IBM QRadar Benefits

DAX Paulino
Cybersecurity Practice Lead at a tech services company with 201-500 employees
With QRadar we managed to focus on the more critical incidents that we have experienced. As a result, we have managed to decrease the most critical incidents, most critical attacks. Now we're focusing on the ones that are not too heavy, not too critical. As of the moment, we are more secure than before. View full review »
Program Manager at a tech services company
This solution has improved our organization by allowing us to promote vertical security as an added service for our customers. It has also improved our integration with other applications. Previously we used to have challenges in terms of application integration. I think that it is slowly changing; for example, Oracle Hyperion and these kinds of products integrate more easily because they have the proper plugins. It is important to know that they are properly integrated with your solution. View full review »
Vulnerability Manager at a tech services company with 51-200 employees
Normally, an offense comes in and an offense is something negative, to put it plainly, that impacted your environment. Once it comes through, you can then see from the QRadar log sources, who or what triggered the offense. For example, if an IP is browsing somewhere where it shouldn't be browsing. Let's say that one of your log sources reported it back to QRadar. You can see if the IP that browsed on certain websites where it shouldn't be browsing. When you right-click and go to the threat protection network, that will normally show you who is browsing, where that IP is coming from, what type of website it is browsing, and if it is good or bad. If it's bad, it will give you recommendations on how to resolve the issue. View full review »
Find out what your peers are saying about IBM, Splunk, LogRhythm and others in Security Information and Event Management (SIEM). Updated: March 2020.
406,312 professionals have used our research since 2012.
Vulnerability Manager at a tech services company with 51-200 employees
Instead of logging in to multiple devices and checking the logs, QRadar gives us one centralized point for comparing data against each other and rules to make sure that you don't miss anything. It tells you where all the detections happened. It provides easier access and we pick up things way quicker than in the past. View full review »
Cyber Security Specialist at AEC
IBM QRadar has improved my organization by introducing many functions. It collects logs from all of our systems in the organization and has functioned very well. It alerts and correlates the aggregate events or offenses we receive through all the applications we use. With other solutions, you collect the logs from different sources but you still have to finetune it, and you still have to match them a lot of the time to figure out the correct association to sort out the false positives. QRadar is much easier to use and detect false positives. It can do it by itself, and it allows you to finetune the filtering and check the false positives. There is some backend that protects but it's the best among all in the market. View full review »
Dameer Siddiqui
Senior Associate Consultant at Skill Orbit (Pvt.) Ltd.
We have integrated IBM QRadar with our firewall and some services that we use. When the logs are about to get full of SQL, IBM QRadar makes a notification. The admin knows that they're about to get full so he just goes and clears them out. That is when we usually use IBM QRadar. On our firewall, when the issue notifications are generated, we don't usually open the firewall but QRadar alerts us about what went down in our environment. View full review »
Senior Security Architect at a tech services company with 10,001+ employees
It has improved my efficiency. It has also reduced the implementing time. So we have reduced the time we are getting it readily available and you can just do small customizations. We can also do automation, as well using QRadar. View full review »
B.T. G├╝venlik Y├Âneticisi at a recruiting/HR firm with 10,001+ employees
This solution provides me with various alarms, and I have found security issues with some of my other products. We also have some special correlation rules that give me information about mail servers, websites, and other user behavior. View full review »
D.M.Hashim-Ul- Alom
Senior Server Security Engineer
We do R&D for IBM QRadar and we are also a cybersecurity solution based company. We provide solutions for our clients like banking, government agencies, and other non-government organizations. Our clients test in our labs and we try to understand how a product works and how a product will help our clients. I have more than three years experience with AlienVault and I use AlienVault a lot and I have already deployed it in a few banks. I am now trying to understand how IBM QRadar works and what the difference between IBM QRadar and AlienVault is. View full review »
Nimesh Bhatia
IT Security and Business Development Manager at a tech services company with 51-200 employees
The security has improved my organization. View full review »
Managing Director at a tech services company with 1,001-5,000 employees
It is really helpful to us from the compliance point of view. Whenever we had an external lawyer come in, he used to ask us for the data retention and log retention. So, QRadar could put out reports that could audit for us within the log collections. It was very helpful for us to meet compliance requirements. In addition, it is a helpful solution for forensic analysis. It will easily perform Google type searches and get the logs searched easily. This is really helpful for us, and gives us a quicker investigation. View full review »
Sr. Security Analyst with 1,001-5,000 employees
Since IBM opened up the API for third-party app integration it has made it increasingly easy to add other tools into the dashboards. View full review »
Security Analyst at a security firm with 11-50 employees
It is always evolving with new patches, new UX/UI (such as 7.3), new rules, and new extensions. It lets you evolve your company accordingly. The usage of QRadar or any SIEM solution depends on the company goals, but with QRadar, the user interface, the dashboards, reports, installing extensions, and playing with the rules are easier. QRadar has helped our company a lot in evolving our security policy and taking care of weak controls. QRadar helped us in the blacklisting and whitelisting of applications. It helped us identify our security threats, and improve our firewalls. With the QRadar Vulnerability Manager, it helped us take care of vulnerable assets. View full review »
Director of Market Enabling Solutions at Raksha Technologies Pvt Ltd
