---
title: IBM QRadar EDR Reviews
meta_title: 'IBM QRadar EDR Reviews 2026: Details, Pricing, & Features | G2'
meta_description: Filter 47 reviews by the users' company size, role or industry to
  find out how IBM QRadar EDR works for a business like yours.
aggregate_rating:
  rating_value: 4.2
  review_count: 47
  scale: '5'
date_modified: '2026-07-07'
parent_category:
  name: Endpoint Protection
  url: https://www.g2.com/categories/endpoint-protection
---

# IBM QRadar EDR Reviews
**Vendor:** IBM  
**Category:** [Endpoint Detection &amp; Response (EDR) Software](https://www.g2.com/categories/endpoint-detection-response-edr)  
**Average Rating:** 4.2/5.0  
**Total Reviews:** 47
## About IBM QRadar EDR
IBM Security QRadar EDR (formerly ReaQta) combines automation and dashboards to minimize analyst workloads, detect anomalous endpoint behavior and remediate threats in near real time. IBM Security QRadar EDR is available on AWS Marketplace. With visibility across endpoints, it combines expected features, like MITRE ATT&amp;CK mapping and attack visualizations, with dual-engine AI and automation. For teams that need extended support, managed detection and response (MDR) services offers 24/7 monitoring and response to help keep users protected. IBM Security QRadar EDR (formerly ReaQta) can be deployed as SaaS, on-premises and in air-gapped environments. For more information, visit https://www.ibm.com/products/qradar-edr



## IBM QRadar EDR Pros & Cons
**What users like:**

- Users value the **advanced threat detection** capabilities of IBM QRadar EDR, ensuring robust protection against potential attacks. (23 reviews)
- Users value the **ease of use** of IBM QRadar EDR, appreciating its straightforward installation and user-friendly interface. (20 reviews)
- Users value the **robust threat detection** capabilities of IBM QRadar EDR, ensuring effective protection against malicious threats. (16 reviews)
- Users praise the **advanced threat detection** capabilities of IBM QRadar EDR, enhancing security and incident response efficiency. (9 reviews)
- Users appreciate the **advanced threat detection** capabilities of IBM QRadar EDR, ensuring robust protection against cyber threats. (8 reviews)
- Incident Response (7 reviews)
- Monitoring (7 reviews)
- AI (6 reviews)
- Automation (6 reviews)
- Data Discovery (6 reviews)

**What users dislike:**

- Users find IBM QRadar EDR **expensive** , making it challenging for mid-sized and small businesses to afford. (17 reviews)
- Users find the **difficult learning curve** of IBM QRadar EDR challenging due to its complexity and setup requirements. (11 reviews)
- Users note that QRadar EDR is **resource intensive** , leading to increased infrastructure costs and setup complexity. (9 reviews)
- Users experience **many false positives** with IBM QRadar EDR, requiring manual investigation and potentially impacting efficiency. (7 reviews)
- Users experience **high resource usage** challenges with IBM QRadar EDR, often requiring advanced hardware for optimal performance. (7 reviews)
- Additional Costs (6 reviews)
- Complex Interface (6 reviews)
- Alert Issues (5 reviews)
- Complexity (5 reviews)
- Integration Issues (5 reviews)

## IBM QRadar EDR Reviews
  ### 1. One of the best Security tool for Blue team with a capability of intercepting the bad guys.

**Rating:** 5.0/5.0 stars

**Reviewed by:** Mark Julius M. | Senior SOC Analyst , Mid-Market (51-1000 emp.)

**Reviewed Date:** April 03, 2024

**What do you like best about IBM QRadar EDR?**

What I like the best in IBM Security Qradar EDR is their threat hunting capabilities which provides a proactive approach of finding suspicious IOC and anomalies within the environment together with their IR Automation which connects strings  workflows and orchestrate playbooks and response actions to real time againts real time threats.

**What do you dislike about IBM QRadar EDR?**

What I dislike about the platform is the alert overload in which this happens when there is a surge or high volume alerts/incidents which could affect security analyst and their triage actions in responding to multiple events.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

There was a time as an analyst on which I received a critical severity alert relating to ransomware and i was shocked that IBM Qradar did its job by triggering the automated SOAR actions to isolate the device in real-time which really helps on mitigating the threat.

  ### 2. One of the best EDR

**Rating:** 4.5/5.0 stars

**Reviewed by:** sibil b. | Security Operations Center Analyst, Small-Business (50 or fewer emp.)

**Reviewed Date:** April 04, 2024

**What do you like best about IBM QRadar EDR?**

The QRadar EDR is one of my personal favorite EDR.
As SOC Analyst Im always receiving logs from QRadar EDR and many of our clients using it as their EDR. The main think I love in QRadar's EDR is the Dashboards, this provide a very user friendly dashboard as their home dashboard there we can see stats of all of our endpoints in less complicated way. also the behavioral tree is next level it helping us in incident response very well and it is easy to integrate to SIEM softwares.

**What do you dislike about IBM QRadar EDR?**

it require some programing knowledge to develop uses cases.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

its really helping me to find out the particular incident happening in all the endpoints and its giving a much good visibility to overall security.

