We performed a comparison between Elastic Observability and IBM Security QRadar based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The Elastic User Interface framework lets us do custom development when needed. You need to have some Javascript knowledge. We need that knowledge to develop new custom tests."
"It has always been a stable solution."
"I have built a mini business intelligence system based on Elastic Observability."
"For full stack observability, Elastic is the best tool compared with any other tool ."
"The solution allows us to dig deep into data."
"The most valuable feature of Elastic Observability is the text search."
"The price is very less expensive compared to the other solutions."
"Elastic Observability significantly improves incident response time by providing quick access to logs and data across various sources. For instance, searching for specific keywords in logs spanning over a month from multiple data sources can be completed within seconds."
"Search capabilities are sufficient for most tasks."
"The most valuable aspect of the solution is the integration capabilities on offer."
"IBM Qradar's ability to simplify the number of events, not only on a technical level but by making that information easy to pan through the orchestration deduplication. It is very impressive given that we have hundreds of devices that send event logs through."
"One of the most valuable features is its ability to integrate with other solutions. IBM has a lot of solutions and we have managed to make it work with IBM BigFix and MaaS360, and even Microsoft."
"It'll get you from point A to B."
"The flexibility is good in terms of pulling log files."
"The most valuable thing about QRadar is that you have a single window into your network, SIEM, network flows, and risk management of your assets. If you use Splunk, for instance, then you still need a full packet capture solution, whereas the full packet capture solution is integrated within QRadar. Its application ecosystem makes it very powerful in terms of doing analysis."
"The ability to transition from microscopic to macroscopic view, instantly, is very good."
"Elastic Observability needs to improve the retrieval of logs and metrics from all the instances."
"Elastic APM's visualization is not that great compared to other tools. It's number of metrics is very low."
"There could be more low-code features included in the product."
"Elastic Observability needs to have better standardization, logging, and schema."
"If we had some pre-defined templates for observability that we could start using right away after deploying it – instead of having to build or to change some of the dashboards – that would be helpful."
"Elastic Observability is reactive rather than proactive. It should act as an ITSM tool and be able to create tickets and alerts on Jira."
"In the future, Elastic APM needs a portfolio iTool. They can provide an easy way to develop the custom UI for Kibana."
"The cost must be made more transparent."
"I don't give it a 10 because it is something we have to request. I would love it if UBA was included out of the box like Microsoft."
"I think QRadar is very complex. It's a distributed system and IBM QRadar has an all-in-one solution which is not like that distributed solution but it's a good product. IBM needs to consider the user interface because if we compare it with AlienVault, the AlienVault user interface is fantastic but the IBM QRadar user interface is very complex. They should focus on how to make it easier for the client."
"The solution is expensive compared to other products."
"Search capability and indexing still lag behind competitors. We also need to see improved rule based access controls and rule/event tuning."
"The user interface and configurability of IBM QRadar User Behavior Analytics can be improved. It has a lot of pre-configured settings and not many things can be changed. It also needs more integrations. Currently, User Behavior Analytics is integrated only with IBM QRadar. It could have deeper integrations. It can also have more complicated scoring models. Currently, it has a very simple linear scoring model for users."
"I would like for Yara to be supported by all components."
"With IBM Security QRadar, my company faced issues with the support we received for the product."
"I would like to see the update process simplified."
Elastic Observability is ranked 14th in Log Management with 22 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. Elastic Observability is rated 7.8, while IBM Security QRadar is rated 8.0. The top reviewer of Elastic Observability writes "The user interface framework lets us do custom development when needed. ". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Elastic Observability is most compared with Dynatrace, New Relic, AppDynamics, Datadog and Azure Monitor, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security. See our Elastic Observability vs. IBM Security QRadar report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.