Elastic Security vs Trellix Endpoint Security (ENS) comparison

Elastic and Trellix are both solutions in the Endpoint Detection and Response (EDR) category. Elastic is ranked #16 with an average rating of 7.7, while Trellix is ranked #17 with an average rating of 7.6. Elastic holds a 2.7% mindshare in EDR, compared to Trellix’s 2.1% mindshare. Additionally, 85% of Elastic users are willing to recommend the solution, compared to 80% of Trellix users who would recommend it.

Elastic Security

Read 62 Elastic Security reviews

4,459 Views
3,652 Comparison Views

85% willing to recommend

Trellix Endpoint Security (...

Read 53 Trellix Endpoint Security (ENS) reviews

4,559 Views
3,454 Comparison Views

80% willing to recommend

Elastic Security

Trellix Endpoint Security (...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Elastic Security and Trellix Endpoint Security (ENS) are leading security solutions aiming to protect enterprises. While Elastic Security is notable for its affordability and deployment simplicity, Trellix ENS has the upper hand in feature richness and customer support.

Features: Elastic Security offers comprehensive threat detection, superior analytics, and effective security measures. Trellix ENS includes automated response capabilities, extensive integration options, and detailed functionalities.

Room for Improvement: Elastic Security could improve on scalability, advanced threat capabilities, and predictive threat detection. Trellix ENS should work on simplifying its configuration process, enhancing resource efficiency, and making deployment less complex.

Ease of Deployment and Customer Service: Elastic Security is known for its quick, simple deployment and robust customer support. Trellix ENS has a more involved deployment process, but its top-tier customer service provides extensive guidance throughout the setup.

Pricing and ROI: Elastic Security is cost-effective, offering satisfactory ROI. Trellix ENS, though higher in cost, justifies it with superior features and high ROI reported by users.

To learn more, read our detailed Elastic Security vs. Trellix Endpoint Security (ENS) Report (Updated: December 2024).

Buyer's Guide

Elastic Security vs. Trellix Endpoint Security (ENS)

December 2024

Download the complete report

Helped 824,067 peers since 2012

Categories and Ranking

Elastic Security

Ranking in Endpoint Detection and Response (EDR)

16th

Average Rating

7.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

Log Management (5th), Security Information and Event Management (SIEM) (5th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)

Trellix Endpoint Security (...

Ranking in Endpoint Detection and Response (EDR)

17th

Average Rating

7.6

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (24th)

Mindshare comparison

As of December 2024, in the Endpoint Detection and Response (EDR) category, the mindshare of Elastic Security is 2.7%, up from 2.4% compared to the previous year. The mindshare of Trellix Endpoint Security (ENS) is 2.1%, down from 2.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Featured Reviews

Gajewski Marek

Chief Technology Officer & Co-founder at CS2

Provides good anomaly detection and connectivity reporting

We previously used Splunk but switched to Elastic Security because Splunk was more expensive. Feature-wise, both tools are pretty much the same. They have almost the same functions. Elastic Security has a much better AI assistant that allows you to ask questions like a normal person. With Elastic Security, I can also predict the price and how much it will cost. Splunks's pricing depends on how much data we use and the different add-ons I have to add. The pricing is much better with Elastic Security.

Read full review

Venugopal Potumudi

Senior Consultant at Tata Consultancy

Reliable with good independent modules and a straightforward setup

I'd rate the solution seven out of ten. Having used Trend Micro as well, I would rate Trend Micro higher. However, I would still choose this product as a second option. When we recommend a product, we would recommend something based on the fit of the product and customer requirements. We worked with Defender, we worked with Trend Micro, and we worked with McAfee. All of them almost overlap in multiple use cases. That said, we do see the customer IT strategy and where they're going, and they are adopting Azure more. We know there are certain limitations in their landscape where there may be some old legacy systems, and in that case, then we would either switch back to McAfee or Trend Micro instead of Defender.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The tool's functionality is good for overall security and incident response times."

