We just raised a $30M Series A: Read our story
Oscar Orellana
Founder at a university with 11-50 employees
Real User
Top 10
Stable, easy to set up, and has good support

What is our primary use case?

This product helps to build a strong architecture, which is important to avoid problems.

What is most valuable?

I think the QDI is very good.

What needs improvement?

The biggest drawback of this solution is the price. The threat detection needs improvement, they have many false positives. It is important to have good architecture. If you have problems and you don't have a strong architecture you, will have trouble with this solution.

For how long have I used the solution?

I have been using IBM QRadar for three years. We are using version 7.4.3

What do I think about the stability of the solution?

It's a stable solution.

How are customer service and technical support?

We have many interactions with L2 support when we needed L3 support.…

What is our primary use case?

This product helps to build a strong architecture, which is important to avoid problems.

What is most valuable?

I think the QDI is very good.

What needs improvement?

The biggest drawback of this solution is the price.

The threat detection needs improvement, they have many false positives.

It is important to have good architecture. If you have problems and you don't have a strong architecture you, will have trouble with this solution.

For how long have I used the solution?

I have been using IBM QRadar for three years.

We are using version 7.4.3

What do I think about the stability of the solution?

It's a stable solution.

How are customer service and technical support?

We have many interactions with L2 support when we needed L3 support. I would rate technical support an eight out of ten.

How was the initial setup?

The initial setup is straightforward. We had no problems.

It took approximately a month to deploy.

What's my experience with pricing, setup cost, and licensing?

This price is a little high, so it's an expensive product. It is a good solution but not a cheap one.

What other advice do I have?

I would rate IBM QRadar a nine out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
KA
AVP - Security at a tech services company with 501-1,000 employees
Real User
Scalable, high visibility, and good technical support

What is our primary use case?

IBM QRadar is typically deployed in a SOC environment for security monitoring. It is used for log and packet capturing. It has some supporting technology, such as data leakage prevention and data encryption.

What is most valuable?

I have found visibility very helpful for analytics.

What needs improvement?

This solution is on-premise and many customers are moving to the cloud base solution.

For how long have I used the solution?

I have been using this solution for approximately one year.

What do I think about the stability of the solution?

I have not had any complaints from my clients about the stability of the solution.

What do I think about the scalability of the solution?

The solution is scalable. Our customers that are using this…

What is our primary use case?

IBM QRadar is typically deployed in a SOC environment for security monitoring. It is used for log and packet capturing. It has some supporting technology, such as data leakage prevention and data encryption.

What is most valuable?

I have found visibility very helpful for analytics.

What needs improvement?

This solution is on-premise and many customers are moving to the cloud base solution.

For how long have I used the solution?

I have been using this solution for approximately one year.

What do I think about the stability of the solution?

I have not had any complaints from my clients about the stability of the solution.

What do I think about the scalability of the solution?

The solution is scalable. Our customers that are using this solution are mainly large-sized companies, such as the government.

How are customer service and technical support?

The technical support is very good.

What other advice do I have?

Nowadays cloud stack security is very good. Some of my customers are planning to build their data center over the cloud, or implement cloud-based services using some of the beneficial services, such as threat intelligence services.

I rate IBM QRadar a ten out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Integrator
Flag as inappropriate
Learn what your peers think about IBM QRadar. Get advice and tips from experienced pros sharing their opinions. Updated: November 2021.
554,382 professionals have used our research since 2012.
MB
Information Security Leader at a computer software company with 1,001-5,000 employees
Real User
Manage and review incidents easily

What is our primary use case?

We use IBM QRadar for user behavior analytics and incident handling.

What is most valuable?

The features that I have found most valuable are that it is very stable, easy to get going, and easy to manage. It is also easy to review all incidents.

What needs improvement?

The only problem is that if you have too many events that occur, then the storage capacity becomes a problem. We would need to increase the storage capacity.

For how long have I used the solution?

I have been using IBM QRadar for four years.

What do I think about the scalability of the solution?

We have three customers using it and these customers have 100 to 300 users.

How are customer service and support?

Getting support sometimes takes time.

How was the initial

What is our primary use case?

We use IBM QRadar for user behavior analytics and incident handling.

