IBM QRadar Competitors and Alternatives

Read reviews of IBM QRadar competitors and alternatives
Micro Focus
Consultant
Senior Security Consultant & Solution Architect at a financial services firm with 10,001+ employees
Aug 29 2016

What is most valuable?

* Alert correlation * Reporting * Retention These are the features we find most valuable for us and which we use the most.

How has it helped my organization?

It's able to track down security incidents faster and make for a more efficient investigation of a user's network activity based on the log data available. Due simply to the user features available out-of-the-box, the convenience it can bring... more»

What needs improvement?

It needs additional and better user customization for SmartConnectors. It has additional device support for more obscure log sources. Also needed is a configuration wizard for organizations lacking the in-depth knowledge required to integrate... more»
LogRhythm
Real User
Security Analyst 3 at a comms service provider with 1,001-5,000 employees
Oct 29 2017

What is most valuable?

* The user interface (UI) * Ease of use, especially if you are starting off * The AI

How has it helped my organization?

Key challenges and goals: Anytime you are building a program from the ground up, there is a lot of legwork to be done to get things tuned to the point where they are usable. Effectiveness of solution in meeting security challenges and goals:... more»

What needs improvement?

We run across the odd vendor which we are using that we think are large players in their environment, but there is not necessarily a native support for their log ingestion per se, where it requires customization in order to be able to parse... more»
Micro Focus
Real User
Information Systems Manager at a healthcare company with 501-1,000 employees
Oct 30 2017

What is most valuable?

The query tool of the web UI is so cool! (Lucene-based, filters-based on taxonomy). The web interface gives you the ability to design, at query time, a simple report on the fly. Support from provider its great, good experience with helpdesk.

How has it helped my organization?

Sentinel can help our customers meet PCI, and other requirements based on the reporting and control of related components. Questions like "who has access to that asset" and "who had access in such and such moment" can be solved quickly.

What needs improvement?

The Java desktop tool and the WMI integration (WECS server architecture). The integration UI and modules deployment can improve. In my opinion, the web interface can manage all the functionalities and configurations; no Java desktop app is... more»

Sign Up with Email