  ### 3. QRadar EDR

**Rating:** 4.0/5.0 stars

**Reviewed by:** GAURAV S. | Cyber Security Engineer, Enterprise (> 1000 emp.)

**Reviewed Date:** May 14, 2024

**What do you like best about IBM QRadar EDR?**

I like the Dashboard and the way it's present the overall incident details.

It have the capability to detect the malicious behavior, easy to manage the policies and add exception.

**What do you dislike about IBM QRadar EDR?**

I feel it's little bit slow some time while opening incident details. It can be fixed I think in future versions.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Its serving the purpose of AV, also help us to get secure from Endpoint attacks

It's quite efficient to detect the threats.

  ### 4. Has a lot of potential, but needs some improvements.

**Rating:** 3.5/5.0 stars

**Reviewed by:** Eron M. | Mid-Market (51-1000 emp.)

**Reviewed Date:** March 20, 2024

**What do you like best about IBM QRadar EDR?**

Alert analysis is nice, showing the process tree and information about each block.
It's really easy to setup and integrate with QRadar SIEM and SOAR.

**What do you dislike about IBM QRadar EDR?**

Needs programming knowledge to build your own rules.
Reports needs to be improved.
Many false positives.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It's giving us visibility about code execution on endpoints, so we can validade what is running on servers.

  ### 5. Great Product!!!!

**Rating:** 4.5/5.0 stars

**Reviewed by:** Hrithik B. | Apprenticeship, Small-Business (50 or fewer emp.)

**Reviewed Date:** March 18, 2024

**What do you like best about IBM QRadar EDR?**

The device detects all endpoint threats and has a great realtime alert system.
The main good thing is that it has a very great user interface.
It was really easy to use it from the start itself
That sets it apart from other vendors

**What do you dislike about IBM QRadar EDR?**

For real time attack prevention we need to update it regularly,that was one of the disadvantages 
The cost might be bit too high for small organisations

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It prevents all the threats that might be coming to my system and it is beneficial for every client

  ### 6. Best SEIM solution for enterprise cybersecurity team

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Education Management | Enterprise (> 1000 emp.)

**Reviewed Date:** March 15, 2024

**What do you like best about IBM QRadar EDR?**

Features advanced analytics with threat intelligence detection even against zero-day exploits
QRadar automated remediation helps cyber security team to predefine rules and policies to take proactive response against threats efficiently.
It seamlessly integrates with existing systems, ingest security data and analyse in real time with prompt alerts and mitigation actions.

**What do you dislike about IBM QRadar EDR?**

Initial setup & configuring QRadar EDR can be complex, requires expertise from both endpoint security and SIEM technologies.
EDR have additional Licensing cost which might not be suitable for small enterprise organization.
Like any other security solution QRadar may generate false positives which needs to be manually investigated by the team at times.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

As a cyber ops security admin we rely on Qradar EDR tool for endpoint security and advanced threat analytics to manage our infrastructure security.

  ### 7. Qradar Review

**Rating:** 4.0/5.0 stars

**Reviewed by:** Aman Raj  P. | Cyber Security Researcher, Small-Business (50 or fewer emp.)

**Reviewed Date:** March 14, 2024

**What do you like best about IBM QRadar EDR?**

1) Best techniques to use are available like MITRE ATT&CK, visualizations , AI tools automation.
2) Good Customer Support.
3)Helps to detect malicious endpoint threat and mitigate them in real time.

**What do you dislike about IBM QRadar EDR?**

1) Sometimes false positive may arise and it need certain level of expertise to use.
2) Cost is high for mid-small size organizations.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Helps me to mitigate the risks in real time and i can say it is a go to product for any organization for their security posture.

  ### 8. One of the best security tool available for cybersecurity and threat detection

**Rating:** 5.0/5.0 stars

**Reviewed by:** N G. | IT Engineer, Mid-Market (51-1000 emp.)

**Reviewed Date:** April 04, 2024

**What do you like best about IBM QRadar EDR?**

Great security tool for endpoint threat detection.
Regular updates to secure malicious threat attacks.
IBM Security QRadar is a great tool for detecting malicious phishing emails.

**What do you dislike about IBM QRadar EDR?**

Initial setup is bit tricky.
Tool is costly for mid range and small business.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

IBM Security QRadar EDR is an advance solution for detecting online attacks, phishing emails/link, endpoint security.
It is significantly increasing the business efficiency

  ### 9. Best solution for endpoint threat detection

**Rating:** 3.5/5.0 stars

**Reviewed by:** Alakesh T. | Service Desk analyst, Architecture & Planning, Enterprise (> 1000 emp.)

**Reviewed Date:** April 03, 2024

**What do you like best about IBM QRadar EDR?**

The best part is user interface and it's continuous update to secure from malicious threat.

