Try our new research platform with insights from 80,000+ expert users

IBM Security QRadar vs Secureworks Taegis Managed XDR / MDR comparison

IBM and Secureworks are both solutions in the Managed Detection and Response (MDR) category. IBM is ranked #8 with an average rating of 7.9, while Secureworks is ranked #12 with an average rating of 10.0. IBM holds a 1.0% mindshare in MDR, compared to Secureworks’s 3.2% mindshare. Additionally, 90% of IBM users are willing to recommend the solution, compared to 92% of Secureworks users who would recommend it.
IBM Security QRadar
Read 212 IBM Security QRadar reviews
  • 15,646 Views
  • 469 Comparison Views
90% willing to recommend
Secureworks Taegis Managed ...
Read 14 Secureworks Taegis Managed XDR / MDR reviews
  • 2,866 Views
  • 2,493 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 19, 2025

IBM Security QRadar and Secureworks Taegis Managed XDR/MDR compete in the cybersecurity sector. Based on distinct features, QRadar edges out with its strong scalability and integration capabilities, while Secureworks Taegis is noted for its proactive threat detection and real-time response.

Features: IBM Security QRadar is notable for extracting information from raw logs across various sources, offering scalability through simple configuration, and having a rich set of built-in rules. Secureworks Taegis focuses on real-time monitoring and rapid response, with excellent integration capabilities and machine learning features that help with quick alerting.

Room for Improvement: IBM Security QRadar could improve its incident management features, visualization tools, and analytics, along with easier configuration for newer devices. Secureworks Taegis should enhance its integration with other platforms, boost automation features, and improve tamper-proofing.

Ease of Deployment and Customer Service: IBM Security QRadar is deployed primarily on-premises, with options for public and hybrid clouds, supported by a comprehensive network with mixed responsiveness reviews based on location. Secureworks Taegis allows deployment across on-premises, public, and hybrid clouds with highly rated customer service for its responsiveness and effectiveness.

Pricing and ROI: IBM Security QRadar is perceived as expensive for smaller businesses but provides strong ROI justified by its value for enterprise-level deployments. Secureworks Taegis offers competitive pricing that, while still noted as costly, is appealing for those seeking value and cost-effective solutions.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed IBM Security QRadar vs. Secureworks Taegis Managed XDR / MDR Report (Updated: September 2025).
Buyer's Guide
IBM Security QRadar vs. Secureworks Taegis Managed XDR / MDR
September 2025
Download the complete report
Helped 871,469 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

IBM Security QRadar
Ranking in Managed Detection and Response (MDR)
8th
Average Rating
8.0
Reviews Sentiment
6.7
Number of Reviews
212
Ranking in other categories
Log Management (7th), Security Information and Event Management (SIEM) (4th), User Entity Behavior Analytics (UEBA) (1st), Endpoint Detection and Response (EDR) (18th), Security Orchestration Automation and Response (SOAR) (4th), Extended Detection and Response (XDR) (11th)
Secureworks Taegis Managed ...
Ranking in Managed Detection and Response (MDR)
12th
Average Rating
7.8
Reviews Sentiment
7.1
Number of Reviews
14
Ranking in other categories
Managed Security Services Providers (MSSP) (1st)
 

Mindshare comparison

As of October 2025, in the Managed Detection and Response (MDR) category, the mindshare of IBM Security QRadar is 1.0%, up from 0.7% compared to the previous year. The mindshare of Secureworks Taegis Managed XDR / MDR is 3.2%, down from 5.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Managed Detection and Response (MDR) Market Share Distribution
ProductMarket Share (%)
IBM Security QRadar1.0%
Secureworks Taegis Managed XDR / MDR3.2%
Other95.8%
Managed Detection and Response (MDR)
 