What is most valuable?

The features that I have found most valuable are that it is very stable, easy to get going, and easy to manage. It is also easy to review all incidents.

What needs improvement?

The only problem is that if you have too many events that occur, then the storage capacity becomes a problem. We would need to increase the storage capacity.

For how long have I used the solution?

I have been using IBM QRadar for four years.

What do I think about the scalability of the solution?

We have three customers using it and these customers have 100 to 300 users.

How are customer service and support?

Getting support sometimes takes time.

How was the initial setup?

The initial setup was quite straightforward.

We had the complete deployment and it was up and running in half a day.

What about the implementation team?

You can implement it by yourself.

What other advice do I have?

I would recommend IBM QRadar to other people who want to start using it.

On a scale of one to ten, I would give QRadar a nine.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
ParveshDhurmea
Assistant Engineer at Harel Mallac Technologies Ltd
Real User
Simple to manage, reliable, and straightforward installation

What is our primary use case?

I use IBM QRadar for user behavior analytics, and mostly incident handling.

What is most valuable?

The solution is easy to use, manage, and review all incidents.

What needs improvement?

If you have too many events that occur, then the storage capacity becomes a problem. You need to have more storage.

For how long have I used the solution?

I have been using IBM QRadar for approximately four years.

What do I think about the stability of the solution?

The solution is very stable.

What do I think about the scalability of the solution?

We have approximately three customers and the total users that are using it would be approximately 200.

How was the initial setup?

The initial installation was straightforward, we were able to have it…

What is our primary use case?

I use IBM QRadar for user behavior analytics, and mostly incident handling.

What is most valuable?

The solution is easy to use, manage, and review all incidents.

What needs improvement?

If you have too many events that occur, then the storage capacity becomes a problem. You need to have more storage.

For how long have I used the solution?

I have been using IBM QRadar for approximately four years.

What do I think about the stability of the solution?

The solution is very stable.

What do I think about the scalability of the solution?

We have approximately three customers and the total users that are using it would be approximately 200.

How was the initial setup?

The initial installation was straightforward, we were able to have it running in half a day.

What about the implementation team?

I do the implementation and maintenance of the solution.

What's my experience with pricing, setup cost, and licensing?

There are different types of subscriptions available. We were on an annual subscription, but our customers typically choose the two years subscription option.

What other advice do I have?

I would recommend this solution to others.

I rate IBM QRadar a nine out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate
SP
Senior Security Engineer at a wholesaler/distributor with 10,001+ employees
Real User
Effective data correlation features, scalable, and helpful technical support

What is our primary use case?

This a Security Information and Event Management (SIEM) solution and we use it for many purposes.

What is most valuable?

One of the most valuable features of this solution is it has very good data correlation.

What needs improvement?

In a future release, the solution could provide malware analysis.

For how long have I used the solution?

I have been using this solution for approximately three years.

What do I think about the stability of the solution?

The solution is stable.

What do I think about the scalability of the solution?

The scalability is good and we have approximately 200 users using this solution.

How are customer service and technical support?

The technical support has been very good in my experience.

How was the initial

What is our primary use case?

This a Security Information and Event Management (SIEM) solution and we use it for many purposes.

What is most valuable?

One of the most valuable features of this solution is it has very good data correlation.

What needs improvement?

In a future release, the solution could provide malware analysis.

For how long have I used the solution?

I have been using this solution for approximately three years.

What do I think about the stability of the solution?

The solution is stable.

What do I think about the scalability of the solution?

The scalability is good and we have approximately 200 users using this solution.

How are customer service and technical support?

The technical support has been very good in my experience.

How was the initial setup?

The initial setup was straightforward.

What's my experience with pricing, setup cost, and licensing?

There is a license required for this solution. There are some limitations depending on what license you purchase.

What other advice do I have?

I would recommend this solution.

I rate IBM QRadar an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Joao Manso
CEO at a tech services company with 11-50 employees
Reseller
Top 5
Very powerful with plenty of features and capabilities

What is our primary use case?

We use this solution both in our company and those of our clients. We are resellers of QRadar. 

What is most valuable?

Curator is the leader of teams in the market. It's a product with plenty of features and capabilities. It's a very powerful solution.

