Ibm Qradar and Logpoint Buyer'S Guide and Reviews November 2020

IBM QRadar
and
LogPoint
Buyer's Guide and Reviews
November 2020
IBM QRadar and LogPoint
Get a custom version of this report...personalized for you!

Thanks for downloading this IT Central Station report.
Note that this is a generic report based on reviews and opinions from the entire IT
Central Station community. We offer a customized report personalized for you based on:
• Your industry
• Company size
• Which solutions you're already considering
It includes recommendations for you based on what other people like you are researching and
using.
It takes 2-3 minutes to get the report using our shortlist builder wizard. We recommend it!
Get your personalized report here.
2
Contents
Advice From Real Users 4-9
Top Review by Topic of IBM QRadar and LogPoint 10
Overview 11
Answers From the Community 12
Reviews From Real Users 13-19
Reviews By Users Who Have Researched Both Solutions 20-23
Vendor Directory 24
Top Security Information and Event Management (SIEM) Vendors 25-26
Top 5 Solutions by Ranking Factor 27
About This Report and IT Central Station 28
© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/ibm-qradar_vs_logpoint?tid=pdf_comp_18086-29824
3
Advice From Real Users
IBM QRadar
PROS
"Providing real-time visibility for threat detection and prioritization - QRadar SIEM provides contextual and actionable surveillance
across the entire IT infrastructure." [Full Review]
Shaikh
Jamal Uddin
"The ability to transition from microscopic to macroscopic view, instantly, is very good." [Full Review]
Daniel
Sichel
"It is very stable." "We have not faced interruptions in the past four and a half years." [Full Review]
reviewer916
710
"This solution has allowed us to correlate logs from multiple sources." [Full Review]
Vik Solem
"We get events and make the correlation, or rules." "In IBM, we can implement our customer's rules." "We can have very clear status
threats and severity of antigens." [Full Review]
Larbi
Belmiloud
"Provided that the report is prebuilt and I can find what I am looking for, the reporting is the most valuable feature in this solution."
[Full Review]
QRadar6777
"This solution provides me with various alarms, and I have found security issues with some of my other products." [Full Review]
QRadar677

4
IBM QRadar
CONS
"AI is superb but need improvements." [Full Review]
Shaikh
Jamal Uddin
"I would like to see a better GUI." [Full Review]
Daniel
Sichel
"Technical support is good, but not great." [Full Review]
reviewer916
710
"We would like to see better instrumentation for debugging changes in the log flow." [Full Review]
Vik Solem
"The interface is very old." "IBM should remake it into a more modern interface." [Full Review]
Larbi
Belmiloud
"There are reports that I would like to generate that are either not included, or I cannot find." [Full Review]
QRadar6777
"There is a lot of manual configuration required in order for the product to run smoothly, and I think that it could be made more
automatic." [Full Review]
QRadar677

5
IBM QRadar
PRICING AND LICENSING ADVICE
"The pricing needs to be such that they are more competitive with other vendors." [Full Review]
QRadar6777
"There are additional costs, such as the cost associated with the different hardware required for implementation and deployment."
"Along with the add-on apps, these are all additional costs, and they require licensing as well." [Full Review]
Cyberspec6
7
"In terms of additional costs, it depends on the subscription that you choose." "There are plenty of options to choose from." [Full
Review]
BALA
"Our licensing costs for this solution is on a yearly basis." [Full Review]
Rossella
Falcone
"It's too expensive." "The licensing is also a little bit difficult to understand because you have to license it per event and per number
of flows." [Full Review]
DAX Paulino
"QRadar is quite expensive." "It wouldn't be worth it for a small business..." [Full Review]
Vulnera086
67
"I would like for them to lower the price." [Full Review]
Phillip
Okemwa

6
LogPoint
PROS
"Log collection, dashboards and reporting are good." [Full Review]
Lars Hillerup
"Technical support is responsive and very friendly." [Full Review]
Jeroen
Kroon
"The flexibility of the search feature and the solution's analytics features are the most valuable parts of the solution." [Full Review]
Giorgi-
Mikaia
"The solution offers excellent reporting features." "Our customers have been satisfied that they have been able to meet their
compliance needs by giving them a standard report." [Full Review]
Kedar
Kulkarni

