Skip to Main Content
IBM Security Ideas Portal

Shape the future of IBM Security

We invite you to shape the future of IBM, including the product roadmap, by submitting enhancement ideas that matter to you the most.

Here's how it works:

Post your ideas

Start by posting ideas and requests to enhance a product or service. Take a look at ideas others have posted and vote for them if they matter to you,

  1. Post an idea

  2. Vote for ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Help IBM prioritize your ideas and requests

The IBM team may need your help to refine the ideas so they may ask for more information or feedback. The offering manager team will then decide if they can begin working on your idea. If they can start during the next development cycle, they will put the idea on the priority list. Each team at IBM works on a different schedule, where some ideas can be implemented right away, others may be placed on a different schedule.


Receive notification on the decision

Some ideas can be implemented at IBM, while others may not fit within the development plans for the product. In either case, the team will let you know as soon as possible. In some cases, we may be able to find alternatives for ideas which cannot be implemented in a reasonable time.


Post an Idea

To post a new idea - click on the "Add a new idea" button and where asked select the appropriate category this idea relates to. Provide requested information to allow us to get a better understanding of your request.


"Missing" Security Products?

If you cannot find the IBM Security product you are looking for then it is probably located in the IBM Security Private Ideas Portal. Check that site to open an idea.


Idea visibility

All ideas submitted via this portal are visible to all other portal users, though personal information fields remain hidden. If you would rather have your idea visible to only you and IBM then use the IBM Security Private Ideas Portal instead.


Please note: The purpose of the Ideas Portal is to tap the creativity of the IBM Security community so that we can enhance our products for everyone! If you need to report a defect or get help, please use our normal support channel. Click here to open a support ticket.


Want to see all of your IBM ideas in one place? Find them at ideas.ibm.com

ADD A NEW IDEA

FILTER BY CATEGORY

QRadar Security Info and Event Management

Showing 635 of 3226

Include log source parsing order config in log source manager application

Delegate admins with log source management rights and rights to the log source manager application are unable to modify log source parsing order via the log source management app. This functionality was available in the old interface which has now...
about 17 hours ago in QRadar Security Info and Event Management 0 Submitted

Transformation (upper/lowercase) for regex based Custom Event Properties and built-in properties

Currently a regex property or the built-in properties only extract what is exactly contained in the payload. If a username is lowercase the property will be lowercase, if it is uppercase the resulting property will also be uppercase. This leads to...
10 days ago in QRadar Security Info and Event Management 0 Under review

Provide a proper (and reliable) HttpClient implementation for custom AQL function utilities

Your developers already are aware of the shortcomings of the current HTTP client implementation as documented here: https://ibmsecuritydocs.github.io/qradar_appfw_v1/c_appframework_AQLutilities.html With the current implementation it is imposs...
10 days ago in QRadar Security Info and Event Management 0 Under review

Administrative Privileges for Tenant Users

In a tenant model where the users have access to their data and the ability to view their log sources, there should be another user role option that governs whether or not an individual could edit log sources that belong to them.
15 days ago in QRadar Security Info and Event Management 0 Under review

Logic Ordering in Rule Definition Event Matches

Hi All, It came to my attention that in the rule definition for : "when the event matches this search filter" Although we are allowed to perform a match that is beyond a non-standard one, the contents of the entry are very difficult to order and u...
22 days ago in QRadar Security Info and Event Management 0 Under review

Radius server authentication module should support EAP

We can't implement 2FA QRadar SIEM login with our Radius server and our RSA tokens because QRADAR doesn't support authentication type EAP.
24 days ago in QRadar Security Info and Event Management 0 Under review

[Copy] [Copy] Visual Studio Code (vscode) extention for AQL syntax highlighting, formatting and validation

We use a lot of AQL (as I assume most QRadar users do) but find that writing and storing AQL for modification and re-use is easier in an external code editor like Visual Studio Code. We currently use a generic SQL formatter like https://marketplac...
about 1 month ago in QRadar Security Info and Event Management 1 Not under consideration

Add "at" linux package or alternative for one-time command execution scheduling

Currently there is only cron to schedule commands. But unfortunately this is for periodic execution and not one-time. There should be an option to schedule commands only one-time like with the linux package "at".
about 2 months ago in QRadar Security Info and Event Management 1 Functionality already exists

Enhance the GCP Qradar Image beyond 1225 GB

Team, I am trying to deploy an EP in GCP with 3 TB of storage but since the image is designed to take only 1225 GB and /store is coming out to be 882 GB only which is not sufficing my needs. I have tried using another disc. This is urgent require...
2 months ago in QRadar Security Info and Event Management 1 Future consideration

Visual Studio Code (vscode) extention for AQL syntax highlighting, formatting and validation

We use a lot of AQL (as I assume most QRadar users do) but find that writing and storing AQL for modification and re-use is easier in an external code editor like Visual Studio Code. We currently use a generic SQL formatter like https://marketplac...
2 months ago in QRadar Security Info and Event Management 1 Not under consideration