We performed a comparison between IBM Security QRadar and One Identity Safeguard based on real PeerSpot user reviews.
Find out in this report how the two User Entity Behavior Analytics (UEBA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the QRadar Vulnerability Manager which provides vulnerability scans. In addition, I like the way QRadar generates alerts."
"I really like the feature we have with the logs, that if there are any credit card numbers being used, like a PII, you can just use rejects and you can mask it. This is a really good feature in QRadar."
"The ability to add extensions is the most valuable feature. For example, extensions that provide valuable test ports."
"The feature that I have found most valuable is how it monitors the real network. That is its leading security feature."
"Most of the features are good. It is an excellent solution."
"The simplicity of the solution is the best feature."
"We've found the solution to be scalable."
"The visibility it gives you into your infrastructure has been great."
"We use the solution’s “transparent mode” feature for privileged sessions. It is very easy because it is only a simple configuration for our users. We don't have to modify our network. We install it, configure it, and it works. So, it is super easy. The rollout for our users is seamless."
"All sessions are audited and they are indexed/searchable through the GUI."
"We don't need to use VPN for remote access."
"I have found the most useful feature of One Identity Safeguard to be Privileged Sessions."
"We are able to log and get reporting on all privileged activity that is being performed. We like the fact that we can leverage the session recording feature, which is especially valuable when we're dealing with third-party vendors that have to remote into our our boxes and servers to do any work on behalf of the bank. Now, we can record everything they are doing to ensure that they're only doing the changes that were needed. In addition, we use it to leverage knowledge transfer with our internal staff."
"The customer service and technical support are very good."
"The identity discovery is good, and the performance is pretty good value."
"There are numerous valuable data protection features, including the content and information that offer us more scalable protection as needed."
"Before we didn't have any security issues but recently a few of the user emails were hacked. We had to actually recreate their emails for them."
"There was some complexity in the initial setup due to bandwidth issues."
"In terms of what could be improved, I would say the script which we have to create for custom actions. QRadar needs to improve that feature. Additionally, QRadar has to provide the playbooks designing features."
"They should provide more manual examples online so that I can learn it myself."
"The solution is highly used here in Pakistan and in many sectors, they could improve it by having more SIEM connectors."
"The solution is difficult to understand in the beginning and has complex management configurations that can be improved."
"We sometimes get an error about the hard drive. Approximately once in two months, we can't find the logs, and they go missing, which is a terrible issue. We are getting support for this issue from our support company."
"Dashboards and reports could provide better visualization of SIEM activity."
"We would like to have the option of importing assets by using the CSV file. It was available in the earlier versions, but it is not available now."
"I would like to see an adjustment with more enterprise architecture. You can buy multiple appliances but you can not fully separate different functions, so scaling might be a bit more complicated."
"The product uses a lot of resources in current sessions."
"The main point regarding the user experience is that Safeguard has two separate management consoles."
"I would like to see support for RDP over HTTPS so this product can be used in conjunction with the Microsoft terminal."
"Monitoring of the platform should be easier and more functional so that you can have a clear picture of the running service."
"When we compare One Identity Safeguard with Cyberark, we know CyberArk has other tools or other features that are more complex and more useful for the customers. For example, I have one customer that wants to elevate the permission that is available in CyberArk."
"Some of the out-of-the-box reporting isn't that rich. We spoke to our Safeguard reps who have acknowledged that some of the reporting features can certainly be improved and that we're not the only customer who has cited this. There are very little out-of-the-box reporting capabilities. You have to build the queries and the report. I believe in the next release they're going to be addressing this."
IBM Security QRadar is ranked 1st in User Entity Behavior Analytics (UEBA) with 198 reviews while One Identity Safeguard is ranked 6th in User Entity Behavior Analytics (UEBA) with 38 reviews. IBM Security QRadar is rated 8.0, while One Identity Safeguard is rated 8.2. The top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". On the other hand, the top reviewer of One Identity Safeguard writes "Provides us with centralized storage of secrets and credentials, and visibility into the use of privileged access". IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security, whereas One Identity Safeguard is most compared with CyberArk Privileged Access Manager, WALLIX Bastion, Delinea Secret Server, BeyondTrust Privileged Remote Access and SailPoint IdentityIQ. See our IBM Security QRadar vs. One Identity Safeguard report.
See our list of best User Entity Behavior Analytics (UEBA) vendors.
We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.