7
LogPoint
CONS
"Dashboards could be developed further." [Full Review]
Lars Hillerup
"The interface needs things like wizards that will assist with creating complex correlation rules." [Full Review]
Jeroen
Kroon
"The solution should offer more integrations and third-party solutions like incident response platforms or allow access to third-party
big data" [Full Review]
Giorgi-
Mikaia
"Nowadays the trend is going towards the ransomware and the endpoint detection and response." "So if they added something for
that, that will be very, very good." [Full Review]
Kedar
Kulkarni

8
LogPoint
PRICING AND LICENSING ADVICE
"Our licensing fees are about $10,000 USD per month, which I think is fair." [Full Review]
Jeroen
Kroon
"For a hundred user deployment the cost is about $10,000." "The next year it would be the same because it's a subscription-based
license." "There are separate costs as well, for example, if a customer asks for training for their staff." [Full Review]
Kedar
Kulkarni

9
Top Reviews by Topic

IBM QRadar LogPoint
ROOM FOR
IMPROVEMENT DAX Paulino Kedar Kulkarni
The first area for improvement is the cost. It's a Nowadays the trend is going towards ransomware
little bit too expensive for us. Also, initially it was and endpoint detection and response. So if they
difficult to understand or to grasp, but once you added something for that, that would be very
get the hang of it is easier to understand and to useful. Plus, there is a trend towards store
analyze. So the main problems are its cost, the technology for security orchestration and
maintenance cost, and the fact that it takes some automated response. That would reduce the
time to learn how to use it. In terms of additional workload and the product would be more mature,
features, a mobile app would be nice. Also, the in terms of information. They should also work on
reporting is definitely okay, but you have to make better integration. [Full Review]
sure that everybody with different roles can... [Full
Review]
Jeroen Kroon
BALA
LogPoint is complex and we don't have the skills

to maintain use cases or even to extend the use
With the transition to a modern IT operation cases. Because of this, we are unable to take
center, I think that many of the devices are going advantage of the SIEM platform. We need
to be mobile. Somebody may not be at the NOC something more self-running, hosted, and
(Network Operations Center), data center, or SOC automatically recognizes problems the way the AI
(Security Operations Center). If anybody from the platforms are providing. The interface needs
non-security team or the NOC team has to receive things like wizards that will assist with creating
an active alert, it should be enabled in multiple complex correlation rules. The platform is very
channels. Ideally, we would like a mobile version resource-demanding, although this is typical of
so that any alert that comes in will notify us in a SIEM solutions. [Full Review]
mobile app, or by using SMS integration. We are
working on ... [Full Review]
Lars Hillerup
Cyberspec67
My issues with the product are mainly with regard

to how it handles collecting logs. I'm currently
There is one problem with QRadar in regards to thinking about implementing a new lever feature.
the add-on apps. The apps can be frustrating. For Additional features I'd like to see would be
example, when I add a big app like one of the standard help features in developing dashboards
add-ons for resiliency, add-on applications for and reports, and some of the alerts you can setup.
QRadar, these applications require different [Full Review]
hardware to implement and to deploy. The
resiliency connector because there's a
considerable amount of data scanning, operates
for these apps correctly. Acquiring these add-on
apps for QRadar is very expensive. This is one of
the difficulties that we are facing wi... [Full Review]

10
Overview
SOLUTION IBM QRadar LogPoint
OVERVIEW The IBM QRadar security and analytics platform is LogPoint are SIEM specialists with solutions widely
a lead offering in IBM Security's portfolio. This deployed in the Nordics, Germany, France and the
family of products provides consolidated flexible UK.
architecture for security teams to quickly adopt log
management, SIEM, user behavior analytics, The LogPoint solution is designed to provide you
incident forensics, and threat intelligence and with the information you need by enabling you to
more. As an integrated analytics platform, QRadar collect, analyze and monitor data from your entire
streamlines critical capabilities into a common infrastructure for Compliance Management,
workflow, with tools such as the IBM Security App Information Security, Application Security
Exchange ecosystem and Watson for Cyber Monitoring and Operational Insight.
Security...
LogPoint is straightforward to buy, install and
manage – so will take less of your time.
SIEM is all LogPoint...
SAMPLE Clients across multiple industries, such as energy, AP Pension, Copenhagen Airports, KMD, Terma,
CUSTOMERS
financial, retail, healthcare, government, DISA, Danish Crown, Durham City Council, Game,
communications, and education use QRadar. TopDanmark, Lahti Energia, Energi Midt, Synoptik,
Eissmann Group Automotive, Aligro, CG50...
TOP Splunk vs. IBM QRadar Splunk vs. LogPoint

