IBM Resilient Reviews

We've integrated the solution with IBM QRadar. We collect data and analyze it. We then send the results to IBM QRadar for action through IBM Resilience. It allows us to take action against attacks. 

As of right now, IBM Resilient helps our search analysts in making action against attacks and to manage the tickets.

The solution is simple to use and to integrate with IBM QRadar.

IBM QRadar sends alerts, and Resilient takes action.

IBM Resilient helps the company to automate responses against cyber-attacks using dynamic playbooks by sending actions to other IT solutions like firewalls, antivirus, Microsoft Teams, etc. The concept is to develop functions that you can find in IBM X-Force Exchange, and there are making lot of hard work to develop these functions, but for now, they need to add more functions to respond with other security solutions (Cisco ASA, ForcePoint, WAF...), so for now, all we can do is to wait for these functions, and I see that every month they add more functions.

I've been using the solution for six months.

I can see that the solution is almost stable.

The solution is scalable, and the best part is that IBM Resilient gives you the opportunity to develop your own scripts using the python language to make an action.

We've been in contact with technical support. They're okay, but they sometimes take a lot of time to respond.

We hadn't previously used a different solution. We chose IMB Resilient because it's the best SOAR solution if you are implementing IBM QRadar.

The solution isn't hard to set up if you have a good understanding of IBM QRadar. It's also easy to integrate with it. Deployment takes about one hour. The configuration is a bit more complex; you'll need to understand how the unit works. Configuration usually takes about three days, but it can take up to one month. It depends on the network.

Typically, you just need one person to handle the deployment process, but it depends on the network. We have a team of ten people who handle the maintenance. They work on all of the solutions, not just Resilient.

We handled the implementation ourselves. 

We haven't seen any ROI by using this solution.

Talk to our pre-sales consultants.

We didn't evaluate other options. We were already using IBM QRadar and the best solution to implement with it was IBM Resilient.

We use the on-premises deployment model. We are IBM resellers.

The solution is limited, but it needs lots of development, especially when we talk about making actions with other security solutions.

I'd recommend that users implement the solution with IBM Radar; otherwise, they'll face a lot of limitations.

I'd rate the solution seven out of ten.

The primary use case is automation.

The solution allows for seamless integration with other IBM products, like IBM SIM, which helps manage alerts and incidents more efficiently. This automation has improved response times and streamlined processes.

The integration with IBM SIM and the ability to block users during brute force attacks are particularly effective.

Integration with some devices, including Cisco PowerPower and certain antivirus products, has limitations.

I have been using IBM Resilient for the past two years.

They provide limited technical support, which may be based on our license. The response time could improve, and sometimes they defer issues to third parties.

Neutral

This is the first solution of its kind that I have used.

The initial setup took three months.

The implementation involved four plumbing engineers and was completed with the assistance of a consultant or reseller.

I am not the one in charge of pricing, so I am not sure about the costs.

For smaller companies, I do not recommend using IBM Resilient.

I'd rate the solution six out of ten.