**What do you dislike about IBM QRadar EDR?**

Cost is high and sometimes it's shows false positive

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Very useful for crone job set up

  ### 10. IBM Security QRadar EDR

**Rating:** 5.0/5.0 stars

**Reviewed by:** Shanmugasundaram P. | Technical Support Engineer, Enterprise (> 1000 emp.)

**Reviewed Date:** March 13, 2024

**What do you like best about IBM QRadar EDR?**

Easy to understand and use, Implementing it with other security products is reliable. Detects known and unknown threats.

**What do you dislike about IBM QRadar EDR?**

Not feasible to understand all the features in short duration.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Detects endpoint security threats, remediates the threats in real time. Automatic alert management.

  ### 11. Feedback on IBM Qradar

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.)

**Reviewed Date:** March 29, 2024

**What do you like best about IBM QRadar EDR?**

The best part is we can perform deep analysis and investigation on phishing mails and performing this is easy in the tool.

**What do you dislike about IBM QRadar EDR?**

Sometime there is some conectivity issues which is found rarely, but since its rare it doesn't trouble much.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

From many SIEM/EDR tools finding hash values is difficult and clumsy to find, where here hash values if found for assoiated files a ease.

  ### 12. My experience with Qradar is awesome and I would definitely recommend to everyone

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.)

**Reviewed Date:** May 15, 2024

**What do you like best about IBM QRadar EDR?**

Like It detect almost every risk that a endpoint has.

**What do you dislike about IBM QRadar EDR?**

It's training material are little confusing and hard

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It detect almost every risk a specific endpoint has and it got me narrow my Defence surface.

  ### 13. IBM QRadar is a robust and a top quality endpoint protection system for Security teams

**Rating:** 4.0/5.0 stars

**Reviewed by:** Shawn K. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 27, 2023

**What do you like best about IBM QRadar EDR?**

When talking about IBM QRadar, one cannot forget the advanced and robust threat detection and endpoint protection solution it provides. And the answer is designed to scale efficiently as well. The continuous updates keep the systems secure and help detect and prevent malware from damaging assets or data.

**What do you dislike about IBM QRadar EDR?**

Although, many times it shows false positives for the detected files. And users may need a certain level of expertise and training to fully utilize and manage effectively. And before implementing it into the current processes, one should note the time it takes to integrate because the procedure is somewhat complex for new users.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

After covid, our company shifted to online work from home. It was facing many challenges in securing user info and data, so we needed a solution that would proactively detect and perform appropriate actions against threats and malware users were facing daily. It streamlined our process of detecting and responding to any system vulnerability.

  ### 14. QRadar is the most scalable and user-friendly incident response and endpoint protection solution

**Rating:** 4.5/5.0 stars

**Reviewed by:** Curtis S. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 27, 2023

**What do you like best about IBM QRadar EDR?**

Using AI and advanced threat detection, QRadar helps organizations swiftly detect and respond to security incidents. Its interface is user-friendly and simplifies security operations, allowing even junior security analysts to navigate and manage the system effectively. And this solution can be for any organization varying from small to large enterprises.

**What do you dislike about IBM QRadar EDR?**

It is only complex when someone implements it with the current organization's needs and integrates it into the existing system without disturbing the general flow of the systems. It takes too much time in the implementation phase, increasing the cost and time overall. For some small organizations, this solution could be a bit costly.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

As a small security team, utilizing the resources as best as possible is essential. IBM QRadar helps in that process by helping efficiently detect threats and optimizing responses. The security team can focus on genuine threats rather than sifting through many false positives. And because it is easy to use, junior analysts can also work on it. In management, users can use it to meet their regulatory requirements and see the overall security index of their organization.

  ### 15. QRadar Review by Security analyst

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Security and Investigations | Enterprise (> 1000 emp.)

**Reviewed Date:** April 04, 2024

**What do you like best about IBM QRadar EDR?**

Ability to automate and variety of dashboards

**What do you dislike about IBM QRadar EDR?**

There are set of predefined detection rules but  customising those to make it best suitable for our environment is a pain area

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Run time malware detection and file system alert, threat intelligence information is plus

  ### 16. IBM Security QReata(QRadar) Complete review based on personal experiences

**Rating:** 4.5/5.0 stars

**Reviewed by:** Ryan A. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 21, 2023

**What do you like best about IBM QRadar EDR?**

IBM has a straightforward and user-friendly interface, which is easy to use for users and helps security analysts navigate the system more effectively. And it can easily be scalable to the needs of organizations of varying sizes, from small businesses to large enterprises. And the real-time monitoring of threats and systems also helped reduce our overall performance and security.

**What do you dislike about IBM QRadar EDR?**

Implementation of QRadar required dedicated hardware and computing resources, and as our company had most of our infra over the cloud, adding this extra resource also increased our overall infrastructure cost, with the cost of the solution itself making a considerable amount. Also, as it took more time to implement in our current systems, it slightly impacted our workflows.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It helped us in proactive threat hunting when cyber threats increased significantly during covid. It has one of the best incident response mechanisms and has updated and enhanced endpoint protection to safeguard organizations from malware attacks. And it is constantly updated, so even some zero-day attacks were handled efficiently. Overall it improved our security posture and potentially reduced the financial and reputational damage that comes with cyber attacks.

