Comparative Analysis of IBM Qradar and Wazuh for Security Information and Event Management
Comparative Analysis of IBM Qradar and Wazuh for Security Information and Event Management
The idea for this paper was to compare two leading SIEM tools - the commercial IBM QRadar SIEM versus Wazuh, an open-source security solution. The topic was chosen to see whether these two tools can satisfy the security requirements in a typical IT infrastructure. The scenarios selected for the practical part represent security events that companies encounter daily, so it was important to determine how these events are interpreted by QRadar and Wazuh. Through testing, it was concluded that both tools work equally well which should be considered when creating a budget for the procurement of security solutions and enabling future IT experts’ insight into the functionalities of both tools, so they could make an informed decision about which type of tool to implement in their own infrastructure
security events, security information, detection, security, Wazuh, event management, events, compliance, QRadar, SIEM
security events, security information, detection, security, Wazuh, event management, events, compliance, QRadar, SIEM
citations This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).3 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
Citations provided by BIP!Popularity provided by BIP!