We performed a comparison between Dynatrace and IBM Security QRadar based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Dynatrace is highly regarded for its advanced AI engine and ability to identify infrastructure automatically. It also offers session replay and impressive visualization features. QRadar users say the solution provides extensive information and helpful leads for locating pertinent data. QRadar stands out with its comprehensive network visibility and strong SIEM capabilities. Some Dynatrace reviewers feel the learning curve is a little steep, and the documentation could be clearer. Users say that Dynatrace should offer more security options and improve integration with other tools. QRadar could improve its rule deployment and lower its false positive rate. Users would also like expanded storage capacity, streamlined user management, and a more mature architecture.
Service and Support: Users generally found Dynatrace's customer service to be helpful and available, but some said that the response times and documentation have room for improvement. Some QRadar customers have had trouble connecting with knowledgeable support staff and experienced delayed responses.
Ease of Deployment: Dynatrace's setup is simple, efficient, and requires minimal technical configuration. It takes a few hours at most. QRadar's initial setup can be complex for users without expertise, and the difficulty may vary depending on the size of the data set.
Pricing: Users say Dynatrace is expensive. Some noted that the licensing model is complicated and not transparent. Some said they struggled to accurately predict the number of units needed. QRadar can be costly because users need to buy new hardware to upgrade.
ROI: Dynatrace users said the solutions saved them money and reduced downtime. QRadar delivers a high return on investment, improving security through its advanced user behavior analytics.
"The most valuable features are the UEM (User Experience Monitoring) and the DEM (Digital Experience Management)."
"Complete visibility into end-to-end user transactions."
"Triggering gives us warning that system is getting slow and we need to nail down the issue soon, so it does not impact our business."
"The most valuable component of it is taking that guessing out of troubleshooting problems. We no longer have to rely on an architect, or an application person, or someone's memory of how the transaction moves throughout the infrastructure and the different dependencies that it has on it. We can see it right there and we find out more that we ever imagined."
"It simplifies a lot of the processes of performance tuning client systems before they go live."
"We were quite happy with the easy installation process and how quickly we received a good overview over all of our web applications."
"It reduces time and provides detailed info, showing problem correlation, and a single point of diagnosis."
"It is very stable. The improvements that they keep making just make the tool more useful."
"It is a bit easier to use than other products, such as Splunk or ELK Elasticsearch."
"We have worked with other solutions, such as LogRhythm and Splunk. Compared to others, IBM QRadar has the best price-performance ratio so that you are able to reserve minimum costs. It starts settling in fast and gets the first results very quickly. It is also very scalable."
"It's user-friendly when compared to other products."
"No doubt about it, the solution is extremely stable."
"What I like the most about it is that you can very easily install and configure it. As compared to other SIEM solutions, for which you need to know and do a lot more to prepare your SIEM environment, QRadar is much simpler to install and configure. There are various options in the Admin console. In the Admin tab, you can design dashboards and view various graphs. It has a lot of attractive features, and you don't need to configure everything on your own."
"The monitoring and dashboards are great."
"I have found the most important features to be the flexibility, tech framework, and disk manager."
"The best part of this solution is having a third-party SOC."
"The usability is worse than it used to be."
"Scalability has improved quite a bit from the beginning."
"Dynatrace must reduce the required resources for on-premise, because they are too high."
"We had one issue when we tried to enter one agent and it just does not work. We got to work with the highest level of support, but it took a while to get there."
"Support for cloud-based environments needs to be improved."
"Mainly navigation needs improvement. It is easier to follow a flow. Following the flow of the admin now is not easy."
"I would like a testing module focused on quality gates."
"Possibly include some network monitoring capabilities."
"I'd like them to improve the offense. When QRadar detects something, it creates what it calls offenses. So, it has a rudimentary ticketing system inside of it. This is the same interface that was there when I started using it 12 years ago. It just has not been improved. They do allow integration with IBM Resilient, but IBM Resilient is grotesquely expensive. The most effective integration that IBM offers today is with IBM Resilient, which is an instant response platform. It is a very good platform, but it is very expensive. They really should do something with the offense handling because it is very difficult to scale, and it has limitations. The maximum number of offenses that it can carry is 16K. After 16K, you have to flush your offenses out. So, it is all or nothing. You lose all your offenses up until that point in time, and you don't have any history within the offense list of older events. If you're dealing with multiple customers, this becomes problematic. That's why you need to use another product to do the actual ticketing. If you wanted the ticket existence, you would normally interface with ServiceNow, SolarWinds, or some other product like that."
"I think QRadar is very complex. It's a distributed system and IBM QRadar has an all-in-one solution which is not like that distributed solution but it's a good product. IBM needs to consider the user interface because if we compare it with AlienVault, the AlienVault user interface is fantastic but the IBM QRadar user interface is very complex. They should focus on how to make it easier for the client."
"The tech support is not that good."
"The solution is difficult to understand in the beginning and has complex management configurations that can be improved."
"IBM technical support is always terrible."
"It needs more resilience and functionality."
"The tool is very complicated. One place for improvement would be to have a more user-friendly interface. Having better support in Spanish would be cool."
"Its architecture is very complicated."
Dynatrace is ranked 4th in Log Management with 341 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. Dynatrace is rated 8.8, while IBM Security QRadar is rated 8.0. The top reviewer of Dynatrace writes "AI identifies all the components of a response-time issue or failure, hugely benefiting our triage efforts". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Dynatrace is most compared with Datadog, New Relic, AppDynamics, Splunk Enterprise Security and Azure Monitor, whereas IBM Security QRadar is most compared with Splunk Enterprise Security, Microsoft Sentinel, Wazuh, LogRhythm SIEM and Elastic Security. See our Dynatrace vs. IBM Security QRadar report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.