List of IBM Security QRadar SIEM Customers
IBM
1 New Orchard Road,
Armonk, 10504, NY,
United States
Armonk, 10504, NY,
United States
1 914-499-1900
Professional Services
293000
$67.5B
Since 2010, our global team of researchers has been studying IBM Security QRadar SIEM customers around the world, aggregating massive amounts of data points that form the basis of our forecast assumptions and perhaps the rise and fall of certain vendors and their products on a quarterly basis.
Each quarter our research team identifies companies that have purchased IBM Security QRadar SIEM for Security Information and Event Management (SIEM) from public (Press Releases, Customer References, Testimonials, Case Studies and Success Stories) and proprietary sources, including the customer size, industry, location, implementation status, partner involvement, LOB Key Stakeholders and related IT decision-makers contact details.
Companies using IBM Security QRadar SIEM for Security Information and Event Management (SIEM) include: Scotiabank, a Canada based Banking and Financial Services organisation with 86746 employees and revenues of $24.55 billion, Occidental Petroleum Corporation, a United States based Oil, Gas and Chemicals organisation with 10412 employees and revenues of $21.59 billion, Sutherland, a United States based Professional Services organisation with 40000 employees and revenues of $7.50 billion, Merkle, a United States based Professional Services organisation with 16000 employees and revenues of $2.20 billion, Askari Bank, a Pakistan based Banking and Financial Services organisation with 7881 employees and revenues of $1.01 billion and many others.
Contact us if you need a completed and verified list of companies using IBM Security QRadar SIEM, including the breakdown by industry (21 Verticals), Geography (Region, Country, State, City), Company Size (Revenue, Employees, Asset) and related IT Decision Makers, Key Stakeholders, business and technology executives responsible for the software purchases.
The IBM Security QRadar SIEM customer wins are being incorporated in our Enterprise Applications Buyer Insight and Technographics Customer Database which has over 100 data fields that detail company usage of software systems and their digital transformation initiatives. Apps Run The World wants to become your No. 1 technographic data source!
Apply Filters For Customers
| Logo | Customer | Industry | Empl. | Revenue | Country | Vendor | Application | Category | When | SI | Insight |
|---|---|---|---|---|---|---|---|---|---|---|---|
 |
Askari Bank | Banking and Financial Services | 7881 | $1.0B | Pakistan | IBM | IBM Security QRadar SIEM | Security Information and Event Management (SIEM) | 2019 | Software Productivity Strategists |
In 2019, Askari Bank implemented IBM Security QRadar SIEM together with QRadar SOAR and UBA to establish a 24/7 security operations center and automate incident response playbooks. The deployment targeted compliance with Pakistan's Cyber Security Policy and centralized security monitoring under the Security Information and Event Management (SIEM) category.
The implementation configured IBM Security QRadar SIEM for high volume event ingestion and correlation, QRadar UBA for anomalous user behavior detection, and QRadar SOAR to operationalize automated playbooks and runbooks. Standard SIEM capabilities such as normalization, correlation rules, threat scoring and automated response workflows were instrumented to improve event prioritization and reduce manual triage.
Software Productivity Strategists served as the systems integrator supporting deployment and operational enablement, aligning SIEM workflows with the bank's 24/7 SOC operating model. The deployment centralized telemetry from across the bank's environment into the QRadar platform, feeding SOC analyst dashboards, automated playbooks and UBA alerts.
Governance changes included formalized SOC processes, playbook ownership and incident escalation paths to meet regulatory requirements. The Pakistan banking deployment reduced daily security incidents from approximately 700 to under 20 and cut average remediation time from around 30 minutes to about 5 minutes through automation and improved event prioritization.
|
 |
California State Polytechnic University-Pomona | Education | 2675 | $454M | United States | IBM | IBM Security QRadar SIEM | Security Information and Event Management (SIEM) | 2022 | n/a |
In 2022, California State Polytechnic University-Pomona deployed IBM Security QRadar SIEM as its Security Information and Event Management (SIEM) solution to centralize campus security monitoring across a heterogeneous IT environment. The implementation targeted U.S. higher education operational needs, consolidating telemetry and security events into a single platform for campus security teams.