  ### 17. IBM Qradar is an Efficient but costly Endpoint Protection system

**Rating:** 5.0/5.0 stars

**Reviewed by:** Maybelle J. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 21, 2023

**What do you like best about IBM QRadar EDR?**

Qradar is a proactive threat-hunting and threat-response system that meets all the industry standards for a solution. It integrates well with other security solutions and firewalls as well. And the vast library of old and new threats makes incident handling and defense strategies more workable.

**What do you dislike about IBM QRadar EDR?**

First thing, it is a bit costly for some organizations. However, getting updates is essential for this kind of security solution. It relies too much on updates, and the system must constantly be updated to the latest patches for optimal protection. And the time it takes to deploy in a working environment is too much.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

During the past three years, cyber threats have become increasingly violent. And each International organization must comply with Security compliance to help prevent their online presence from being vulnerable. It helped us improve our overall security index score and helped us maintain our compliance and regulatory requirements and reporting.

  ### 18. Why IBM QRadar is worth it or not?

**Rating:** 3.5/5.0 stars

**Reviewed by:** Juan H. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 16, 2023

**What do you like best about IBM QRadar EDR?**

I think not every security vendor provides continuous updates as fast as IBM. And the real-time monitoring of network traffic and endpoint activities also helps admins to reduce the risk and timely respond to security incidents.

**What do you dislike about IBM QRadar EDR?**

As a mid-range organization, we look at the cost of any solution, and the price from implementation to yearly fee is just astronomical. And the time and effort it takes for even technical persons to implement the solution with the current organization without impacting existing workflow are too much.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

As in a medical equipment company, compliance and regulatory compliance are a must in each department, and most of the time, some files and data are critical, so we needed an excellent EDR solution for our company. And IBM not only helps in our compliance reporting but also helps us improve our security posture over the web. And the updated and enhanced endpoint protection system met all our needs.

  ### 19. IBM Security ReaQta (QRadar now)  recommended TDR/EDR solution for all level of organizations.

**Rating:** 4.0/5.0 stars

**Reviewed by:** Muhammad B. | Information Security Officer, Mid-Market (51-1000 emp.)

**Reviewed Date:** June 12, 2023

**What do you like best about IBM QRadar EDR?**

Real-time monitoring and behavioral analysis are not new in any EDR solution. Still, QRadar is pretty user-friendly and makes it easier for soc to investigate and manage the system more effectively. It has all options one would want in a security solution; scalability and continuous patching and updating are one of the demanding factors.

**What do you dislike about IBM QRadar EDR?**

One of the significant factors for any mid-sized to small organization is the pricing of a solution. And because QRadar is a premium-level security solution. Not anyone can afford it. The other thing is integration and deployment of ReaQta in any current system could be quite challenging if they use a wide variety of systems and resources.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It is majorly used in risk assessment. As an international organization, we primarily use it to assess our current system and identify potential breaches of the systems. And along with firewall security, memory inspection, and behavioral analysis, it provides actions to perform, and we can easily manage malware or security incidents.

  ### 20. Experience with Qradar

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 18, 2024

**What do you like best about IBM QRadar EDR?**

Easy to configure and setup Qradar. User friendly and flexible to analyse the detections.

**What do you dislike about IBM QRadar EDR?**

No drawbacks observed since I'm exploring the tool more.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Making my work less by automated detection and easy to analyse.

  ### 21. Best For Securities, A must.

**Rating:** 5.0/5.0 stars

**Reviewed by:** Ali A. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 28, 2023

**What do you like best about IBM QRadar EDR?**

I used it for more than 2 years, and in those years, it never failed me in securing my data and the best instant reporting function. While it receives large amounts of data from different endpoints, it also keeps it safe with firewalls and so on. I would love to be its reference for others.

**What do you dislike about IBM QRadar EDR?**

While there is nothing I don't like about it, one thing I would say is its costly, if not for us, then at least for those who are not high revenue generating companies because its setup and maintenance cost is high.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It's Solving my many problems, but its security function and instant reporting functions are best for me as in the security field, as fast as action is taken the problems can be solved correctly and accordingly.

  ### 22. IBM QRadar: A Premium Top-Notch Security Solution

**Rating:** 3.5/5.0 stars

**Reviewed by:** Bilal A. | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 15, 2023

**What do you like best about IBM QRadar EDR?**

One of the best features is analyzing behaviors and applying solutions based on them. This way, it blocks even unknown malware and attacks and minimizes the risk of getting affected. It can also adjust according to the needs of the organizations and is scalable and user-friendly.

**What do you dislike about IBM QRadar EDR?**

It has limited platform support available online right now. If a user/admin finds some problem, they have to talk to the support agent to resolve the issue most of the time. Although it is pretty costly, the overall turnover is good.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Our firewall uses it as an enhanced and efficient version of endpoint protection and incident responder. It has also helped us in meeting compliance and regulatory requirements. And also, as it is intelligent threat detection, our security team can work on other essential tasks. And overall improves our operational efficiency.

