We performed a comparison between IBM Resilient and VMware Carbon Black Cloud based on real PeerSpot user reviews.
Find out in this report how the two Security Incident Response solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."What I like most about IBM Resilient is that it has a complete stack, which means you don't need to use different OEM products because you have all you need under the IBM Resilient umbrella. You don't need to worry much about integrations and components because you're working with tested and proven architecture."
"The initial setup of IBM Resilient is not that complex since my company already has a support license that we use internally. In general, the product's deployment phase is not that complex."
"The UBA, User Behavior Analytics, is very good."
"The solution is simple to use and to integrate with IBM QRadar."
"The most valuable thing about it is how easy it is to navigate the user interface."
"As a whole, the product is stable...Technical support is very good."
"IBM Resilient is scalable."
"Its flexibility is the most valuable."
"The most valuable features are the threat-hunting and the batch console."
"For setup, the server can be given to you as a VM image and with minimal configuration needed."
"We also took full advantage of its incident response reporting capabilities to act as a “black box” for our infrastructure around strings of suspicious activity. The reporting and incident response capabilities were incredibly helpful during active security concerns."
"Carbon Black insures the probability that any ransomware will be stopped before spreading."
"The detection response and quarantining are very good features."
"They're highly stable in comparison with other solutions I have."
"VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network."
"Probably the most valuable feature of CB Response is its ability to isolate a host and take it off the network, so it's not spreading anything. We have two security operations centers around the globe. When an SOC analyst sees something on an endpoint, they can use Carbon Black Response to isolate that host from the customer's environment and prevent any kind of lateral spread."
"The ability to analyze incidents needs to be improved in the solution."
"It is not very straightforward to set up custom integrations, especially with services like Azure. You need an additional server for integration."
"What could make IBM Resilient better is if IBM increased the number of built-in integrations with different products from other vendors or third-party products."
"The product must provide more integration with other tools."
"This product could be improved with better customization. This product isn't the best on the market like QRadar, but it's actually a good solution. However, some competitors' solutions contain more integration, support, automation, or flexibility."
"The implementation could be a bit simpler."
"Its price needs improvement."
"IBM Resilient is quite complex, including its configuration."
"The product detects too many false positives initially and it could integrate better with other security solutions."
"They have different products, but if we wanted to take their protection and their EPR, then we would need to have two agents"
"The solution can only handle about 500 bans or blocks."
"The solution needs to simplify the process of adding custom watchlists, as well as embrace YARA for rule creation."
"The solution's support could be improved."
"We are subscribed to FS-ISAC threat indicator, but have been unsuccessful in adding it to our alliance feeds."
"The support team of Carbon Black CB Response needs improvement. At present, they need a lot of information. Then they give you an answer that they already gave you. You tell them it didn't work, and then they take a long time."
"They need to improve the batch console. It needs more capabilities. We are limited by the ones it provides..."
IBM Resilient is ranked 4th in Security Incident Response with 17 reviews while VMware Carbon Black Cloud is ranked 2nd in Security Incident Response with 18 reviews. IBM Resilient is rated 7.6, while VMware Carbon Black Cloud is rated 8.4. The top reviewer of IBM Resilient writes "Simple deployment, scalable, but lacking third-party solution compatibility ". On the other hand, the top reviewer of VMware Carbon Black Cloud writes " Shows promise for endpoint detection and response, with room for improvement in complexity and pricing ". IBM Resilient is most compared with Palo Alto Networks Cortex XSOAR, Splunk SOAR, ServiceNow Security Operations, IBM Security QRadar and Fortinet FortiSOAR, whereas VMware Carbon Black Cloud is most compared with VMware Carbon Black Endpoint, Fidelis Elevate, Palo Alto Networks Cortex XSOAR, Rapid7 InsightIDR and Splunk SOAR. See our IBM Resilient vs. VMware Carbon Black Cloud report.
See our list of best Security Incident Response vendors.
We monitor all Security Incident Response reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.