Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Endpoint vs Trellix Endpoint Security comparison

Microsoft and Trellix are both solutions in the Endpoint Protection Platform (EPP) category. Microsoft is ranked #1 with an average rating of 8.3, while Trellix is ranked #9 with an average rating of 8.2. Microsoft holds a 11.3% mindshare in EPP, compared to Trellix’s 3.3% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 92% of Trellix users who would recommend it.
Microsoft Defender for Endp...
Read 190 Microsoft Defender for Endpoint reviews
  • 40,070 Views
  • 31,381 Comparison Views
94% willing to recommend
Trellix Endpoint Security
Read 98 Trellix Endpoint Security reviews
  • 13,842 Views
  • 8,231 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

Trellix Endpoint Security and Microsoft Defender for Endpoint compete in the endpoint security market. Microsoft Defender for Endpoint seems to have an edge due to advanced features and strong user reviews.

Features: Trellix Endpoint Security users value robust threat detection, response capabilities, and cost-effective pricing. Microsoft Defender for Endpoint users highlight advanced threat protection, integration with other Microsoft services, and superior feature set leveraging powerful integration and protection technologies.

Room for Improvement: Trellix Endpoint Security could improve in performance issues, more intuitive management, and technical performance enhancements. Microsoft Defender for Endpoint requires better cross-platform support, detailed reporting, and enhanced cross-platform capabilities.

Ease of Deployment and Customer Service: Trellix Endpoint Security's deployment is straightforward but can take significant time for full configuration. Its customer service is consistent. Microsoft Defender for Endpoint has a smoother deployment process with better initial guidance, though customer service experiences vary.

Pricing and ROI: Trellix Endpoint Security is cost-effective with reasonable setup costs and solid ROI. Microsoft Defender for Endpoint is more expensive but offers higher ROI due to its comprehensive feature set and strong capabilities.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Defender for Endpoint vs. Trellix Endpoint Security Report (Updated: January 2025).
Buyer's Guide
Microsoft Defender for Endpoint vs. Trellix Endpoint Security
January 2025
Download the complete report
Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Defender for Endp...
Ranking in Endpoint Protection Platform (EPP)
1st
Average Rating
8.0
Reviews Sentiment
7.1
Number of Reviews
190
Ranking in other categories
Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Endpoint Detection and Response (EDR) (2nd), Microsoft Security Suite (6th)
Trellix Endpoint Security
Ranking in Endpoint Protection Platform (EPP)
9th
Average Rating
8.0
Reviews Sentiment
7.1
Number of Reviews
98
Ranking in other categories
Extended Detection and Response (XDR) (12th)
 

Mindshare comparison

As of January 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of Microsoft Defender for Endpoint is 11.3%, down from 15.7% compared to the previous year. The mindshare of Trellix Endpoint Security is 3.3%, down from 3.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.
Read full review
AhmedEl-Tayeb - PeerSpot reviewer
Good user behavioral analysis and helpful patching but needs better support services
Some of our products have a first and second line owned by us. We are giving support services to the customers instead of the vendor. Some other products are supported directly by the technology vendor, however. Technical support from the vendor is very bad. Usually, when the customer submits a ticket, they put a severity level on the case. Whenever the case is very important, and there is a real malfunction in the product on the customer side, and there is something down that needs someone to have a look immediately, it takes more time than it should to even engage with the customer. When someone has to contact the customer and have a remote session within the customer environment, they sometimes lack in terms of communication with the customer. The support centers are located in the East and not all have an acceptable level of English in order to communicate directly with the customer.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The comprehensiveness of Microsoft threat-protection products is great... Today, Microsoft Sentinel by itself is a leading Gartner SIEM tool. It has advantages over competitors because of the ability to integrate with Microsoft solutions and automate continuous monitoring of Microsoft AD and Office 365 data."
"It is quite stable. We have not had any cases, i.e., viruses, that would require a reboot, etc. We have never had a situation where we needed to reinstall the tools as a result of the Defender application or a feature being corrupt."
"We have very good visibility on our endpoints. The level of information it throws back is helpful."
"Integration between Microsoft products is very easy."
"In my opinion, the most valuable aspects are the reporting analytics and integration with Sentinel. Defender does an excellent job of correlating the different entities that comprise threat analysis, analytics data, and log analytics. It helps to piece together investigations into any exploit or malicious activity within a specific tenant. AI and analytics tools are probably the most valuable components."
"One of the features which differentiates it from other EDR providers is the Automated Investigation and Response, which reduces the workload of SOC analysts or engineers. They don't have to manually investigate each and every alert on the endpoint, since it does so automatically. And you can automate the investigation part."
"Defender for Endpoint allows us automatic resolutions if a unit is compromised or if a user clicks a malicious link."
"It's absolutely free to use."
More Microsoft Defender for Endpoint pros
"It also allows multifunctionality within a single platform."
"The product is easy to use."
"Some of McAfee Endpoint Security's main features are it has benefits over normal conventional antivirus solutions because it works much faster."
"The reporting capabilities are a valuable feature. In enables more visibility on our network."
"Technical support is always available and very helpful."
"We really like the dashboard from Trellix and we've found that it's pretty informative."
"It has been protecting us for many years, and we hope it will continue to do so for many years to come."
"We like the management of the ePO, and we like the management console."
More Trellix Endpoint Security pros
 

