Contrast Security Assess vs Trend Vision One - Cloud Security comparison

The compared Contrast Security and Trend Micro solutions aren't in the same category. Contrast Security is ranked #24 in SAST , with an average rating of 8.7, and holds a 0.5% mindshare in the category. Trend Micro is ranked #13 in XDR , with an average rating of 8.5, and holds a 0.2% mindshare. Additionally, 100% of Contrast Security users are willing to recommend the solution, compared to 100% of Trend Micro users who would recommend it.

Contrast Security Assess

Read 11 Contrast Security Assess reviews

872 Views
565 Comparison Views

100% willing to recommend

Trend Vision One - Cloud Se...

Read 21 Trend Vision One - Cloud Security reviews

235 Views
95 Comparison Views

100% willing to recommend

Contrast Security Assess

Trend Vision One - Cloud Se...

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Contrast Security Assess and Trend Vision One - Cloud Security based on real PeerSpot user reviews.

Find out in this report how the two Static Application Security Testing (SAST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Contrast Security Assess vs. Trend Vision One - Cloud Security Report (Updated: July 2024).

Buyer's Guide

Contrast Security Assess vs. Trend Vision One - Cloud Security

July 2024

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

Contrast Security Assess

Average Rating

8.8

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Application Security Tools (28th), Static Application Security Testing (SAST) (24th)

Trend Vision One - Cloud Se...

Average Rating

8.6

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Vulnerability Management (10th), Container Security (9th), Cloud Workload Protection Platforms (CWPP) (8th), Hybrid Cloud Computing Platforms (7th), Extended Detection and Response (XDR) (13th), Cloud Security Posture Management (CSPM) (8th), Cloud-Native Application Protection Platforms (CNAPP) (7th), Attack Surface Management (ASM) (5th), Cloud Infrastructure Entitlement Management (CIEM) (4th)

Mindshare comparison

Contrast Security Assess and Trend Vision One - Cloud Security aren’t in the same category and serve different purposes. Contrast Security Assess is designed for Static Application Security Testing (SAST) and holds a mindshare of 0.5%, down 0.5% compared to last year.
Trend Vision One - Cloud Security, on the other hand, focuses on Extended Detection and Response (XDR), holds 0.2% mindshare, up 0.1% since last year.

Static Application Security Testing (SAST)

Extended Detection and Response (XDR)

Featured Reviews

ToddMcAlister

Lead Application and Data Security Engineer at a insurance company with 5,001-10,000 employees

It has an excellent API interface to pull APIs.

Assess has brought our development time down because it helps create code the first time. Instead of going through the Jenkins process to build an application, they can see right off the bat that if there are errors in the code and fix them before it even goes to build.

