Q1 Labs | QRadar Overview

By: Q1 Labs Canada  09-12-2011
Keywords: Security, Event Management, Security Management

QRadar SIEM:

QRadar SIEM provides an integrated network security solution that converges typically siloed network and security information into a single, cohesive system. QRadar SIEM's unique approach enables organizations to deliver an unparalleled set of network security intelligence services, including:

  • Log management

  • Threat/Fraud management

  • Compliance management

  • Security Event and Information Management

  • User Activity Monitoring

  • Application Monitoring

QRadar Log Manager:

QRadar Log Manager provides a comprehensive, turnkey log management solution for organizations of all sizes. Log management has emerged as a required part of delivering security best practices and meeting specific auditing and reporting requirements of government regulations, including:

  • Payment Card Industry Data Security Standards (PCI DSS)

  • GCSX Code of Connection (CoCo)

  • Garante

  • FSA

  • Sarbanes-Oxley (SOX),

  • Health Insurance Portability and Accountability Act (HIPAA),

  • North American Electric Reliability Corp. (NERC),

  • Federal Energy Regulatory Commission (FERC),

  • Federal Information Security Management Act (FISMA)

QRadar Log Manager can also be easily upgraded via a software license key to the full-featured QRadar SIEM, meaning you won't have to worry about losing of data or purchasing & installing additional hardware.

QRadar Risk Manager:

QRadar Risk Manager provides organizations with a comprehensive security intelligence solution, allowing them to get not only the forensics of the "during" and "after" an attack, but also enabling them to answer the "What if?" ahead of time, thereby minimizing the risk on their networks, their operations and ultimately protect their organizations' brand and intellectual property.

QRadar Risk Manager leverages and extends the value of a SIEM deployment to greatly improve your organization's ability to automate risk management functions in mission critical areas including network and security configuration, threat modeling and simulation, compliance management and vulnerability assessment.

High Availability solution that delivers continuous network security monitoring:

QRadar's security information and event management (SIEM) solution is purposely built to integrate log management with SIEM, delivering massive log management scale without any compromise on SIEM "Intelligence". QRadars' easy-to-deploy high availability (HA) appliances provide fully automated failover and disk synchronization for high availability of data collection and analysis capabilities without the need for third-party fault management products. With QRadar's HA solution, high availability for data storage, analysis and user interfaces is achieved through easy-to-deploy and manage appliances.

Network Activity Collectors:

QRadar's Network Activity Collectors offer a cost-effective solution for gathering the most sophisticated and actionable network intelligence (flow data) available from your network. Network Actvity "QFlow" Collectors provide Layer 7 analysis as well as aggregation of other flow sources including JFlow, NetFlow, SFlow, and Packeteer's Flow Data Records, delivering an unmatched level of security intelligence for the most complete collection of activity possible.

Virtual Activity Collectors:

Like QRadar's Network Activity Collectors, QRadar's Virtual Activity Collectors offer a cost-effective solution for gathering the most sophisticated and actionable network activity data available from your network including Layer 7 analysis and aggregation of external flow sources but also, by providing unique visibility into the activity within your virtual environment.

Keywords: Activity Monitoring, Event Management, Log Management, network security, Security, Security Intelligence, Security Management,

Other products and services from Q1 Labs Canada


Q1 Labs | QRadar Security Information & Event Management, SIEM

As the flagship of the QRadar family, QRadar 3100 serves as the base platform for geographically dispersed organizations or any organization that requires an integrated solution to monitor their global network with the efficiency of a single Web-based UI.


Q1 Labs | QRadar Risk Manager

An automated knowledge engine that provides an intuitive user interface that integrates previously disparate indicators of risk, including configuration data, network activity data, network and security events and vulnerability scan results.


Q1 Labs | QRadar Log Manager

With more data under surveillance and advanced analytic techniques than any security intelligence solution on the market, QRadar detects threats that others miss; providing unparalleled visibility into network and application activity that others cannot.