Try our new research platform with insights from 80,000+ expert users

Exabeam vs IBM Resilient comparison

Exabeam and IBM are both solutions in the Security Incident Response category. Exabeam is ranked #4 with an average rating of 7.5, while IBM is ranked #5 with an average rating of 6.0. Additionally, 75% of Exabeam users are willing to recommend the solution, compared to 75% of IBM users who would recommend it.
Sponsored
Torq
Read 7 Torq reviews
  • 2,280 Views
  • 1,505 Comparison Views
100% willing to recommend
Exabeam
Read 20 Exabeam reviews
  • 5,565 Views
  • 223 Comparison Views
75% willing to recommend
IBM Resilient
Read 18 IBM Resilient reviews
  • 1,544 Views
  • 417 Comparison Views
75% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 5, 2024

Exabeam and IBM Resilient compete in the security and incident management field. Exabeam has an edge in analytics and machine learning, while IBM Resilient excels in incident response and integration.

Features: Exabeam offers user-friendly analytics, behavior analytics, and machine learning, enhancing security threat detection. Its timeline creation and automation capabilities significantly improve user experience. IBM Resilient provides comprehensive incident response, integration capabilities, and extensive incident management through dynamic playbooks and threat intelligence enrichment.

Room for Improvement: Exabeam needs better integration, reduction of false positives, and more customizable dashboards. It also requires enhanced documentation and adaptive differentiation between user and asset activities. IBM Resilient needs improved third-party tool integration and better data format handling, alongside addressing pricing and customer support response time issues.

Ease of Deployment and Customer Service: Exabeam is deployable on both on-premises and public cloud setups, offering flexibility. However, its technical support is mixed, with some users experiencing slow responses. IBM Resilient is primarily on-premises-based and known for effective technical support, though it faces criticisms regarding setup complexity and integration challenges.

Pricing and ROI: Exabeam is considered cost-effective compared to competitors, with flexible pricing based on user count or data volume, supporting ROI through monitoring cost reduction. IBM Resilient is generally priced higher, with costs influenced by user count. Although its enterprise license model offers scalability, its high cost might limit appeal for larger environments.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Exabeam vs. IBM Resilient Report (Updated: March 2026).
Buyer's Guide
Exabeam vs. IBM Resilient
March 2026
Download the complete report
Helped 884,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Torq
Sponsored
Ranking in Security Orchestration Automation and Response (SOAR)
5th
Average Rating
8.6
Reviews Sentiment
6.6
Number of Reviews
7
Ranking in other categories
AI-SOC (3rd), AI-Powered Security Automation (2nd)
Exabeam
Ranking in Security Orchestration Automation and Response (SOAR)
11th
Average Rating
7.8
Reviews Sentiment
6.6
Number of Reviews
20
Ranking in other categories
Security Information and Event Management (SIEM) (15th), User Entity Behavior Analytics (UEBA) (1st), Security Incident Response (4th), Threat Intelligence Platforms (TIP) (9th), AI-Powered Cybersecurity Platforms (9th)
IBM Resilient
Ranking in Security Orchestration Automation and Response (SOAR)
20th
Average Rating
7.4
Reviews Sentiment
6.6
Number of Reviews
18
Ranking in other categories
Security Incident Response (5th)
 

