Assistant Vice President at National Bank of Pakistan
Real User
Top 5
2024-08-01T15:11:34Z
Aug 1, 2024
IBM Security QRadar enhances threat detection and incident response in our specific industry. The threat intelligence is somewhat different in Pakistan. We also have to deploy other open-source solutions and integrate them with the new system. We have IBM X-Force, and the solution provides threat intelligence releases for global incidents. Basically, we have CTM360, which helps with the threat intelligence part. We are actually using both with the solution. I think IBM X-Force complements our challenges, but it is not up to the mark we require. We have to collaborate with different solutions as well with CTM360. The tool's anomaly detection was useful with respect to application integration. We use a use case where we recently implemented the tool with respect to business applications where we define a rule set, and the system perfectly identifies and triggers an event against the rule set we define, so it is related to business applications. Our use cases are related to the event. An incident was caused a couple of days ago due to the Log4j vulnerability. For such vulnerabilities, the use case will also be helpful. It is easy to integrate with different solutions or different databases like MySQL and Oracle. It has the edge over other solutions, like open-source solutions like Wazuh and Splunk, so IBM Security QRadar is very much refined with respect to these solutions. Regarding the tool's ability to maintain high-security standards, I rate it ten out of ten. So far, we haven't used any AI feature in the tool, or it may not be available in the version we use. Overall, I recommend the tool to others. We are currently recommending it to peer banks and peer colleagues who need to make a decision to buy a product. Maintenance is not required, but we regularly check the tool's health reports. If any event occurs monthly or quarterly, then we need to maintain it. Otherwise, no maintenance is required. I rate the tool an eight out of ten.
I am generally satisfied with the product. Considering that there is still room for improvement and that the vendor could improve it to be made faster than it is at the moment, it is still a good product. I rate the tool an eight out of ten.
QRadar supports connectivity with a 2800 vendors, including Cisco and Fortinet FortiGate. These integrations encompass various platforms such as VMs, Linux distributions like Red Hat and CentOS, and Symantec and Microsoft Windows for CRM databases and other server functionalities. Cloud technologies such as Office 365 are also supported. The tool is flexible and I recommend it. Overall, I rate the solution a nine out of ten.
Head of Cybersecurity at a computer software company with 51-200 employees
Real User
Top 10
2023-11-01T09:03:55Z
Nov 1, 2023
My company takes care of the maintenance part of the solution for our clients who use IBM Security QRadar in their environments. Nine engineers and one manager take care of the maintenance process of IBM Security QRadar. My company has a lot of certified employees to take care of IBM Security QRadar's maintenance. My company can be considered a powerhouse when it comes to products from IBM. I recommend the solution to those who plan to use it. Splunk and IBM are leaders as per Gartner Magic Quadrant. I believe that IBM Security QRadar should be fairly priced for SMEs. I rate the overall tool an eight out of ten.
I give the solution a seven out of ten. We have around 20 users. The solution is of good quality and can be implemented successfully. However, in order to fully utilize its benefits, one must possess expertise in Python programming.
Information Security Manager at a financial services firm with 1,001-5,000 employees
Real User
Top 5
2023-02-13T20:28:45Z
Feb 13, 2023
The version of IBM QRadar User Behavior Analytics, which my company uses, is a little outdated from 2013. That version doesn't have the log collection feature. My rating for the version of IBM QRadar User Behavior Analytics I'm using is a seven overall.
Vice President - Technology & Managed Security Services at Valuepoint Systems
Real User
Top 10
2023-01-13T14:37:22Z
Jan 13, 2023
I rate this solution a six out of ten. Regarding advice, using this solution purely depends on the use case. If it meets your use case, then IBM QRadar is good, but other solutions like Securonix are much better.
