Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
One of the best security tool available for cybersecurity and threat detection
What do you like best about the product?
Great security tool for endpoint threat detection.
Regular updates to secure malicious threat attacks.
IBM Security QRadar is a great tool for detecting malicious phishing emails.
Regular updates to secure malicious threat attacks.
IBM Security QRadar is a great tool for detecting malicious phishing emails.
What do you dislike about the product?
Initial setup is bit tricky.
Tool is costly for mid range and small business.
Tool is costly for mid range and small business.
What problems is the product solving and how is that benefiting you?
IBM Security QRadar EDR is an advance solution for detecting online attacks, phishing emails/link, endpoint security.
It is significantly increasing the business efficiency
It is significantly increasing the business efficiency
- Leave a Comment |
- Mark review as helpful
One of the best EDR
What do you like best about the product?
The QRadar EDR is one of my personal favorite EDR.
As SOC Analyst Im always receiving logs from QRadar EDR and many of our clients using it as their EDR. The main think I love in QRadar's EDR is the Dashboards, this provide a very user friendly dashboard as their home dashboard there we can see stats of all of our endpoints in less complicated way. also the behavioral tree is next level it helping us in incident response very well and it is easy to integrate to SIEM softwares.
As SOC Analyst Im always receiving logs from QRadar EDR and many of our clients using it as their EDR. The main think I love in QRadar's EDR is the Dashboards, this provide a very user friendly dashboard as their home dashboard there we can see stats of all of our endpoints in less complicated way. also the behavioral tree is next level it helping us in incident response very well and it is easy to integrate to SIEM softwares.
What do you dislike about the product?
it require some programing knowledge to develop uses cases.
What problems is the product solving and how is that benefiting you?
its really helping me to find out the particular incident happening in all the endpoints and its giving a much good visibility to overall security.
One of the best Security tool for Blue team with a capability of intercepting the bad guys.
What do you like best about the product?
What I like the best in IBM Security Qradar EDR is their threat hunting capabilities which provides a proactive approach of finding suspicious IOC and anomalies within the environment together with their IR Automation which connects strings workflows and orchestrate playbooks and response actions to real time againts real time threats.
What do you dislike about the product?
What I dislike about the platform is the alert overload in which this happens when there is a surge or high volume alerts/incidents which could affect security analyst and their triage actions in responding to multiple events.
What problems is the product solving and how is that benefiting you?
There was a time as an analyst on which I received a critical severity alert relating to ransomware and i was shocked that IBM Qradar did its job by triggering the automated SOAR actions to isolate the device in real-time which really helps on mitigating the threat.
Best solution for endpoint threat detection
What do you like best about the product?
The best part is user interface and it's continuous update to secure from malicious threat.
What do you dislike about the product?
Cost is high and sometimes it's shows false positive
What problems is the product solving and how is that benefiting you?
Very useful for crone job set up
perfect harmony
What do you like best about the product?
simple and professional.
its range is wide enough for all teams.
its range is wide enough for all teams.
What do you dislike about the product?
almost perfect,
there is no problem.wincollect operation is sometimes a problem
there is no problem.wincollect operation is sometimes a problem
What problems is the product solving and how is that benefiting you?
logs on servers and active network devices,
accurate events with advanced integrations.
accurate events with advanced integrations.
Feedback on IBM Qradar
What do you like best about the product?
The best part is we can perform deep analysis and investigation on phishing mails and performing this is easy in the tool.
What do you dislike about the product?
Sometime there is some conectivity issues which is found rarely, but since its rare it doesn't trouble much.
What problems is the product solving and how is that benefiting you?
From many SIEM/EDR tools finding hash values is difficult and clumsy to find, where here hash values if found for assoiated files a ease.
Very expensive for what little it offers
What do you like best about the product?
Best integration with QRADAR and some other IBM tools
What do you dislike about the product?
Have some bugs our lack the integrations with Trend Micro solutions
What problems is the product solving and how is that benefiting you?
Enrich events
Qradar soar
What do you like best about the product?
This is the great tool to automate and respond on the alerts using playbook which help to identify real incidents and triage alerts.
What do you dislike about the product?
Proper knowledge and guidance needed to setup and maintaining playbook
What problems is the product solving and how is that benefiting you?
Major issue that this is solving is reducing mean time response for alert i.e., saving time .
Has a lot of potential, but needs some improvements.
What do you like best about the product?
Alert analysis is nice, showing the process tree and information about each block.
It's really easy to setup and integrate with QRadar SIEM and SOAR.
It's really easy to setup and integrate with QRadar SIEM and SOAR.
What do you dislike about the product?
Needs programming knowledge to build your own rules.
Reports needs to be improved.
Many false positives.
Reports needs to be improved.
Many false positives.
What problems is the product solving and how is that benefiting you?
It's giving us visibility about code execution on endpoints, so we can validade what is running on servers.
Great Product!!!!
What do you like best about the product?
The device detects all endpoint threats and has a great realtime alert system.
The main good thing is that it has a very great user interface.
It was really easy to use it from the start itself
That sets it apart from other vendors
The main good thing is that it has a very great user interface.
It was really easy to use it from the start itself
That sets it apart from other vendors
What do you dislike about the product?
For real time attack prevention we need to update it regularly,that was one of the disadvantages
The cost might be bit too high for small organisations
The cost might be bit too high for small organisations
What problems is the product solving and how is that benefiting you?
It prevents all the threats that might be coming to my system and it is beneficial for every client
showing 21 - 30