What needs improvement?

The usability of interfaces could be improved and the solution could have better correlation services, as well as faster and updated intelligence interfaces.

For how long have I used the solution?

I've been using this solution for five years. 

What do I think about the stability of the solution?

The solution is stable. 

What do I think about the scalability of the solution?

The solution is scalable. 

How are customer service and support?

Technical support has…

What is our primary use case?

We use this solution both in our company and those of our clients. We are resellers of QRadar. 

What is most valuable?

Curator is the leader of teams in the market. It's a product with plenty of features and capabilities. It's a very powerful solution.

What needs improvement?

The usability of interfaces could be improved and the solution could have better correlation services, as well as faster and updated intelligence interfaces.

For how long have I used the solution?

I've been using this solution for five years. 

What do I think about the stability of the solution?

The solution is stable. 

What do I think about the scalability of the solution?

The solution is scalable. 

How are customer service and support?

Technical support has room for improvement.

How was the initial setup?

The initial setup is easy.

What's my experience with pricing, setup cost, and licensing?

Licensing costs are reasonable.

What other advice do I have?

I rate the solution nine out of 10. 

Disclosure: My company has a business relationship with this vendor other than being a customer:
Flag as inappropriate
JR
Cybersecurity Business Development Manager at a comms service provider with 10,001+ employees
Real User
Helpful customer support, overall good functionality, and reliable

What is our primary use case?

I am currently working in the Brazilian operation of my company. I have a project in the airline industry in Brazil. This project improves the correlation of logs. There is another company I ticket to improve the solution, they have chosen to correlate the logs. We have SOC, Security Operation Center in Brazil, with 53 employees. We developed all these solutions in Brazil and it is in operation in 34 countries. 

What is most valuable?

Overall a great solution.

What needs improvement?

There needs to be better integration with other applications.

What do I think about the scalability of the solution?

We have approximately 40 users using the solution.

How are customer service and technical support?

The technical support is good.

How was the

What is our primary use case?

I am currently working in the Brazilian operation of my company. I have a project in the airline industry in Brazil. This project improves the correlation of logs. There is another company I ticket to improve the solution, they have chosen to correlate the logs. We have SOC, Security Operation Center in Brazil, with 53 employees. We developed all these solutions in Brazil and it is in operation in 34 countries. 

What is most valuable?

Overall a great solution.

What needs improvement?

There needs to be better integration with other applications.

What do I think about the scalability of the solution?

We have approximately 40 users using the solution.

How are customer service and technical support?

The technical support is good.

How was the initial setup?

The installation is complex.

What about the implementation team?

We do the deployment for the solution.

What other advice do I have?

I rate IBM QRadar a ten out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
SH
Pre-Sale Consultant (Technical) at a tech services company with 51-200 employees
Real User
Easy to set up, but we have had some problems with the networking support

What is our primary use case?

We are a system integrator and IBM QRadar is one of the security and monitoring products that we implement for our clients. It is used for monitoring applications such as Windows virtual desktop access (VDA) and computer-managed instruction (CMI).

What is most valuable?

We are using the platform version, which I like.

What needs improvement?

We have had problems with networking.

For how long have I used the solution?

I have been using QRadar for about half a year.

What do I think about the scalability of the solution?

We have not tried to scale because it is installed all in one machine.

How was the initial setup?

The initial setup was easy and it took one day to install it.

What other advice do I have?

Overall, I like this product…

What is our primary use case?

We are a system integrator and IBM QRadar is one of the security and monitoring products that we implement for our clients. It is used for monitoring applications such as Windows virtual desktop access (VDA) and computer-managed instruction (CMI).

What is most valuable?

We are using the platform version, which I like.

What needs improvement?

We have had problems with networking.

For how long have I used the solution?

I have been using QRadar for about half a year.

What do I think about the scalability of the solution?

We have not tried to scale because it is installed all in one machine.

How was the initial setup?

The initial setup was easy and it took one day to install it.

What other advice do I have?

Overall, I like this product and I think that the features are good enough.

I would rate this solution a seven out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free IBM QRadar Report and get advice and tips from experienced pros sharing their opinions.