Skip to Main Content
IBM Security Ideas Portal

Shape the future of IBM Security

We invite you to shape the future of IBM, including the product roadmap, by submitting enhancement ideas that matter to you the most.

Here's how it works:

Post your ideas

Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and vote for them if they matter to you,

  1. Post an idea

  2. Vote for ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.


Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.


Post an Idea

To post a new idea - click on the "Add a new idea" button and where asked select the appropriate category this idea relates to. Provide requested information to allow us to get a better understanding of your request.


"Missing" Security Products?

If you cannot find the IBM Security product you are looking for then it is probably located in the IBM Security Private Ideas Portal. Check that site to open an idea.


Idea visibility

All ideas submitted via this portal are visible to all other portal users, though personal information fields remain hidden. If you would rather have your idea visible to only you and IBM then use the IBM Security Private Ideas Portal instead.


Please note: The purpose of the Ideas Portal is to tap the creativity of the IBM Security community so that we can enhance our products for everyone! If you need to report a defect or get help, please use our normal support channel. Click here to open a support ticket.


Want to see all of your IBM ideas in one place? Find them at ideas.ibm.com

ADD A NEW IDEA

FILTER BY CATEGORY

QRadar Security Info and Event Management

Showing 635 of 3226

Revert and Undo Function in QRadar deployment

A revert or undo function of a QRadar deployment doesn't exist. If a configuration is done wrong and a deployment is requested it cannot reverted or undone. The deployment has to be executed.The deployment of the faulty configuration has to be exe...
over 4 years ago in QRadar Security Info and Event Management 1 Not under consideration

Change default Disk Cache Capacity for Wincollect during agent install

We would like to see a change in the Wincollect Agent installer. Currently the installer completes without requesting a user defined Disk Cache Size. This can cause unforeseen issues per Wincollect agent or server. This change would allow for furt...
over 4 years ago in QRadar Security Info and Event Management 0 Not under consideration

UBA app and app in general

Qradar App are great but some APP do not take into account the equilibrium of a setup and create some expensive rule or expensive properties that would need to be disabled by default. Also some of those properties/rules can't be deleted even if th...
over 4 years ago in QRadar Security Info and Event Management 0 Not under consideration

Case incensitive User search in the log source or flow

When we have a search result and we right-click and filter on username, the case are sensitive. e.g. for a search on username balboarocky, qradar doesn't return BalboaRocky which is the same user. Can you make this search case insensitive.thanks!
over 4 years ago in QRadar Security Info and Event Management 1 Not under consideration

UBA should have reference set in addition to a set of maps

When using the UBA app., there is currently the "set of maps" option. It would be beneficial to also have a "reference set" option.
over 4 years ago in QRadar Security Info and Event Management 0 Not under consideration

Human readable export of rules and building blocks

I would like to export the rules in a text (csv, json) format that can be read by non-technical users. It should not be in a large xml block with code in it. Basically the same text that the Rule wizard shows at the end of the rule process.
over 4 years ago in QRadar Security Info and Event Management 0 Not under consideration

how to know log sources dependency, as we didn't receive dependency view when delete or edit it, and that affect proper work

Dear Sirhope you are doing wellplease advise about how to know the log sources dependency, as we didn't receive dependency, view when deleting or editing log source and this is a very important to edit exist log source parameter like name , group ...
over 4 years ago in QRadar Security Info and Event Management 0 Not under consideration

Deobfuscation for non-admin users

At the moment only users in Admin role can deobfuscate messages. If user has has access to log entries and have correct deobfuscation key + password, user should be able to deobfuscate messages.
over 4 years ago in QRadar Security Info and Event Management 3 Not under consideration

Allow group by filtering by right click on column

Currently there is no way to group by a specific property, except in the Search > Edit Search field. With the upcoming GUI rewrite, it would be great to be able to right click on a property in the Log Activity or Network Activity tabs in order ...
over 4 years ago in QRadar Security Info and Event Management 2 Not under consideration

Event Collector Load Balancing

See attached file
over 4 years ago in QRadar Security Info and Event Management 2 Not under consideration