Principal Cybersecurity Consultant (Architecture, Engineering, Operations) CISO VCISO at a financial services firm with 10,001+ employees
Consultant
2022-10-18T18:35:39Z
Oct 18, 2022
I give the solution an eight out of ten. The solution is fairly easy to maintain and the learning curve is reasonable compared to other products to customize the workflow dashboards and get meaningful insight as far as what is happening within our organization. The solution is also fairly straightforward to integrate with different data log sources. The solution requires three to five people to maintain including one analyst, an engineer, and an architect. I suggest before using the solution you know what your process is, know what your logging sources are, and plan well because It's really a leadership challenge. The solution is better deployed than other models.
I would advise potential users to read the manual or the workbook before going forward with the deployment. Try to match the requirements with the company's needs to avoid facing issues in the future. But if you get stuck, you can always ask the community for help. On a scale from one to ten, I would give IBM QRadar Advisor with Watson a nine.
The version we use depends on when the customer is onboarded. Whenever recent onboarding takes place, we use the most up-to-date versions. However, there are customers that we have been facilitating for the past two or two and a half years and they might be using the previous versions. There are proper version upgrades that happen on a quarterly basis. I'd rate the solution seven out of ten.
IM Operations Manager at a tech services company with 1,001-5,000 employees
Real User
2022-04-25T09:34:06Z
Apr 25, 2022
My advice to others is to shop around because IBM QRadar Advisor with Watson is not for small enterprises, it's aimed at your larger environments that have a multitude of infrastructure and networks that are hybrid across different environments. It integrates into quite a few tools, such as your email system, and file systems. This tool is not for everybody. IBM doesn't have the sort of tool that helps a five, ten, or twenty user environment. This is not advisable to go and invest in the solution. There are other tools that you could possibly look at that do probably some of the functions in terms of monitoring your playbooks and integration points that are a little bit easier to map to. However, that is not a tool for every organization out there. The solution is targeting major enterprises. I rate IBM QRadar Advisor with Watson a seven out of ten. There are quite a few areas they could improve, such as they have a lot of technical manual configs and orchestration could be better.
IBM Security QRadar (recently acquired by Palo Alto Networks) is a security and analytics platform designed to defend against threats and scale security operations. This is done through integrated visibility, investigation, detection, and response. QRadar empowers security groups with actionable insights into high-priority threats by providing visibility into enterprise security data. Through centralized visibility, security teams and analysts can determine their security stance, which...
IBM Security QRadar enhances threat detection and incident response in our specific industry. The threat intelligence is somewhat different in Pakistan. We also have to deploy other open-source solutions and integrate them with the new system. We have IBM X-Force, and the solution provides threat intelligence releases for global incidents. Basically, we have CTM360, which helps with the threat intelligence part. We are actually using both with the solution. I think IBM X-Force complements our challenges, but it is not up to the mark we require. We have to collaborate with different solutions as well with CTM360. The tool's anomaly detection was useful with respect to application integration. We use a use case where we recently implemented the tool with respect to business applications where we define a rule set, and the system perfectly identifies and triggers an event against the rule set we define, so it is related to business applications. Our use cases are related to the event. An incident was caused a couple of days ago due to the Log4j vulnerability. For such vulnerabilities, the use case will also be helpful. It is easy to integrate with different solutions or different databases like MySQL and Oracle. It has the edge over other solutions, like open-source solutions like Wazuh and Splunk, so IBM Security QRadar is very much refined with respect to these solutions. Regarding the tool's ability to maintain high-security standards, I rate it ten out of ten. So far, we haven't used any AI feature in the tool, or it may not be available in the version we use. Overall, I recommend the tool to others. We are currently recommending it to peer banks and peer colleagues who need to make a decision to buy a product. Maintenance is not required, but we regularly check the tool's health reports. If any event occurs monthly or quarterly, then we need to maintain it. Otherwise, no maintenance is required. I rate the tool an eight out of ten.
I am generally satisfied with the product. Considering that there is still room for improvement and that the vendor could improve it to be made faster than it is at the moment, it is still a good product. I rate the tool an eight out of ten.
I prefer Splunk since it gives a lot more freedom and flexibility. I rate the overall solution a six out of ten.