  ### 23. A very Good Experience in using it.

**Rating:** 4.0/5.0 stars

**Reviewed by:** Muneeb H. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 21, 2023

**What do you like best about IBM QRadar EDR?**

I would love to talk about its data collection feature from different endpoints at the same point while also creating log data for it. I once got in big trouble, but because everything was already there, I could solve it, and it also helped me in many ways.

**What do you dislike about IBM QRadar EDR?**

Well, at the start, it is complex to set it up for starters, and also, if you do not have a pc with better specs, it is troublesome to use it as it needs a lot of resources to perform perfectly.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Its Function of creating logs helped me a lot as I could create reports that were accurate and it also saved me a good amount of time and money as i was not able to prove something without it.

  ### 24. Best For scalibilty.

**Rating:** 4.5/5.0 stars

**Reviewed by:** Hamza J. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 16, 2023

**What do you like best about IBM QRadar EDR?**

I would love to recommend it to those who are looking for scalability as it can easily handle large numbers of data from different endpoints while also managing them and also creating logs for all activities.

**What do you dislike about IBM QRadar EDR?**

While i would say its not that cost friendly for single person or small companies but looking at its many features i cannot say that its not worth it, but still compared to its competitors it is a little costly while others can perform those functions too.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It solved my log management problems while creating them and arranging them it helped me solve many things and also it can handle data from different endpoints at the same time while not losing in leaving anything unattended that's why i loved it.

  ### 25. You should try it for sure.

**Rating:** 4.0/5.0 stars

**Reviewed by:** Hussain M. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 26, 2023

**What do you like best about IBM QRadar EDR?**

I like its high security and firewall and also its log-creating feature. As my work needed to make sure our data was secure, there were some loopholes in our structure that i missed but this found it that was of great help.

**What do you dislike about IBM QRadar EDR?**

well, in our type of work, we did not feel it to be much more costly but for small companies or startups will find it really costly; also, if you do not have a system with good features, it also cannot run efficiently.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It solved our vulnerability management and also increased an extra layer of security. While i am at that i would also like to tell about it data collection from different endpoints at the same time.

  ### 26. Qadar SIEM: Empowering Organizations to Stay One Step Ahead of Cyber Threats

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Security and Investigations | Small-Business (50 or fewer emp.)

**Reviewed Date:** July 10, 2023

**What do you like best about IBM QRadar EDR?**

IBM Security QRadar EDR (formerly ReaQta) is an advanced endpoint detection and response solution designed to enhance an organization's cybersecurity posture. The tool combines behavioral analysis, machine learning algorithms, and threat hunting capabilities to detect and respond to advanced threats in real-time. It provides deep visibility into endpoint activities, allowing security teams to monitor and analyze individual endpoints for suspicious behavior and potential threats. With its rapid incident response capabilities, IBM Security QRadar EDR automates response actions, facilitating quick containment and mitigation of detected threats. The tool also offers integration with IBM QRadar SIEM, enabling centralized management and correlation of security events across the network. Overall, IBM Security QRadar EDR empowers security teams with powerful analytics, efficient threat hunting, and enhanced incident response capabilities to strengthen their organization's security defenses.

**What do you dislike about IBM QRadar EDR?**

Some potential challenges that users may encounter with IBM Security QRadar EDR (formerly ReaQta) include a learning curve, resource-intensive requirements, potential false positives, integration complexities, and scalability considerations.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

IBM Security QRadar EDR helps organizations by providing advanced threat detection, real-time visibility, rapid incident response, proactive threat hunting, and streamlined security operations. These benefits contribute to bolstering an organization's cybersecurity defenses and mitigating potential risks

  ### 27. Will Surely Recommend it if you can afford.`

**Rating:** 3.0/5.0 stars

**Reviewed by:** Rehman W. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 22, 2023

**What do you like best about IBM QRadar EDR?**

I Like its function to collect data from different large endpoints at the same time while also creating its log files and better details of the activity performed on it while also maintaining security.

**What do you dislike about IBM QRadar EDR?**

I wouldn't say I liked it because it was very costly for me as it was a recommendation from a friend I still bought it but found it much more expensive with its maintenance and other costs. Plus, it also needs a device with good specs

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It helped us collect data from different endpoints and create the activity files(log files) that can better help us understand it. Also, its security is very good in detecting many things that I usually didn't pay attention to.

  ### 28. IBM Security ReaQta

**Rating:** 4.5/5.0 stars

**Reviewed by:** Omar A. | Small-Business (50 or fewer emp.)

**Reviewed Date:** April 15, 2023

**What do you like best about IBM QRadar EDR?**

IBM Security ReaQta is an advanced threat detection and response platform designed to detect and respond to advanced persistent threats (APTs) and malware attacks in real-time. The platform uses advanced AI algorithms and behavioral analysis to identify and block suspicious activities and prevent data breaches.

One of the upsides of using IBM Security ReaQta is its ability to detect and respond to sophisticated attacks that other security tools might miss. The platform's AI-powered detection and response capabilities enable it to identify and stop zero-day attacks and new and unknown threats that traditional signature-based solutions can't detect.

