IBM QRadar Incident Forensics

4.8 (4)
Write a Review!
Digital forensics and investigation management software

About IBM QRadar Incident Forensics

IBM QRadar Incident Forensics is a digital forensics and investigation management software that is designed for businesses in several industry segments, such as finance, education, healthcare, manufacturing, and telecommunication. It helps organizations to manage offense records, handle remediation processes, rebuild evidence, and more on a centralized platform.

IBM QRadar Incident Forensics allows team members to compile and rebuild security incident-based evidentiary profiles to optimize remediation operations. The data collection module lets employees capture log events, network flows, digitally stored elements, and full packet captures. It also lets administrators set up permission rights to restrict specific individuals from accessing, editing, or deleting information.

IBM QRadar Incident Forensics enables businesses to integrate the platform with IBM QRadar Security Intelligence solution to gain insights into IP address, chat, email, and social media identity-based extended relationships and digital impressions. It allows data analysts to locate malicious traffic by utilizing built-in search and filter tools.


Images

IBM QRadar Incident Forensics Software - IBM QRadar Incident Forensics file analysis
IBM QRadar Incident Forensics Software - IBM QRadar Incident Forensics fields
IBM QRadar Incident Forensics Software - IBM QRadar Incident Forensics incident forensics
View 3 more
IBM QRadar Incident Forensics Software - IBM QRadar Incident Forensics file analysis
IBM QRadar Incident Forensics Software - IBM QRadar Incident Forensics fields
IBM QRadar Incident Forensics Software - IBM QRadar Incident Forensics incident forensics

Not sure about IBM QRadar Incident Forensics? Compare with a popular alternative

IBM QRadar Incident Forensics

4.8 (4)
VS.
Most reviewed

Starting Price

No pricing found
No pricing found

Pricing Options

Free version
Free trial
Free version
Free trial

Features

8
140

Integrations

No integrations found
31

Ease of Use

4.5 (4)
4.1 (244)

Value for Money

3.5 (4)
4.3 (244)

Customer Service

4.0 (4)
4.3 (244)
Green rating bars show the winning product based on the average rating and number of reviews.

Alternatives

Splunk Enterprise

4.6
#1 Alternative to IBM QRadar Incident Forensics
Splunk Enterprise is a cloud-based platform designed to assist businesses with big data management and analysis of...

Case IQ

4.6
#2 Alternative to IBM QRadar Incident Forensics
Case IQ is the leading investigative case management software solution for ethics and compliance, human resources,...

Resolver

4.4
#3 Alternative to IBM QRadar Incident Forensics
Resolver's cloud-based corporate security solutions help organizations reduce uncertainty from risk-based decisions....

Zinc Synapse

4.8
#4 Alternative to IBM QRadar Incident Forensics
Zinc Synapse is an incident management software that helps businesses optimize the management of critical events,...

Reviews

Overall rating

4.8 /5
(4)
Value for Money
3.5/5
Features
4.5/5
Ease of Use
4.5/5
Customer Support
4/5

Already have IBM QRadar Incident Forensics?

Software buyers need your help! Product reviews help the rest of us make great decisions.

Showing 4 reviews of 4
Dhamodharan
Dhamodharan
Overall rating
  • Industry: Information Technology & Services
  • Company size: 51–200 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 8.0 /10

Detect and analyse the cyber threats.

Reviewed on 26/09/2024

Best security tool to monitor our environment live and safe

Best security tool to monitor our environment live and safe

Pros

I like the most thing is log analysis and device integration and rule integration and correlation process. Threat hunting is accuracy. Dashboard creation according to our work environment.

Cons

Much more graphical interface required and most and important is cost, it could be made less. While application upgrading we are facing some monitor loss.

Verified Reviewer
Overall rating
  • Industry: Computer & Network Security
  • Company size: 5,001–10,000 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Digital forensic -Qradar

Reviewed on 04/08/2022

Different problems in network came daily basis related to incidents but qradar incident forensics...

Different problems in network came daily basis related to incidents but qradar incident forensics helps to create report , remediation steps , evidence etc during critical issue to organization.

Pros

Inspection , case management, and incidents management features helps us to identify the critical threats of network and proactive remediate the issue and aware the user for the malicious malware.

Cons

It's provides the proper document in the IBM academy for learning but creates some incident management vedio and troubleshooting tips vedios with documentation that helps to get better under to administrator .

Alternatives Considered

Splunk Enterprise

Reasons for Switching to IBM QRadar Incident Forensics

It's depend on the organizat budget to manage and what's purpose of the product according to requirement that better , easy to implement and use for network team.
Verified Reviewer
Overall rating
  • Industry: Utilities
  • Company size: 201–500 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 7.0 /10

Qradar review

Reviewed on 10/11/2022

Pros

Integrated with different systems, servers, network appliances etc.

Cons

Vulnerability module is not working as expected.

Alternatives Considered

Splunk Enterprise

Reasons for Choosing IBM QRadar Incident Forensics

Solid regid product.
Anmol
Overall rating
  • Industry: Information Technology & Services
  • Company size: 201–500 Employees
  • Used Weekly for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

IBM QRadar

Reviewed on 25/02/2023

Pros

It makes us easy to investigate and check the incident logs from the exploit start and after it .we integrate it with AWS WAF logs and VPC logs and it raised the incident automatically with least human efforts

Cons

There is a delay in logs sync and from source to processing in Qradar.It's not work in real-time it takes a minimum of 5 minutes to investigate it.Integration with real-time stream is not an easy task

IBM QRadar Incident Forensics FAQs

Below are some frequently asked questions for IBM QRadar Incident Forensics.

IBM QRadar Incident Forensics offers the following pricing plans:

  • Free Trial: Not Available

Please contact IBM directly for pricing details

IBM QRadar Incident Forensics has the following typical customers:

Self Employed, 2–10, 11–50, 51–200, 201–500, 501–1,000, 1,001–5,000

IBM QRadar Incident Forensics supports the following languages:

English

IBM QRadar Incident Forensics supports the following devices:

We do not have any information about what integrations IBM QRadar Incident Forensics has

IBM QRadar Incident Forensics offers the following support options:

Email/Help Desk, FAQs/Forum, Knowledge Base

Related categories

See all software categories found for IBM QRadar Incident Forensics.