COMPARISONS Compared 41% of the time Compared 44% of the time
LogRhythm NextGen SIEM vs. IBM QRadar LogRhythm NextGen SIEM vs. LogPoint
Compared 10% of the time Compared 15% of the time
ArcSight Enterprise Security Manager (ESM) vs. IBM QRadar vs. LogPoint
IBM QRadar Compared 13% of the time
Compared 9% of the time
TOP INDUSTRIES, Health, Wellness And Fitness Company ... 6%

BASED ON Energy/Utilities Company ... 6%
REVIEWERS*
Transportation Company ... 14%
Financial Services Firm ... 26%
TOP INDUSTRIES, Financial Services Firm ... 5% Retailer ... 6%
BASED ON Media Company ... 8% Recreational Facilities And Services Company ...
COMPANIES
READING REVIEWS* Comms Service Provider ... 20% 9%
Computer Software Company ... 38% Comms Service Provider ... 17%
Computer Software Company ... 29%
COMPANY SIZE, 201-1000 Employees ... 17%
BASED ON 1-200 Employees ... 37%
REVIEWERS*
1001+ Employees ... 46%
COMPANY SIZE, 1-200 Employees ... 8%
BASED ON 201-1000 Employees ... 21%
COMPANIES
READING REVIEWS* 1001+ Employees ... 71%
* Data is based on the aggregate profiles of IT Central Station Users researching this solution.

11
Answers from the Community
IBM QRadar vs LogPoint: What are the advantages and disadvantages of each?
When looking for a Security Information and Event Management (SIEM) solution, are you more likely to pick IBM
QRadar or LogPoint? What are the advantages and disadvantages of each? Are there specific use cases where
one provides a better solution than the other?
See all 0 answers >>

12
IBM QRadar review by a real user
Enables us to handle the most critical attacks and integrates well with
other solutions
Cybersecurity Practice Lead at a tech