Additionally, IBM Security ReaQta provides real-time threat intelligence and automated incident response, which helps security teams respond to security incidents faster and more effectively. The platform also offers comprehensive threat hunting and forensic analysis capabilities, which allow security teams to investigate and remediate security incidents quickly and thoroughly.

Overall, IBM Security ReaQta is a powerful and effective security solution that can help organizations detect and respond to advanced threats quickly and efficiently

**What do you dislike about IBM QRadar EDR?**

the platform can be complex to set up and requires a significant amount of configuration and customization to achieve optimal results,the platform can generate a high volume of alerts, which can be overwhelming for smaller security teams.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

the platform is designed to solve several critical problems in the cybersecurity industry, including:

Advanced Threat Detection: IBM Security ReaQta can detect and respond to advanced and sophisticated threats that traditional security solutions might miss, including zero-day attacks and new and unknown malware.

Real-Time Incident Response: The platform provides real-time threat intelligence and automated incident response capabilities, enabling security teams to respond to security incidents quickly and effectively.

Threat Hunting and Forensic Analysis: IBM Security ReaQta offers comprehensive threat hunting and forensic analysis capabilities, which allow security teams to investigate and remediate security incidents quickly and thoroughly.

  ### 29. Why Choose IBM QRadar?

**Rating:** 4.0/5.0 stars

**Reviewed by:** Moaiz A. | Amazon Virtual Assistant, Small-Business (50 or fewer emp.)

**Reviewed Date:** June 13, 2023

**What do you like best about IBM QRadar EDR?**

I liked its anomaly detection function and behavioral analytics as they helped me identify many bad things in my system. But my favorite is that it is scaleable and it can handle large data easily.

**What do you dislike about IBM QRadar EDR?**

Well, you can say I liked this personally but I think its price is a little higher than it should be so I have checked other SIEM Solutions. And it gives false positives sometimes, but what system does not give any false positives?

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It's Incredibly scalable and handles a large amounts of data from different sources while also making logs, it helps me greatly managing my whole system while also providing data on my loopholes i am making in my security.

  ### 30. I am sure you will like it once it is fully launched.

**Rating:** 4.0/5.0 stars

**Reviewed by:** Farhan A. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 22, 2023

**What do you like best about IBM QRadar EDR?**

I like its high security and firewall with reporting solutions while it collects data from different endpoints and large data while also searching for any viruses or vulnerabilities and loopholes from our side.

**What do you dislike about IBM QRadar EDR?**

If you do not have someone's help who has used it before, then it is really difficult to deploy and configure it, while at that it also needs high end devices to run better that's what i found its down side.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It helped me a lot in maintaining security while also giving reports of small things so I could be safer. Also, its large data handling is an excellent function that saved me a lot of time.

  ### 31. High Security Best Features.

**Rating:** 4.0/5.0 stars

**Reviewed by:** Rehman F. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 30, 2023

**What do you like best about IBM QRadar EDR?**

For me, It Has the Best Options For Security and Firewall based servers. As i needed to secure our client's data, which is really important and was saved on cloud-based servers, it worked best for me.

**What do you dislike about IBM QRadar EDR?**

I don't particularly hate anything it has, but its need or large amount of resources to work appropriately is its downside; you can say that looking at it collecting data and reporting things, it is reasonable.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It was solving our security and vulnerability-based problems as our main work needed my clients' data to be fully secure, and it was also on the cloud so it worked perfectly for me.

  ### 32. A good option if you can afford.

**Rating:** 3.5/5.0 stars

**Reviewed by:** Hamza K. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 20, 2023

**What do you like best about IBM QRadar EDR?**

I didn't use it for over a year but liked its logs-creating function. While it also collects data from different endpoints while creating logs, it helped me a lot in keeping account of many things.

**What do you dislike about IBM QRadar EDR?**

Well, while I was not the admin, I was its user, and I was doing a remote job and didn't have a very high-end pc, but it needed a lot of resources for it to handle the workload effectively.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It is helping me have detailed logs about all events from different endpoints. Because of it, I could create detailed reports about my work and it also helped me maintain security at the same time.

  ### 33. powerful threat detection, a must to get

**Rating:** 4.0/5.0 stars

**Reviewed by:** Jailson K. | Small-Business (50 or fewer emp.)

**Reviewed Date:** July 10, 2023

**What do you like best about IBM QRadar EDR?**

I appreciate IBM's advanced threat detection capabilities with rules, anomaly detection and behavior analytics that can identify potential threats and notify us in time.

**What do you dislike about IBM QRadar EDR?**

One downside is the complexity of deploying it. If you are not a skilled and knowledgeable person with SEIM technologies, then I would recommend getting one to do it because after its setup, you will also have problems maintaining it.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It solves my security and log management problems by providing a platform to collect and analyze large amounts of data at the same time as well as simplifying the whole process.

  ### 34. IBM SIEM (QRadar)

**Rating:** 4.5/5.0 stars

**Reviewed by:** Muhammad B. | Enterprise (> 1000 emp.)

**Reviewed Date:** May 22, 2023

**What do you like best about IBM QRadar EDR?**

It's GUI is very user friendly and monitoring is very easy. You can search any event by using different filters. QRadar support multiple extensions that can help you to manage things like log source management, User Behavior Analysis and QDI for QRadar server health status.