Featured Reviews

Mahmoud Younes - PeerSpot reviewer
Reliable installation and diverse use cases provide strong value
IBM Security QRadar has some areas for improvement. We have missed some DSM components. We need to customize logs where there is no DSM or connector for certain products. We can integrate but we have missed the DSM, which is the connector to pass logs coming from different applications. For example, with a university customer, we tried onboarding Canvas service. IBM Security QRadar does not support Canvas, so we had to create custom scripts and workarounds to pull logs from Canvas.
Read full review
MohammadJundiah - PeerSpot reviewer
Good for risk mitigation and offers good support
The integration would look better with other products, with other EDRs, with other firewalls, with other older versions of firewalls, and the versions of software and hardware. Then, basically, it's compatibility. For example, having an old infrastructure and deploying SecureWorks can sometimes be a hassle. So, that's an area of improvement.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It showed us where weaknesses were in our environment, so we could actively target those patches first."
"The most valuable features are log monitoring, easy-to-fix issues, and problem-solving."
"The tool's most valuable feature is log source management. It enables us to connect to various log sources, including content, authentications, or other customized integrations. These integrations can be tailored for use with other platforms that don’t already have built-in IBM add-ons."
"It allows us to search data both on-premises and on the cloud."
"The tool is already automated in many ways, but there are some additional functions which should be automated, like sending an email, mobile notification, and integration of XFS."
"This console gives you the entire view, which makes life easier and allows you to take precautionary measures."
"The initial setup of QRadar is not complex because we have done it before and we are used to the development. It is getting easier all the time."
"There are a lot of features in QRadar. App Exchange is the most valuable feature. User behavior analytics (UBA) is also a very good feature. Watson is also there, but we are not currently using Watson. It is versatile and quite easy. It also has an all-in-one-box feature and good integration with AWS."
More IBM Security QRadar pros
"There are some patent pending detectors within the platform that provides a lot of value."
"The pricing is flexible."
"We don't have a full SOC, so it's helpful to have them sifting through our alerts and only bringing actionable items to us."
"Securworks' threat intel seems pretty decent, and they integrate with several solutions we have, such as Azure AD, so all our Microsoft 365 stuff is covered."
"The most valuable features are IDS and IPS."
"This solution gathers the information logs from all devices and correlates all the information. It notifies us of any critical events taking place across our networks which has been valuable."
"Secureworks Taegis Managed XDR MDR is a great product that has not posed any challenges from my perspective."
"It provides more visibility and more control over endpoints. It reduces the noise. It clears things and only shows things that are really important. It only shows those things that need to be looked at or need to be investigated further. Other similar solutions give you a lot of alerts and other things, but Secureworks gives you a defined or less noisy view so that you can work or focus on things that are important in terms of investigation, response, and remediation."
More Secureworks Taegis Managed XDR / MDR pros
 

Cons

"IBM Qradar could improve the reporting. The tool is not designed to report. It's a great operational monitoring tool. You put it on a screen and you watch it. If you want to have analytics out of it, that's a whole different story. You're going to need more people and tools. What should be added is reporting and integration into Power BI, into some capability that produces analytical reports from the source data. IBM does not seem to care to add these features."
"I would like to see a better GUI."
"The price of IBM Security QRadar is an area of concern where improvements are required."
"There are a lot of things they are working on and a lot of technologies that are not yet there. They should probably work out a better reserve with their ecosystem of business partners and create wider and more in-depth qualities, third-party tools, and add-ons. These things really give immediate business value. For instance, there are many limitations in using SAP, EBS, or Micro-Dynamics. A lot of things that are happening in those platforms could also be monitored and allowed from the cybersecurity risks perspective. IBM might be leaving this gap or empty space for business partners. Some larger organizations might already be doing this. It would be very nice if IBM can make some artificial intelligence part free of charge for all current QRadar users. This would be a big advantage as compared to other competitors. There are companies that are going in different directions. Of course, you can't do everything inside QRadar. In general, it might be very good for all players to provide more use cases, especially regarding data protection and leakage prevention. There are some who are already doing some kind of file integrity or gathering some more information from all possible technologies for building anything related to the user and data analysis, content analysis, and management regarding the data protection."
"The solution does not support the integration of flat file databases."
"IBM QRadar User Behavior Analytics could improve machine learning use cases because they are limited and most of the use cases are rule-based. They should develop more use cases, such as in Securonix or Exabeam because they will detect a threat. Using machine learning is mainly on the correlation rules, but if you think about Exabeam or Securonix, they detect using machine learning or machine learning-based algorithms."
"The biggest problem was built on top of the QRadar in the executive operations center network. The integration was not using the network security specialist properly, and all the incidents were inferior with QRadar. Its compatibility is not really good."
"Technical support is good, but not great."
More IBM Security QRadar cons
"Dell Secureworks is for higher-end customers and it's not quite as straightforward to implement or to get up and running as some of the other solutions."
"Tamper-proofing or tamper protection is still pending in Secureworks. Tamper protection will make it more secure. If I'm an admin of a device, I can uninstall an agent without the knowledge of the security or Secureworks admin. If someone gets hold of one endpoint with admin credentials, he can remove anything, and an organization will lose visibility. They need to work on providing more visibility across endpoints. A couple of times it has happened that the cloak agent is there, but it did not get activated, or there were some issues. The machine was restarted, but the cloak agent didn't run. In such cases, you have to troubleshoot. It is a big issue if a cyber attack is happening, and your machine is rebooted, but the events are not captured."
"The deployment could definitely be improved."
"In terms of ROI, I'd be surprised if there is any investment return on the SIM."
"The integration would look better with other products, with other EDRs, with other firewalls, with other older versions of firewalls, and the versions of software and hardware."
"The integration with the Carbon Black sensor could be better. ManagedXDR doesn't seem to know how to extract the forensic data from an endpoint that was quarantined by Carbon Black."
"We did a PoC of their next-gen antivirus product, but it wasn't ready yet. It was underdeveloped and caused a lot of issues. We'd like to move away from Carbon Black, but they said that it's probably still not to a point where we'd be happy with it. Carbon Black and RedCloak seem to work fine for us."
"Dell Secureworks could improve its integration with other third-party solutions."
More Secureworks Taegis Managed XDR / MDR cons
 