services company with 201-500 employees
DAX Paulino
WHAT IS OUR PRIMARY USE CASE?
We are using it for SIEM, for Security Information and Event Management. We're gathering the logs and doing analytics on how we
are going to react to security incidents.
HOW HAS IT HELPED MY ORGANIZATION?
With QRadar we managed to focus on the more critical incidents that we have experienced. As a result, we have managed to
decrease the most critical incidents, most critical attacks. Now we're focusing on the ones that are not too heavy, not too critical.
As of the moment, we are more secure than before.
WHAT IS MOST VALUABLE?
One of the most valuable features is its ability to integrate with other solutions. In our current setup, we need a holistic view of our
network to provide better service. Therefore, integration with our security tools and infrastructure is a must. We managed to get
our NGFW, Endpoint Security, network servers, compliance tools and others to integrate with QRadar which enables our team to
better understand what is happening in our network and respond accordingly.
13
Continued from previous page
WHAT NEEDS IMPROVEMENT?
The first area for improvement is the cost. It's a little bit too expensive for us.
Also, initially it was difficult to understand or to grasp, but once you get the hang of it is easier to understand and to analyze. So
the main problems are its cost, the maintenance cost, and the fact that it takes some time to learn how to use it.
In terms of additional features, a mobile app would be nice. Also, the reporting is definitely okay, but you have to make sure that
everybody with different roles can understand it. There is room for improvement in the reporting.
FOR HOW LONG HAVE I USED THE SOLUTION?
One to three years.
WHAT DO I THINK ABOUT THE STABILITY OF THE SOLUTION?
It's very robust. If it fails it does not really harm the network. It just gathers information and that's the important part. It has not
failed, it's been working since day one so there is no problem. As long as the server that you install it on is working fine, it's very
reliable. It's very stable.
WHAT DO I THINK ABOUT THE SCALABILITY OF THE SOLUTION?
It's also scalable yes. You can adjust the number of devices it communicates with so there is no problem with scalability.
HOW ARE CUSTOMER SERVICE AND TECHNICAL SUPPORT?
I have not yet contacted technical support. I have not encountered any problems. So far, we have had no need for them. We
have just fixed things ourselves.
14
WHICH SOLUTION DID I USE PREVIOUSLY AND WHY DID I SWITCH?
We did not use any solutions before QRadar.
HOW WAS THE INITIAL SETUP?
It's straightforward. We just had to connect it to our servers, to our security solutions, and that was it. Everything was already
communicating.
We are just a small company, so the deployment did not take that long, about a month to a month-and-a-half. It didn't involve too
much downtime since we're just monitoring a few servers and a couple of security tools.
WHAT ABOUT THE IMPLEMENTATION TEAM?
We are directly in touch with IBM and we have an IBM security specialist. He usually gives us pointers and he's the one who also
gave us a little bit of training and knowledge transfer.
WHAT'S MY EXPERIENCE WITH PRICING, SETUP COST, AND LICENSING?
It's too expensive. The licensing is also a little bit difficult to understand because you have to license it per event and per number
of flows. So you have to understand the difference between a flow and an event, and then you have to forward that to the
resellers, the distributors, and to IBM. That part took a long time for us. Now we're adjusted to the process.
WHICH OTHER SOLUTIONS DID I EVALUATE?
We did evaluate some, like LogRhythm. We found that LogRhythm was more difficult to understand because it was a little bit too
static. I believe they have already improved but, as of the moment, we are still happy with QRadar.
15
WHAT OTHER ADVICE DO I HAVE?
My advice is to take your time. It depends on your network, on what you want to gather information from. Make sure that the
networking and the cybersecurity teams are working towards a common goal. The solution is very much worth it. You can gather
all the information that you need as long as you know first what you need.
This solution is mainly for the Security Operations Center, so there are just three or four users. But it's one of the key tools for us to
identify threats and attacks. The users are security operations analysts and threat hunters.
In our case, deployment and maintenance requires just a few people. They are the network administrators and our cybersecurity
engineers.
At the moment we have no plans to increase usage. If the company grows, usage should grow as well. The company is growing
but, as of the moment, we are planning for expansion. That's why the solutions that we carry are already built for expansion for the
next three to five years.
I would rate QRadar at eight out of ten. It's not perfect and the big issues would be the price and it that it takes some time to
understand it. But so far, it's one of the best solutions out there.

16
LogPoint review by a real user
Excellent reporting features and a good dashboard
Manager Pre-sales Information Security at a

tech services company with 201-500
employees
Kedar Kulkarni
The primary use case is standard compliance to help the user's ability to navigate PCI DSS compliance or GDPR compliance.
Besides that, if a user needs to do the log collection and correlation, the solution makes it easy.
HOW HAS IT HELPED MY ORGANIZATION?
The solution offers excellent reporting features. Our customers have been satisfied that they have been able to meet their
compliance needs by giving them a standard report. I understand that you can't define the custom reporting features, however.
Overall, the platform has a very good dashboard and a nice correlation engine as well.
Nowadays the trend is going towards ransomware and endpoint detection and response. So if they added something for that, that
would be very useful. Plus, there is a trend towards store technology for security orchestration and automated response. That
would reduce the workload and the product would be more mature, in terms of information. They should also work on better
integration.
17
I've been reselling the solution for two years.
The solution is quite stable as long as your server and the hardware is supporting it because it is a virtual kind of software solution.
So the software depends on the hardware. If your hardware is supporting it, obviously the solution will be stable. Once you install
it, you don't have to worry about it.
Scalability wise, if you are expanding the scope of the SSI devices, you just need to add the number of endpoints or number of
servers, and licenses.
We found technical support very good. But to be very honest, we did not come across any major issue as of yet. If there's that
something that we cannot solve ourselves completely, then we are totally reliant on them.
We are the resellers for multiple solutions, so we don't only sell LogPoint. It is a solution we pitch to our smaller customers.
18
The initial setup was straightforward. Usually, we can deploy the solution within three days. We usually take two days and keep an
extra day for a buffer, just for fine-tuning some policies and things like that. For a small deployment, one person is enough.
WHAT ABOUT THE IMPLEMENTATION TEAM?
For the first two deployments, we did have help. After that, we did not need it because there is direct support from LogPoint. We
can use tickets and get help if necessary.
WHAT WAS OUR ROI?
As long as the solution is working, and you are in compliance with all the internal audit policies, you will see a return on
investment.
The licensing structure is super. It's not like other complex environments. They work on the EPS or MPS, but they also work on a
number of devices. It's very straightforward. They have a different pricing structure for the lighter devices, so that makes it a very
cost-effective solution.
For a hundred user deployment the cost is about $10,000. The next year it would be the same because it's a subscription-based
license. There are separate costs as well, for example, if a customer asks for training for their staff.
We are a reseller of the solution.
I would recommend the solution. Go with the trial version and evaluate it first, because individual tastes may differ. I'm not the end-
user, I'm the reseller. We have managed to meet the customer's requirements for adhering to their compliance or getting the
solution onboard to their satisfaction. In the end, however, when an end-user uses the solution, they will ultimately have a
clearer idea about the pitfalls or upsides of it.
I would rate the solution eight out of ten.
19
Researched IBM But Chose LogPoint

