IBM announced the availability of its new QRadar Security Suite, designed to help simplify the challenges faced by security teams tasked with managing an ever-growing list of different security tools.
QRadar in general has four core products that can be managed from the central QRadar console.
The first is Log Insights, which is a cloud-native log analytics platform designed with optimized search and rapid analysis on very large datasets.
The second is QRadar EDR and XDR, an endpoint management system with AI and behavioral modeling features that allow it to monitor devices from outside the endpoint, giving it the ability to quickly correlate alerts from different sources and, in concert with the rest of the platform, perform automatic investigations.
The third is QRadar SOAR, an automated incident detection and response system that, according to IBM, can substantially reduce the response time in the event of a ransomware attack or other data breach.
The fourth is QRadar offers SIEM, providing a unified interface for a host of capabilities like real-time threat detection, threat intelligence integration, and AI-powered network and user analytics.
By combining all these capabilities under one management system, will enable simpler and more powerful front-end for security teams.
IBM said that QRadar components, which are available immediately, can be purchased as a full suite. As mentioned, are all delivered as a service via AWS, except for the SIEM component, which will be initially hosted on IBM Cloud. The pricing details yet to be revealed.