Read full review

Brett Tatum

Director of Technology at Summit Carbon Solutions

We can quickly deploy cloud conformity, provides good visibility, and control

I am satisfied with the protection that Trend Vision One - Cloud Security provides for our multi-cloud environment. I need a single pane of glass that will give me the information I need quickly and easily. I set up Trend Vision One - Cloud Security in one afternoon, which I have done before. With one person, it only takes a day or so. Now, it is so simple to get it into any cloud and give it a small permission set to go in there and read our infrastructure, and then get some valuable insights very quickly. Trend Vision One - Cloud Security provides us with contextual data, which is especially useful when we are acquiring a company or when I take on a new role and need to quickly understand what they have. Trend Vision One - Cloud Security also helps me to quickly correlate information in the DevSec process, as it protects everything. There are three times when a security vulnerability can be caught: when we write the code, when we deploy the code, or when the code is running. If a vulnerability is not caught until the code is running, we probably made a mistake. We can then go back and look at the first two steps to see where we should have caught the issue. I am 100 percent satisfied with the context provided by Trend Vision One - Cloud Security. Trend Vision One - Cloud Security protects my cloud workloads. If an attack gets past the first two layers, I still need a way to protect the endpoints, whether they're EC2 instances, virtual machines in Azure, or even on-premises servers. I need a single pane of glass to see all of my endpoints. And let's say there's a zero-day attack, something that no one knew about and couldn't have caught. With Workload Security, I don't need to patch it immediately, even if it's a Windows update. Workload Security can patch it for me and put security tools around it. So we use it for patching and filtering, as well as other security needs. It sits on our virtual machines and whatever cloud we use. The biggest benefit of Trend Vision One - Cloud Security is its single pane of glass view. Other cloud providers, such as AWS and Azure, offer similar features, but they require multiple dashboards and reports. With Trend Vision One - Cloud Security, I have a single pane of glass view of my entire infrastructure. We also use Trend Vision One - Cloud Security for many security needs, including endpoint protection and Office 365 protection. This gives me a single vendor, a single pane of glass, and a single console to manage the security of all of my platforms. Trend Vision One - Cloud Security gives us full visibility and control of our cloud environments. When I am asked difficult questions, or when I am going through an audit or other process, I use its reporting and dashboarding capabilities to get all the information I need in one place. This saves me from having to correlate data from different sources, and it helps me to resolve audit and compliance workflows more quickly. Visibility helps us resolve complexity in our environment by providing quick snapshots of an account. This is especially useful when I'm trying to get an overview of a new workload or a new company, as it allows us to take a snapshot of the environment to make it easier to ingest. We buy our subscriptions through the marketplace because it's easier. I don't want to buy credits, because I can use the marketplace as needed. It also allows us to quickly bill the subscriptions to our existing account, so I don't have to set up another vendor or billing terms. I can just quickly use the marketplace, choose the subscriptions I want, and pay as I go. It's perfect. Conformity would give me a good overview of what infrastructure we are using and where we can potentially save costs by emphasizing the infrastructure that we do not necessarily need. Trend Vision One - Cloud Security protects me in the cloud, protects my registry, and protects my DevOps pipeline. It is not necessary for Trend Vision One - Cloud Security to protect all of these things. Additionally, Trend Vision in general also protects our Office 365 infrastructure, including SharePoint, Teams, and Outlook. Protecting all the data across our environment is extremely important these days. No matter what industry we're in, it's crucial to understand our data security protocols, where our data is stored, how it's protected, and how it's accessed. This information gives us a single, overarching view of our data security posture, which helps us to identify and remediate misconfigurations and quickly respond to zero-day attacks or compromises. The sooner we know about a security incident, the fewer repercussions we're likely to experience.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The accuracy of the solution in identifying vulnerabilities is better than any other product we've used, far and away. In our internal comparisons among different tools, Contrast consistently finds more impactful vulnerabilities, and also identifies vulnerabilities that are nearly guaranteed to be there, meaning that the chance of false positives is very low."

"In our most critical applications, we have a deep dive in the code evaluation, which was something we usually did with periodic vulnerability assessments, code reviews, etc. Now, we have real time access to it. It's something that has greatly enhanced our code's quality. We have actually embedded a KPI in regards to the improvement of our code shell. For example, Contrast provides a baseline where libraries and the usability of the code are evaluated, and they produce a score. We always aim to improve that score. On a quarterly basis, we have added this to our KPIs."

"It is a stable solution...Contrast Security Assess is one of the first players in this market, so they have experience and customers, especially abroad. Overall, it's a good product."

"No other tool does the runtime scanning like Contrast does. Other static analysis tools do static scanning, but Contrast is runtime analysis, when the routes are exercised. That's when the scan happens. This is a tool that has a very unique capability compared to other tools. That's what I like most about Contrast, that it's runtime."

"We use the Contrast OSS feature that allows us to look at third-party, open-source software libraries, because it has a cool interface where you can look at all the different libraries. It has some really cool additional features where it gives us how many instances in which something has been used... It tells us it has been used 10 times out of 20 workloads, for example. Then we know for sure that OSS is being used."

"When we access the application, it continuously monitors and detects vulnerabilities."

"I am impressed with the product's identification of alerts and vulnerabilities."

"The most valuable feature is the continuous monitoring aspect: the fact that we don't have to wait for scans to complete for the tool to identify vulnerabilities. They're automatically identified through developers' business-as-usual processes."

More Contrast Security Assess pros

"I use the tool for security solutions. It's a leader in Gartner and Forrester Wave reports. Customers rely on these reports."