Review by a real user:
Security Manager at Scildon
Jeroen Kroon
We use LogPoint for log collection. We have a specific use case around a system that was not able to provide this kind of
correlation. However, we are going to get rid of the legacy platform within the year and will be moving away from LogPoint.
The most valuable feature is the log creating according to specific rules.
LogPoint is complex and we don't have the skills to maintain use cases or even to extend the use cases. Because of this, we are
unable to take advantage of the SIEM platform. We need something more self-running, hosted, and automatically recognizes
problems the way the AI platforms are providing.
The interface needs things like wizards that will assist with creating complex correlation rules.
The platform is very resource-demanding, although this is typical of SIEM solutions.
We have been using LogPoint for three or four years.
20
We did have problems with stability in the past and we had one ticket that was open for a couple of months. It was due to their
platform having trouble reading sources coming from different kinds of services.
We are using LogPoint on a very small scale. I did some complex reports and it was working but it needed a lot of memory on the
local server.
We have about 150 employees and there are two or three operators.
Technical support is responsive and very friendly. We have no issues with that.
I have a lot of experience with Splunk, Radar, ArcSight, and the EMC platform. All of them consume a lot of system resources.
We did not use another SIEM solution in-house prior to LogPoint, although we did do some management using Rapid7 technology.
The initial setup was complex.
21
Our licensing fees are about $10,000 USD per month, which I think is fair. The licensing fees include product enhancements,
support, and it satisfies some mandatory regulatory aspects that we need to fulfill. We are also not taking full advantage of the
capabilities, such as advanced analytics.
If we wanted to take full advantage of the capabilities then we would need to invest between $20,000 and $50,000 in consulting
fees.
WHICH OTHER SOLUTIONS DID I EVALUATE?
LogPoint was selected before I was in this position, so I was not part of the process. My understanding is that several products
were considered but LogPoint was chosen because the price of the license was attractive.
At this point, we are thinking about moving to Darktrace.
We are moving away from this solution and are looking for something automated, like Darktrace.
My advice for anybody who is implementing this solution is to first have a very clear understanding of the use cases, what you
want to use it for, and what you want to report.
Don't be afraid to look for a cloud-based solution, especially when it comes to SIEM products. It removes a lot of trouble related to
internal servers and the complexity of accessing the SIEM from outside. If you have to implement your own MSA then I would
suggest reconsidering any case of using an internal SIEM. Especially for smaller companies, this will provide much more value.
I would rate this solution a seven out of ten.
22
WHICH DEPLOYMENT MODEL ARE YOU USING FOR THIS SOLUTION?
On-premises

