We performed a comparison between IBM Security QRadar, Quest InTrust, and VMware Aria Operations for Logs based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management."QRadar shows very effective correlations. If you combine all the logins plus user behavior and the current intelligence, it gives a very good correlation for business. I think it reduces the false positives in user activity monitoring because there is a lot of social information to correlate with other data."
"The most valuable feature is the machine learning module."
"Integration is very easy and the reporting is good."
"It is a very optimized engine."
"The tool helps with infrastructure, application, and network monitoring."
"It is a bit easier to use than other products, such as Splunk or ELK Elasticsearch."
"It is the core of our entire SOX."
"I have found IBM QRadar to be scalable."
"I would rate the technical support very well as they are knowledgeable and quick to respond."
"It is very scalable and can handle a large workload."
"The most valuable feature is server virtualization. It's been very useful."
"The solution is quite user-friendly."
"The interface of the solution is good."
"The tool helps my company deal with security and log analysis, which are very important areas for us...It is a scalable solution."
"The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting."
"The root cause analysis feature is very valuable."
"It is a highly stable solution...It is a highly scalable solution."
"I need a solution which will send alerts in the event of any behavior."
"The only challenge with products like IBM is the EPS. You just have to be really on the events per second, as that's where the cost factor becomes a huge issue."
"I think that the search speed of this solution could be improved."
"There is room for improvement in IBM QRadar in integrating features for SOC maturity and security levels directly into QRadar."
"The solution is expensive compared to other products."
"Some UI enhancements would be nice, such as exporting custom event properties and the ability to export rules."
"We sometimes get an error about the hard drive. Approximately once in two months, we can't find the logs, and they go missing, which is a terrible issue. We are getting support for this issue from our support company."
"What needs to be improved in IBM QRadar User Behavior Analytics is the user experience. It's not optimal. Some screens are a bit clunky. The solution needs to be more user-friendly."
"It was very complex. There was poor native correlation. "
"It needs to have better reporting. "
"Technical support should be improved."
"Documentation is lacking, including some guide as to how to use the expressions. It is not clear how to look for a log, for example. Some examples in the documentation might be helpful. I think that VMware had good documentation, but it's no longer hosted. The documentation is not as easy to understand as it was before."
"The product's price falls on the higher end of the spectrum, making it an area of concern."
"Integration with other vendors is something that could be improved, they could add more vendors."
"From an improvement perspective, the tool needs to be made more user-friendly."
"Log Insight should be better at dealing with audits and security logs. We use another product called QRadar for that."
"The tool does not provide a centralized pane for monitoring."
"I don't use the solution on a day to day basis, so I'm not sure what specifically can be improved."
More VMware Aria Operations for Logs Pricing and Cost Advice →
Earn 20 points