**What do you dislike about IBM QRadar EDR?**

Being professional I am not liking the User Behavior Analytics app in QRadar because it's very difficult to understand for a layman. Network flows monitoring is little bit difficult.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

IBM QRadar helps in monitoring critical servers, network traffic, and application logs. It is very beneficial to identify any vulnerability or zero day attack. Also helps SOC analysts in 24/7 monitoring.

  ### 35. Good

**Rating:** 5.0/5.0 stars

**Reviewed by:** Chan C. | Information Technology System Analyst, Mid-Market (51-1000 emp.)

**Reviewed Date:** March 28, 2023

**What do you like best about IBM QRadar EDR?**

Can help companies protect their critical data and assets from being compromised by cybercriminals.This makes it possible to detect new and emerging threats that may not have been seen before.

**What do you dislike about IBM QRadar EDR?**

May be too complex for some users to understand and use effectively. Its interface and features can be overwhelming, especially for non-technical users.Expensive for small businesses or individuals who don't have a large budget for cybersecurity solutions.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

One common problem in cybersecurity is the detection and response to advanced persistent threats (APTs), which are sophisticated and long-lasting attacks that can go undetected for extended periods of time. APTs are often designed to steal sensitive data, disrupt operations, or gain control of systems for future exploitation.

  ### 36. Qradar EDR Personal Rating Experience

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** June 04, 2023

**What do you like best about IBM QRadar EDR?**

Endpoint visibility and investigation: The solution provides deep visibility into endpoint activities, allowing security teams to gain insights into the behaviors of individual endpoints

**What do you dislike about IBM QRadar EDR?**

Implementing and managing an EDR solution like IBM Security QRadar EDR may require a certain level of expertise and familiarity with security operations. Organizations without dedicated security teams or limited resources might find it challenging to fully utilize the solution's capabilities.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Streamline my most of the tasks to automation - by automating detection, response, and investigation processes, IBM Security QRadar EDR can help streamline security operations. It reduces the manual effort required for threat hunting, incident response, and remediation, allowing security teams to focus on more strategic tasks and improving overall operational efficiency.

  ### 37. I'm Om Prakash Thakur Cloud Engineer

**Rating:** 3.0/5.0 stars

**Reviewed by:** Om Prakash  T. | Small-Business (50 or fewer emp.)

**Reviewed Date:** June 16, 2023

**What do you like best about IBM QRadar EDR?**

The most accurate and up-to-date information, I recommend visiting the official IBM Security QRadar EDR documentation or consulting with IBM representatives.

**What do you dislike about IBM QRadar EDR?**

Considerations may vary depending on the specific requirements, infrastructure, and preferences of different organizations.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

The specific benefits and outcomes can vary depending on an organization's implementation, infrastructure, and security requirements. Organizations should evaluate how IBM Security QRadar EDR aligns with their specific needs

  ### 38. Cybersecurity expert

**Rating:** 4.5/5.0 stars

**Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.)

**Reviewed Date:** April 28, 2023

**What do you like best about IBM QRadar EDR?**

I appreciate IBM Security QRadar EDR's ability to detect and respond to advanced threats, its threat hunting and incident response capabilities, its automation of response and remediation actions, and its real-time visibility into endpoint activity. These features can help security teams detect and respond to threats quickly and effectively, improving the overall security posture of an organization.

**What do you dislike about IBM QRadar EDR?**

the complexity of implementation and management, the cost of licensing and maintenance, or the need for adequate resources to effectively leverage its capabilities.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

By providing real-time visibility into endpoint activity and automating response and remediation actions and detect and respond to threats quickly and effectively, reducing the risk of data breaches and other security incidents.

  ### 39. Best EDR with the good road map

**Rating:** 4.0/5.0 stars

**Reviewed by:** Gaurab P. | Chief Operating Officer , Information Technology and Services, Mid-Market (51-1000 emp.)

**Reviewed Date:** June 16, 2023

**What do you like best about IBM QRadar EDR?**

Simplified security analyst experience.
Reduce the learning curve of the SOC team.
Best SOC Automation Process.

**What do you dislike about IBM QRadar EDR?**

Sensor visibility are all disabled
Telemetry level is only standard.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It has Privilege Escalation  included for  Scheduled Task/Job

  ### 40. Qradar Logging System

**Rating:** 3.5/5.0 stars

**Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.)

**Reviewed Date:** August 08, 2023

**What do you like best about IBM QRadar EDR?**

We are using the QRadar as logging from server to Kenna. Installation of it is too easy and it doesn't need more computer source.

**What do you dislike about IBM QRadar EDR?**

It doesn't have a local monitoring screen

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It is collating all logs from each server and sent the Kenna.

