IBM Resilient OverviewUNIXBusinessApplication

IBM Resilient is the #6 ranked solution in top Security Incident Response tools and #15 ranked solution in SOAR tools. PeerSpot users give IBM Resilient an average rating of 7.4 out of 10. IBM Resilient is most commonly compared to Palo Alto Networks Cortex XSOAR: IBM Resilient vs Palo Alto Networks Cortex XSOAR. IBM Resilient is popular among the large enterprise segment, accounting for 66% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 21% of all views.
Buyer's Guide

Download the Security Incident Response Buyer's Guide including reviews and more. Updated: November 2022

What is IBM Resilient?

The Resilient Incident Response Platform (IRP) is the leading platform for orchestrating and automating incident response processes.

The Resilient IRP quickly and easily integrates with your organization’s existing security and IT investments. It makes security alerts instantly actionable, provides valuable intelligence and incident context, and enables adaptive response to complex cyber threats.

IBM Resilient Customers

Golden Living, Health Equity, USA Funds

Archived IBM Resilient Reviews (more than two years old)

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
Director, Commercial at a tech services company with 51-200 employees
MSP
It is easy to set up and flexible

What is our primary use case?

We use it to manage security services.

What is most valuable?

Its flexibility is the most valuable. 

What needs improvement?

Its price needs improvement.

For how long have I used the solution?

I have been using IBM Resilient for five years.

Buyer's Guide
Security Incident Response
November 2022
Find out what your peers are saying about IBM, ServiceNow, Palo Alto Networks and others in Security Incident Response. Updated: November 2022.
657,397 professionals have used our research since 2012.

How are customer service and support?

We have contacted their technical support. I would rate them as average.

How was the initial setup?

The initial setup was straightforward. It took us a month to deploy.

What about the implementation team?

We have our own team.

What other advice do I have?

I would rate this solution an eight out of ten. Its price and technical support need improvement.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
PeerSpot user
Cyber Security Consultant at a tech services company with 51-200 employees
Real User
Simple to use and integrates with IBM QRadar, but the configuration Need lot of hard work
Pros and Cons
  • "The solution is simple to use and to integrate with IBM QRadar."
  • "The implementation could be a bit simpler."

What is our primary use case?

We've integrated the solution with IBM QRadar. We collect data and analyze it. We then send the results to IBM QRadar for action through IBM Resilience. It allows us to take action against attacks. 

How has it helped my organization?

As of right now, IBM Resilient helps our search analysts in making action against attacks and to manage the tickets.

What is most valuable?

The solution is simple to use and to integrate with IBM QRadar.

IBM QRadar sends alerts, and Resilient takes action.

What needs improvement?

IBM Resilient helps the company to automate responses against cyber-attacks using dynamic playbooks by sending actions to other IT solutions like firewalls, antivirus, Microsoft Teams, etc. The concept is to develop functions that you can find in IBM X-Force Exchange, and there are making lot of hard work to develop these functions, but for now, they need to add more functions to respond with other security solutions (Cisco ASA, ForcePoint, WAF...), so for now, all we can do is to wait for these functions, and I see that every month they add more functions.

For how long have I used the solution?

I've been using the solution for six months.

What do I think about the stability of the solution?

I can see that the solution is almost stable.

What do I think about the scalability of the solution?

The solution is scalable, and the best part is that IBM Resilient gives you the opportunity to develop your own scripts using the python language to make an action.

How are customer service and technical support?

We've been in contact with technical support. They're okay, but they sometimes take a lot of time to respond.

Which solution did I use previously and why did I switch?

We hadn't previously used a different solution. We chose IMB Resilient because it's the best SOAR solution if you are implementing IBM QRadar.

How was the initial setup?

The solution isn't hard to set up if you have a good understanding of IBM QRadar. It's also easy to integrate with it. Deployment takes about one hour. The configuration is a bit more complex; you'll need to understand how the unit works. Configuration usually takes about three days, but it can take up to one month. It depends on the network.

Typically, you just need one person to handle the deployment process, but it depends on the network. We have a team of ten people who handle the maintenance. They work on all of the solutions, not just Resilient.

What about the implementation team?

We handled the implementation ourselves. 

What was our ROI?

We haven't seen any ROI by using this solution.

What's my experience with pricing, setup cost, and licensing?

Talk to our pre-sales consultants.

Which other solutions did I evaluate?

We didn't evaluate other options. We were already using IBM QRadar and the best solution to implement with it was IBM Resilient.

What other advice do I have?

We use the on-premises deployment model. We are IBM resellers.

The solution is limited, but it needs lots of development, especially when we talk about making actions with other security solutions.

I'd recommend that users implement the solution with IBM Radar; otherwise, they'll face a lot of limitations.

I'd rate the solution seven out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
Buyer's Guide
Download our free Security Incident Response Report and find out what your peers are saying about IBM, ServiceNow, Palo Alto Networks, and more!
Updated: November 2022
Buyer's Guide
Download our free Security Incident Response Report and find out what your peers are saying about IBM, ServiceNow, Palo Alto Networks, and more!