We performed a comparison between IBM Security QRadar and Kaspersky Endpoint Detection and Response Expert based on real PeerSpot user reviews.
Find out in this report how the two Endpoint Detection and Response (EDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I get alerts when scripts are detected in the environment."
"The setup is pretty simple."
"The price is low and quite competitive with others."
"This is stable and scalable."
"Fortinet FortiEDR's firewalling, rule creation, monitoring, and inspection profiles are great."
"The stability is very good."
"It is a scalable solution...The initial setup of Fortinet FortiEDR was straightforward."
"The solution was relatively easy to deploy."
"The most valuable thing about QRadar is that you have a single window into your network, SIEM, network flows, and risk management of your assets. If you use Splunk, for instance, then you still need a full packet capture solution, whereas the full packet capture solution is integrated within QRadar. Its application ecosystem makes it very powerful in terms of doing analysis."
"It is really helpful to us from the compliance point of view."
"This is a good tool to have because it gives you the ability to track what is currently happening in your environment."
"We get events and make the correlation, or rules. In IBM, we can implement our customer's rules. We can have very clear status threats and severity of antigens."
"QRadar UBA's most valuable feature is the risk rating of users depending on their behavior."
"It is suitable for large companies with critical infrastructure. For our clients, robustness, availability at a high level, and the level of references and experiences connected to the solution are important."
"It has improved my efficiency."
"It has a lot of good correlation rules. From a customer's point of view, it is one of the best solutions because you don't need to create correlation rules from scratch. You just review them and customize them as you want."
"The product is very easy to use."
"Encryption is the most valuable feature. It creates an encryption tunnel from your location to the delivery address."
"Has great behavior detection and a very good firmware scanner."
"Has some great features not available elsewhere."
"Kaspersky Endpoint Detection and Response is a stable solution."
"Kaspersky is easy to use, and it performs well."
"The pricing is decent."
"This is a feature-rich product."
More Kaspersky Endpoint Detection and Response Expert Pros →
"Detections could be improved."
"The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud."
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
"We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."
"They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller."
"The dashboard isn't easy to access and manage."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"It takes about two business days for initial support, which is too slow in urgent situations."
"I need a solution which will send alerts in the event of any behavior."
"The product is good, but one feature they should have is an Elasticsearch. Currently, in QRadar, there are no Elasticsearch criteria."
"IBM technical support is always terrible."
"The dashboard and reports are not user-friendly or efficient so are of little help with threat hunting activity."
"The product does not have a team for investigating malware."
"Solution has too many menus that require going to two or three sub-monitors to enter the QRadar."
"The implementation and configuration are not easy."
"Some of the cloud apps need improvement."
"We'd like to see them improve the automatic response."
"It's not a simple implementation."
"If it covered more products, it would improve the XDR."
"The technical support team should respond in a more timely manner."
"The installation process could be more streamlined."
"The prices can go down a little bit."
"Documentation needs to be simplified and improved so that it provides good product awareness for end users."
"The solution could always be more secure."
More Kaspersky Endpoint Detection and Response Expert Cons →
More Kaspersky Endpoint Detection and Response Expert Pricing and Cost Advice →
IBM Security QRadar is ranked 20th in Endpoint Detection and Response (EDR) with 198 reviews while Kaspersky Endpoint Detection and Response Expert is ranked 17th in Endpoint Detection and Response (EDR) with 44 reviews. IBM Security QRadar is rated 8.0, while Kaspersky Endpoint Detection and Response Expert is rated 8.2. The top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". On the other hand, the top reviewer of Kaspersky Endpoint Detection and Response Expert writes "Solid security and performance; overall a useful tool". IBM Security QRadar is most compared with Splunk Enterprise Security, Microsoft Sentinel, Wazuh, LogRhythm SIEM and Elastic Security, whereas Kaspersky Endpoint Detection and Response Expert is most compared with Trend Vision One, Microsoft Defender for Endpoint, Cynet, Symantec Endpoint Detection and Response and Check Point Harmony Endpoint. See our IBM Security QRadar vs. Kaspersky Endpoint Detection and Response Expert report.
See our list of best Endpoint Detection and Response (EDR) vendors.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.