Cybereason Endpoint Detection & Response vs Trellix Endpoint Security (ENS) comparison

Cybereason and Trellix are both solutions in the Endpoint Protection Platform (EPP) category. Cybereason is ranked #35 with an average rating of 8.2, while Trellix is ranked #27 with an average rating of 7.5. Cybereason holds a 0.9% mindshare in EPP, compared to Trellix’s 1.6% mindshare. Additionally, 89% of Cybereason users are willing to recommend the solution, compared to 81% of Trellix users who would recommend it.

Cybereason Endpoint Detecti...

Read 21 Cybereason Endpoint Detection & Response reviews

3,671 Views
2,049 Comparison Views

89% willing to recommend

Trellix Endpoint Security (...

Read 54 Trellix Endpoint Security (ENS) reviews

4,570 Views
3,544 Comparison Views

81% willing to recommend

Cybereason Endpoint Detecti...

Trellix Endpoint Security (...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Cybereason Endpoint Detection & Response and Trellix Endpoint Security ENS compete in the endpoint security category. Cybereason tends to have better support and affordability, while Trellix ENS often gets higher marks for advanced features, which justify its price.

Features: Cybereason is known for its comprehensive threat detection and response capabilities, valuable for identifying and mitigating threats quickly. It also has effective behavior analysis and real-time monitoring. Trellix ENS has a robust set of security features, including advanced threat protection, malware detection, and comprehensive data encryption. Both products are feature-rich, but Trellix ENS's extensive security functionalities often provide an edge.

Room for Improvement: Cybereason could benefit from enhancements in its reporting functionality, improved integration with other security tools, and better scalability options. Trellix ENS could improve its initial setup process, reduce resource consumption, and streamline user management. While both products have development areas, Cybereason's need for better reporting tools is frequently highlighted.

Ease of Deployment and Customer Service: Cybereason is praised for its straightforward deployment process and responsive customer service, which makes implementation easier. Trellix ENS has a more complex deployment but offers extensive support. Cybereason receives better feedback for ease of deployment, whereas Trellix ENS is noted for its comprehensive support.

Pricing and ROI: Cybereason offers competitive pricing with a strong ROI and reasonable setup costs. Trellix ENS, although having a higher upfront cost, is considered worth the investment due to its extensive features and high ROI. Users looking for cost-efficiency tend to favor Cybereason, while those seeking potent features find value in Trellix ENS's pricing.

To learn more, read our detailed Cybereason Endpoint Detection & Response vs. Trellix Endpoint Security (ENS) Report (Updated: April 2025).

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Trellix Endpoint Security (ENS)

April 2025

Download the complete report

Helped 848,396 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason Endpoint Detecti...

Ranking in Endpoint Protection Platform (EPP)

35th

Ranking in Endpoint Detection and Response (EDR)

25th

Average Rating

8.0

Reviews Sentiment

7.9

Number of Reviews

Ranking in other categories

No ranking in other categories

Trellix Endpoint Security (...

Ranking in Endpoint Protection Platform (EPP)

27th

Ranking in Endpoint Detection and Response (EDR)

20th

Average Rating

7.6

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of April 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of Cybereason Endpoint Detection & Response is 0.9%, down from 1.2% compared to the previous year. The mindshare of Trellix Endpoint Security (ENS) is 1.6%, down from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Featured Reviews

Chad Kliewer

Information Security Officer at PTCI

We can make more informed decisions on whether an action is malicious

The ease of use and dashboards are improving. We came in at a time when they were developing a new dashboard screen. Therefore, we have had some confusing times between the old and new dashboards. Knowing how the new one works, I have seen vast improvements with it. While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper. They are improving on this because I have seen some improvements in the user interface that helps with this. Part of it was moving two different screens into one, merging the two together. It is very good, but it is very technically detailed and would be harder for an entry-level person to decipher. However, improvements are being made. It leverages indicators of behavior to help us remediate faster against attacks. Sometimes, I wish there was more detail on why they consider it malicious.