"Elastic is straightforward, easy to integrate, and highly customizable."

"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."

"ELK documentation is very good, so never needed to contact technical support."

"The solution is quite stable. The performance has been good."

"The most valuable features of Elastic Security are it is open-source and provides a high level of security."

"It's open-source and free to use."

"What customers found most valuable in Elastic Security feature-wise is the search capability, in particular, the way of writing the search query and the speed of searching for results."

More Elastic Security pros

"The independent modules are very good."

"Provides protection against threats."

"The response part of EDR was most valuable. We used that to separate the endpoint from the network. We utilized the solution during the instant response. We were also utilizing advanced malware detection capabilities, but we benefited the most from its help with the response."

"The extendability is great."

"Trellix Endpoint Security has a full suite of DLP."

"I have not received any complaints about the performance."

"Provides good mobile device protection."

"The stability has been great."

More Trellix Endpoint Security (ENS) pros

Cons

"The solution needs to be more reactive to investigations. We need to be able to detect and prevent any attacks before it can damage our infrastructure. Currently, this solution doesn't offer that."

"Technical support could respond faster."

"I want to find an automatic security system in the tool, like a SOAR solution. I am looking forward to seeing a SOAR system in the tool."

"With Elastic, you have to build the use cases for the specific requirement. Other products have a simple integration and more use cases to integrate out-of-the-box solutions for SIEM."

"It could use maybe a little more on the Linux side."

"The training that is offered for Elastic is in need of improvement because there is no depth to it."

"One thing they could add is a quick step to enable users who don't have a solid background to build a dashboard and quickly search, without difficulty."

"The solution could also use better dashboards. They need to be more graphical, more matrix-like."

More Elastic Security cons

"They could provide better integration capabilities for the product with other services."

"The solution needs to work on memory consumption. It is too high."

"MVISION Endpoint is only compatible with Windows 10 and Windows 2016 and above. If I were using a Linux operating system, I would not be able to use MVISION Endpoint."

"Malware detection can be better. It doesn't have support and detection for the recent malware, but it has a compensatory control where it can do the behavior-based assessment and alert you when there is something malicious or unexpected. For example, when a certain user is executing the privilege command, which is not normal. These dynamic detections are good, and they compensate for malware detection."

"Performance is a problematic area in the solution needing improvement."

"Search feature could be made more user-friendly."

"The Linux support is very poor. I use base detection. Currently, they are providing malware protection and logon track features in Windows and Mac. These features aren't available in Linux. It will be helpful to extend these capabilities to Linux. We would also like assets grouping and device lock protection features, which are included in their roadmap."

"In some cases, the detection part was not accurate enough. We opened a few cases for the vendor to help us with some miscategorized findings on the endpoints. There were some false positive detections, and we had to work with the vendor to get them tested. We even had some incidents that were not detected. It was a black box type of solution for us."

More Trellix Endpoint Security (ENS) cons

Pricing and Cost Advice

"Compared to other tools, Elastic Security is a cheaper solution."

"There is no charge for using the open-source version."

"I can say that the product is cheaply priced."

"Elastic Stack is an open-source tool. You don't have to pay anything for the components."

"Its price is fine. Its licensing works on a yearly basis. We have to renew the license every year. I also have a good experience with Darktrace. When we buy Darktrace, we get training free of cost, which is not there in Elastic. We have to pay extra for training. There is certainly room for improvement."

"I find it better than Splunk in terms of cost-effectiveness. For cost-effectiveness, I would rate it a nine out of 10."

"The product offers an amazing pricing structure. Price-wise, the product is very competitive."

"The solution is not expensive and costs around ten dollars a month."

More Elastic Security pricing and cost advice

"Trellix Endpoint Security (ENS) has a reasonable price."

"Trellix Endpoint Security (ENS) is not a cheap solution...I don't think any costs are involved in the maintenance of the solution."

