We performed a comparison between IBM Security QRadar and SentinelOne Vigilance based on real PeerSpot user reviews.
Find out in this report how the two Managed Detection and Response (MDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The case interface is Binary Defense MDR's most valuable feature."
"The best part about Binary Defense MDR is that it runs on everything, and they keep an eye on things 24/7."
"The most valuable features are the SIEM and the ticketing function; the latter is very smooth and easy to read and understand. We don't have any issues looking at the ticketing information when we're trying to identify what's going on."
"The most valuable feature is reviewing tickets and the notes added by technicians."
"Binary Defense's most valuable feature is the 24/7 monitoring and threat hunting. Their team checks the latest breaches and how they're done."
"The speed at which their services are reactive is valuable. Nowadays, when a threat hits an endpoint, you've got minutes, not hours or days. Their average response time is about four minutes on an alert. For anything that needs to be sent to us, it's about fourteen minutes, which is pretty good. They're the third SOC that I've used in fifteen years. By far, they are the quickest ones to act. When you're looking at prevention, that's a key factor."
"The customization has been the most valuable aspect and was really the reason we ended up selecting Binary Defense. They worked with us to provide exactly the level of support, features, response, and collaboration we needed."
"One of the main benefits of Binary Defense MDR is the ability to easily meet with their support team to discuss any issues we encounter."
"The scalability is very good. It's not a problem."
"The most valuable feature currently is security behaviors and the pdf files."
"This solution has allowed us to correlate logs from multiple sources."
"The monitoring and dashboards are great."
"The best part of this solution is having a third-party SOC."
"Stability-wise, I rate the solution a ten out of ten."
"The most valuable features are the versatility of this solution and the variety of things you can do with it."
"IBM QRadar User Behavior Analytics's most important feature is its ease of use."
"The best feature of this solution is the third-party management aspect. An external company oversees the tool's management and monitors the data it generates. If the EDR detects suspicious activity, it will react accordingly and take necessary actions, such as blocking a device."
"SentinelOne Vigilance has very good detection."
"The solution is very easy to use."
"SentinelOne is a comprehensive solution for protecting SOAP-based web services and AWS-based cloud infrastructure."
"The endpoint security software is great."
"SentinelOne Vigilance is a very stable solution."
"The product is stable."
"The most valuable feature of the solution is its performance, which is very important for us in our company."
"We found that an earlier version of the agent had high memory usage and that was a bit concerning, but we raised the concern with their support team and they immediately replied that they had noticed the same thing and had a candidate fix already available... it totally fixed the issue."
"We found a couple of bugs in the user interface."
"I would like to get more reports from Binary Defense about what they're blocking."
"The current reporting system could benefit from improvement."
"If I were shopping for an MDR solution today, I would not only look for a company that has the ability to alert, detect, and remediate, but also the ability to integrate vulnerability management. That's a big thing that they're lacking today."
"I would like to see more frequent check-ins with our security status."
"It's sometimes difficult to know when to engage Binary Defense or TrustedSec, their sister company. TrustedSec is more focused on offensive security, as opposed to the defensive security that the MDR solution provides. It would be awesome if there were a better bridge between that relationship for when we need to get more proactive services or when we need to do a penetration test."
"The only area I see for improvement with Binary Defense is their service portal. It could benefit from some enhancements."
"From a functionality point of view there are issues sometimes."
"Their technical support is not good. We opened a lot of cases and from my experience, they are not complicated issues but it takes forever to get an answer."
"We need more features in order to create rules to detect or to meet some requirements for other areas, for example, catching the event from other authentication tools."
"A lot of information that we receive for the devices is IP-based, but it would help if we could have a default dashboard in which we can add more details about the assets for which we are receiving the information. For example, if it is a Windows or Linux device, we only get the IP for that particular device. We don't really get the name and other details of that particular device. For that, you have to drill down into your own asset management system. It would be good to have a place where we can probably add this information so that we don't have to look into other tools."
"QVM is another instance where they need to revise the vulnerability scoring and the proper remediation details."
"They should speed up the incident response and also, at the same time, reduce the amount of manual effort that is required."
"If you have too many events that occur, then the storage capacity becomes a problem. You need to have more storage."
"Dashboards and reports could provide better visualization of SIEM activity."
"My only complaint is that the knowledge base is not accessible to the customer."
"Occasionally during an update, customers may temporarily be without protection until the upgrade is complete."
"SentinelOne Vigilance could improve if it provided us with more control over the dashboard."
"When upgrades are required on the server, you need to almost remove SentinelOne Vigilance completely off the system. We put SentinelOne Vigilance on silence for the monitor mode, but we were having trouble upgrading the server. I had to remove SentinelOne Vigilance completely from the server, but that meant that all the previous logs of attacks I wanted to look at on the server were gone. This is one thing they need to improve, they need better compatibility with the Microsoft Windows service. I should not have to remove the agent completely to upgrade the service."
"The solution should add endpoint clients for mobile and Linux devices because it currently doesn't support them."
"My customers who use the tool mostly want a summary of the monitoring activities of the product in a report form...t can be useful for our customers to identify the threats and incidents encountered by the product."
"It is not easy to remove the customer without the dashboard."
"The only thing I'm not sure about is I haven't deployed it on any mobile devices."
IBM Security QRadar is ranked 10th in Managed Detection and Response (MDR) with 198 reviews while SentinelOne Vigilance is ranked 4th in Managed Detection and Response (MDR) with 18 reviews. IBM Security QRadar is rated 8.0, while SentinelOne Vigilance is rated 8.4. The top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". On the other hand, the top reviewer of SentinelOne Vigilance writes "Very easy to use with multiple options for licensing and scaling". IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security, whereas SentinelOne Vigilance is most compared with Huntress, Blackpoint Cyber MDR, CrowdStrike Falcon Complete, Secureworks Taegis ManagedXDR and Sophos MDR. See our IBM Security QRadar vs. SentinelOne Vigilance report.
See our list of best Managed Detection and Response (MDR) vendors.
We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.