Read full review

Shreyansh Sharma

Instrument and Control Engineer at Reliance Industries Ltd

Our main antivirus tool and offers adaptive threat prevention tool

The technical support needs some improvement. When product distribution errors occur, we have to contact technical support, which is a very tedious and time consuming task. After raising the call onto the technical support portal, usually receive a notification after 24 hours. It usually takes 3 to 4 days to conclude and resolve the issue. If 24/7 online support or a phone line where we could speak directly with technical support for real-time troubleshooting, that would be very helpful. Licensing is another aspect where trellix should look into. Different purchases are grouped together in single user account get mixed up. Categorization of purchases and their grant numbers is not available to end user.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The initial setup was straightforward."

"Cybereason's threat hunting and investigation are the most valuable features. Threat hunting is a user-friendly feature that keeps you safe. Investigation offers an added value that I haven't seen with other EDR services. It allows you to find specific policy problems within your environment."

"The dashboard is very good and you can consider it as an interactive UI."

"What I find most valuable is the clarity of the platform. It is very straightforward."

"The most valuable feature is the capability of the command used by the machine so that we see the kind of performance that is running."

"The initial setup is not overly complicated."

"For me, the technical support is good."

"What I find most valuable is the clarity of the platform."

More Cybereason Endpoint Detection & Response pros

"Technical support is excellent."

"The platform's most valuable features are AI capabilities and its quick updates."

"The exploit guard and malware protection features are very useful. The logon tracker feature is also very useful. They have also given new modules such as logout backup, process backup. We ordered these modules from the FireEye market place, and we have installed these modules. We are currently exploring these features."

"The most valuable network security feature is the network sandbox solution. This sandbox feature works on traffic flow."

"The EPO, the ePolicy Orchestrator, is the best endpoint protection central management system."

"If the network has seen something, we can use that to put a block to all the endpoints."

"It is a really strong solution for endpoint security."

"I have not received any complaints about the performance."

More Trellix Endpoint Security (ENS) pros

Cons

"Its Microsoft PowerShell protections still need some compatibility improvements. We have run across just a few. It is compatible with 90% of what we have in our network, but there is that 10% that we are still struggling with as far as compatibility with the type of PowerShell scripts needed to run our day-to-day business."

"While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper."

"The product's reporting isn't great."

"I feel it is a shame that I cannot create groups of groups with inheritance."

"I would like to see improvements on the operational side, specifically in grouping."

"The network coverage becomes an issue most of the time."

"They need to improve their technical support services."

"Reporting could be a bit more granular so that we had the ability to check regions and countries. I just noticed that, for instance, if I look at our servers, it's either "contained" or it's "not contained". I don't have the option, for instance, to look at countries. It only allows me to look at users as one big group."

More Cybereason Endpoint Detection & Response cons

"They have something called Managed Detection and Response. They get intel from their customers, and that intel is shared with the rest of FireEye's customers. I want to subscribe to their intel, but that is not available to us."

"The performance could be better. I noticed that it slows down a bit."

"The Linux support is very poor. I use base detection. Currently, they are providing malware protection and logon track features in Windows and Mac. These features aren't available in Linux. It will be helpful to extend these capabilities to Linux. We would also like assets grouping and device lock protection features, which are included in their roadmap."

"I hope the solution can be used in cloud systems going forward."

"Most of these types of solutions including others, such as Carbon Black and FortiEDR, all have the same features. However, Carbon Black is the leader when it comes to being robust and user-friendly and this solution should improve in those areas to stay more competitive."

"Sometimes, one might face issues with the scalability of the product. The aforementioned area can be considered for improvement."

"The product is consolidating its portfolio into one product. It is difficult at the moment."

"In some cases, the detection part was not accurate enough. We opened a few cases for the vendor to help us with some miscategorized findings on the endpoints. There were some false positive detections, and we had to work with the vendor to get them tested. We even had some incidents that were not detected. It was a black box type of solution for us."

More Trellix Endpoint Security (ENS) cons

Pricing and Cost Advice

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"I do not have experience with the licensing of the product."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"In terms of cost, this is a good choice for our needs."

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

"This product is somewhat expensive and should be cheaper."

"The pricing is manageable."