23
Vendor Directory
Amazon AWS Security Hub Micro Focus ArcSight Enterprise Security Manager
(ESM)
AT&T AT&T AlienVault USM
Micro Focus NetIQ Sentinel
AT&T AlienVault OSSIM
Micro Focus ArcSight Interset / Intelligence
BlackStratus SIEMStorm
NETMONASTERY DNIF
Devo Devo
Netsurion Netsurion EventTracker
Elastic Elastic SIEM
NNT NNT Log Tracker Enterprise
empow i-SIEM
Odyssey Cybersecurity ClearSkies SaaS NG SIEM
Exabeam Exabeam
Oracle Oracle Security Monitoring and Analytics
FireEye FireEye Helix Cloud Service
Fortinet Fortinet FortiSIEM Rapid7 Rapid7 InsightIDR
HelpSystems HelpSystems Powertech Event Manager RSA RSA NetWitness Logs and Packets (RSA
SIEM)
IBM IBM QRadar
RSA RSA enVision
IBM IBM Watson for Cyber Security
Seceon Seceon Open Threat Management
Platform
Ignite Technologies SenSage AP
Securonix Solutions Securonix Security Analytics
Intersect Alliance Snare
SolarWinds SolarWinds Security Event Manager
IS Decisions FileAudit
SolarWinds SolarWinds MSP Threat Monitor [EOL]
LogPoint LogPoint
Splunk Splunk
LogRhythm LogRhythm NextGen SIEM
SQRRL SQRRL
Logsign Logsign
Sumo Logic JASK [EOL]
Logz.io Logz.io
SurfWatch Labs SurfWatch Labs SurfWatch
ManageEngine ManageEngine Log360
ThetaRay ThetaRay
ManageEngine ManageEngine EventLog Analyzer
TIBCO LogLogic
Masergy Masergy
Trustwave Trustwave SIEM [EOL]
McAfee McAfee ESM
VenusTech Venusense USM
24
Top Security Information and Event Management (SIEM) Vendors

Over professionals have used IT Central Station research. Here are the top vendors based on product reviews, ratings, and comparisons.
All reviews and ratings are from real users, validated by our triple authentication process.
Chart Key
Views Comparisons Reviews Words/Review Average Rating
Number of views Number of times compared Total number of reviews on Average words per review Average rating based on
to another product IT Central Station on IT Central Station reviews
Bar length
The total ranking of a product, represented by the bar length, is based on a weighted aggregate score. The score is calculated as follows:
For each of Reviews, Views, and Comparisons, the product with the highest count in each area gets a maximum 18 points.
Every other product gets assigned points based on its total in proportion to the #1 product in that area.
For example, if a product has 80% of the number of reviews compared to the product with the most reviews then the product's points for reviews
would be 18 * 80% = 14.4.
Both Average Rating and Words/Review are awarded on a fixed linear scale.
For Average Rating, the maximum score is 28 points awarded linearly between 6-10 (e.g. 6 or below=0 points; 7.5=10.5 points; 9.0=21 points;
10=28 points).
For Words/Review, the maximum score is 18 points awarded linearly between 0-900 words (e.g. 600 words = 12 points; 750 words = 15 points;
900 or more words = 18 points).
If a product has fewer than ten reviews, the point contribution for Average Rating and Words/Review is reduced:
1/3 reduction in points for products with 5-9 reviews, two-thirds reduction for products with fewer than five reviews.
Reviews that are more than 24 months old, as well as those written by resellers, are completely excluded from the ranking algorithm.
All products with 50+ points are designated as a Leader in their category.
1 Splunk
104,302 views 86,193 comparisons 26 reviews 406 words/review 8.2 average rating
2 LogRhythm NextGen SIEM
27,788 views 15,196 comparisons 26 reviews 1,070 words/review 7.8 average rating
3 IBM QRadar

25
4 Securonix Security Analytics
8,320 views 3,815 comparisons 10 reviews 1,733 words/review 8.7 average rating
5 Netsurion EventTracker
2,998 views 866 comparisons 11 reviews 2,048 words/review 8.8 average rating
6 AT&T AlienVault USM
7 Fortinet FortiSIEM
8 AlienVault OSSIM
9 SolarWinds Security Event Manager
10 ArcSight Enterprise Security Manager (ESM)

26
Top 5 Solutions by Ranking Factor

Views
VIEWS
1 Splunk 104,302
2 IBM QRadar 38,894
3 LogRhythm NextGen SIEM 27,788
4 AT&T AlienVault USM 17,075
5 ArcSight Enterprise Security Manager 15,826

(ESM)
Reviews
REVIEWS
1 Splunk 26
2 LogRhythm NextGen SIEM 26
3 IBM QRadar 23
4 RSA NetWitness Logs and Packets (RSA 14

SIEM)
5 AT&T AlienVault USM 13
Words / Review
WORDS /
REVIEW
1 i-SIEM 5,358
2 Devo 2,331
3 Netsurion EventTracker 2,048
4 Securonix Security Analytics 1,733
5 LogRhythm NextGen SIEM 1,070

27
About this report

This report is comprised of a list of enterprise level vendors. We have also included several real user reviews posted on ITCentralStation.com.
The reviewers of these products have been validated as real users based on their LinkedIn profiles to ensure that they provide reliable opinions
and not those of product vendors.
About IT Central Station