Featured Reviews

Nimrod Vardi - PeerSpot reviewer
Nimrod Vardi
Global IT Director at OpenWeb
Automation workflows have transformed our IT, enabling secure just-in-time access control
We work with them quite often, so we have a direct line regarding areas in Torq that have room for improvement. If we have a feature request, we can request it. I do not have anything in mind at the moment. We were a design partner for a short while, so we feel that they listen and that users of the system have an impact on the way the system is designed for the better. They have a new community, which is something that I personally suggested years ago. There are many people like me in different places and they might have already built the workflow that I need. Having the option to share workflows or to jump on a thread and say I have this need, did anyone ever build a workflow for it, is amazing. Someone would jump in and say yes, sure, here, take this workflow. I think this is an amazing thing and I really hope that the community will come alive because I think this is really powerful. This is something that I already suggested and it did happen eventually, and I am quite happy with it. I do not have any specific feature in mind that I have a need for at the moment.
Read full review
DH
Deepanshu Hans
Solution Architect at CTC
Improved threat detection has provided clear user risk insights and streamlined incident response
Exabeam's UEBA is the most valuable feature that I have found so far. Exabeam's UEBA displays the type of description that it could show in a console regarding one particular user, the rating that it shows, and how vulnerable the user is, which is very good. Exabeam's automation for incident response is very good. The machine learning capabilities of Exabeam are also good.
Read full review
Usman Bhatti - PeerSpot reviewer
Usman Bhatti
Senior Officer Security Operations Center at a financial services firm with 10,001+ employees
Simple deployment, scalable, but lacking third-party solution compatibility
Integrating IBM Resilient with other applications can be very difficult and technically challenging. Often, they use the excuse that you are using the latest version of an application, such as an endpoint security system, and they don't have an API or support for it at the moment. There is no automation in the SOAR solution. It's worth noting that many third-party add-on applications needed to be purchased separately to integrate with IBM Resilient. While there were built-in applications available for incident remediation, the selection was limited. Additionally, integrating third-party applications was often a difficult and time-consuming process due to the technical complexity involved.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Since we started working with Torq, I am handling much fewer alerts, it is becoming really easy for me to handle an alert, I have all the information that I need, I do not need to connect to different vendors to receive this information, and the main thing I got from Torq is time, which now helps me to build another automated system and learn."
"Any request that comes in, regardless of how complex it is, I can accomplish it with Torq."
"If I review about 100 vendors that I might work with, Torq is definitely in the top five that gave me personally investment back, just because every bit of effort I put into Torq eventually became a workflow that gave it back to me."
"Once I started to use the system and I saw the potential, it changed all of our work in IT."
"What I appreciate most about Torq is that it is an essential part of our system."
"Using that one piece of AI, we auto-closed 511 cases in quarter four alone."
"As an analyst, it has demonstrated potential to reduce workforce requirements and time needed for related activities."
"Timeline based analysis; good platform support"
"It's a very user-friendly product and it's a very comprehensive technology."
"The platform is not extremely expensive compared to its direct competitors; I would rate its pricing around six out of ten."
"Exabeam includes machine learning features and out-of-the-box rules that we rely on."
"The solution's initial setup process is easy."
"The ThreatHunter in Advanced Analytics is the most valuable. It helps analyze compromised assets and provides analysis for any entity within my client's environment."
"Exabeam Fusion SIEM has a good performance and more advantages than traditional solutions."
"The most valuable feature of Exabeam Fusion SIEM is the easy-to-use user interface."
More Exabeam pros
"What I like most about IBM Resilient is that it has a complete stack, which means you don't need to use different OEM products because you have all you need under the IBM Resilient umbrella. You don't need to worry much about integrations and components because you're working with tested and proven architecture."
"IBM Resilient is scalable."
"The integration with IBM SIM and the ability to block users during brute force attacks are particularly effective."
"Its flexibility is the most valuable."
"The solution is simple to use and to integrate with IBM QRadar."
"The solution is reliable in our usage."
"As a whole, the product is stable...Technical support is very good."
"The UBA, User Behavior Analytics, is very good."
More IBM Resilient pros
 

Cons

"It was able to capture data but was unable to differentiate between the agent hostname we are using and the hostname that resides on the back end of the Internet."
"The initial deployment of Torq was not easy."
"Even now, we have workflows that are in production that use AI steps and I get different results, making it unusable to some degree."
"Regarding the pricing of Torq, I would say it is expensive."
"Regarding stability, I have noticed some lagging, crashing, and downtime, which is one of my largest gripes."
"We have MCP that we are working with our cloud security platform, and we wanted to connect this MCP to the case management."
"Exabeam's reporting dashboard could have included a filtering option to filter by the most recent detection."
"Exabeam's integration capabilities are not good, as Exabeam has a very limited number of integrations and no out-of-box integration, which is an area where Exabeam should improve."
"I believe if it were more flexible it would be a better product."
"Updating the new release of Exabeam Fusion SIEM takes time and slows our performance."
"Exabeam needs to improve its documentation and provide more customization for dashboards and case management."
"Adding to the number of certifications that they have, for example, ISO 27001, would be helpful."
"Exabeam lacks customizable dashboards, which might be a limitation if visualization is a key requirement."
"They need to focus on more of the MITRE ATT&CK Framework and coverage. They claim they cover about 70 to 80%. I'm not sure if it's really quite that much, however."
More Exabeam cons
"The product needs a bit more development."
"Integrating IBM Resilient with other applications can be very difficult and technically challenging. Often, they use the excuse that you are using the latest version of an application, such as an endpoint security system, and they don't have an API or support for it at the moment. There is no automation in the SOAR solution."
"The product must provide more integration with other tools."
"The implementation could be a bit simpler."
"Integration with some devices, including Cisco PowerPower and certain antivirus products, has limitations."
"Its price needs improvement."
"The tool needs to improve its documentation on license scripts."
"There are shortcomings with IBM Resilient's technical support team that can be considered for improvement in the future."
More IBM Resilient cons
 

