Palo Alto Cortex XSIAM Reviews & Product Details - Page 3

The device detects all endpoint threats and has a great realtime alert system.

The main good thing is that it has a very great user interface.

It was really easy to use it from the start itself

That sets it apart from other vendors Review collected by and hosted on G2.com.

For real time attack prevention we need to update it regularly,that was one of the disadvantages

The cost might be bit too high for small organisations Review collected by and hosted on G2.com.

Features advanced analytics with threat intelligence detection even against zero-day exploits

QRadar automated remediation helps cyber security team to predefine rules and policies to take proactive response against threats efficiently.

It seamlessly integrates with existing systems, ingest security data and analyse in real time with prompt alerts and mitigation actions. Review collected by and hosted on G2.com.

Initial setup & configuring QRadar EDR can be complex, requires expertise from both endpoint security and SIEM technologies.

EDR have additional Licensing cost which might not be suitable for small enterprise organization.

Like any other security solution QRadar may generate false positives which needs to be manually investigated by the team at times. Review collected by and hosted on G2.com.

easy deployment and integration with your collectors Review collected by and hosted on G2.com.

When integrating equipment that is not natively registered, parcing is cumbersome. Review collected by and hosted on G2.com.

The most helpful and important parts of QRadar has to be the integrations it supports.

Most major software solutions and log sources are easy to integrate using existing readily available modules.

It was good to be involved in the development of QRadar, and IBM was always receptive to feedback. Review collected by and hosted on G2.com.

The interface was very aged, but was being actively developed.

QRadar has been around for longer than other SIEMs, and it shows in both good ways and bad ways.

When compared to other SIEMs I am familiar with, QRadar was complex and not easy to understand without some training and experience.

However, the capabilities of the system balance this barrier to entry. Review collected by and hosted on G2.com.

1) Best techniques to use are available like MITRE ATT&CK, visualizations , AI tools automation.

2) Good Customer Support.

3)Helps to detect malicious endpoint threat and mitigate them in real time. Review collected by and hosted on G2.com.

1) Sometimes false positive may arise and it need certain level of expertise to use.

2) Cost is high for mid-small size organizations. Review collected by and hosted on G2.com.

Great security tool for endpoint threat detection.

Regular updates to secure malicious threat attacks.

IBM Security QRadar is a great tool for detecting malicious phishing emails. Review collected by and hosted on G2.com.

Initial setup is bit tricky.

Tool is costly for mid range and small business. Review collected by and hosted on G2.com.

Secruity and Platform from IBM is important thing I like about QRadar SOAR Review collected by and hosted on G2.com.

sofar nothing, I have been using partially on the Platform Review collected by and hosted on G2.com.

Basically Qradar is a SIEM Tool which is made by IBM, by using Qradar we can monitor our endpoints as well as cloud.

Alerts from Endpoints will come under Events and activity related to networking will come under Flows.

If it find any suspicious activity then it will create Offense.

So if i want to investigate any incident for that you can go to offense it contains rich information.

So you can also integrate Qradar with Qradar SIEM for Automation purpose. Review collected by and hosted on G2.com.

So if you are new to Qradar SIEM, first you need to understand the general architecture of Qradar then all features of Qradar.

Although it gives us variety of features Qradar is more costly than any other tool. Review collected by and hosted on G2.com.

Dashbord and Layout for understanding for anynon tech user. Review collected by and hosted on G2.com.

No same time when the networking traffic is incress that time This tools is not working proparly. Review collected by and hosted on G2.com.

IBM Soar console is very easy to use,we can create any playbook in a very fast approach and if in case we need oem support just raised a ticket and you find almost in the day we have resolution. Review collected by and hosted on G2.com.

Some time all playbooks not going in the same direction for which we have configured to acheive the goal. Review collected by and hosted on G2.com.