Try our new research platform with insights from 80,000+ expert users

Hillstone I-Series Server Breach Detection System vs IBM Security QRadar comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jul 13, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Hillstone I-Series Server B...
Ranking in User Entity Behavior Analytics (UEBA)
22nd
Average Rating
7.0
Reviews Sentiment
7.5
Number of Reviews
2
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (28th), Network Traffic Analysis (NTA) (17th)
IBM Security QRadar
Ranking in User Entity Behavior Analytics (UEBA)
1st
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
209
Ranking in other categories
Log Management (5th), Security Information and Event Management (SIEM) (4th), Endpoint Detection and Response (EDR) (15th), Security Orchestration Automation and Response (SOAR) (4th), Managed Detection and Response (MDR) (9th), Extended Detection and Response (XDR) (13th)
 

Mindshare comparison

As of July 2025, in the User Entity Behavior Analytics (UEBA) category, the mindshare of Hillstone I-Series Server Breach Detection System is 1.3%, up from 0.7% compared to the previous year. The mindshare of IBM Security QRadar is 10.8%, down from 16.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Entity Behavior Analytics (UEBA)
 

Featured Reviews

DAVI TEIXEIRA - PeerSpot reviewer
Beneficial AI detection, helpful support, but modern UI needed
The initial setup of the Hillstone I-Series Server Breach Detection System requires a bunch of steps starting with installing the hardware and setting it up. However, most of the setup is done by the vendor. I rate the initial setup of the Hillstone I-Series Server Breach Detection System an eight out of ten. The vendor provides free training in the software provided.
Mahmoud Younes - PeerSpot reviewer
Reliable installation and diverse use cases provide strong value
IBM Security QRadar has some areas for improvement. We have missed some DSM components. We need to customize logs where there is no DSM or connector for certain products. We can integrate but we have missed the DSM, which is the connector to pass logs coming from different applications. For example, with a university customer, we tried onboarding Canvas service. IBM Security QRadar does not support Canvas, so we had to create custom scripts and workarounds to pull logs from Canvas.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features of the Hillstone I-Series Server Breach Detection System are the AI detection and monitoring of common threats."
"One or two people can maintain and support the solution. The maintenance is not difficult."
"It is incredibly easy to deploy. All the appliances are flexible in the roles that they serve and are all managed the in the same way."
"It does good correlation for events. It does good general analysis, and it has good apps as well."
"The detection rate is good and the false positive rate is low."
"This is a good tool to have because it gives you the ability to track what is currently happening in your environment."
"QRadar, Splunk, and ArcSight are SIEM solutions with built-in AI/ML features. They can do the complete investigation and alert the admin about what is happening. They can also do the root cause analysis. There are many other features that come with QRadar. It has a more granular log, so you can integrate with various non-IT as well as IT-based components. You can get unstructured data to the SIEM data, and you can identify more what is happening in the network or what is happening in the central head office. You can also identify what is happening between your remote offices. You can also use it to identify what the users in the field are doing on their devices and how things are moving. From the integration point of view, it is very centric. It gives complete control centrally. If a user is not connected to the system, whenever he comes online, we can see the policy updates over the Internet, and we can ensure that the data that is supposed to be protected is protected."
"The most valuable aspect of the solution is the integration capabilities on offer."
"In addition to using this solution for our security operations center, we are using it for our other customers."
"What we like about QRadar and the models that IBM has, is it can go from a small-to-medium enterprise to a larger organization, and it gives you the same value."
 

Cons

"The UI dashboard view needs to be improved because it is ugly. If it was more modern it would be better. Additionally, better integration with other databases would be good."
"Hillstone I-Series Server Breach Detection System can improve by having more anti-spam features that will hopefully eliminate all of the other threats."
"The interface is very old. IBM should remake it into a more modern interface."
"I would suggest QRadar release any documentation or give an online demo, like videos on YouTube. It would increase publicity and public appeal."
"When it comes to what could be better, it is always what others are trying to do and what is the roadmap. It can have more integration. It should have more flexible RESTful APIs for integration with applications. These are the things that are always in demand for any of the SIEM solutions, not only for QRadar. Integration is ever-evolving. Nowadays, different versions of mobile handsets are there and data is getting scattered. Users are using their personal handsets to keep the data of the organization. So, it should have a more flexible integration, irrespective of the flavor of the firmware and iOS or Android version. It should have an API that can seamlessly get integrated. It should also provide more flexible control and a more advanced or analytical view to see what exactly is happening across the globe or network. From wherever a user is connecting and accessing the enterprise data, it should give real-time visibility and predictive visibility about what exactly is happening. These things are already there, but there should be more advanced control in terms of managing the security."
"There could be improvements made to the UI, the user interface. Though the newer version, 7.3.2, might already have this improvement in place."
"The solution should enhance its capabilities of UEBA and AI/ML tech modeling."
"You can scale IBM QRadar User Behavior Analytics, but it has room for improvement."
"I have noticed the interface has room for improvement."
"The solution lacks vendor support."
 

Pricing and Cost Advice

"The price of the solution is good. It is less expensive than the other solutions in the market. There are not any additional features or hidden costs."
"I would like for them to lower the price."
"IBM has subscriptions plans that run for one year."
"IBM QRadar is a little bit expensive compared to other products."
"They can give us some scalability and flexibility on pricing. If its pricing can be reduced, it would help a lot of customers in bringing in a new SIEM environment and grow business in the market. If I start a license today and take around 10,000 EPS, and after a month, there is an increase in the number of clients on my platform, I can increase the number of licenses. I can add 5,000 EPS on a yearly basis."
"It is very expensive."
"We use QRadar as a managed service and we pay licensing fees to the partner."
"An X-Force feed is free with QRadar."
"The product is expensive. We have purchased the perpetual license, but we pay for the support."
report
Use our free recommendation engine to learn which User Entity Behavior Analytics (UEBA) solutions are best for your needs.
861,803 professionals have used our research since 2012.
 

Comparison Review

VS
Jun 28, 2015
Qradar vs. ArcSight
Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…
 

Top Industries

By visitors reading reviews
No data available
Computer Software Company
16%
Financial Services Firm
12%
Manufacturing Company
7%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

Ask a question
Earn 20 points
What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendlier GUI and are not licensed based on capacity (amount of logs and information in...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is your experience regarding pricing and costs for IBM Security QRadar?
When comparing with Splunk, IBM Security QRadar's cost is reasonable. Splunk is more expensive than IBM Security QRadar.
 

Also Known As

Hillstone sBDS
IBM QRadar, QRadar SIEM, QRadar UBA, QRadar on Cloud, IBM QRadar Advisor with Watson
 

Overview

 

Sample Customers

Norbert Wiener University, Regional Government of the Amazon
Clients across multiple industries, such as energy, financial, retail, healthcare, government, communications, and education use QRadar.
Find out what your peers are saying about Hillstone I-Series Server Breach Detection System vs. IBM Security QRadar and other solutions. Updated: June 2025.
861,803 professionals have used our research since 2012.