these logs are indeed stored in the ms sql db used by epo, but your data will only be as good as what qradar CHOOSES to grab from the sql db. they are not grabbing the audit data that you are looking for because it lives in a different table. Most siem vendors grab the data from the most obvious table in epo which is the 'threat events' table, which is what you are seeing. If you want to see audit entries you will have to ask qradar to improve their parser and pull that data as well. Alternatively you could use a different siem like Mcafee's ESM which does have an accurate parser to grab that audit log data ;-)
So that clears up why the JDBC pull is not working. Is there a way to push this information, similar to creating an automatic response resulting in an SNMP trap being sent ? Or is this functionality not available?
off the top of my head i dont think we expose the audit log via snmp.