QRadar SIEM provides an integrated network security solution that converges typically siloed network and security information into a single, cohesive system. QRadar SIEM's unique approach enables organizations to deliver an unparalleled set of network security intelligence services, including:
QRadar Log Manager:
QRadar Log Manager provides a comprehensive, turnkey log management solution for organizations of all sizes. Log management has emerged as a required part of delivering security best practices and meeting specific auditing and reporting requirements of government regulations, including:
Payment Card Industry Data Security Standards (PCI DSS)
GCSX Code of Connection (CoCo)
Health Insurance Portability and Accountability Act (HIPAA),
North American Electric Reliability Corp. (NERC),
Federal Energy Regulatory Commission (FERC),
Federal Information Security Management Act (FISMA)
QRadar Log Manager can also be easily upgraded via a software license key to the full-featured QRadar SIEM, meaning you won't have to worry about losing of data or purchasing & installing additional hardware.
QRadar Risk Manager:
QRadar Risk Manager provides organizations with a comprehensive security intelligence solution, allowing them to get not only the forensics of the "during" and "after" an attack, but also enabling them to answer the "What if?" ahead of time, thereby minimizing the risk on their networks, their operations and ultimately protect their organizations' brand and intellectual property.
QRadar Risk Manager leverages and extends the value of a SIEM deployment to greatly improve your organization's ability to automate risk management functions in mission critical areas including network and security configuration, threat modeling and simulation, compliance management and vulnerability assessment.
High Availability solution that delivers continuous network security monitoring:
QRadar's security information and event management (SIEM) solution is purposely built to integrate log management with SIEM, delivering massive log management scale without any compromise on SIEM "Intelligence". QRadars' easy-to-deploy high availability (HA) appliances provide fully automated failover and disk synchronization for high availability of data collection and analysis capabilities without the need for third-party fault management products. With QRadar's HA solution, high availability for data storage, analysis and user interfaces is achieved through easy-to-deploy and manage appliances.
Network Activity Collectors:
QRadar's Network Activity Collectors offer a cost-effective solution for gathering the most sophisticated and actionable network intelligence (flow data) available from your network. Network Actvity "QFlow" Collectors provide Layer 7 analysis as well as aggregation of other flow sources including JFlow, NetFlow, SFlow, and Packeteer's Flow Data Records, delivering an unmatched level of security intelligence for the most complete collection of activity possible.
Virtual Activity Collectors:
Like QRadar's Network Activity Collectors, QRadar's Virtual Activity Collectors offer a cost-effective solution for gathering the most sophisticated and actionable network activity data available from your network including Layer 7 analysis and aggregation of external flow sources but also, by providing unique visibility into the activity within your virtual environment.