Pricing and Cost Advice

"The cost of this product is expensive."
"The solution's pricing is based on the EPS model."
"The solution comes with a high price tag, while some of the competitors provide identical functionality in their offerings at no extra cost."
"The product is expensive. We have purchased the perpetual license, but we pay for the support."
"Customers have to purchase a license based on the number of users, devices, and applications they want to protect. It allows you to take a license on a subscription basis for three years or five years."
"There are different types of subscriptions available. We were on an annual subscription, but our customers typically choose the two years subscription option."
"There is an annual license required for this solution."
"It is a perpetual license that we have for the event collector. The licensing is done based on the number of events and flows that you receive on this particular device. These are perpetual licenses, which means once you purchase them, they don't expire, which means that the support to IBM is definitely renewed after every one year. We have an enterprise agreement with IBM, which puts the cost in a totally different category as compared to someone who is not an IBM partner and is approaching IBM for this solution. We were able to get massive discounts. To give you an idea, we recently purchased 30,000 event licenses, and it costs around $480,000. It is definitely not a cheap product. We have licenses for about 270,000 events per second and 3 million flows per second. All the appliances and their events and flows are basically clubbed together and charged or rather calculated through a single source. The console receives all the details from all the event processes that we have globally. So, the license that we have is a single license for 270,000 events per second and 3 million flows per second, but that can be managed centrally. I was only part of the secondary purchase, which was 30,000 events per second for about $480,000. You can calculate how much we paid for 270,000 events. Reducing its price would be a compromise. We have already used a lower-priced product in the form of NNT, but we had to get rid of it because it was not doing the job that we actually wanted to do. You get what you pay for."
More IBM Security QRadar pricing and cost advice
"Initially, the cost was going to be something around $160 or $170. And eventually, I think they brought it down to $110 and they also threw in some endpoint protection platforms."
"The Red Cloak agent is free."
"The price is kind of on par. The licensing was comparable to other solutions. It's not particularly high or low."
"The pricing of Dell Secureworks is very reasonable."
"It is expensive but there is no better product than this."
"The pricing for this solution is reasonable. One agent costs approximately 270 dirhams/70 USD for one year. There is a reduction in cost per licence as the number of licences used increases."
"Secureworks Taegis ManagedXDR is very expensive and could be more cost-effective."
report
See which vendors are best for you
Use our free recommendation engine to learn which Managed Detection and Response (MDR) solutions are best for your needs.
See recommendations
871,469 professionals have used our research since 2012.
 

Comparison Review

VS
Jun 28, 2015
Qradar vs. ArcSight
Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…
Read full review
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
11%
Manufacturing Company
7%
Government
7%
Computer Software Company
20%
Manufacturing Company
9%
Financial Services Firm
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business90
Midsize Enterprise36
Large Enterprise102
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise6
Large Enterprise4
 