Pricing and Cost Advice

Information not available
"The platform is not extremely expensive compared to its direct competitors; I would rate its pricing around six out of ten."
"Exabeam Fusion SIEM's pricing is reasonable."
"Exabeam is not a cheap solution."
"They have a great model for pricing that can be based either on user count or gigabits per day."
"There is an annual license required to use Exabeam Fusion SIEM. The price of the solution should be reduced."
"The solution is expensive."
"We could create unlimited users using the license we had purchased."
"There are no costs except for the support services that our company pays in addition to the licensing charges attached to the solution."
"I feel it is an expensive product when my company pays annually for renewal, support, and follow-up."
"The cost of the product is quite high."
"It is very expensive."
"I would rate the tool’s pricing a three out of ten. The tool’s pricing is on a yearly basis."
"There is a license you need to pay for in order to use this product."
"Pricing for the solution is good, in my opinion."
More IBM Resilient pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Incident Response solutions are best for your needs.
See recommendations
884,873 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Manufacturing Company
9%
Comms Service Provider
8%
Outsourcing Company
6%
Financial Services Firm
11%
Computer Software Company
9%
Manufacturing Company
8%
Comms Service Provider
6%
Financial Services Firm
32%
Government
8%
Computer Software Company
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Midsize Enterprise3
Large Enterprise4
By reviewers
Company SizeCount
Small Business12
Midsize Enterprise4
Large Enterprise7
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise2
Large Enterprise7
 

Questions from the Community

What needs improvement with Torq?
We do not utilize the AI features that much. When it comes to general AI features of Torq, we are just slowly startin...
See all answers
What is your primary use case for Torq?
Torq markets itself as a security tool, and we do use them for security, but not in the traditional sense they market...
See all answers
What advice do you have for others considering Torq?
I would rate Torq an eight overall. I feel that Torq is as good as the effort you put into it. The limitations are ve...
See all answers
What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendli...
See all answers
What is your experience regarding pricing and costs for Exabeam Fusion SIEM?
I do not have much information about the pricing. However, I am aware that Exabeam is cheaper than Palo Alto based on...
See all answers
What needs improvement with Exabeam Fusion SIEM?
Exabeam's integration capabilities are not good, as Exabeam has a very limited number of integrations and no out-of-b...
See all answers
What is your experience regarding pricing and costs for IBM Resilient?
I am not the one in charge of pricing, so I am not sure about the costs.
See all answers
What needs improvement with IBM Resilient?
Integration with some devices, including Cisco PowerPower and certain antivirus products, has limitations.
See all answers
What is your primary use case for IBM Resilient?
The primary use case is automation.
See all answers
 