"I really like Trend Vision One - Cloud Security's dashboard."

"Trend Vision One - Cloud Security does not utilize a lot of resources which allows our users to keep working even during a scan."

"We use the solution to protect our cloud-based applications like Office 365."

"The product helps us understand our environment better."

"Detection response and cloud conformity are valuable features."

"The most valuable features are intrusion prevention and anti-malware capabilities."

"Trend Vision One goes beyond standard endpoint security by offering a dedicated IPS mechanism with a unique, separate database for servers, along with a large feature set specifically designed for server environments."

More Trend Vision One - Cloud Security pros

Cons

"Regarding the solution's OSS feature, the one drawback that we do have is that it does not have client-side support. We'll be missing identification of libraries like jQuery or JavaScript, and such, that are client-side."

"Personalization of the board and how to make it appealing to an organization is something that could be done on their end. The reports could be adaptable to the customer's preferences."

"I think there was activity underway to support the centralized configuration control. There are ways to do it, but I think they were productizing more of that."

"To instrument an agent, it has to be running on a type of application technology that the agent recognizes and understands. It's excellent when it works. If we're using an application that is using an unsupported technology, then we can't instrument it at all. We do use PHP and Contrast presently doesn't support that, although it's on their roadmap. My primary hurdle is that it doesn't support all of the technologies that we use."

"The out-of-the-box reporting could be improved. We need to write our own APIs to make the reporting more robust."

"The product's retesting part needs improvement. The tool also needs improvement in the suggestions provided for fixing vulnerabilities. It relies more on documentation rather than on quick fixes."

"The solution should provide more details in the section where it shows that third-party libraries have CVEs or some vulnerabilities."

"The setup of the solution is different for each application. That's the one thing that has been a challenge for us. The deployment itself is simple, but it's tough to automate because each application is different, so each installation process for Contrast is different."

More Contrast Security Assess cons

"The local agent should be able to show more logs. At present, the logs are only available from the web console and not from the local agent."

"The pricing can get high."

"Documentation on cloud architecture and job architecture would be helpful."

"The solution should include more integrations and a universal connector with other firewalls for SNMP protocols."

"The product could use a little bit of automation."

"The firewall configuration should have been automated based on the understanding of the application, utilities, and protocols."

"They should provide a way for users to see violations for specific compliance."

"The licensing model could be improved. To gain full coverage, you need to spend more to buy subscriptions for each kind of service they offer. It will start to be pricey if you want full coverage."

More Trend Vision One - Cloud Security cons

Pricing and Cost Advice

"The good news is that the agent itself comes in two different forms: the unlicensed form and the licensed form. Unlicensed gives use of that software composition analysis for free. Thereafter, if you apply a license to that same agent, that's when the instrumentation takes hold. So one of my suggestions is to do what we're doing: Deploy the agent to as many applications as possible, with just the SCA feature turned on with no license applied, and then you can be more choosy and pick which teams will get the license applied."

"For what it offers, it's a very reasonable cost. The way that it is priced is extremely straightforward. It works on the number of applications that you use, and you license a server. It is something that is extremely fair, because it doesn't take into consideration the number of requests, etc. It is only priced based on the number of onboarded applications. It suits our model as well, because we have huge traffic. Our number of applications is not that large, so the pricing works great for us."

"I like the per-application licensing model... We just license the app and we look at different vulnerabilities on that app and we remediate within the app. It's simpler."

"The product's pricing is low. I would rate it a two out of ten."

"You only get one license for an application. Ours are very big, monolithic applications with millions of lines of code. We were able to apply one license to one monolithic application, which is great. We are happy with the licensing. Pricing-wise, they are industry-standard, which is fine."

"The solution is expensive."

"It's a tiered licensing model. The more you buy, as you cross certain quantity thresholds, the pricing changes. If you have a smaller environment, your licensing costs are going to be different than a larger environment... The licensing is primarily per application. An application can be as many agents as you need. If you've got 10 development servers and 20 production servers and 50 QA servers, all of those agents can be reporting as a single application that utilizes one license."