Questions from the Community

What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendlier GUI and are not licensed based on capacity (amount of logs and information in...
See all answers
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What is your experience regarding pricing and costs for IBM Security QRadar?
The pricing, setup cost, or licensing with IBM Security QRadar was costly. It was costly mainly for the things we used to use it for. The customers used to pay the price, but it was one of the prob...
See all answers
What do you like most about Secureworks Taegis ManagedXDR?
The most valuable feature is the support. The support chat. It's always connecting to people. And you open the chat, and it's not about that automated response. It's actually a human being that res...
See all answers
What is your experience regarding pricing and costs for Secureworks Taegis ManagedXDR?
It is worth the money. It is expensive but there is no better product than this.
See all answers
What needs improvement with Secureworks Taegis ManagedXDR?
I would not say there is a potential area of improvement. I am also waiting to see what Sophos will bring in terms of enhancement. There is room for AI integration as the industry evolves, and more...
See all answers
 

Comparisons

Splunk Enterprise Security vs IBM Security QRadar Logo
Splunk Enterprise Security vs IBM Security QRadar
Compared 14% of the time
Microsoft Sentinel vs IBM Security QRadar Logo
Microsoft Sentinel vs IBM Security QRadar
Compared 7% of the time
Sentinel vs IBM Security QRadar Logo
Sentinel vs IBM Security QRadar
Compared 6% of the time
Elastic Security vs IBM Security QRadar Logo
Elastic Security vs IBM Security QRadar
Compared 5% of the time
Wazuh vs IBM Security QRadar Logo
Wazuh vs IBM Security QRadar
Compared 5% of the time
More IBM Security QRadar Competitors
Sophos MDR vs Secureworks Taegis Managed XDR / MDR Logo
Sophos MDR vs Secureworks Taegis Managed XDR / MDR
Compared 13% of the time
CrowdStrike Falcon Complete MDR vs Secureworks Taegis Managed XDR / MDR Logo
CrowdStrike Falcon Complete MDR vs Secureworks Taegis Managed XDR / MDR
Compared 13% of the time
SentinelOne Vigilance vs Secureworks Taegis Managed XDR / MDR Logo
SentinelOne Vigilance vs Secureworks Taegis Managed XDR / MDR
Compared 12% of the time
Arctic Wolf Managed Detection and Response vs Secureworks Taegis Managed XDR / MDR Logo
Arctic Wolf Managed Detection and Response vs Secureworks Taegis Managed XDR / MDR
Compared 9% of the time
Cybereason Managed Detection & Response vs Secureworks Taegis Managed XDR / MDR Logo
Cybereason Managed Detection & Response vs Secureworks Taegis Managed XDR / MDR
Compared 3% of the time
More Secureworks Taegis Managed XDR / MDR Competitors
 

Product Reports

Buyer's Guide
IBM Security QRadar
October 2025
IBM Security QRadar reportDownload IBM Security QRadar product report
Buyer's Guide
Secureworks Taegis Managed XDR / MDR
September 2025
Secureworks Taegis Managed XDR / MDR reportDownload Secureworks Taegis Managed XDR / MDR product report
 

Also Known As

IBM QRadar, QRadar SIEM, QRadar UBA, QRadar on Cloud, IBM QRadar Advisor with Watson
Secureworks Red Cloak Managed Detection and Response, Dell Secureworks, SecureWorks Taegis Managed TDR
 

Overview

IBM Security QRadar (recently acquired by Palo Alto Networks) is a security and analytics platform designed to defend against threats and scale security operations. This is done through integrated visibility, investigation, detection, and response. QRadar empowers security groups with actionable insights into high-priority threats by providing visibility into enterprise security data. Through centralized visibility, security teams and analysts can determine their security stance, which areas pose a potential threat, and which areas are critical. This will help streamline workflows by eliminating the need to pivot between tools.

IBM Security QRadar is built to address a wide range of security issues and can be easily scaled with minimal customization effort required. As data is ingested, QRadar administers automated, real-time security intelligence to swiftly and precisely discover and prioritize threats. The platform will issue alerts with actionable, rich context into developing threats. Security teams and analysts can then rapidly respond to minimize the attackers' strike. The solution will provide a complete view of activity in both cloud-based and on-premise environments as a large amount of data is ingested throughout the enterprise. Additionally, QRadar’s anomaly detection intelligence enables security teams to identify any user behavior changes that could be indicators of potential threats. 

IBM QRadar Log Manager

To better help organizations protect themselves against potential security threats, attacks, and breaches, IBM QRadar Log Manager gathers, analyzes, preserves, and reports on security log events using QRadar Sense Analytics. All operating systems and applications, servers, devices, and applications are converted into searchable and actionable intelligent data. QRadar Log Manager then helps organizations meet compliance reporting and monitoring requirements, which can be further upgraded to QRadar SIEM for a more superior level of threat protection.