The deployment of IBM Security QRadar SIEM centralized log collection, normalization, correlation, and alerting across network, wireless, and campus services. Configurations emphasized ingestion from a broad device estate, and the environment consolidated logs from approximately 84,000 devices, enabling consolidated event indexing and correlation across disparate data sources.
Operationally the platform supports production SOC activities and is integrated into student cybersecurity training workflows, providing a shared operational instance for both incident detection and educational use. The security team implemented alert triage and investigation workflows, and the deployment reduced daily alert noise to roughly 20 to 40 items per day for focused investigation.
Governance and rollout followed a campus-wide monitoring model, with the central security operations capability used to standardize event handling and investigative processes across sites and services. IBM Security QRadar SIEM provides the campus with a unified Security Information and Event Management (SIEM) foundation for SOC operations and hands-on cybersecurity education.
|
 |
Merkle | Professional Services | 16000 | $2.2B | United States | IBM | IBM Security QRadar SIEM | Security Information and Event Management (SIEM) | 2022 | n/a |
In 2022, Merkle deployed IBM Security QRadar SIEM as part of its Security Information and Event Management (SIEM) tooling to support centralized threat detection and monitoring. The implementation operated alongside an existing SIEM footprint, enabling a global Security Operations Center to provide 24x7 monitoring and triage for more than 2,500 daily security events observed across Splunk and QRadar platforms.
The IBM Security QRadar SIEM configuration emphasized log ingestion, normalization, correlation, and offense management, with focused alert tuning and custom rule sets to reduce false positives by 30 percent. Playbook-driven automation was introduced through orchestration integration with Palo Alto Cortex XSOAR, and runbooks were formalized as part of a suite of more than 80 standard operating procedures to standardize incident response workflows.
Integration points included threat intelligence enrichment from VirusTotal, IBM X-Force Exchange, and Anomali ThreatStream, and threat sharing with MISP for contextualization. Vulnerability scanner feeds from Nessus and OpenVAS were ingested to align detection and patching workflows, while endpoint telemetry from CrowdStrike Falcon and SentinelOne supported threat hunting and lateral movement analysis.
Operational governance incorporated MITRE ATT&CK mapping to classify adversary behaviors and tune detections, weekly vulnerability assessment cadence with remediation tracking, and structured 24x7 SOC handovers. The implemented controls and processes supported containment of more than 15 high severity incidents with zero data loss, reduced investigation time by 40 percent through enriched alerts, and achieved a 95 percent remediation rate for critical vulnerabilities within SLA timelines.
|
 |
Occidental Petroleum Corporation | Oil, Gas and Chemicals | 10412 | $21.6B | United States | IBM | IBM Security QRadar SIEM | Security Information and Event Management (SIEM) | 2021 | n/a |
In 2021, Occidental Petroleum Corporation deployed IBM Security QRadar SIEM as its enterprise Security Information and Event Management (SIEM) platform to centralize threat detection and SOC workflows. The implementation positioned IBM Security QRadar SIEM as the core analytics and correlation engine for security telemetry across IT and operational technology environments.
The deployment focused on configuring and fine tuning detection rules, creating automated workflows, and building real time alerting to accelerate incident detection. IBM Security QRadar SIEM was used to ingest actionable threat intelligence and to support threat hunting processes, with customized correlation rules and playbook driven alerts that align with SOC analyst triage and incident response procedures.
Integrations were explicit and material to the solution, with Anomali ThreatStream integrated into IBM Security QRadar SIEM to enable real time threat intelligence ingestion and automated correlation. Python based API integrations were implemented to enhance data correlation between IBM Security QRadar SIEM and other security telemetry sources including Splunk, enabling enriched event context and cross tool analytics.
Operational coverage included SOC operations, IT vulnerability management and ICS OT monitoring workflows, with QRadar SIEM feeding detection outputs into endpoint and cloud security processes. The implementation supported security functions such as incident response, threat hunting, compliance monitoring and forensic investigations through coordinated rule sets, alerting and log retention practices.