"One year ago, Trend transitioned to a credit system for licensing, which has confused users."

"Two years ago, it cost $200 for 20 credits, which was a high cost."

"The pricing for Cloud One is reasonable because my costs scale up and down based on my infrastructure usage."

"The is price is 25% cheaper than it was a couple of years ago, which is good."

"The price could be lower. That is a bit of a consideration."

"I rate the solution's pricing a six out of ten."

"While Trend Vision One - Cloud Security was a cost-effective solution for us in 2021, we've noticed a recent price increase that makes it less affordable."

"With everything I deal with, Trend Micro Cloud One's pricing is somewhere in the middle."

More Trend Vision One - Cloud Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

20%

Manufacturing Company

12%

Computer Software Company

11%

Government

Educational Organization

31%

Computer Software Company

14%

Healthcare Company

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Contrast Security Assess?

When we access the application, it continuously monitors and detects vulnerabilities.

See all answers

What is your experience regarding pricing and costs for Contrast Security Assess?

The product's pricing is low. I would rate it a two out of ten.

See all answers

What needs improvement with Contrast Security Assess?

Technical support for the solution should be faster. We have to further analyze what kind of CVEs are in the reported libraries and what part of the code is affected. That analysis can be added to ...

See all answers

What do you like most about Trend Micro Cloud One Workload Security?

The the most valuable feature is the scanning engine. It does not impact server performance. It's very lightweight.

See all answers

What is your experience regarding pricing and costs for Trend Micro Cloud One Workload Security?

The is price is 25% cheaper than it was a couple of years ago, which is good.

See all answers

What needs improvement with Trend Micro Cloud One Workload Security?

The local agent should be able to show more logs. At present, the logs are only available from the web console and not from the local agent.

See all answers

Comparisons

Seeker vs Contrast Security Assess

Compared 19% of the time

Veracode vs Contrast Security Assess

Compared 15% of the time

OWASP Zap vs Contrast Security Assess

Compared 10% of the time

SonarQube Server (formerly SonarQube) vs Contrast Security Assess

Compared 10% of the time

Mend.io vs Contrast Security Assess

Compared 7% of the time

More Contrast Security Assess Competitors

Microsoft Defender for Cloud vs Trend Vision One - Cloud Security

Compared 27% of the time

AWS GuardDuty vs Trend Vision One - Cloud Security

Compared 22% of the time

Prisma Cloud by Palo Alto Networks vs Trend Vision One - Cloud Security

Compared 9% of the time

Check Point Harmony Email & Collaboration vs Trend Vision One - Cloud Security

Compared 9% of the time

AWS Security Hub vs Trend Vision One - Cloud Security

Compared 6% of the time

More Trend Vision One - Cloud Security Competitors

Product Reports

Buyer's Guide

Contrast Security Assess

December 2024

Download Contrast Security Assess product report

Buyer's Guide

Trend Vision One - Cloud Security

November 2024

Trend Vision One - Cloud Security report

Download Trend Vision One - Cloud Security product report

Also Known As

Contrast Assess

Trend Micro Cloud One , Cloud One Workload Security, Trend Micro Cloud One Container Security, Trend Micro Cloud One Application Security, Cloud One File Storage Security, Cloud One Network Security, Cloud One Conformity

Learn More

Contrast Security

Trend Micro

Overview

Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development, to operations, to production.

Trend Vision One- Cloud Security Security provides comprehensive cloud security, threat protection, and compliance monitoring. Users commend its advanced features, ease of use, and strong performance in keeping digital assets safe. The platform improves efficiency and productivity for organizations while offering excellent customer support.

Sample Customers

Williams-Sonoma, Autodesk, HUAWEI, Chromeriver, RingCentral, Demandware.

Information Not Available

Buyer's Guide

Contrast Security Assess vs. Trend Vision One - Cloud Security

July 2024

Free Report: Contrast Security Assess vs. Trend Vision One - Cloud Security

Find out what your peers are saying about Contrast Security Assess vs. Trend Vision One - Cloud Security and other solutions. Updated: July 2024.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our Contrast Security Assess vs. Trend Vision One - Cloud Security report.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.