Head of Cyber security analysis at DNV Poland Sp. z o.o.
Real User
2022-06-07T16:25:00Z
Jun 7, 2022
It's hard for me to pinpoint any one feature that's most valuable because it is all about consuming logs and analyzing them. We started using QRadar UBA because we needed something that could analyze Linux authentication information. Other products take care of the Windows platform.
Senior Marketing Specialist II at Harman International
Real User
2022-05-01T05:38:22Z
May 1, 2022
I have used IBM QRadar User Behavior Analytics in a Cloud Pak on Amazon, and there it runs on top of it and is easy to assess. Additionally, I have installed processes and characters.
The feature that I find the most useful is that IBM QRadar User Behavior Analytics is free of charge. It's a fully free product that can be installed on top of IBM QRadar SIEM.
Application Security Architect at Bank Al Habib Limited
Real User
2020-07-13T06:55:00Z
Jul 13, 2020
I really like the feature we have with the logs, that if there are any credit card numbers being used, like a PII, you can just use rejects and you can mask it. This is a really good feature in QRadar.
Deputy General Manager - Network Security at a tech services company with 201-500 employees
Real User
2020-06-15T07:33:00Z
Jun 15, 2020
QRadar shows very effective correlations. If you combine all the logins plus user behavior and the current intelligence, it gives a very good correlation for business. I think it reduces the false positives in user activity monitoring because there is a lot of social information to correlate with other data.
IBM Security QRadar (recently acquired by Palo Alto Networks) is a security and analytics platform designed to defend against threats and scale security operations. This is done through integrated visibility, investigation, detection, and response. QRadar empowers security groups with actionable insights into high-priority threats by providing visibility into enterprise security data. Through centralized visibility, security teams and analysts can determine their security stance, which...
What's most valuable in IBM QRadar User Behavior Analytics is its higher availability than other tools.
The most valuable feature is the machine learning module.
The most valuable feature currently is security behaviors and the pdf files.
Blocks of predefined conditions can be used to configure detection rules without having to write complicated script.
It'll get you from point A to B.
QRadar UBA's most valuable feature is the risk rating of users depending on their behavior.
The timeline and machine learning features are great.
It's hard for me to pinpoint any one feature that's most valuable because it is all about consuming logs and analyzing them. We started using QRadar UBA because we needed something that could analyze Linux authentication information. Other products take care of the Windows platform.
I have used IBM QRadar User Behavior Analytics in a Cloud Pak on Amazon, and there it runs on top of it and is easy to assess. Additionally, I have installed processes and characters.
IBM QRadar User Behavior Analytics has easy architecture, has a good portfolio and integration.
Integration is very easy and the reporting is good.
It provides many options for searching. I can see devices from different vendors, like Cisco, in one interface, which is good for me.
The feature that I find the most useful is that IBM QRadar User Behavior Analytics is free of charge. It's a fully free product that can be installed on top of IBM QRadar SIEM.
I really like the feature we have with the logs, that if there are any credit card numbers being used, like a PII, you can just use rejects and you can mask it. This is a really good feature in QRadar.
It has a powerful GUI where you can put together your use cases, and don't have to write your own scripts.
QRadar shows very effective correlations. If you combine all the logins plus user behavior and the current intelligence, it gives a very good correlation for business. I think it reduces the false positives in user activity monitoring because there is a lot of social information to correlate with other data.
In terms of the most valuable features, the log collections and log processing mechanisms are good. They have good dashboards.
Most of the features are good. It is an excellent solution.