Try our new research platform with insights from 80,000+ expert users

Grafana Loki vs IBM Security QRadar comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 6, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Grafana Loki
Ranking in Log Management
4th
Average Rating
8.2
Reviews Sentiment
8.0
Number of Reviews
17
Ranking in other categories
No ranking in other categories
IBM Security QRadar
Ranking in Log Management
6th
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
208
Ranking in other categories
Security Information and Event Management (SIEM) (4th), User Entity Behavior Analytics (UEBA) (1st), Endpoint Detection and Response (EDR) (17th), Security Orchestration Automation and Response (SOAR) (4th), Managed Detection and Response (MDR) (9th), Extended Detection and Response (XDR) (11th)
 

Mindshare comparison

As of April 2025, in the Log Management category, the mindshare of Grafana Loki is 8.5%, up from 3.0% compared to the previous year. The mindshare of IBM Security QRadar is 3.8%, down from 5.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

CarlosPimentel - PeerSpot reviewer
Efficient log filtering enhances quick network troubleshooting
We use Grafana Loki for various verticals including manufacturing, finance, health, and aerospatial sectors. It primarily helps in monitoring security and access to devices. Grafana dashboards are used to track access success and failure and audit commands issued on devices Loki significantly…
Md. Shahriar Hussain - PeerSpot reviewer
Real-time incident detection and user-friendly dashboard benefit daily operations
There are many types of AI, and this AI is very limited in SQL and features. There may be potential for improvement. So far, it seems very limited. It shows some good features in the correlation part, but I think there is room for improvement. For instance, when creating rules, it can suggest more rules, reducing the effort needed. If AI-related support can suggest rules and integrate with existing security devices like MD, IPS, this SIM can create more relevant rules. Sometimes logs I receive don't mean anything, and I need technical stakeholders to share or forward logs, but these are sometimes inadequate. Keywords can help identify insufficient logs. I often lack time to verify logs. Sharing false positive results could be reduced to help my team.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The effectiveness of filters is pivotal for optimizing the search process and extracting the specific information we need from the extensive log data."
"The most valuable features of the solution stem from the fact that it is an open-source tool that is stable and flexible."
"The most valuable feature is the capability to set up alerts, which becomes necessary when we need to receive notifications for specific events."
"The most valuable feature of the solution is the tool's GUI. The solution's GUI is very user-friendly."
"The most valuable feature of Grafana Loki is the dashboards which are really simple to create."
"The solution's stability has never been a problem. Stability-wise, I rate the solution a nine to ten out of ten."
"Loki significantly saves time in troubleshooting by quickly pinpointing network issues."
"Grafana Loki is easy to monitor and detect errors."
"IBM QRadar User Behavior Analytics has easy architecture, has a good portfolio and integration."
"The solution can scale."
"Customer service is very good and very helpful."
"I really like the feature we have with the logs, that if there are any credit card numbers being used, like a PII, you can just use rejects and you can mask it. This is a really good feature in QRadar."
"The dashboard is easy to use and easy to understand what's going on and what the alerts mean."
"The most valuable aspect of the solution is the integration capabilities on offer."
"The UBA feature is the most valuable because you can see everything about users' activities."
"We've found the technical support to be very good."
 

Cons

"It's not intended for proprietary services, so you have to struggle with configuration a lot."
"We face some bugs when we install the latest version of Grafana Loki."
"It would be beneficial if Loki could directly access Windows Server logs or events directly from the servers."
"We had a well-structured dashboard with a functional query. However, an issue arose when the Kubernetes pod restarted. The statistics from our Grafana query would reset, dropping to zero and starting anew. This was particularly noticeable with linear graphs, which are expected to show consistent growth."
"The solution has shortcomings regarding security monitoring-oriented features that need improvement."
"The solution's scalability depends on the team managing the Grafana instance."
"The correlation of requests is not simple in Grafana Loki and can be improved."
"The platform's stability needs improvement."
"The technical support is poor. Mostly because when I open a PMR for IBM, I am stuck with Level 1 staff. As an engineer, nothing that I am bringing them does not require Level 2 or Level 3 support."
"Pricing model could be more cost-effective."
"IBM is going through some problems with its resources currently making its support response time slow."
"The features that could be improved include the licensing model and the dashboards and all those presentations. Overall, the user experience part can be improved."
"Whenever we are upgrading or installing any type of patch, at that time we have some delays."
"I would like to see the update process simplified."
"The threat detection needs improvement, they have many false positives."
"I would like for them to develop a detection management solution. It does not have a detecting management solution in it, you have to buy it as it is, on top of the extended solution."
 

Pricing and Cost Advice

"The cost is less than other paid services like CloudWatch."
"You can use the free version of Grafana Loki on-premises."
"I use the open-source version of the product."
"The pricing structure varies based on the number of users; there might be specific taxes to pay for it."
"I use the solution's open-source version. Grafana Loki is a completely free solution for me."
"Grafana Loki is a free, open-source solution."
"We use a free version."
"Grafana Loki is an open-source solution."
"It would be great if this product were cheaper."
"Most of the time, it is easier and cheaper to buy a new product or the QRadar box."
"Pricing (based on EPS) will be more accurate."
"On a scale from one to ten, where one is cheap and ten is expensive, I rate IBM Security QRadar's pricing a five out of ten."
"It's too expensive."
"IBM's Qradar is not for small companie. Unfortunately, it would be 'overkill' to place it plainly. The pricing would be too much."
"It could be cheaper, but the value itself is far more important for us than the price. Typically, our clients have yearly subscriptions."
"There is a license required for this solution. There are some limitations depending on what license you purchase."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
849,190 professionals have used our research since 2012.
 

Comparison Review

VS
Jun 28, 2015
Qradar vs. ArcSight
Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
10%
Comms Service Provider
10%
Manufacturing Company
8%
Educational Organization
24%
Computer Software Company
14%
Financial Services Firm
10%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Grafana Loki?
We are using Grafana Loki as a database for real-time metrics.
What is your experience regarding pricing and costs for Grafana Loki?
We use the open-source version of Loki. The cloud version is competitively priced compared to other market solutions.
What needs improvement with Grafana Loki?
It would be beneficial if Loki could directly access Windows Server logs or events directly from the servers.
What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendlier GUI and are not licensed based on capacity (amount of logs and information in...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
 

Also Known As

No data available
IBM QRadar, QRadar SIEM, QRadar UBA, QRadar on Cloud, IBM QRadar Advisor with Watson
 

Overview

 

Sample Customers

Information Not Available
Clients across multiple industries, such as energy, financial, retail, healthcare, government, communications, and education use QRadar.
Find out what your peers are saying about Grafana Loki vs. IBM Security QRadar and other solutions. Updated: April 2025.
849,190 professionals have used our research since 2012.