  ### 41. Good

**Rating:** 2.5/5.0 stars

**Reviewed by:** GUNTAPON H. | Small-Business (50 or fewer emp.)

**Reviewed Date:** March 24, 2023

**What do you like best about IBM QRadar EDR?**

User friendly UI. Can detect abnormal event. Can detect apt. Can create rule and policy

**What do you dislike about IBM QRadar EDR?**

CPU usage very much. Laptop that low performance can not install agent.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Protect client and server from threat. Alert when detect event that match rule or policies.

  ### 42. IBM Security ReaQta is really helpful for any IT professional

**Rating:** 3.5/5.0 stars

**Reviewed by:** Sayeed H. | Technical Lead, Small-Business (50 or fewer emp.)

**Reviewed Date:** March 02, 2023

**What do you like best about IBM QRadar EDR?**

It is really helpful to protect from cyber threats. As it is based on AI so is more efficient

**What do you dislike about IBM QRadar EDR?**

There is not much to complain about IBM Security ReaQta

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

It helps the endpoint to be more secure and avoid vulnerabilility

  ### 43. So useful

**Rating:** 5.0/5.0 stars

**Reviewed by:** Mahdi A. | Mid-Market (51-1000 emp.)

**Reviewed Date:** March 22, 2023

**What do you like best about IBM QRadar EDR?**

The trainers have a huge knowledge and experience

**What do you dislike about IBM QRadar EDR?**

Nothing i noticed and no one complaint for any issues

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Encryption and decryption

  ### 44. Endpoint security with all detection

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 26, 2023

**What do you like best about IBM QRadar EDR?**

Easy deployment
Minimum admin work,more AI Functions
Easy to use coss effective
Compliance review and managing the risk
User friendly UI

**What do you dislike about IBM QRadar EDR?**

Memory consumption
Free demo for premium features

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Providing solution to endpoint detection and mitigate them, less overhead

  ### 45. Complete infrastructure visibility helped to increase security posture and combat advanced threats

**Rating:** 3.5/5.0 stars

**Reviewed by:** Umair S. | Unit Head Security Operations Center at Askari Bank, Enterprise (> 1000 emp.)

**Reviewed Date:** March 07, 2023

**What do you like best about IBM QRadar EDR?**

User friendly
Performance
Infrastructure interoparatbility
Easy requirements fullfill

**What do you dislike about IBM QRadar EDR?**

Support issues
Featured enhancement required
Third party integration issues

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Latest threat combating

  ### 46. Intuitive

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Security and Investigations | Mid-Market (51-1000 emp.)

**Reviewed Date:** April 25, 2023

**What do you like best about IBM QRadar EDR?**

Ease of use. It makes your job easy unlike other overly complicated competitors

**What do you dislike about IBM QRadar EDR?**

Easy to use, hard to master. But that is how everything should be.

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

Comparatively better than our previous EDR.

  ### 47. Unprecedented security

**Rating:** 5.0/5.0 stars

**Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.)

**Reviewed Date:** November 05, 2021

**What do you like best about IBM QRadar EDR?**

With ReaQta, I can know precisely what is happening and where, with impressive detail and precision and with the guarantee of being protected even from new or unknown threats. Furthermore, it requires minimum hardware \ software requirements that allow installation even on the most critical servers.

**What do you dislike about IBM QRadar EDR?**

Technically speaking, I couldn't find anything I didn't like.

**Recommendations to others considering IBM QRadar EDR:**

The technical support is unmatched

**What problems is IBM QRadar EDR solving and how is that benefiting you?**

The endpoint protection solutions used up to now always required to keep the database updated, perform scans, and many other routine activities to keep under control, requiring a particular effort. With ReaQta, I no longer have to worry about verifying the situation, but above all, no more false positives or threats that exceeded the other solutions.



- [View IBM QRadar EDR pricing details and edition comparison](https://www.g2.com/products/ibm-qradar-edr/reviews?section=pricing&secure%5Bexpires_at%5D=2026-07-08+20%3A07%3A19+-0500&secure%5Bsession_id%5D=237bd59b-a5be-4c42-a4f5-8af205a2b84c&secure%5Btoken%5D=5dba4921ac0876e11904040343d4f56bfb2dbc6a6e53f6ac240f777814800245&format=llm_user)

## IBM QRadar EDR Features
**Risk Analysis**
- Risk Scoring
- Reporting
- Risk-Prioritization

**Services - Endpoint Detection & Response (EDR) **
- Managed Services

**System Control**
- Device Control
- Web Control
- Application Control
- Asset Management
- System Isolation

**Vulnerability Assesment**
- Vulnerability Scanning
- Vulnerability Intelligence
- Contextual Data
- Dashboards

**Vulnerability Prevention**
- Endpoint Intelligence
- Firewall
- Malware Detection

**Automation**
- Automated Remediation
- Workflow Automation
- Security Testing
- Test Automation

**Security Management**
- Incident Reports
- Security Validation
- Compliance 

## Top IBM QRadar EDR Alternatives
  - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - 4.6/5.0 (412 reviews)
  - [Arctic Wolf](https://www.g2.com/products/arctic-wolf/reviews) - 4.7/5.0 (276 reviews)
  - [Sophos Endpoint](https://www.g2.com/products/sophos-endpoint/reviews) - 4.7/5.0 (791 reviews)