"Licensing fees are paid yearly."

"The pricing is reasonable."

"I don't think there are any extra expenses besides its licensing costs."

"Microsoft Defender is not cheap and from a cost perspective, Trellix Endpoint Security (ENS) is a better option."

"Licensing fees are billed on a yearly basis."

"The current pricing is much better than before because they now offer product-related promotions along with some changes in product licensing. The new pricing model is better than before."

More Trellix Endpoint Security (ENS) pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

824,067 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

10%

Government

10%

University

Computer Software Company

15%

Government

12%

Manufacturing Company

11%

Financial Services Firm

11%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?

With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...

See all answers

What do you like most about Elastic Security?

Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...

See all answers

What is your experience regarding pricing and costs for Elastic Security?

Elastic Security is cost-effective compared to Defender and CrowdStrike. The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building...

See all answers

How does McAfee Endpoint Security compare with MVISION?

The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...

See all answers

How does Crowdstrike Falcon compare with FireEye Endpoint Security?

The Crowdstrike Falcon program has a simple to use user interface, making it both an easy to use as well as an effective program. Its graphical design is such that it makes an extremely useful too...

See all answers

What do you like most about McAfee MVISION Endpoint?

The product's initial setup phase was straightforward.

See all answers

Comparisons

Wazuh vs Elastic Security

Compared 31% of the time

CrowdStrike Falcon vs Elastic Security

Compared 8% of the time

IBM Security QRadar vs Elastic Security

Compared 7% of the time

Microsoft Sentinel vs Elastic Security

Compared 6% of the time

Splunk Enterprise Security vs Elastic Security

Compared 6% of the time

More Elastic Security Competitors

Trellix Endpoint Security vs Trellix Endpoint Security (ENS)

Compared 22% of the time

Microsoft Defender for Endpoint vs Trellix Endpoint Security (ENS)

Compared 17% of the time

Trellix Endpoint Detection and Response (EDR) vs Trellix Endpoint Security (ENS)

Compared 14% of the time

CrowdStrike Falcon vs Trellix Endpoint Security (ENS)

Compared 13% of the time

Kaspersky Endpoint Security for Business vs Trellix Endpoint Security (ENS)

Compared 1% of the time

More Trellix Endpoint Security (ENS) Competitors

Product Reports

Buyer's Guide

Elastic Security

December 2024

Download Elastic Security product report

Buyer's Guide

Trellix Endpoint Security (ENS)

November 2024

Download Trellix Endpoint Security (ENS) product report

Also Known As

Elastic SIEM, ELK Logstash

McAfee MVISION Endpoint, Trellix Endpoint Security (HX)

Learn More

Elastic

Trellix

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.

Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Trellix Endpoint Security (ENS) is a comprehensive solution designed to protect organizations from advanced cyber threats. With its advanced threat detection capabilities, ENS provides real-time visibility into endpoint activities, enabling proactive threat hunting and response.

It leverages machine learning algorithms to identify and block sophisticated malware, ransomware, and zero-day attacks. ENS also offers robust data loss prevention (DLP) features, preventing sensitive information from being leaked or stolen. With its centralized management console, ENS allows administrators to easily deploy, monitor, and manage security policies across all endpoints.

ENS provides seamless integration with existing security infrastructure, ensuring a layered defense approach. With Trellix ENS, organizations can enhance their security posture and safeguard their critical assets from evolving cyber threats.

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care

Tech Resources Limited, Globe Telecom, Rizal Commercial Banking Corporation

Buyer's Guide

Elastic Security vs. Trellix Endpoint Security (ENS)

December 2024

Free Report: Elastic Security vs. Trellix Endpoint Security (ENS)

Find out what your peers are saying about Elastic Security vs. Trellix Endpoint Security (ENS) and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,067 professionals have used our research since 2012.

See our Elastic Security vs. Trellix Endpoint Security (ENS) report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.