Feedback


IBM Security QRadar Core Appliance XX24 V7.2.2

Product ID: 5725-I51
Status: Available

Contents
Description IBM Product Life Cycle Additional Information

Description:

IBM Security QRadar V7.2.2

IBM Security QRadar V7.2.2 family of products provides a security intelligence platform that integrates disparate functions including SIEM, log management, configuration monitoring, network behavior anomaly detection, risk management, vulnerability management, network vulnerability scanning, full packet capture and incident forensics into a comprehensive intelligence solution.

IBM Security QRadar V7.2.2 delivers a set of new capabilities in the IBM Security QRadar SIEM, IBM Security Log Manager, IBM Security Risk Manager, and IBM Security Vulnerability Manager products.

IBM Security QRadar Incident Forensics V7.2.2 is a QRadar offering that provides the ability to use packet data and import other content to enable intuitive forensics investigations of security incidents. The technology offers search-driven data exploration, session reconstruction, and forensics intelligence to assist security incident investigations. It is available as a software option, virtual appliance, and appliance form factor.

IBM Security QRadar Packet Capture V7.2.2 is a QRadar offering that provides packet capture and recording capability that can integrate with the QRadar product family and is available as an appliance.

IBM Security QRadar Data Node is an offering that enables you to more easily expand the storage and query performance of your IBM Security QRadar SIEM Event Processor 17XX and IBM Security QRadar SIEM Flow Processor 16XX appliances. QRadar Data Node is available as a software, virtual or hardware appliance.

Refer to the Description section for details on the additional capabilities.

IBM Security QRadar V7.2.2 offers additional Passport Advantage part numbers for System z

QRadar products are designed to provide significant business value to not only the distributed platform customers but also to IBM System z customers. IBM System z customers also need a comprehensive security intelligence solution to help them comply with regulations and gain full visibility and actionable insight to help protect their networks and IT assets from a wide range of advanced threats.

Additional Passport Advantage part numbers are available so you can order IBM Security QRadar products for the System z environment. This ordering information is in addition to the existing Passport Advantage numbers previously announced. The functional operation and features within these products remain unchanged. These part numbers provide identical supply and authorization as other part numbers previously announced.

IBM Security QRadar V7.2.0

IBM Security QRadar V7.2 products provide a security intelligence platform that integrates disparate functions including SIEM, log management, configuration monitoring, network behavior anomaly detection, risk management, vulnerability management, and network vulnerability scanning into a comprehensive intelligence solution.

  • Detect advanced threats
  • Address regulatory compliance mandates
  • Detect insider threats and fraud
  • Predict risks against the business
  • Consolidate data silos

The enhanced IBM Security QRadar family of products includes:

  • IBM Security QRadar SIEM V7.2
  • IBM Security QRadar Log Manager V7.2
  • IBM Security QRadar Network Anomaly Detection V7.2
  • IBM Security QRadar Risk Manager V7.2
  • IBM Security QRadar Vulnerability Manager V7.2

Updates to IBM Security QRadar SIEM, IBM Security QRadar Log Manager, and IBM Security QRadar Network Anomaly Detection provide additional capabilities in data management, visualization, and role- based access control. They include:

  • Reference Set API and management - GUI-based functions allow the user to add, view, delete, and set properties for individual entries in a reference set. This helps enhance the usability and management of reference sets to improve custom rule correlation.

  • Enhanced interactive graphing - Visualization capabilities are enhanced with activity graphing and charting using an improved graphing engine. Graphs are now more interactive than in previous versions, and include the ability to instantly hide data in charts.

  • Security profile enhancements - An access control mechanism defines security profiles for users' data access by network and log source. This helps improve the product's security, manageability, and performance.

Updates to IBM Security QRadar Risk Manager help provide expanded support for multicontext security devices and additional networking technologies, enabling more comprehensive assessment and monitoring of large corporate networks.

IBM Security QRadar V7.2 delivers a set of new capabilities in the QRadar SIEM and QRadar Risk Manager product families.

IBM Security QRadar Vulnerability Manager V7.2 is a QRadar offering that provides seamlessly integrated network vulnerability scanning and reporting with network context aware vulnerability management workflow that is fully integrated with QRadar SIEM and is available as a software option and appliance.

IBM Security QRadar V7.2 - Passport Advantage part numbers are available for System z

You can use Passport Advantage part numbers to order IBM Security QRadar products for IBM System z. Order these part numbers when there is an intention to use QRadar to help meet your compliance and security requirements within a System z environment. The functional operation and features within these products remain unchanged. These part numbers provide materially identical supply and authorization as other part numbers previously announced.

