4 out of 5 (47 Ratings)

43 Verified Reviews

Qradar SIEM

Not a complete product.

The product is good but there are many issues integrating with other third party technologies.

1

Qradar SIEM

Simple to implement, complicated to get everything complete

IBM continues to improve the QRadar platform adding new features and capabilities regularly, and not just resting on their laurels.

Qradar SIEM

Smooth transition to the new SIEM platform.

Working with the vendor on implemention was great, very helpful explaining environmental aspects of the product.

Qradar SIEM

Great Product. Implementation was seamless.

Great product. Implementation was seamless.

Infosphere Guardium

IBM Guardium

IBM was helpful during the decision making process on what was needed for our environment, and helfpul with instructions/tutorials for installing and configuring. IBM was also good at following up to see how our progress was.

Qradar SIEM

Easy to implement

It was smooth and seamless

Qradar SIEM, Other...

implemenation was good but we lacked the expertise to gain maximum value or operationalize

Tool worked as expected

Qradar SIEM

Easy Deployment, Good Value, Needs Focus on New Collectors.

QRadar scales very well, we went from collecting from primarily network devices Syslog, SDEE, and NetFlow) with their out of the box collectors, and then we began collecting the logs from our web gateway, domain controllers, and anti-malware system for a more wholistic view. Now, multiple new security products that we're implementing will be populating the system as part of a large CyberSecurity initiative. We face some challenges as some of the newer devices will require the development of a custom collector. More agility by the vendor in building out standard log collectors for enterprise level network security products (such as Cisco Web Services) would be appreciated. Overall, Security Event identification is pretty intuitive and easy for level 1 analysts to understand and follow up on. And overall, reporting seems to work well without leveraging an external reporting tool.

1

Qradar SIEM

Complex to set up and tune, but stable and functional.

QRadar works as advertised. It is a bit complex to set up and tune, but once it is fully operational, it is pretty rock solid.

Qradar SIEM

Comprehensive SIEM solution with a strong roadmap and innovation.

Overall it has been a very positive experience, they answered the RFI/RFP comprehensively and helped us with the Proof of Concept. They also help you in relation to architecting the solution but you need to be sure you are clear with the scope and you ask a lot of clarifying questions. Their implementation team (also known as the Labs team) is very strong and makes a difference on your implementation. They also have very good support and knowledge base. And they are always looking forward in relation to the industry and what's in the horizon including the cognitive area.