Some of QRadar Log Manager’s key features include:

  • Data processing and capture on any security event
  • Disaster recovery options and high availability 
  • Scalability for large enterprises
  • SoftLayer cloud installation capability
  • Advanced threat protection

Reviews from Real Users

IBM Security QRadar is a solution of choice among users because it provides a complete solution for security teams by integrating network analysis, log management, user behavior analytics, threat intelligence, and AI-powered investigations into a single solution. Users particularly like having a single window into their network and its ability to be used for larger enterprises.

Simon T., a cyber security services operations manager at an aerospace/defense firm, notes, "The most valuable thing about QRadar is that you have a single window into your network, SIEM, network flows, and risk management of your assets. If you use Splunk, for instance, then you still need a full packet capture solution, whereas the full packet capture solution is integrated within QRadar. Its application ecosystem makes it very powerful in terms of doing analysis."

A management executive at a security firm says, "What we like about QRadar and the models that IBM has, is it can go from a small-to-medium enterprise to a larger organization, and it gives you the same value."

IBM

Secureworks Taegis Managed XDR is a managed detection and response (MDR) tool that combines security analytics software, 24x7 support, threat hunting, and incident response into a standalone product. In a single dashboard, users can see the whole story of their endpoint, network, and cloud activity, making event correlation simple. XDR operationalizes threat intelligence by automatically connecting our threat landscape knowledge with your security telemetry and regularly updated threat intelligence.

Secureworks Taegis Managed XDR gives your security operations teams more confidence when responding to security problems. Security analysts have additional power to actively examine and proactively look for risks in your environment with features like longer log retention, search query, user-defined reporting, and custom use case support. XDR may easily replace your current SIEM, allowing you to receive actionable insights into malicious activities as well as sophisticated threat detection. This solution provides you with enough business and security context for you to understand an investigation and take appropriate action.

Secureworks Taegis Managed XDR Features

Secureworks Taegis Managed XDR has many valuable key features. Some of the most useful ones include:

  • 24/7 service
  • Live chat with experts
  • Interface for collaborative investigation
  • Use of prioritization and threat triage
  • Use of investigation and validation
  • Use of executed containment
  • Use of threat engagement manager 
  • Full access to Taegis advanced analytics
  • Supports cloud, network, and endpoint
  • Supports AWS, Azure, O365
  • Use of applied threat intelligence
  • Use of remote incident response services
  • CTU's global threat hunting and research is ongoing
  • Use of response action execution
  • Access to monthly targeted threat hunting
  • Support provided for integration of third-party data source technologies to ensure coverage across your environment

Secureworks Taegis Managed XDR Benefits

There are many benefits to implementing Secureworks Taegis Managed XDR. Some of the biggest advantages the solution offers include:

  • Improve threat detection and response time: Users have access to Secureworks Taegis Managed XDR’s team of experts, who research and respond to threats on their behalf 24/7. This solution can cut dwell times from the industry average of 111 days to minutes and hours.

  • Industry leader on your side: To safeguard you around the clock, Secureworks Taegis Managed XDR’s security professionals are supported by 20+ years of security experience and insights from 1,400+ annual IR engagements and their extensive threat research.

  • Reduce cost and operational burden: Save money (413% ROI, according to a Forrester Consulting TEI research) while relieving your employees of the strain and allowing them to focus on strategic projects.

Reviews from Real Users

Secureworks Taegis Managed XDR stands out among its competitors for a number of reasons. One major reason is its easy deployment.

A Solutions Architect at a computer software company, writes, “The deployment was easy. We just put on some of the end points, so we're still talking about what's going on there. But to my knowledge, there's been no issues with it.”

Secureworks
 

Sample Customers

Clients across multiple industries, such as energy, financial, retail, healthcare, government, communications, and education use QRadar.
RICOH, Owens and Minor
Buyer's Guide
IBM Security QRadar vs. Secureworks Taegis Managed XDR / MDR
September 2025
Free Report: IBM Security QRadar vs. Secureworks Taegis Managed XDR / MDR
Find out what your peers are saying about IBM Security QRadar vs. Secureworks Taegis Managed XDR / MDR and other solutions. Updated: September 2025.
DOWNLOAD NOW
871,469 professionals have used our research since 2012.
See our IBM Security QRadar vs. Secureworks Taegis Managed XDR / MDR report.
See our list of best Managed Detection and Response (MDR) vendors.

We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.