Cons

"Features like device inventory continue to lack essential workstation drill-downs showing the entire device information with the least effort."
"I would like to see the next generation of the tool improved to work with other operating systems, like Linux."
"The product itself does not necessarily need improvement, but the support and implementation of the product are the disaster cases."
"On the Mac OS platform, there is no parity between Windows and Mac OS. The solution is very feature-rich and very well-integrated into Windows, and I guess baked into Windows 10 and Windows 11. Whereas, on the Mac OS platform, there is still some work there to give it a more feature-reach platform."
"Defender for Endpoint is complex, and the documentation is detailed. At the same time, it's hard to navigate sometimes. You have to go through tons of documentation to find what you want."
"The UI for Microsoft Defender for Endpoint needs to be better. Integration with client dashboards is also lacking in this product, e.g. client dashboards shouldn't just be viewable from the cloud, because when the client's computer is offline, you won't be able to see the client dashboard."
"There are likely some technical improvements or features that could be added, however, I cannot say, off the top of my head, what they would be."
"It makes your Surface devices hot. It is resource-intensive. It strains your CPU, not more than other file scanners around, but it also does a lot more. When you are transmitting files or data, it is continuously scanning the traffic and analyzing it bit by bit to see what's going on, and that, of course, is costly in terms of CPU. It is CPU intensive, and if you are on battery, it drains your battery fast. That's the only drawback that it has."
More Microsoft Defender for Endpoint cons
"Its pricing needs to be improved."
"What needs improvement in Trellix Endpoint Security is the reduction of resource consumption by the scanning feature. There should be daily signature updates for protection."
"The solution should provide a more easy way to uninstall it on specific stations."
"Every time we open a ticket with McAfee, their response differs and they are not consistent."
"McAfee Endpoint Protection could improve the word control feature."
"It would be nice if the solution was a bit more stable."
"It would be nice if the solution were to allow not just on-cloud management, but on-premises, as well."
"An area in need of improvement involves the overview, which usually does not enable one to get the value in reports."
More Trellix Endpoint Security cons
 

Pricing and Cost Advice

"We have been using the free version."
"Because Microsoft Defender comes as an add-on, it can be a bit expensive if you're trying to buying it separately. Another option is to upgrade, but the enterprise licenses for Microsoft can also be quite a bit pricey. Overall, the cost of Microsoft Defender compared to that of other endpoint detection solutions is slightly higher."
"Microsoft has different plans for buying this product. The price depends on the configuration of the full set of products that you buy and on the licensing program in your contract."
"We pay a yearly license for Microsoft Defender. We also have a support contract with them."
"The product is free of charge and comes integrated into Windows."
"You just pay Windows 10 prices, then you have antivirus software. As a price comparison, Defender's costs are very low."
"We sell this product as part of Office 365 and it is not expensive."
"Licensing models of Microsoft are renowned for being complex. We just purchased the whole E5 stack. With E5 licenses for users, we get access to a bunch of features that are not just related to security. I would rate them a three out of five in terms of pricing."
More Microsoft Defender for Endpoint pricing and cost advice
"Annual license fee is good"
"This product is costly."
"When comparing the solution to others it is a bit expensive. We are on a monthly license."
"The price of this product is good."
"Its price is very high. It is higher than its competitors, and it should be less."
"Since the maintenance is done by our own team, the price of the subscription should really be cheaper."
"The price of the solution is fair, we have a complete security package."
"Trellix Endpoint Security is neither a cheap nor an expensive solution."
More Trellix Endpoint Security pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
831,158 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
27%
Computer Software Company
12%
Government
7%
Financial Services Firm
7%
Educational Organization
42%
Government
9%
Computer Software Company
7%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
See all answers
How does McAfee Endpoint Security compare with MVISION?
The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...
See all answers
What do you like most about McAfee Endpoint Security?
It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.
See all answers
What is your experience regarding pricing and costs for McAfee Endpoint Security?
The license costs are very reasonable, around 1,000 to 1,200 rupees per year.
See all answers
 

