Hello,
Can you please share your opinion about purchasing and using IBM QRadar?
I found QRadar as a very workable SIEM. It also works seamlessly with the IBM SOAR solution.
Integrating with the right EDR makes it a formidable solution for monitoring the health of your environment, and offers potential responses to mitigate threats.
There is a trade-off with less flexibility to accept external threat intel feeds, though the vendor believes they have depth on their own TI.
Overall, not bad as an e yer pride SIEM, but you will pay top dollar for expansions.
@Jack Callaghan thanks for your answer! It seems something is misspelled in your last sentence...
IBM QRADAR is a great SIEM systems only expensive, it is capable to detect and report on security issues and the AI is doing a great job. If I compare it with different systems on the market, Riverbeds security system is equal, Advise if you like to go with IBM you should ask for the roadmap of Qradar.
@Dawn Eickenhorst , you might like to check the following link:
https://www.itcentralstation.com/products/ibm-qradar-reviews
Hi community members,
I'm a security engineer at a Tech Services company and I'm currently exploring SOC solutions, such as Rapid7 InsightIDR, Splunk, IBM QRadar and ArcSight Analytics.
Based on your experience, which SOC tool/solution would you recommend and why?