Comparisons

Tines vs Torq Logo
Tines vs Torq
Compared 37% of the time
Splunk SOAR vs Torq Logo
Splunk SOAR vs Torq
Compared 15% of the time
Blink Ops vs Torq Logo
Blink Ops vs Torq
Compared 13% of the time
Palo Alto Networks Cortex XSOAR vs Torq Logo
Palo Alto Networks Cortex XSOAR vs Torq
Compared 9% of the time
Swimlane vs Torq Logo
Swimlane vs Torq
Compared 7% of the time
More Torq Competitors
Splunk Enterprise Security vs Exabeam Logo
Splunk Enterprise Security vs Exabeam
Compared 6% of the time
Securonix Next-Gen SIEM vs Exabeam Logo
Securonix Next-Gen SIEM vs Exabeam
Compared 4% of the time
Dtex Systems vs Exabeam Logo
Dtex Systems vs Exabeam
Compared 4% of the time
DTEX InTERCEPT vs Exabeam Logo
DTEX InTERCEPT vs Exabeam
Compared 4% of the time
Splunk User Behavior Analytics vs Exabeam Logo
Splunk User Behavior Analytics vs Exabeam
Compared 4% of the time
More Exabeam Competitors
Palo Alto Networks Cortex XSOAR vs IBM Resilient Logo
Palo Alto Networks Cortex XSOAR vs IBM Resilient
Compared 17% of the time
Splunk SOAR vs IBM Resilient Logo
Splunk SOAR vs IBM Resilient
Compared 14% of the time
IBM Security QRadar vs IBM Resilient Logo
IBM Security QRadar vs IBM Resilient
Compared 7% of the time
SECDO Platform vs IBM Resilient Logo
SECDO Platform vs IBM Resilient
Compared 7% of the time
Proofpoint Threat Response vs IBM Resilient Logo
Proofpoint Threat Response vs IBM Resilient
Compared 7% of the time
More IBM Resilient Competitors
 

Product Reports

Buyer's Guide
Torq
February 2026
Torq reportDownload Torq product report
Buyer's Guide
Exabeam
March 2026
Exabeam reportDownload Exabeam product report
Buyer's Guide
IBM Resilient
March 2026
IBM Resilient reportDownload IBM Resilient product report
 

Overview

Torq is the enterprise AI SOC solution that effectively combines adaptive insights and automation to handle critical threats efficiently. It manages threat lifecycles, swiftly moving from triage to response, ensuring effective risk management.

Torq is designed to streamline security operations by aggregating telemetry across your security stack. It investigates significant risks and manages threats from triage to containment and remediation. This AI-driven tool enhances the capabilities of your SecOps team, allowing them to achieve more impactful results without introducing complicated processes.

What are the key features of Torq?
  • Adaptive Agentic Insights: Provides real-time threat intelligence tailored to specific security challenges.
  • Automation: Automates responses to security incidents, minimizing manual intervention requirements.
  • Threat Lifecycle Management: Comprehensive handling of threats from detection to remediation.
  • Telemetry Aggregation: Integrates data across platforms for a unified security overview.
Why consider Torq based on reviews?
  • Efficiency: Users notice significant reductions in time spent managing threats.
  • Risk Reduction: Enhanced ability to identify and address critical threats promptly.
  • Resource Optimization: Allows teams to allocate effort to other critical tasks by reducing manual security operations.
  • Scalability: Adaptable to meet the demands of growing or changing infrastructures.

In industries like finance and healthcare, Torq shows effectiveness by adapting to specific risk scenarios often encountered in these fields. Its integration with existing infrastructures makes it a valuable asset for maintaining stringent security standards, essential for protecting critical data and operations in diverse high-stakes environments.

Torq

Exabeam Fusion is a cloud-delivered solution that that enables you to:

-Leverage turnkey threat detection, investigation, and response
-Collect, search and enhance data from anywhere
-Detect threats missed by other tools, using market-leading behavior analytics
-Achieve successful SecOps outcomes with prescriptive, threat-centric use case packages
-Enhance productivity and reduce response times with automation
-Meet regulatory compliance and audit requirements with ease

Exabeam

The Resilient Incident Response Platform (IRP) is the leading platform for orchestrating and automating incident response processes.

The Resilient IRP quickly and easily integrates with your organization’s existing security and IT investments. It makes security alerts instantly actionable, provides valuable intelligence and incident context, and enables adaptive response to complex cyber threats.

IBM
 

Sample Customers

Information Not Available
Hulu, ADP, Safeway, BBCN Bank
Golden Living, Health Equity, USA Funds
Buyer's Guide
Exabeam vs. IBM Resilient
March 2026
Free Report: Exabeam vs. IBM Resilient
Find out what your peers are saying about Exabeam vs. IBM Resilient and other solutions. Updated: March 2026.
DOWNLOAD NOW
884,873 professionals have used our research since 2012.
See our Exabeam vs. IBM Resilient report.

We monitor all Security Incident Response reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.