Try our new research platform with insights from 80,000+ expert users

IBM Security QRadar vs Rapid7 InsightOps comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024
 

Categories and Ranking

IBM Security QRadar
Ranking in Log Management
6th
Average Rating
8.0
Number of Reviews
204
Ranking in other categories
Security Information and Event Management (SIEM) (4th), User Entity Behavior Analytics (UEBA) (1st), Endpoint Detection and Response (EDR) (18th), Security Orchestration Automation and Response (SOAR) (4th), Managed Detection and Response (MDR) (10th), Extended Detection and Response (XDR) (14th)
Rapid7 InsightOps
Ranking in Log Management
31st
Average Rating
8.8
Number of Reviews
9
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of November 2024, in the Log Management category, the mindshare of IBM Security QRadar is 4.7%, down from 5.7% compared to the previous year. The mindshare of Rapid7 InsightOps is 0.5%, down from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Muzzamil Hussain - PeerSpot reviewer
Aug 1, 2024
Is easy to integrate and doesn't require maintenance
One major drawback we are facing is in the area of IBM Security QRadar integration with flat file databases. IBM Security QRadar does not support flat file database integration. We are currently facing an issue with respect to the database, which you normally call a NoSQL database. There is no direct integration mechanism available with IBM Security QRadar. We have to approach IBM and generate a ticket so that they can develop a custom method for the integration. In database integration, we are facing issues with IBM Security QRadar. The solution does not support the integration of flat file databases. Certain organizations have flat file databases. IBM does not support direct integration with some databases. We had to create a plug, and we requested IBM to develop a parser, but it is taking IBM a couple of months to develop it. I think a flat-file database should be supported directly instead of developing a parser plugin. There should be a more refined threat intelligence platform, and cross-integration should be possible with locally available threat intelligence platforms.
Karthick Selvam - PeerSpot reviewer
Oct 31, 2023
A cloud solution to collect and analyse logs with timely support
Rapid7 InsightOps is a security information and event management platform that collects and analyses logs from servers, user systems, and network and infrastructure devices. The data is stored in a centralized data for future analysis Rapid7 has a collection of logs. You can easily identify the…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Providing real-time visibility for threat detection and prioritization - QRadar SIEM provides contextual and actionable surveillance across the entire IT infrastructure."
"IBM QRadar User Behavior Analytics has easy architecture, has a good portfolio and integration."
"Customer service is very good and very helpful."
"The flexibility is good in terms of pulling log files."
"Search capabilities are sufficient for most tasks."
"The tool is already automated in many ways, but there are some additional functions which should be automated, like sending an email, mobile notification, and integration of XFS."
"We've found the technical support to be very good."
"It protect us from multiple authentication values, unauthorized access and antivirus threats."
"The most valuable feature of Rapid7 InsightOps is the search functionality."
"The ability to browse logs from multiple sources at the same time really speeds up root cause analysis."
"We can save logs as plain text."
"It has the ability to alert and track logs from different sources."
"Integration of InsightOps with other tools, especially SIEM solutions, has generally improved operational efficiency."
 

Cons

"I would like for them to develop a detection management solution. It does not have a detecting management solution in it, you have to buy it as it is, on top of the extended solution."
"It doesn't have a SOAR system by default. You need to purchase it additionally, which is the main problem with QRadar."
"The solution lacks vendor support."
"There are reports that I would like to generate that are either not included, or I cannot find."
"The solution is difficult to understand in the beginning and has complex management configurations that can be improved."
"The only challenge is that IBM has been a closed enterprise. It should be more open to integrating with other providers at an enterprise level. We're a bank and the core banking system integration is not way straightforward and there is no integration between IBM and these products. If IBM could open up and provide a way of integrating it seamlessly, without charging more for it, that would make a big difference."
"IMB should reduce the pricing, or reduce some of the features for a more economical solution for the customer."
"There are areas in IBM Security QRadar that could benefit from improvement. Its ability to customize knowledge for specific purposes could be enhanced. Also, it lacks clarity in presenting details. It is also difficult to see the reports."
"The solution takes a little bit of time when we load the website for the first time."
"Since I used the beta, improvements are to be expected. The dashboard options could have been clearer, but I believe it is more a problem with the limited documentation available at the time."
"There are a few things I would like to do with a few more complex queries which I am not able to do right now, because it is a SaaS solution."
"Improvement is needed in the dashboard of InsightOps, especially for less technical users."
"Rapid7 InsightOps could improve by making the search query better. There are times when the search query is broken and it does not find anything."
 

Pricing and Cost Advice

"In terms of additional costs, it depends on the subscription that you choose. There are plenty of options to choose from."
"The pricing is higher but cheaper than others and there are no additional costs."
"When it comes to the initial pricing there can be a huge discount from there side and also I think they are open to competing with other products."
"Licensing can be costly depending on your architecture."
"There is a license required for this solution."
"IBM QRadar User Behavior Analytics is an application framework and you can install many applications without any additional costs."
"The tool's price is high."
"We pay approximately $40,000 to use the solution annually. This solution is a lot less expensive than Splunk."
"The product is cheap."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Comparison Review

VS
Jun 28, 2015
Qradar vs. ArcSight
Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Computer Software Company
14%
Financial Services Firm
10%
Government
6%
Computer Software Company
20%
Financial Services Firm
9%
Energy/Utilities Company
8%
Retailer
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendlier GUI and are not licensed based on capacity (amount of logs and information in...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What do you like most about IBM QRadar?
The event collector, flow collector, PCAP and SOAR are valuable.
What do you like most about Rapid7 InsightOps?
Integration of InsightOps with other tools, especially SIEM solutions, has generally improved operational efficiency.
What needs improvement with Rapid7 InsightOps?
Improvement is needed in the dashboard of InsightOps, especially for less technical users. Currently, it lacks clear guidance on icons and features, making it confusing for those with limited exper...
What is your primary use case for Rapid7 InsightOps?
Our clients use InsightOps for real-time monitoring of their IT environments.
 

Also Known As

IBM QRadar, QRadar SIEM, QRadar UBA, QRadar on Cloud, QRadar, IBM QRadar User Behavior Analytics, IBM QRadar Advisor with Watson
InsightOps, Logentries
 

Learn More

 

Overview

 

Sample Customers

Clients across multiple industries, such as energy, financial, retail, healthcare, government, communications, and education use QRadar.
Trimble Navigation Limited
Find out what your peers are saying about IBM Security QRadar vs. Rapid7 InsightOps and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.