The Internet has completely changed the way we make buying decisions. We now use ratings and review sites to see what other real users think
before we buy electronics, book a hotel, visit a doctor or choose a restaurant. But in the world of enterprise technology, most of the information
online and in your inbox comes from vendors but what you really want is objective information from other users.
We created IT Central Station to provide technology professionals like you with a community platform to share information about enterprise
software, applications, hardware and services.
We commit to offering user-contributed information that is valuable, objective and relevant. We protect your privacy by providing an environment
where you can post anonymously and freely express your views. As a result, the community becomes a valuable resource, ensuring you get
access to the right information and connect to the right people, whenever you need it.
IT Central Station helps tech professionals by providing:
• A list of enterprise level vendors

• A sample of real user reviews from tech professionals
• Speciﬁc information to help you choose the best vendor for your needs
Use IT Central Station to:
• Read and post reviews of vendors and products

• Request or share information about functionality, quality, and pricing
• Contact real users with relevant product experience
• Get immediate answers to questions
• Validate vendor claims
• Exchange tips for getting the best deals with vendors
IT Central Station
244 5th Avenue, Suite R-230 • New York, NY 10001
www.ITCentralStation.com
reports@ITCentralStation.com
+1 646.328.1944

28

Ibm Qradar and Logpoint Buyer'S Guide and Reviews November 2020

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Ibm Qradar and Logpoint Buyer'S Guide and Reviews November 2020

Uploaded by

Copyright:

Available Formats

IBM QRadar

Get a custom version of this report...personalized for you!

Get your personalized report here.

Advice From Real Users 4-9

Top Review by Topic of IBM QRadar and LogPoint 10

Answers From the Community 12

Reviews From Real Users 13-19

Reviews By Users Who Have Researched Both Solutions 20-23

Top Security Information and Event Management (SIEM) Vendors 25-26

Top 5 Solutions by Ranking Factor 27

About This Report and IT Central Station 28

© 2020 IT Central Station

Advice From Real Users

© 2020 IT Central Station

Advice From Real Users

"AI is superb but need improvements." [Full Review]

"I would like to see a better GUI." [Full Review]

"Technical support is good, but not great." [Full Review]

© 2020 IT Central Station

Advice From Real Users

PRICING AND LICENSING ADVICE

© 2020 IT Central Station

Advice From Real Users

"Log collection, dashboards and reporting are good." [Full Review]

"Technical support is responsive and very friendly." [Full Review]

© 2020 IT Central Station

Advice From Real Users

"Dashboards could be developed further." [Full Review]

© 2020 IT Central Station

Advice From Real Users

PRICING AND LICENSING ADVICE

© 2020 IT Central Station

Top Reviews by Topic

LogPoint is complex and we don't have the skills

My issues with the product are mainly with regard

© 2020 IT Central Station

SIEM is all LogPoint...

TOP Splunk vs. IBM QRadar Splunk vs. LogPoint

TOP INDUSTRIES, Health, Wellness And Fitness Company ... 6%

© 2020 IT Central Station

Answers from the Community

See all 0 answers >>

© 2020 IT Central Station

IBM QRadar review by a real user

Cybersecurity Practice Lead at a tech

WHAT IS OUR PRIMARY USE CASE?

HOW HAS IT HELPED MY ORGANIZATION?

WHAT IS MOST VALUABLE?

Continued from previous page

WHAT NEEDS IMPROVEMENT?

FOR HOW LONG HAVE I USED THE SOLUTION?

One to three years.

WHAT DO I THINK ABOUT THE STABILITY OF THE SOLUTION?

WHAT DO I THINK ABOUT THE SCALABILITY OF THE SOLUTION?

HOW ARE CUSTOMER SERVICE AND TECHNICAL SUPPORT?

Continued from previous page

WHICH SOLUTION DID I USE PREVIOUSLY AND WHY DID I SWITCH?

We did not use any solutions before QRadar.

HOW WAS THE INITIAL SETUP?

WHAT ABOUT THE IMPLEMENTATION TEAM?

WHAT'S MY EXPERIENCE WITH PRICING, SETUP COST, AND LICENSING?

WHICH OTHER SOLUTIONS DID I EVALUATE?

Continued from previous page