2017-03-30T06:20:00Z

What do you like most about IBM QRadar?


Hi Everyone,

What do you like most about IBM QRadar?

Thanks for sharing your thoughts with the community!

Guest
4141 Answers

author avatar
Top 5LeaderboardReal User

The ability to transition from microscopic to macroscopic view, instantly, is very good.

2019-12-05T02:59:00Z
author avatar
Top 20Real User

This solution has allowed us to correlate logs from multiple sources.

2019-07-31T02:22:00Z
author avatar
Top 20Real User

Provided that the report is prebuilt and I can find what I am looking for, the reporting is the most valuable feature in this solution.

2019-06-16T07:23:00Z
author avatar
Real User

This solution provides me with various alarms, and I have found security issues with some of my other products.

2019-06-13T12:36:00Z
author avatar
Top 20Real User

We get events and make the correlation, or rules. In IBM, we can implement our customer's rules. We can have very clear status threats and severity of antigens.

2019-06-13T12:36:00Z
author avatar
Top 5Real User

It is a very optimized engine.

2019-06-06T08:18:00Z
author avatar
Real User

Vulnerability detection is the most valuable feature. It's the tool that finds the threats.

2019-04-29T07:11:00Z
author avatar
Top 10Real User

IBM QRadar has improved my organization by introducing many functions. It collects logs from all of our systems in the organization and has functioned very well. It alerts and correlates the aggregate events or offenses we receive through all the applications we use.

2019-04-29T07:11:00Z
author avatar
Top 20Real User

In addition to using this solution for our security operations center, we are using it for our other customers.

2019-04-17T08:37:00Z
author avatar
Top 5LeaderboardConsultant

The most valuable features would have to be the products' ability to customize vulnerability management settings.

2019-04-17T08:37:00Z
author avatar
Real User

There is a single dashboard that gives us a complete overview of what is happening around the globe.

2019-04-17T08:37:00Z
author avatar
Top 20Consultant

IBM QRadar is easy to scale, it doesn't affect the environment. In our office, we have around 40 - 50 users, but our clients have more users on their networks. Our organization has staff in the software department that manages IBM QRadar for us.

2019-04-11T06:16:00Z
author avatar
Top 20Reseller

The most valuable feature is the QRadar Vulnerability Manager which provides vulnerability scans. In addition, I like the way QRadar generates alerts.

2019-03-31T09:41:00Z
author avatar
Top 20Real User

The most valuable feature is the DSM Editor. The custom parsing tool is very nice, outstanding.

2019-03-28T08:19:00Z
author avatar
Top 20Real User

It helps us discover any threats with their alerts and tracking.

2019-03-28T08:19:00Z
author avatar
Top 20Consultant

The stability is good.

2019-03-19T10:11:00Z
author avatar
Top 5LeaderboardReseller

Most of our clients are interested in automation. The automation part is good because they are able to detect threats and vulnerabilities in real time. It's very fast.

2019-03-10T16:43:00Z
author avatar
Real User

The support is very good. We get support whenever we need it. Sometimes they respond immediately and sometimes it will be within 24 hours. We can ask them to please do it right away and they can get a request done within an hour or two.

2019-03-06T07:41:00Z
author avatar
Top 20Real User

One of the most valuable features is its ability to integrate with other solutions. IBM has a lot of solutions and we have managed to make it work with IBM BigFix and MaaS360, and even Microsoft.

2019-03-06T07:40:00Z
author avatar
Real User

It integrates very easily with other solutions. The solution is flexible. We can add anything to it, as it is a good companion to other tools.

2019-02-27T08:57:00Z
author avatar
Reseller

IBM has everything you need in a cybersecurity solution. If you want to build a cybersecurity operation center version then I think QRadar is a perfect solution.

2019-02-25T08:45:00Z
author avatar
Top 10Real User

The ability to add extensions is the most valuable feature. For example, extensions that provide valuable test ports.

2019-02-07T12:28:00Z
author avatar
Reseller

It's quite scalable. We have upgraded some solutions from 1000 APS up to 3500 APS to 5000 APS. It's a good solution, they have no scalability issues.

2019-02-03T08:35:00Z
author avatar
Top 5Real User

It is very stable. We have not faced interruptions in the past four and a half years.

2018-11-15T07:11:00Z
author avatar
Real User

It is really helpful to us from the compliance point of view.

2018-10-29T15:46:00Z
author avatar
Consultant

QRadar has somewhat of a new structure recently from last gen. They have moved from the standard UI based infrastructure.

2018-10-04T17:27:00Z
author avatar
Top 5LeaderboardConsultant

A nice benefit is when we go to the process of selecting our youth cases, they go by building blocks. QRadar links it to building blocks.

2018-09-09T05:40:00Z
author avatar
User

Log correlation is very useful for processing alerts. It serves to follow up alerts in real-time, building an entire workflow.

2018-09-04T02:41:00Z
author avatar
Vendor

It's a state-of-the-art product for security information and event management (SIEM).

2018-08-30T10:51:00Z
author avatar
Reseller

On the back-end, Watson helps me figure out an exact problem, sometimes giving me the result.

2018-07-22T08:31:00Z
author avatar
Real User

It showed us where weaknesses were in our environment, so we could actively target those patches first.

2018-06-30T07:18:00Z
author avatar
Real User

It is the core of our entire SOX.

2018-06-29T07:18:00Z
author avatar
Reseller

The scalability is awesome, because QRadar includes other solutions in the same console.

2018-06-28T07:18:00Z
author avatar
Real User

It is incredibly easy to deploy. All the appliances are flexible in the roles that they serve and are all managed the in the same way.

2018-06-26T12:31:00Z
author avatar
Top 20Real User

We have the abilities to monitor each instance which originates on the process along with the performance of each department.

2018-06-26T12:31:00Z
author avatar
Real User

An engineer can live-monitor all the flow happening in real-time. This would help us a lot while investigating a case, and it would even help us with preventive actions.

2018-06-12T12:14:00Z
author avatar
Consultant

Senses, tracks, and links significant incidents and threats.

2018-06-12T12:14:00Z
author avatar
Real User

There are more than 120 extensions in QRadar, which are easy to install and configure. These can improve your analysis of events.

2018-06-11T10:36:00Z
author avatar
Consultant

The correlation and the parsing are important features, since it is very important for a SIEM to have a good scalability and performance.

2018-06-11T06:45:00Z
author avatar
Real User

It does good correlation for events. It does good general analysis, and it has good apps as well.

2018-06-03T09:17:00Z
author avatar
Top 5LeaderboardConsultant

Providing real-time visibility for threat detection and prioritization - QRadar SIEM provides contextual and actionable surveillance across the entire IT infrastructure.

2017-03-30T06:20:00Z
Learn what your peers think about IBM QRadar. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
442,041 professionals have used our research since 2012.