IBM QRadar Competitors and Alternatives

Get our free report covering Splunk, LogRhythm, Elastic, and other competitors of IBM QRadar. Updated: September 2019.
371,062 professionals have used our research since 2012.

Read reviews of IBM QRadar competitors and alternatives

MohamedMohsen
Reseller
Founder & CEO at MnZ Technology Solutions
Aug 18 2019

What is most valuable?

What I like about this product, is that it is a fully-fledged solution. I don't need to buy any complementary products, everything comes in one box.

What needs improvement?

I would like to see an improvement in their threat exchange database because the OTX is not the best thing in the marketplace. There are better solutions. So if they could enhance our feature… more»

What's my experience with pricing, setup cost, and licensing?

The price was good and it matched out budget at that stage.

If you previously used a different solution, which one did you use and why did you switch?

We also used IBM QRadar before, but we did not get proper support and that's why we switched to AlienVault.

What other advice do I have?

If anybody asked me if am I happy with AlienVault, I would say that it is a very good product. Frankly speaking, if anybody asked me about QRadar or ArcSight I will say the same, but it requires lots… more»

Which other solutions did I evaluate?

We looked at ArcSight as an option at the beginning, but the pricing was not what we were looking for. And we don't have the proper channel to sell ArcSight in Egypt. That's why we decided to go to… more»
Techconslt67
Consultant
Technical Consultant at a tech services company with 11-50 employees
Aug 19 2019

What is most valuable?

In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating.

What needs improvement?

I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this. A lot of people that compare this solution with QRadar or McAfee… more»

What's my experience with pricing, setup cost, and licensing?

ArcSight Logger is very expensive compared to their competitors, but when we talk to the customer and explain what the features are and how we can scale, they understand. Still, ArcSight is more expensive than the competition.

What other advice do I have?

I would rate this solution as ten out of ten. Whenever I talk about the product I tell the user to start easy, not to take the whole package and to try to use it quickly. Start with the basics, then you can ramp up fluidly. Sometimes the client or customer wants to take it urgently so at that moment… more»
Jordan French
Consultant
Business Development Manager- Threat Management Services at a tech services company with 5,001-10,000 employees
Apr 25 2018

What is most valuable?

* Smart Connectors and Flex Wizard * Multi-tenant access * Customization for dashboards and reporting * Improvements made to the ADP platform

How has it helped my organization?

Without it, we would not have a managed SIEM offering to speak of. We spent over a year evaluating leading competitors and ArcSight was the clear winner. It opened up a… more»

What needs improvement?

The marketplace is a bit of a joke; steps should be taken to improve participation. Micro Focus desperately needs to improve their core offering rather than adding more… more»

What's my experience with pricing, setup cost, and licensing?

Customers without a ton of resources to dedicate to deployment may be better served by a managed ArcSight service. A lot of the complex setup and administration duties are… more»

If you previously used a different solution, which one did you use and why did you switch?

We have not use a previous solution past its initial evaluation period.

What other advice do I have?

It has its quirks, but ultimately, it delivers capabilities that no other SIEM could provide.

Which other solutions did I evaluate?

We evaluated Splunk, QRadar, and LogRhythm.
SolutionsEngnr67
Real User
Solutions Engineer at a tech services company with 11-50 employees
Sep 16 2019

What is most valuable?

The most valuable feature of this solution is the visibility into both attempted and failed logins.

What needs improvement?

The query capability in this solution needs improvement. When you watch to fetch logs at specific times, sometimes there are issues. The filtering engine needs to be improved to make it more accurate. When you are filtering, it comes with a… more»

If you previously used a different solution, which one did you use and why did you switch?

I have used IBM QRadar. It is a SIEM solution, but it can do what LEM can do.

What other advice do I have?

My advice for anybody who is considering this solution is to really review their expectations. I know that some people who do not review their expectations are upset after the implementation because they feel that they are getting less than… more»

Which other solutions did I evaluate?

We did not evaluate other options before choosing this solution. Some of the customers have their preference and will ask for something else, so that is what we will do for them.
Consultant
Solutions Consultant at a comms service provider with 51-200 employees
Sep 19 2019

What is most valuable?

Both the collecting logs and duo correlation are valuable features for us. Fortinet also offers very good pricing. Their pricing is incredible.

What needs improvement?

The support of the product changed recently, and I don't think it's for the better. They should work to improve the support they offer to clients. They also have to improve their import perfection solution.

What other advice do I have?

We use the public cloud deployment model. I like the product, and I would recommend it, but I much prefer Splunk. The beautiful thing about Fortinet is that they have integrated many, many solutions. Their platform is very powerful. In the case of the customer, if he decides to choose Fortinet… more»

Which other solutions did I evaluate?

I did not evaluate other options; this solution was the decision of the customer. However, in the past, I have evaluated and worked with Splunk and IBM.
Get our free report covering Splunk, LogRhythm, Elastic, and other competitors of IBM QRadar. Updated: September 2019.
371,062 professionals have used our research since 2012.
Sign Up with Email