We performed a comparison between AlienVault OSSIM and IBM Security QRadar based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The open vault component and the checking of vulnerabilities are the most valuable features. The page management helps with this. If you know how your device is vulnerable at least you can do something about it."
"The most valuable features of AlienVault OSSIM are case management, ease of configuration, and investigation."
"Asset discovery is good."
"The solution has a very good open source community, and whenever we have problems, we are always able to resolve it online."
"The product is easy to use."
"The most valuable feature is the logging capability."
"With AlienVault you get everything in one box."
"The most valuable features of this solution are the data correlation and vulnerability assessment."
"We've found the solution to be scalable."
"Network-Based Anomaly Detection (NBAD): Using NetFlow, JFlow, SFlow, or QFlow (all 7 layers), offenses are detected as a response when a rule is triggered."
"What's most valuable in IBM QRadar User Behavior Analytics is its higher availability than other tools."
"There is a single dashboard that gives us a complete overview of what is happening around the globe."
"Stability-wise, I rate the solution a ten out of ten."
"Customer service is very good and very helpful."
"This is a distributed application, meaning that a customer can stack small and then scale it so that they can expand pretty effectively. You can use, basically, the same product in an SMB or a large enterprise."
"In addition to using this solution for our security operations center, we are using it for our other customers."
"It takes some time. It does not give me a prompt response for any such [malicious] traffic. It takes time to get that alert from the AlienVault system."
"Lacking in depth of reporting."
"I don't like to work on OSSIM because it is unpredictable."
"AlienVault OSSIM’s configuration and integration could be a little easier."
"The solution is not scalable."
"AlienVault OSSIM gives unwanted notifications."
"The user interface needs to be friendlier across the board."
"The user interface could be improved."
"The modularity could be improved."
"The AQL queries could be better."
"The price of IBM Security QRadar is an area of concern where improvements are required."
"It is very difficult to activate all of the network equipment, and it would help if it were made easier."
"They should introduce some automation into the product."
"AI is superb but need improvements."
"Some of the cloud apps need improvement."
"It is not app based."
AlienVault OSSIM is ranked 14th in Security Information and Event Management (SIEM) with 28 reviews while IBM Security QRadar is ranked 4th in Security Information and Event Management (SIEM) with 198 reviews. AlienVault OSSIM is rated 7.4, while IBM Security QRadar is rated 8.0. The top reviewer of AlienVault OSSIM writes "An easy-to-scale open-source solution used for monitoring events on devices ". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". AlienVault OSSIM is most compared with Wazuh, Elastic Security, USM Anywhere, Splunk Enterprise Security and Microsoft Defender XDR, whereas IBM Security QRadar is most compared with Splunk Enterprise Security, Microsoft Sentinel, Wazuh, LogRhythm SIEM and Elastic Security. See our AlienVault OSSIM vs. IBM Security QRadar report.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.