More Cybereason Endpoint Detection & Response pricing and cost advice

"It was an annual fee. There was just one overall fee."

"There's a subscription on a yearly basis. It's not that expensive; it's quite affordable."

"The pricing is reasonable."

"It is not so cheap in comparison to Sophos and other solutions."

"The price of the product is similar to the ones in the market that offer the same features."

"Trellix Endpoint Security (ENS) has a reasonable price."

"It is based on an annual subscription."

"They should reduce the cost or make it free, open-source software."

More Trellix Endpoint Security (ENS) pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

848,396 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

11%

Manufacturing Company

Government

Computer Software Company

15%

Financial Services Firm

13%

Government

12%

Manufacturing Company

11%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?

Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...

See all answers

What is your primary use case for Cybereason Endpoint Detection & Response?

We use it to improve detection in the whole industrial sector. We are a big energy company. Across multiple endpoints, we deploy the EDR to secure all, improve detection, and also attempt to automa...

See all answers

What do you like most about Cybereason Endpoint Detection & Response?

The interface is user-friendly.

See all answers

How does McAfee Endpoint Security compare with MVISION?

The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...

See all answers

How does Crowdstrike Falcon compare with FireEye Endpoint Security?

The Crowdstrike Falcon program has a simple to use user interface, making it both an easy to use as well as an effective program. Its graphical design is such that it makes an extremely useful too...

See all answers

What do you like most about McAfee MVISION Endpoint?

The product's initial setup phase was straightforward.

See all answers

Comparisons

Darktrace vs Cybereason Endpoint Detection & Response

Compared 27% of the time

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 18% of the time

Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response

Compared 10% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 9% of the time

Kaspersky Endpoint Security for Business vs Cybereason Endpoint Detection & Response

Compared 5% of the time

More Cybereason Endpoint Detection & Response Competitors

Trellix Endpoint Detection and Response (EDR) vs Trellix Endpoint Security (ENS)

Compared 19% of the time

Microsoft Defender for Endpoint vs Trellix Endpoint Security (ENS)

Compared 17% of the time

CrowdStrike Falcon vs Trellix Endpoint Security (ENS)

Compared 14% of the time

Trellix Endpoint Security vs Trellix Endpoint Security (ENS)

Compared 11% of the time

SentinelOne Singularity Complete vs Trellix Endpoint Security (ENS)

Compared 7% of the time

More Trellix Endpoint Security (ENS) Competitors

Product Reports

Buyer's Guide

Cybereason Endpoint Detection & Response

April 2025

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Buyer's Guide

Trellix Endpoint Security (ENS)

March 2025

Download Trellix Endpoint Security (ENS) product report

Also Known As

Cybereason EDR, Cybereason Deep Detect & Respond

McAfee MVISION Endpoint, Trellix Endpoint Security (HX)

Overview

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason

Trellix Endpoint Security (ENS) is a comprehensive solution designed to protect organizations from advanced cyber threats. With its advanced threat detection capabilities, ENS provides real-time visibility into endpoint activities, enabling proactive threat hunting and response.

It leverages machine learning algorithms to identify and block sophisticated malware, ransomware, and zero-day attacks. ENS also offers robust data loss prevention (DLP) features, preventing sensitive information from being leaked or stolen. With its centralized management console, ENS allows administrators to easily deploy, monitor, and manage security policies across all endpoints.

ENS provides seamless integration with existing security infrastructure, ensuring a layered defense approach. With Trellix ENS, organizations can enhance their security posture and safeguard their critical assets from evolving cyber threats.

Trellix

Sample Customers

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Tech Resources Limited, Globe Telecom, Rizal Commercial Banking Corporation

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Trellix Endpoint Security (ENS)

April 2025

Free Report: Cybereason Endpoint Detection & Response vs. Trellix Endpoint Security (ENS)

Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. Trellix Endpoint Security (ENS) and other solutions. Updated: April 2025.

DOWNLOAD NOW

848,396 professionals have used our research since 2012.

See our Cybereason Endpoint Detection & Response vs. Trellix Endpoint Security (ENS) report.

See our list of best Endpoint Protection Platform (EPP) vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.