We performed a comparison between Dynatrace and IBM Security QRadar based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Dynatrace is highly regarded for its advanced AI engine and ability to identify infrastructure automatically. It also offers session replay and impressive visualization features. QRadar users say the solution provides extensive information and helpful leads for locating pertinent data. QRadar stands out with its comprehensive network visibility and strong SIEM capabilities. Some Dynatrace reviewers feel the learning curve is a little steep, and the documentation could be clearer. Users say that Dynatrace should offer more security options and improve integration with other tools. QRadar could improve its rule deployment and lower its false positive rate. Users would also like expanded storage capacity, streamlined user management, and a more mature architecture.
Service and Support: Users generally found Dynatrace's customer service to be helpful and available, but some said that the response times and documentation have room for improvement. Some QRadar customers have had trouble connecting with knowledgeable support staff and experienced delayed responses.
Ease of Deployment: Dynatrace's setup is simple, efficient, and requires minimal technical configuration. It takes a few hours at most. QRadar's initial setup can be complex for users without expertise, and the difficulty may vary depending on the size of the data set.
Pricing: Users say Dynatrace is expensive. Some noted that the licensing model is complicated and not transparent. Some said they struggled to accurately predict the number of units needed. QRadar can be costly because users need to buy new hardware to upgrade.
ROI: Dynatrace users said the solutions saved them money and reduced downtime. QRadar delivers a high return on investment, improving security through its advanced user behavior analytics.
"We like the on-premises platform and the horizontal scalability."
"The main benefit is being able to pinpoint problems."
"Dynatrace is capable of following all user actions across all monitored infrastructure, even to systems not monitored, but interconnected."
"You can do deep dive analysis and find root cause quickly."
"Whether it is the server, database, network, or application, Dynatrace provides a consistent unambiguous view of performance."
"The stability for the solution is pretty solid overall."
"Automatic instrumentation of new services and technology without the need to install specific agents or modules."
"Dynatrace has designed its agents to capture limited stack traces for each transaction executed."
"It's quite scalable. We have upgraded some solutions from 1000 APS up to 3500 APS to 5000 APS. It's a good solution, they have no scalability issues."
"IBM Qradar's ability to simplify the number of events, not only on a technical level but by making that information easy to pan through the orchestration deduplication. It is very impressive given that we have hundreds of devices that send event logs through."
"The most valuable feature currently is security behaviors and the pdf files."
"The best part of this solution is having a third-party SOC."
"QRadar has somewhat of a new structure recently from last gen. They have moved from the standard UI based infrastructure."
"It can analyze event logs, event security, and give a good consult."
"QRadar, Splunk, and ArcSight are SIEM solutions with built-in AI/ML features. They can do the complete investigation and alert the admin about what is happening. They can also do the root cause analysis. There are many other features that come with QRadar. It has a more granular log, so you can integrate with various non-IT as well as IT-based components. You can get unstructured data to the SIEM data, and you can identify more what is happening in the network or what is happening in the central head office. You can also identify what is happening between your remote offices. You can also use it to identify what the users in the field are doing on their devices and how things are moving. From the integration point of view, it is very centric. It gives complete control centrally. If a user is not connected to the system, whenever he comes online, we can see the policy updates over the Internet, and we can ensure that the data that is supposed to be protected is protected."
"This is a distributed application, meaning that a customer can stack small and then scale it so that they can expand pretty effectively. You can use, basically, the same product in an SMB or a large enterprise."
"Whenever there is a new version the UI changes, it makes it hard to use, because we are accustomed to the old one."
"They expect the customer to do the basic analysis, do all the solutions, and find the solutions themselves. If it is really a product problem, only then will they be able to identify and spend time on the customer."
"This solution needs improvement in terms of automation."
"I am unable to use Synthetic to automate user login."
"When integrating this solution with any third party applications, there is an additional cost to pay. This can make the solution very costly to use."
"We would like to see more external tool integration, which is critical for us."
"The new Managed Edition is too complex. I feel like a fish out of water."
"Add support for Ruby."
"IBM needs to invest more into the collaboration with other vendors."
"QRadar's performance has room for improvement because it cannot handle the volume. I need massive amounts of logs from various devices in our existing network architecture. IBM needs to improve QRadar's capacity to handle more logs."
"QRadar needs to be more specialized, along the lines of what other SIEM solutions are."
"The API integration for AD is a problem when it comes to vulnerability management. If you want to incorporate multiple factor authentication it becomes a problem with the AD. It doesn't integrate well. That needs to be improved."
"The architecture could be improved. I got stuck for a long time trying to understand the architecture, as it is quite challenging."
"I don't look at only the features and benefits; I also look at the price. It is a bit expensive when compared with other solutions. It is expensive for specific deployment topologies, and the decision-makers go for alternatives like ArcSight. It should also have more AI features or capabilities for better threat intelligence. The more it uses machine learning, the better would be the dashboard, analytics, and other things."
"I have noticed the interface has room for improvement."
"What needs to be improved in IBM QRadar User Behavior Analytics is the user experience. It's not optimal. Some screens are a bit clunky. The solution needs to be more user-friendly."
Dynatrace is ranked 4th in Log Management with 340 reviews while IBM Security QRadar is ranked 6th in Log Management with 198 reviews. Dynatrace is rated 8.8, while IBM Security QRadar is rated 8.0. The top reviewer of Dynatrace writes "AI identifies all the components of a response-time issue or failure, hugely benefiting our triage efforts". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Dynatrace is most compared with Datadog, New Relic, AppDynamics, Splunk Enterprise Security and Azure Monitor, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security. See our Dynatrace vs. IBM Security QRadar report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.