|Most Helpful Review|
Compared 32% of the time.
Compared 11% of the time.
See more IBM QRadar competitors »
Compared 8% of the time.
Compared 12% of the time.
Compared 9% of the time.
See more Splunk competitors »
Compared 8% of the time.
|Also Known As|
|Also Known As||QRadar SIEM, QRadar UBA, QRadar on Cloud, QRadar|
The IBM QRadar security and analytics platform is a lead offering in IBM Security's portfolio. This family of products provides consolidated flexible architecture for security teams to quickly adopt log management, SIEM, user behavior analytics, incident forensics, and threat intelligence and more. As an integrated analytics platform, QRadar streamlines critical capabilities into a common workflow, with tools such as the IBM Security App Exchange ecosystem and Watson for Cyber Security cognitive capability.
With QRadar, you can decrease your overall cost of ownership with an improved detection of threats and enjoy the flexibility of on-premise or cloud deployment, and optional managed security monitoring services.
Splunk software has been around since 2006 and the company has since grown to become an industry leader. Splunk's vision is to make machine data accessible, usable and valuable to everybody. The company offers a wide range of products to turn machine data into valuable information by monitoring and analyzing all activities. This is known as Operational Intelligence and is the unique value proposition of Splunk.
Splunk is well-known for its Log Management capabilities and also for its Security Information and Event Management (SIEM) solutions.
|Sample Customers||Clients across multiple industries, such as energy, financial, retail, healthcare, government, communications, and education use QRadar.||Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.|
Splunk Free - This license is for individual use and has a 500MB/day maximum indexing volume. Free
This is the license for multiple users with distributed deployments. It supports higher data volumes. Splunk Enterprise includes role-based security, single sign-on, alerting, clustering, scheduled PDF delivery, and premium Splunk applications. There are two licensing options:
Splunk Cloud - Splunk Cloud has a maximum indexing volume that starts at 5GB/day to multi-TB/day (depending on the license). It includes most of the features of Splunk Enterprise, including app support, alerting, API, role-based access control, and alerting. This is the cloud-based service. Subscription plans start at $1,000 per month for data volumes up to 5GB/day.