I rate the tool a seven out of ten. It is a tough product.
I rate the overall product an eight out of ten.
QRadar supports connectivity with a 2800 vendors, including Cisco and Fortinet FortiGate. These integrations encompass various platforms such as VMs, Linux distributions like Red Hat and CentOS, and Symantec and Microsoft Windows for CRM databases and other server functionalities. Cloud technologies such as Office 365 are also supported. The tool is flexible and I recommend it. Overall, I rate the solution a nine out of ten.
My company takes care of the maintenance part of the solution for our clients who use IBM Security QRadar in their environments. Nine engineers and one manager take care of the maintenance process of IBM Security QRadar. My company has a lot of certified employees to take care of IBM Security QRadar's maintenance. My company can be considered a powerhouse when it comes to products from IBM. I recommend the solution to those who plan to use it. Splunk and IBM are leaders as per Gartner Magic Quadrant. I believe that IBM Security QRadar should be fairly priced for SMEs. I rate the overall tool an eight out of ten.
Overall, I rate IBM Security QRadar a nine out of ten.
In the future, my company would want the cloud version of the solution and not its on-prem version. I rate the overall tool a seven out of ten.
I am using the current version of the solution. We do not have a team to analyze malware. Overall, I rate the product a nine out of ten.
I give the solution a seven out of ten. We have around 20 users. The solution is of good quality and can be implemented successfully. However, in order to fully utilize its benefits, one must possess expertise in Python programming.
The version of IBM QRadar User Behavior Analytics, which my company uses, is a little outdated from 2013. That version doesn't have the log collection feature. My rating for the version of IBM QRadar User Behavior Analytics I'm using is a seven overall.
I rate this solution a nine out of ten.
I rate this solution a six out of ten. Regarding advice, using this solution purely depends on the use case. If it meets your use case, then IBM QRadar is good, but other solutions like Securonix are much better.
I would recommend tuning it to the maximum before going live. I would rate IBM QRadar User Behavior Analytics a seven on a scale of one to ten.
I would rate IBM QRadar User Behavior Analytics an eight out of ten.
I give the solution an eight out of ten. The solution is fairly easy to maintain and the learning curve is reasonable compared to other products to customize the workflow dashboards and get meaningful insight as far as what is happening within our organization. The solution is also fairly straightforward to integrate with different data log sources. The solution requires three to five people to maintain including one analyst, an engineer, and an architect. I suggest before using the solution you know what your process is, know what your logging sources are, and plan well because It's really a leadership challenge. The solution is better deployed than other models.
I would advise potential users to read the manual or the workbook before going forward with the deployment. Try to match the requirements with the company's needs to avoid facing issues in the future. But if you get stuck, you can always ask the community for help. On a scale from one to ten, I would give IBM QRadar Advisor with Watson a nine.
The version we use depends on when the customer is onboarded. Whenever recent onboarding takes place, we use the most up-to-date versions. However, there are customers that we have been facilitating for the past two or two and a half years and they might be using the previous versions. There are proper version upgrades that happen on a quarterly basis. I'd rate the solution seven out of ten.
My advice to others is to shop around because IBM QRadar Advisor with Watson is not for small enterprises, it's aimed at your larger environments that have a multitude of infrastructure and networks that are hybrid across different environments. It integrates into quite a few tools, such as your email system, and file systems. This tool is not for everybody. IBM doesn't have the sort of tool that helps a five, ten, or twenty user environment. This is not advisable to go and invest in the solution. There are other tools that you could possibly look at that do probably some of the functions in terms of monitoring your playbooks and integration points that are a little bit easier to map to. However, that is not a tool for every organization out there. The solution is targeting major enterprises. I rate IBM QRadar Advisor with Watson a seven out of ten. There are quite a few areas they could improve, such as they have a lot of technical manual configs and orchestration could be better.
We are a preferred partner of IBM. I'd rate the solution at a seven out of ten.