It saves a lot of time. We integrate the customer's firewall with all their networking devices. If there is an issue, it helps us do the proactive work before it becomes a bigger issue. We are able to pinpoint issues and solve them. Additionally, it is very easy to figure out. In one dashboard, we can see all the issues. There is no need to login to every device. In one single pane of glass, we can see everything. View full review »
Network Security Engineer at a health, wellness and fitness company with 10,001+ employees
QRadar improved risk assessment and vulnerability, plus it has reduced some staff. It has also improved the training abilities of the people who use it, e.g., IR teams. It is the core of our entire SOX. Therefore, we use it for everything through training all the way up through management. Due to the skills shortage, we are able to use it from the standpoint of bringing in a lower level employee or a person who may not have security knowledge. We can put them in front of the product and they will still have the information that they need and have them at a level where they can run the system. Also, products, like Watson, make it work better. View full review »
Muhammad Adeel
Senior Security Engineer at dig8labs
The features make my work easier. View full review »
Mathieu Dorckel
Cybersecurity Engineer Consultant at a tech services company with 501-1,000 employees
Previously, we had to do a lot of debugging when we wanted to change our firewall policy to find out which rule was blocking things, etc. With Qradar, when you integrate the logs of the firewall, you have with two clicks, the info in real-time. View full review »
Onyegbule Uche
Technical Consultant at Activedge Technologies
QRadar has significantly improved our security. It has reduced threats considerably. The solution provides increased visibility along with actionable intelligence. We are looking into implementing it to proactively take steps to prevent or reduce the attacks. View full review »
Phillip Okemwa
Senior Information Security Analyst at a financial services firm with 501-1,000 employees
It helps us discover any threats with their alerts and tracking. View full review »
Network and Security Technical Team Leader at a wholesaler/distributor with 201-500 employees
The product is great. It does good correlation for events. It does good general analysis, and it has good apps as well. View full review »
Information Security Manager at a comms service provider with 1,001-5,000 employees
Instant continuous monitoring so that we can take action immediately and be proactive as much as possible with handling hacking and attacking attempts. Also, It has improved comprehensive visibility for what is going on in the perimeters, and on the inside, as well. We also use it for testing our controls if it is performing well or not. We can say that the visibility, monitoring, testing and reliability of our controls is all assisted by this solution. The most important benefit we get is from the SIEM solution. View full review »
Douglas Concepcion
Security Solutions Architect at Micro Strategies
It has helped us with our response time to threats. It also showed us where weaknesses were in our environment, so we could actively target those patches first. View full review »
Dr Trust Tshepo Mapoka
Senior Cybersecurity Consultant at Cyber Intelligence Agency Pty Ltd
Most of our clients are interested in automation. The automation part is good because they are able to detect threats and vulnerabilities in real time. It's very fast. View full review »
Luis Yndigoyen
Partner at a tech services company with 11-50 employees
We are a consulting company, but our clients use it to ensure that the process has been followed. We have the abilities to monitor each instance which originates on the process along with the performance of each department. In addition, clients can enter detail in at the instance level. View full review »
Lead Security Infrastructure Engineer at a financial services firm with 5,001-10,000 employees
It has provided support for several log sources, which has historically been problematic/unsupported by competitors. It is easy to make changes on the fly to default parsers to customize fields/mappings to our use cases. View full review »
Marketing Director at a aerospace/defense firm with 1-10 employees
QRadar is the primary tool in our security center. We use it to collect information from different devices, detect, and analyze various threats or attacks to protect our system. View full review »
Shaikh Jamal Uddin
Senior Information Security Consultant at Secure Coat
Gaining application visibility and anomaly detection helping IT personnel to quickly identify meaningful deviations. For example, QRadar SIEM can detect off-hours or excessive usage of an application or cloud-based service, or network activity patterns that are inconsistent with historical, moving-average profiles and seasonal usage patterns. View full review »
Mika Suomu
Cloud Security Architect at Nordcloud Oy
* It helps because you don't need an army to execute the project when you do the PoC, and when finally going to production. * The abundant out-of-the-box features which are operating wonderfully. View full review »
Rajeev MM
Senior Analyst at a tech services company with 201-500 employees
Before implementing this solution, we had no security. After integrating many thing, we received reports letting us know what is compromised. View full review »
Rossella Falcone
Sr. Security Engineer at OmnitechIT
In addition to using this solution for our security operations center, we are using it for our other customers. View full review »
Sebastian Osterc
Member at CIFAL Argentina
QRadar improved risk assessment and vulnerability, plus reduced staff. View full review »
Manager, Cybersecurity at a tech company with 11-50 employees
IBM QRadar is great help from its security event monitoring to data center and NOC troubleshooting of issues hard for other departments to spot. View full review »
Daniel Christian
Operations Analyst at a logistics company with 51-200 employees
When the WannaCry attack happened, QRadar helped the company a lot with the investigation of the firewall, antivirus, and other appliances. View full review »
Nizar Hedhili
General Manager at Global Solutions Services
Log correlation is very useful for processing alerts. It serves to follow up alerts in real-time, building an entire workflow. View full review »
Vik Solem
President, Consultant, Trainer at MEI Security
This solution has allowed us to correlate logs from multiple sources. View full review »
Find out what your peers are saying about IBM, Splunk, LogRhythm and others in Security Information and Event Management (SIEM). Updated: March 2020.
406,312 professionals have used our research since 2012.