This ordering information is in addition to the existing Passport Advantage numbers previously announced.

IBM Security QRadar Log Manager V7.1

IBM Security QRadar Log Manager V7.1 software helps automate regulatory compliance activities and reduce security risks by enabling users to collect, archive, analyze, query and report on network, security, host and application event logs across both small and large networks.

To provide more installation choices, IBM Security QRadar Log Manager is now offered for the first time in a traditional software form factor, complementing existing hardware appliance and virtual appliance offerings.

IBM Security QRadar V7.1 platform update

Updates included in IBM Security QRadar SIEM V7.1, IBM Security QRadar Log Manager V7.1, and IBM Security QRadar Network Anomaly Detection V7.1 maintenance release two (MR2):

  • Reference map: Extension of the QRadar SIEM Reference Set function to support inclusion of more complex and structured data into correlation, analysis, and reporting. This capability is designed to allow you to bring extended user identity groups and attributes and asset information into QRadar, and helps enable effective integration of QRadar with certain other IBM and third-party solutions.

  • Auditor read-only role: A QRadar user role with read-only privileges for QRadar data, designed to aid auditors performing audit related activities.

  • Event Collector software: Provides a software install option of the QRadar Event Collector product, allowing you to deploy Event Collector in a software only environment.

  • ESX 5.1 support for QRadar virtual appliance: Support for VMware ESX 5.1 virtualization platform that you may use today. ESX 4.x will continue to be supported.

  • Accumulator enhancement: Improvement of QRadar's historical sampling and trend analysis functions to allow for more granular and precise time ranges.

  • Notification enhancement: Improvement of the system notification functions in QRadar to provide more convenient and effective display of critical system messages.

  • Device Support Module (DSM) Reload: Removed the need to restart certain event processing pipeline functions upon installation or upgrade of a DSM.

  • Hard disk monitoring: Monitoring the appliance's hard drive and generating system notifications in the event of hard drive failures or error conditions.

Updates included in IBM Security QRadar Risk Manager V7.1 maintenance release two (MR2):

  • Policy Monitor enhancement: Extension of QRadar Risk Manager Policy Monitor's capabilities, allowing policy tests on QRadar reference sets and devices.

  • Device object group display and searching: Capability of showing the contents of object groups used in network security device rule definitions and searching object groups within the product.

  • Collapse of intermediary subnets: Removing subnet nodes from device interconnects on the QRadar Risk Manager topology view, making the topology view much less cluttered and helping improve usability while preserving the actual topological configuration.

  • Exporting topology to Visio: Capability of exporting QRadar Risk Manager topology views to Visio VDX format. This feature will be available from any QRadar Risk Manager topology view, including saved views and custom views created via filters.