Governance and process changes emphasized policy driven detection and data protection, supported by complementary controls such as Microsoft Purview DLP, CASB policies and IAM privilege management. The QRadar SIEM workstreams were validated through Purple Team exercises and Red Team engagements, and produced documented improvements in SOC operations and reduced response times as reported by security engineering and operations teams.
|
 |
Scotiabank | Banking and Financial Services | 86746 | $24.5B | Canada | IBM | IBM Security QRadar SIEM | Security Information and Event Management (SIEM) | 2022 | n/a |
In 2022, Scotiabank implemented IBM Security QRadar SIEM for Security Information and Event Management (SIEM) across its Canada operations, positioning the platform at the center of its SOC monitoring fabric. IBM Security QRadar SIEM was used to centralize event ingestion and correlation as part of the bank's security operations workflows.
The deployment supported real time, continuous 24x7 monitoring and response for tier 2 and tier 3 incident escalations, with dedicated investigations into business email compromise, suspicious network traffic, malware infections, and phishing. Functional capabilities emphasized log collection, correlation, alerting, and analyst investigation workflows, augmented by user behavioral analytics and SOAR orchestration for case management and playbook execution.
IBM Security QRadar SIEM was integrated into a broader detection and response ecosystem, with log and alert correlation linked to Demisto / Palo Alto Cortex XSOAR, Securonix Snypr, user behavioral analytics tooling, and McAfee ePO. Operational coverage included events generated by the SIEM as well as incidents reported by employees and customers and signals discovered through cyber threat intelligence, with coordinated remediation involving vulnerability management, data loss prevention, endpoint security services, IAM, and forensic investigators.
Governance and workflow restructuring focused on continuous monitoring, documented escalation paths for tier 2 and tier 3 incidents, and cross functional incident coordination. The implementation centered IBM Security QRadar SIEM within Scotiabank security operations to support investigative triage, automated orchestration, and multi team incident response across the bank's Canadian environment.
|
 |
|
Professional Services | 40000 | $7.5B | United States | IBM | IBM Security QRadar SIEM | Security Information and Event Management (SIEM) | 2022 | n/a |
|
Showing 1 to 6 of 6 entries
Buyer Intent: Companies Evaluating IBM Security QRadar SIEM
ARTW Buyer Intent uncovers actionable customer signals, identifying software buyers actively evaluating IBM Security QRadar SIEM. Gain ongoing access to real-time prospects and uncover hidden opportunities. Companies Actively Evaluating IBM Security QRadar SIEM for Security Information and Event Management (SIEM) include:
Discover Software Buyers actively Evaluating Enterprise Applications
| Logo | Company | Industry | Employees | Revenue | Country | Evaluated |
|---|---|---|---|---|---|---|
 |
Travelers | Insurance | 34000 | $46.4B | United States | 2024-12-16 |
 |
Urudata | Professional Services | 100 | $10M | Uruguay | 2024-12-05 |
 |
Cyrebro | Professional Services | 150 | $31M | Israel | 2024-06-03 |
FAQ - APPS RUN THE WORLD IBM Security QRadar SIEM Coverage
IBM Security QRadar SIEM is a Security Information and Event Management (SIEM) solution from IBM.
Companies worldwide use IBM Security QRadar SIEM, from small firms to large enterprises across 21+ industries.
Organizations such as Scotiabank, Occidental Petroleum Corporation, Sutherland, Merkle and Askari Bank are recorded users of
IBM Security QRadar SIEM for Security Information and Event Management (SIEM).
Companies using IBM Security QRadar SIEM are most concentrated in Banking and Financial Services, Oil, Gas and Chemicals and Professional Services, with adoption spanning over 21 industries.
Companies using IBM Security QRadar SIEM are most concentrated in Canada, United States and Pakistan, with adoption tracked across 195 countries worldwide. This global distribution highlights the popularity of IBM Security QRadar SIEM across Americas, EMEA, and APAC.
Companies using IBM Security QRadar SIEM range from small businesses with 0-100 employees - 0%, to mid-sized firms with 101-1,000 employees - 0%, large organizations with 1,001-10,000 employees - 33.33%, and global enterprises with 10,000+ employees - 66.67%.
Customers of IBM Security QRadar SIEM include firms across all revenue levels — from $0-100M, to $101M-$1B, $1B-$10B, and $10B+ global corporations.
Contact APPS RUN THE WORLD to access the full verified IBM Security QRadar SIEM customer database with detailed Firmographics such as industry, geography, revenue, and employee breakdowns as well as key decision makers in charge of Security Information and Event Management (SIEM).