yearly basis.It's too expensive. The licensing is also a little bit difficult to understand because you have to license it per event and per number of flows.QRadar is quite expensive. It wouldn't be worth it for a small business...I would like for them to lower the price.The pricing is good.

Read more »

Licenses can only be purchased in blocks of fifty at a time.The pricing model would benefit from having package deals with other SolarWinds products.We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee.

Read more »

report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
397,983 professionals have used our research since 2012.
Ranking
Views
39,552
Comparisons
27,868
Reviews
37
Average Words per Review
422
Avg. Rating
8.4
Views
5,499
Comparisons
3,412
Reviews
8
Average Words per Review
495
Avg. Rating
7.5
Top Comparisons
Compared 31% of the time.
Compared 10% of the time.
Compared 10% of the time.
Compared 34% of the time.
Compared 10% of the time.
Also Known As
QRadar SIEM, QRadar UBA, QRadar on Cloud, QRadarSolarwinds SIEM, TriGeo, Log and Event Manager
Learn
IBM
SolarWinds
Overview

The IBM QRadar security and analytics platform is a lead offering in IBM Security's portfolio. This family of products provides consolidated flexible architecture for security teams to quickly adopt log management, SIEM, user behavior analytics, incident forensics, and threat intelligence and more. As an integrated analytics platform, QRadar streamlines critical capabilities into a common workflow, with tools such as the IBM Security App Exchange ecosystem and Watson for Cyber Security cognitive capability.

With QRadar, you can decrease your overall cost of ownership with an improved detection of threats and enjoy the flexibility of on-premise or cloud deployment, and optional managed security monitoring services.

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

Offer
Learn more about IBM QRadar
Learn more about SolarWinds LEM
Sample Customers
Clients across multiple industries, such as energy, financial, retail, healthcare, government, communications, and education use QRadar.NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.
Top Industries
REVIEWERS
Financial Services Firm26%
Transportation Company14%
Health, Wellness And Fitness Company6%
Energy/Utilities Company6%
VISITORS READING REVIEWS
Software R&D Company33%
Comms Service Provider18%
Financial Services Firm8%
Media Company8%
REVIEWERS
Financial Services Firm25%
Government13%
Comms Service Provider13%
Cloud Provider13%
VISITORS READING REVIEWS
Software R&D Company22%
Comms Service Provider10%
Manufacturing Company9%
Government7%
Company Size
REVIEWERS
Small Business36%
Midsize Enterprise16%
Large Enterprise48%
VISITORS READING REVIEWS
Small Business17%
Midsize Enterprise24%
Large Enterprise59%
REVIEWERS
Small Business69%
Midsize Enterprise8%
Large Enterprise23%
Find out what your peers are saying about IBM QRadar vs. SolarWinds LEM and other solutions. Updated: January 2020.
397,983 professionals have used our research since 2012.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.