 
Program Number
  • IBM Security QRadar Core Appliance XX05 V7.2.2 (5725-I50)
  • IBM Security QRadar Core Appliance XX24 V7.2.2 (5725-I51)
  • IBM Security QRadar SIEM All-in One 31XX V7.2.2 (5725-I52)
  • IBM Security QRadar Event Capacity Pack Increase V7.2.2 (5725-I53)
  • IBM Security QRadar Flow Capacity Pack Increase V7.2.2 (5725-I54)
  • IBM Security QRadar Core Appliance 21XX V7.2.2 (5725-I59)
  • IBM Security QRadar QFlow Collector 1201 V7.2.2 (5725-I60)
  • IBM Security QRadar QFlow Collector 1202 V7.2.2 (5725-I61)
  • IBM Security QRadar QFlow Collector 1301 V7.2.2 (5725-I62)
  • IBM Security QRadar QFlow Collector 1310-SR V7.2.2 (5725-I63)
  • IBM Security QRadar QFlow Collector 1310-LR V7.2.2 (5725-I64)
  • IBM Security QRadar SIEM All-in-One 21XX V7.2.2 (5725-I65)
  • IBM Security QRadar SIEM Console 31XX V7.2.2 (5725-I66)
  • IBM Security QRadar SIEM Event Processor 16XX V7.2.2 (5725-I67)
  • IBM Security QRadar SIEM Flow Processor 17XX V7.2.2 (5725-I68)
  • IBM Security QRadar SIEM Event/Flow Processor 18XX V7.2.2 (5725-I69)
  • IBM Security QRadar Log Mgr All-in-One 21XX V7.2.2 (5725-I70)
  • IBM Security QRadar Log Mgr All-in-One 31XX V7.2.2 (5725-I71)
  • IBM Security QRadar Log Manager Console 31XX V7.2.2 (5725-I72)
  • IBM Security QRadar Log Manager Event Processor 16XX V7.2.2 (5725-I73)
  • IBM Security QRadar Risk Manager V7.2.2 (5725-I74)
  • IBM Security QRadar SIEM All-in-One Software 21XX V7.2.2 (5725-I76)
  • IBM Security QRadar SIEM All-in-One Software 31XX V7.2.2 (5725-I77)
  • IBM Security QRadar SIEM Console Software 31XX V7.2.2 (5725-I78)
  • IBM Security QRadar SIEM Event Processor Software 16XX V7.2.2 (5725-I79)
  • IBM Security QRadar SIEM Flow Processor Software 17XX V7.2.2 (5725-I80)
  • IBM Security QRadar SIEM Event/Flow Processor Software 18XX V7.2.2 (5725-I81)
  • IBM Security QRadar QFlow Collector Software 12XX V7.2.2 (5725-I82)
  • IBM Security QRadar SIEM All-in-One Virtual 3190 V7.2.2 (5725-I83)
  • IBM Security QRadar SIEM Console Virtual 3190 V7.2.2 (5725-I84)
  • IBM Security QRadar SIEM Event Processor Virtual 1690 V7.2.2 (5725-I85)
  • IBM Security QRadar SIEM Flow Processor Virtual 1790 V7.2.2 (5725-I86)
  • IBM Security QRadar Log Manager All in One Virtual 3190 V7.2.2 (5725-I87)
  • IBM Security QRadar Log Manager Console Virtual 3190 V7.2.2 (5725-I88)
  • IBM Security QRadar VFlow Collector V7.2.2 (5725-I89)
  • IBM Security QRadar Virtual Event Capacity Pack Increase V7.2.2 (5725-I90)
  • IBM Security QRadar Log Source Capacity Pack Increase V7.2.2 (5725-I91)
  • IBM Security QRadar Deployment Upgrade V7.2.2 (5725-I92)
  • IBM Security QRadar Network Anomaly Detection Capacity Increase V7.2.2 (5725-I95)
  • IBM Security X-Force IP Reputation Intelligence Subscription V7.2.2 (5725-I96)
  • IBM Security QRadar Network Anomaly Detection V7.2.2 (5725-J70)
  • IBM Security QRadar Risk Manager Add On Configuration Source V7.2.2 (5725-J88)
  • IBM Security QRadar Log Manager Event Processor Virtual 3190 V7.2.2 (5725-J93)
  • IBM Security QRadar Event Collector 1501 V7.2.2 (5725-J94)
  • IBM Security QRadar Event Collector Virtual 1590 V7.2.2 (5725-J95)
  • IBM Security QRadar Virtual Flow Capacity Pack Increase V7.2.2 (5725-K27)
  • IBM Security QRadar Log Manager All-in-One Software 21XX V7.2.2 (5725-K72)
  • IBM Security QRadar Log Manager All-in-One Software 31XX V7.2.2 (5725-K73)
  • IBM Security QRadar Log Manager Console Software 31XX V7.2.2 (5725-K74)
  • IBM Security QRadar Log Manager Event Processor Software 16XX V7.2.2 (5725-K75)
  • IBM Security QRadar Event Capacity Pack Increase for Service V7.2 (5725-K44)
  • IBM Security QRadar Flow Capacity Pack Increase for Service V7.2 (5725-K45)
  • IBM Security QRadar Event Collector Software 15XX V7.2 (5725-L33)
  • IBM Security QRadar SIEM All-in-One 21XX LT V7.2.2 (5725-M05)
  • IBM Security QRadar SIEM All-in-One 21XX LT FF V7.2.2 (5725-M06)
  • IBM Security QRadar SIEM All-in-One Software 21XX LT V7.2.2 (5725-M07)
  • IBM Security QRadar SIEM All-in-one Software 21XX LT FF V7.2.2 (5725-M08)
  • IBM Security QRadar Risk Manager Software V7.2.2 (5725-M09)
  • IBM Security QRadar Risk Manager Virtual V7.2.2 (5725-M10)
  • IBM Security QRadar Vulnerability Manager Standalone V7.2.2 (5725-M11)
  • IBM Security QRadar Vulnerability Manager Standalone Software V7.2.2 (5725-M12)
  • IBM Security QRadar Vulnerability Manager Standalone Virtual V7.2.2 (5725-M13)
  • IBM Security QRadar Vulnerability Manager Add On V7.2.2 (5725-M14)
  • IBM Security QRadar Vulnerability Manager V7.2.2 (5725-M15)
  • IBM Security QRadar Vulnerability Manager Software V7.2.2 (5725-M16)
  • IBM Security QRadar Vulnerability Manager Virtual V7.2.2 (5725-M17)
  • IBM Security QRadar Vulnerability Manager V7.2.2 (5725-M18)
  • IBM Security QRadar Incident Forensics Core Appliance V7.2.2 (5725-Q40)
  • IBM Security QRadar Incident Forensics V7.2.2 (5725-Q41)
  • IBM Security QRadar Incident Forensics Software V7.2.2 (5725-Q42)
  • IBM Security QRadar Incident Forensics Virtual V7.2.2 (5725-Q43)
  • IBM Security QRadar Core Appliance XX05 G2 V7.2.2 (5725-Q59)
  • IBM Security QRadar Core Appliance XX28 G2 V7.2.2 (5725-Q60)
  • IBM Security QRadar Core Appliance 21XX G2 V7.2.2 (5725-Q61)
  • IBM Security QRadar QFLOW Collector 1201 G2 V7.2.2 (5725-Q62)
  • IBM Security QRadar QFLOW Collector 1202 G2 V7.2.2 (5725-Q92)
  • IBM Security QRadar QFLOW Collector 1301 G2 V7.2.2 (5725-Q63)
  • IBM Security QRadar QFLOW Collector 1310-SR G2 V7.2.2 (5725-Q64)
  • IBM Security QRadar QFLOW Collector 1310-LR G2 V7.2.2 (5725-Q65)
  • IBM Security QRadar Event Collector 1501 G2 V7.2.2 (5725-Q66)
  • IBM Security QRadar Data Node V7.2.2 (5725-Q86)
  • IBM Security QRadar Data Node Software V7.2.2 (5725-Q87)
  • IBM Security QRadar Data Node Virtual V7.2.2 (5725-Q91)
Highlights:

IBM Security QRadar V7.2.2

The enhanced IBM Security QRadar V7.2.2 family of products includes:

  • IBM Security QRadar SIEM V7.2.2
  • IBM Security QRadar Log Manager V7.2.2
  • IBM Security QRadar Network Anomaly Detection V7.2.2
  • IBM Security QRadar Risk Manager V7.2.2
  • IBM Security QRadar Vulnerability Manager V7.2.2
  • IBM Security QRadar Packet Capture V7.2.2
  • IBM Security QRadar Incident Forensics V7.2.2
  • IBM Security QRadar Data Node V7.2.2

IBM Security QRadar V7.2 Maintenance Release 1

IBM Security QRadar V7.2 Maintenance Release 1 delivers a set of capabilities in the QRadar SIEM, QRadar Risk Manager, and QRadar Vulnerability Manager product families.

Refer to the Description section below for details on additional capabilities.

IBM Security QRadar V7.1

Updates to IBM Security QRadar products provide a security intelligence platform that enhances data management, visualization, and role-based access control for improved threat detection and compliance. It provides actionable, real-time intelligence into security and compliance risks across the enterprise using advanced capabilities such as:

  • Real-time correlation of event, flow, vulnerability, and threat data
  • Anomaly detection and network behavioral analysis
  • Network flow analysis for deep visibility and insight
  • Report templates and dashboards
  • Security configuration monitoring

Capabilities include:

  • Reference Set API and management
  • Enhanced interactive graphing
  • Security profile enhancements

IBM Security QRadar Log Manager V7.1

IBM Security QRadar Log Manager V7.1 software:

  • Collects and consolidates log events from hundreds of systems and applications

  • Helps identify security incidents and generates actionable security alerts by aggregating and correlating diverse log events

  • Helps meet regulation mandates with rich compliance reporting capabilities

  • Scales to support hundreds of thousands of events per second using a distributed architecture
IBM Product Life Cycle:

Program NumberVRMAnnounced AvailableMarketing Withdrawn Service Discontinued
5725-I5107.02.02 2014-04-222014-04-25 --
5725-I5107.02.00 2013-07-222013-08-12 --
5725-I5107.01.00 2013-01-082013-01-11 --
Additional Information:
Short Title: IBM Security QRadar Core Appliance XX24 V7.2.2
Offering Type: Software
Offering Subtype: Program Product
Content Revision Date: 20140610
Document Identifier: 000000344291
Brand Codes: BND00 BND70 B7000
Applicable Countries:
United States