Skip to Main Content
IBM Security Ideas Portal

Shape the future of IBM Security

We invite you to shape the future of IBM, including the product roadmap, by submitting enhancement ideas that matter to you the most.

Here's how it works:

Post your ideas

Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and vote for them if they matter to you,

  1. Post an idea

  2. Vote for ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.


Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.


Post an Idea

To post a new idea - click on the "Add a new idea" button and where asked select the appropriate category this idea relates to. Provide requested information to allow us to get a better understanding of your request.


"Missing" Security Products?

If you cannot find the IBM Security product you are looking for then it is probably located in the IBM Security Private Ideas Portal. Check that site to open an idea.


Idea visibility

All ideas submitted via this portal are visible to all other portal users, though personal information fields remain hidden. If you would rather have your idea visible to only you and IBM then use the IBM Security Private Ideas Portal instead.


Please note: The purpose of the Ideas Portal is to tap the creativity of the IBM Security community so that we can enhance our products for everyone! If you need to report a defect or get help, please use our normal support channel. Click here to open a support ticket.


Want to see all of your IBM ideas in one place? Find them at ideas.ibm.com

ADD A NEW IDEA

FILTER BY CATEGORY

QRadar Security Info and Event Management

Showing 635 of 3226

Redirect DLC logs to a file instead of sending them to Qradar and fetching them via pull.

A pull function is required for the use of the DLC in a DMZ. Instead of sending the data to a destination address of QRadar, the data is to be written to a file or file location in order to fetch it from there via pull function of QRadar.
2 months ago in QRadar Security Info and Event Management 0 Under review

Remove the limit of 10.000 for subqueries or at least make the limit configurable

Currently there is a subquery limit of 10.000 lines in the product which makes it nearly unusuable for several threat hunting / detection scenarios. Therefore we would like to see the limit for subqueries completely removed from the product or at ...
3 months ago in QRadar Security Info and Event Management 0 Under review

LSM Advanced search by LSG Names

With Basic Search, we can use only "OR" clauses between our different LSG. We need to use "AND" clauses, and the unique way we know is with Advanced Search. But there is a problem, on advanced search we can use LSG "group_ids" and we need somethin...
3 months ago in QRadar Security Info and Event Management 0 Under review

app Reference Data Management for multitenant using

switch app Reference Data Management to multitenant using RFE is following from case TS009441686
3 months ago in QRadar Security Info and Event Management 0 Under review

Universal Cloud REST API protocol does not have an option for processing HTTP streaming data

HTTP streaming is a push-style data transfer technique that allows a web server to continuously send data to a client over a single HTTP connection that remains open indefinitely This enables clients to consume events in near-real-time and there i...
3 months ago in QRadar Security Info and Event Management 1 Future consideration

DSM not supporting Cisco FMC after new upgrade (7.0.1)

We are not able to collect the Connection Statistics from Cisco FMC after the Upgrade of FMC, which is not supported by QRadar.Hence request to update the DSM to resolve the issue.
3 months ago in QRadar Security Info and Event Management 1 Planned for future release

Ability to allow load balancer or log source to check true availability of hosts before sending logs

We utilize F5 Big-IP LTM to balance event loads between two event collectors using a recommended balancing method, Least Connection. However, when ingress service was in a hung state or processing queue was 100%, the LB didn't know and kept sendin...
3 months ago in QRadar Security Info and Event Management 0 Under review

Dynamic EPS / FPM license allocation to eliminate dropping event/flow due to static license allocation

We have 150,000 EPS licenses allocated to two event processors. Our average EPS on each EP is 30000. When an EP has peak exceeding the fixed allocated event rate limit (75000 EPS) causing events to drop in event pipeline, the other EP still has 60...
3 months ago in QRadar Security Info and Event Management 0 Under review

Enable options in Salesforce Log Source to select which events to pull

The Salesforce REST API seems to pull more and more event types these days than they did before. This customer in particular had issues in the past several months with ingress memory and sheer number of events coming from this one log source eatin...
3 months ago in QRadar Security Info and Event Management 2 Future consideration

QRadar Community Edition (CE) version 7.5.0 or later

Several users have created support forum requests for an update to QRadar Community Edition (CE) to bring the release up to a newer QRadar version. I discussed this issue with Product Management (PM) and the goal of this Idea is for users to vote ...
3 months ago in QRadar Security Info and Event Management 14 Future consideration