We performed a comparison between Change Auditor for Windows File Servers and IBM Security QRadar based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management."The solution's most valuable aspect is that it can be fully integrated with Microsoft solutions and it doesn't impact the productivity order."
"In terms of features, the querying is great."
"The tool's most valuable feature is log source management. It enables us to connect to various log sources, including content, authentications, or other customized integrations. These integrations can be tailored for use with other platforms that don’t already have built-in IBM add-ons."
"The scalability is awesome, because QRadar includes other solutions in the same console."
"Vulnerability data, network data and the like, are part of correlation and detection."
"We've found the solution to be scalable."
"The solution is reliable."
"The product provides a complete platform for ingesting the log, doing the correlations and handling the runtime."
"The solution is relatively easy to use."
"The flexibility is good in terms of pulling log files."
"The pricing could be improved. It needs to be reduced."
"The customer service and support could improve their approach to questioning issues. They tend to ask questions one at a time, which creates a lot of back-and-forth communication."
"The solution is difficult to understand in the beginning and has complex management configurations that can be improved."
"The solution lacks vendor support."
"The modularity could be improved."
"I'd like them to improve the offense. When QRadar detects something, it creates what it calls offenses. So, it has a rudimentary ticketing system inside of it. This is the same interface that was there when I started using it 12 years ago. It just has not been improved. They do allow integration with IBM Resilient, but IBM Resilient is grotesquely expensive. The most effective integration that IBM offers today is with IBM Resilient, which is an instant response platform. It is a very good platform, but it is very expensive. They really should do something with the offense handling because it is very difficult to scale, and it has limitations. The maximum number of offenses that it can carry is 16K. After 16K, you have to flush your offenses out. So, it is all or nothing. You lose all your offenses up until that point in time, and you don't have any history within the offense list of older events. If you're dealing with multiple customers, this becomes problematic. That's why you need to use another product to do the actual ticketing. If you wanted the ticket existence, you would normally interface with ServiceNow, SolarWinds, or some other product like that."
"It doesn't have a SOAR system by default. You need to purchase it additionally, which is the main problem with QRadar."
"The whole process for support is something that needs to be improved."
"Search capability and indexing still lag behind competitors. We also need to see improved rule based access controls and rule/event tuning."
"QVM is another instance where they need to revise the vulnerability scoring and the proper remediation details."
More Change Auditor for Windows File Servers Pricing and Cost Advice →
Earn 20 points
Change Auditor for Windows File Servers is ranked 55th in Log Management with 2 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. Change Auditor for Windows File Servers is rated 9.0, while IBM Security QRadar is rated 8.0. The top reviewer of Change Auditor for Windows File Servers writes "Provides granular queries of security logs and real-time alerting helps me mitigate risks". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Change Auditor for Windows File Servers is most compared with Quest InTrust, Wazuh and Splunk Enterprise Security, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.