Comparisons

CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Compared 8% of the time
Symantec Endpoint Security vs Microsoft Defender for Endpoint Logo
Symantec Endpoint Security vs Microsoft Defender for Endpoint
Compared 5% of the time
Microsoft Intune vs Microsoft Defender for Endpoint Logo
Microsoft Intune vs Microsoft Defender for Endpoint
Compared 5% of the time
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Compared 4% of the time
Intercept X Endpoint vs Microsoft Defender for Endpoint Logo
Intercept X Endpoint vs Microsoft Defender for Endpoint
Compared 3% of the time
More Microsoft Defender for Endpoint Competitors
Trellix Endpoint Security (ENS) vs Trellix Endpoint Security Logo
Trellix Endpoint Security (ENS) vs Trellix Endpoint Security
Compared 11% of the time
Trend Micro Deep Security vs Trellix Endpoint Security Logo
Trend Micro Deep Security vs Trellix Endpoint Security
Compared 7% of the time
Kaspersky Endpoint Security for Business vs Trellix Endpoint Security Logo
Kaspersky Endpoint Security for Business vs Trellix Endpoint Security
Compared 6% of the time
CrowdStrike Falcon vs Trellix Endpoint Security Logo
CrowdStrike Falcon vs Trellix Endpoint Security
Compared 6% of the time
Cortex XDR by Palo Alto Networks vs Trellix Endpoint Security Logo
Cortex XDR by Palo Alto Networks vs Trellix Endpoint Security
Compared 6% of the time
More Trellix Endpoint Security Competitors
 

Product Reports

Buyer's Guide
Microsoft Defender for Endpoint
January 2025
Microsoft Defender for Endpoint reportDownload Microsoft Defender for Endpoint product report
Buyer's Guide
Trellix Endpoint Security
December 2024
Trellix Endpoint Security reportDownload Trellix Endpoint Security product report
 

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
McAfee Endpoint Security, McAfee Complete Endpoint Protection, McAfee Endpoint Protection, Total Protection for Endpoint, Intel Security Total Protection for Endpoint, MCAFEE Complete Endpoint Protection
 

Learn More

Microsoft
Trellix
 

Interactive Demo

Microsoft
Demo not available
Trellix
 

Overview

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Trellix Endpoint Security provides aggressive robust protection for every endpoint in an enterprise organization. Trellix uses dynamic threat intelligence and mounts a superb defense across the complete threat lifecycle. This solution will keep your organization more secure and resistant to any possible threat of risks. Trellix offers an amalgamated suite of next-generation endpoint security tools. These tools give users the benefit of machine learning, intuitive intelligence, and greater assistance to ensure their networks are being protected non-stop against threats - potential or realized - and can stop attacks before they happen. Trellix uses MDR (managed detection and response) and XDR (extended detection and response) to give users a comprehensive endpoint security solution.

Trellix Endpoint Security Benefits

  • Intuitive Protection: Trellix Endpoint Security learns and matures to ensure organizations are continuously protected in today’s aggressive threat environment. Users have full visibility and greater control of all endpoints and are able to utilize Trellix Endpoint Security’s potent threat detection, prevention, investigation, and response to keep their enterprises safe and secure.

  • Streamlined Security Protection: Users have a single view of full transparency into how their networks are performing and the overall effectiveness of the security. Users can access the solution from anywhere and manage automated workflows. The solution allows for a streamlined security process to improve the overall reliability of the organization's security and can effortlessly scan through hundreds of thousands of endpoints in minutes.

  • Robust Risk Management: Stop attacks before they occur and keep abreast of potential threats with intuitive threat prioritization. Receive easy to understand risk assessment and repair guidance without delay to prevent any possible lapses in security. Test scenarios will allow users to see how the organization would respond to a threat scheme.

Trellix Endpoint Security Top Features

  • Consolidated Management: Trellix offers numerous deployment options. The unique consolidated management process provides full transparency, cost-effective processes, improved IT functionality, and streamlined operations.

  • Intuitive Processes: Trellix can identify zero-day threats using machine learning and develop workable risk assessment to prevent attacks. Trellix intuitively creates protocols to recognize problematic processes that could lead to future attacks.
  • Reduced Impact on Resources: Trellix learns to focus on suspicious or anomalous activities by quickly identifying trusted activities to greatly reduce CPU consumption.

Reviews from Real Users

“It has a great console. We can manage everything from the central console and it is very easy. Every year we are getting the benefits of legacy also. It's easy to set up.” - S Fazlul H., IT Lead Engineer, Information Technology at Banglalink

“There is a new feature where you can set thresholds for all the CPU consumption allowing for no consumption on the servers when the scans happen. It is a separate plugin or addon, and if we have it on all the virtual machines it automatically checks the resources, and based on that, it will schedule the scans. That is something that I have not seen in other antivirus solutions, such as Symantec.” - Sabari K. Senior Engineer at a comms service provider

 

Sample Customers

Petrofrac, Metro CSG, Christus Health
inHouseIT, Seagate Technology
Buyer's Guide
Microsoft Defender for Endpoint vs. Trellix Endpoint Security
January 2025
Free Report: Microsoft Defender for Endpoint vs. Trellix Endpoint Security
Find out what your peers are saying about Microsoft Defender for Endpoint vs. Trellix Endpoint Security and other solutions. Updated: January 2025.
DOWNLOAD NOW
831,158 professionals have used our research since 2012.
See our Microsoft Defender for Endpoint vs. Trellix Endpoint Security report.
See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.