Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Endpoint vs Trellix Endpoint Security comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.2
Microsoft Defender for Endpoint offers cost savings, enhanced protection, and efficient threat management, with anticipated future benefits.
Sentiment score
8.6
Trellix Endpoint Security delivers substantial ROI and cost savings, exceeding 300%, by efficiently preventing security breaches and reducing expenses.
The return on investment is primarily in time savings and better observability of what's happening.
We have observed tremendous return on investment after implementing Trellix Endpoint Security as it is a more cost-effective solution compared to other products.
Clients appreciate the solution’s customization capabilities and ongoing product improvements.
 

Customer Service

Sentiment score
6.5
Support for Microsoft Defender for Endpoint varies, with premium tiers offering quicker responses, while basic support can be slow.
Sentiment score
7.6
Trellix Endpoint Security support is praised for expertise but inconsistent service and slow response times need improvement.
The level-one support seems disconnected from subject matter experts.
I rate Microsoft support 10 out of 10.
Due to our size, we don't have access to direct technical support, but the knowledge base, Microsoft Learn, and the articles available are really good.
The response time is a notable issue.
I would rate their customer service nine out of ten.
Some engineers are knowledgeable.
 

Scalability Issues

Sentiment score
7.7
Microsoft Defender for Endpoint is a scalable solution integrating smoothly with Microsoft, ideal for diverse organizational needs and configurations.
Sentiment score
7.6
Trellix Endpoint Security is highly scalable, easily integrating across environments for diverse needs, especially excelling in cloud setups.
We managed to scale it out in a short amount of time, with two months of planning and three months of implementation on 10,000 computers.
Microsoft Defender for Endpoint is scalable enough to handle various devices across environments, whether they are laptops, Android devices, or operating in hybrid environments.
It's pretty easy to scale with Microsoft, as they make it easy if you look into the documentation.
I would rate the scalability of the solution as a six out of ten, indicating some challenges due to downtime requirements.
Trellix Endpoint Security is scalable.
 

Stability Issues

Sentiment score
7.9
Microsoft Defender for Endpoint is stable and reliable, with integration ease, despite occasional lags and minor update bugs.
Sentiment score
8.5
Trellix Endpoint Security is stable and reliable, with improved versions addressing issues and users rating it highly.
I haven't seen any outages with Microsoft.
I rate Defender 10 out of 10 for stability.
Defender for Endpoint is extremely stable.
I would rate its stability as nine out of ten.
I would rate the stability of Trellix Endpoint Security as near perfect, close to ten out of ten.
 

Room For Improvement

Microsoft Defender for Endpoint needs frequent updates, improved integration, user-friendly interface, enhanced analytics, and better support documentation.
Trellix Endpoint Security struggles with performance, detection speed, administration complexity, and compatibility, needing better automation and scalability.
Repeated interactions are necessary due to Level One's lack of tools and knowledge, hindering efficient problem-solving and negatively impacting our experience with Microsoft support.
We use Microsoft partners to help govern the platform, and as part of an alliance, we want to gather data from each tenant and combine them for a complete view.
Providing more detailed information on how Microsoft Defender for Endpoint detects vulnerabilities.
What needs improvement in Trellix Endpoint Security is the reduction of resource consumption by the scanning feature.
Improvements are needed in forensic analytics to detect specific vulnerabilities.
The product does not seem to be cloud-native.
 

Setup Cost

Microsoft Defender for Endpoint is cost-effective with bundled licenses, but advanced features may incur additional fees.
Trellix Endpoint Security offers flexible pricing, valued for bundled deals, despite higher costs and per-user licensing concerns.
Given our extensive Microsoft licensing, transitioning to Defender for Endpoint did not affect licensing costs.
It costs $15 per VM for the P2 plan, which is seen as affordable for customers.
The pricing, setup, and licensing were very easy and simple.
The license costs are very reasonable, around 1,000 to 1,200 rupees per year.
Trellix Endpoint Security is cost-effective and provides excellent value for money.
 

Valuable Features

Microsoft Defender for Endpoint offers seamless integration, real-time threat detection, and efficient management, enhancing security with minimal system impact.
Trellix Endpoint Security excels in centralized management, offering robust, adaptive cybersecurity with seamless integration and user-friendly remote control features.
Defender for Endpoint's coverage across different platforms in our environment is pretty good. We have devices running Linux, Mac OS, Windows, iOS, and Android. It covers all of them.
Microsoft Defender for Endpoint provides a unified management interface allowing customers to manage their on-premises and hybrid infrastructures from a single pane.
Web filtering is the most valuable feature of Microsoft Defender for Endpoint because it effectively maintains security for website access.
Trellix Endpoint Security is a proven, robust, and cost-effective solution that protects the organization from different types of ransomware and attacks.
Including options like Application Control (formerly Solidcore), integrated monitoring, change control, DLP, and advanced threat protection, the solution offers comprehensive security.
The most valuable features of Trellix Endpoint Security include its protection capabilities such as DNS and endpoint security, DNS threat prevention, as well as advanced threat prevention.
 

Categories and Ranking

Microsoft Defender for Endp...
Ranking in Endpoint Protection Platform (EPP)
1st
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
192
Ranking in other categories
Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Endpoint Detection and Response (EDR) (3rd), Microsoft Security Suite (5th)
Trellix Endpoint Security
Ranking in Endpoint Protection Platform (EPP)
10th
Average Rating
8.0
Reviews Sentiment
7.4
Number of Reviews
101
Ranking in other categories
Extended Detection and Response (XDR) (13th)
 

Mindshare comparison

As of April 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of Microsoft Defender for Endpoint is 10.9%, down from 14.8% compared to the previous year. The mindshare of Trellix Endpoint Security is 3.0%, down from 3.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.
Abdullah Al Hadi - PeerSpot reviewer
Customization capabilities allow clients to autonomously deploy policies
There are a few areas where Trellix Endpoint Security ( /categories/endpoint-protection-platform-epp ) can improve. Firstly, the high CPU utilization when agents are installed can negatively impact client systems. Another issue is with end-users outside the network, where the agent handler sometimes fails to deploy the product properly. Improvements are needed in forensic analytics to detect specific vulnerabilities. It would also help if detection specifics were identified more quickly and the problem-solving process accelerated, especially to meet larger clients' expectations.
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
26%
Computer Software Company
11%
Government
7%
Financial Services Firm
7%
Educational Organization
42%
Government
9%
Computer Software Company
7%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
How does McAfee Endpoint Security compare with MVISION?
The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...
What do you like most about McAfee Endpoint Security?
It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.
What is your experience regarding pricing and costs for McAfee Endpoint Security?
Trellix Endpoint Security is cost-effective and provides excellent value for money, with no need for extra expenses for premium support.
 

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
McAfee Endpoint Security, McAfee Endpoint Protection, Intel Security Total Protection for Endpoint, McAfee Complete Endpoint Protection
 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

Petrofrac, Metro CSG, Christus Health
inHouseIT, Seagate Technology
Find out what your peers are saying about Microsoft Defender for Endpoint vs. Trellix Endpoint Security and other solutions. Updated: April 2025.
848,716 professionals have used our research since 2012.