Try our new research platform with insights from 80,000+ expert users

Microsoft Defender XDR vs Trellix Endpoint Security comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 20, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.0
Microsoft Defender XDR boosts security efficiency, saves time, reduces breaches, despite high licensing costs, enhancing overall organizational security posture.
Sentiment score
8.6
Trellix Endpoint Security delivers substantial ROI and cost savings, exceeding 300%, by efficiently preventing security breaches and reducing expenses.
Ever since we turned on the M5 feature set back in June, we have seen a reduced number of potentially malicious clicks and faster alerting when incidents occur.
Previously, identifying and containing threats took a long time, but now, with Microsoft Defender XDR, it takes just a few minutes.
We have observed tremendous return on investment after implementing Trellix Endpoint Security as it is a more cost-effective solution compared to other products.
Clients appreciate the solution’s customization capabilities and ongoing product improvements.
 

Customer Service

Sentiment score
6.4
Microsoft Defender XDR support excels in premium tiers but has mixed reviews for basic service response times and expertise.
Sentiment score
7.6
Trellix Endpoint Security support is praised for expertise but inconsistent service and slow response times need improvement.
You get stuck in low-level support for way longer than you should, instead of them escalating the issue up the chain.
It's critical to escalate SEV B issues immediately to a domestic engineer.
Once issues are escalated to the second or third layer, the support is much better.
The response time is a notable issue.
I would rate their customer service nine out of ten.
Some engineers are knowledgeable.
 

Scalability Issues

Sentiment score
7.8
Microsoft Defender XDR is scalable and cloud-based, with positive user feedback, but may face network and licensing challenges.
Sentiment score
7.6
Trellix Endpoint Security is highly scalable, easily integrating across environments for diverse needs, especially excelling in cloud setups.
Microsoft Defender XDR shows tremendous scalability, much more so than on-premises solutions.
It is suitable for enterprise-level deployment but has room for improvement.
I would rate the scalability of the solution as a six out of ten, indicating some challenges due to downtime requirements.
Trellix Endpoint Security is scalable.
 

Stability Issues

Sentiment score
7.8
Microsoft Defender XDR is highly stable and reliable, with users rating it 8 or 9 out of 10.
Sentiment score
8.5
Trellix Endpoint Security is stable and reliable, with improved versions addressing issues and users rating it highly.
The service has remained consistently online, with any issues isolated to specific components, suggesting a well-designed and modular architecture.
The services within our ecosystem have been reliable, meeting their SLAs.
I would rate its stability as nine out of ten.
I would rate the stability of Trellix Endpoint Security as near perfect, close to ten out of ten.
 

Room For Improvement

Microsoft Defender XDR needs faster scans, improved integration, intuitive dashboards, cost-effective licensing, better automation, and broader environment support.
Trellix Endpoint Security struggles with performance, detection speed, administration complexity, and compatibility, needing better automation and scalability.
The licensing process needs improvement and clarification.
Improvements are needed in automated response capabilities.
Some inconsistencies exist between blades, which could be improved for a more seamless user and UI experience.
What needs improvement in Trellix Endpoint Security is the reduction of resource consumption by the scanning feature.
Improvements are needed in forensic analytics to detect specific vulnerabilities.
The product does not seem to be cloud-native.
 

Setup Cost

Microsoft Defender XDR pricing opinions vary, with some appreciating bundled savings and others finding standalone costs high.
Trellix Endpoint Security offers flexible pricing, valued for bundled deals, despite higher costs and per-user licensing concerns.
I would rate the pricing as eight out of ten, indicating it is a reasonable cost for the product.
Microsoft purposefully obfuscates this through marketing ploys to hide costs.
There are no issues with pricing, but sometimes, the clarity in licensing is a concern.
The license costs are very reasonable, around 1,000 to 1,200 rupees per year.
Trellix Endpoint Security is cost-effective and provides excellent value for money.
 

Valuable Features

Microsoft Defender XDR offers integrated tools, enhancing threat detection, management, and automation, simplifying security tasks for enterprise environments.
Trellix Endpoint Security excels in centralized management, offering robust, adaptive cybersecurity with seamless integration and user-friendly remote control features.
With Microsoft threat intelligence information, it detects various types of threats, including insider attacks, malicious content, and data exfiltration.
This allows us to secure our systems in advance and proactively improve security, rather than waiting for incidents to occur.
It's because endpoint management is my primary focus, and this feature integrates well with my other skills.
Trellix Endpoint Security is a proven, robust, and cost-effective solution that protects the organization from different types of ransomware and attacks.
Including options like Application Control (formerly Solidcore), integrated monitoring, change control, DLP, and advanced threat protection, the solution offers comprehensive security.
The most valuable features of Trellix Endpoint Security include its protection capabilities such as DNS and endpoint security, DNS threat prevention, as well as advanced threat prevention.
 

Categories and Ranking

Microsoft Defender XDR
Ranking in Extended Detection and Response (XDR)
4th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
98
Ranking in other categories
Endpoint Detection and Response (EDR) (5th), Microsoft Security Suite (3rd)
Trellix Endpoint Security
Ranking in Extended Detection and Response (XDR)
13th
Average Rating
8.0
Reviews Sentiment
7.4
Number of Reviews
101
Ranking in other categories
Endpoint Protection Platform (EPP) (10th)
 

Mindshare comparison

As of April 2025, in the Extended Detection and Response (XDR) category, the mindshare of Microsoft Defender XDR is 7.0%, up from 6.9% compared to the previous year. The mindshare of Trellix Endpoint Security is 1.8%, down from 2.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR)
 

Featured Reviews

Gabor Nyerd - PeerSpot reviewer
Includes four services and four products, which can help organizations a lot
We found that sometimes integrations work, but testing them can take some time. Sometimes, configurations take much longer than expected. We have a configuration in place that needs to be synchronized with another server. However, the servers are four hours apart, so this can cause delays. In general, I believe that the time it takes to configure and test a service should be shorter. Sometimes, it can take a couple of hours to test a single configuration setting. Other times, it is only ten or fifteen minutes, which is normal. However, sometimes, even immediate actions can be triggered by configuration changes, and some settings can take up to eight hours to complete. I believe that this time can be improved. Microsoft is making a lot of improvements to its services in a short period of time. This is a good thing, as it means that the services are constantly being updated and improved. However, it can be challenging for customers to keep up with the changes. For example, a customer may read about an update, understand it, and share it with their colleagues and boss. However, it may take days or weeks to test the update and get the necessary approvals. This can be especially challenging for large customers with many users or machines. In some cases, Microsoft may change a service before the customer has had a chance to implement the previous update. This can be frustrating for customers, as it means that they have to constantly learn new things and adjust their workflows. On the one hand, it is important for Microsoft to keep updating and improving its services. This helps to ensure that the services are meeting the customers' needs and that they are staying ahead of the competition. Microsoft should also be mindful of the challenges that these changes can create for customers. One way to address this challenge is to provide customers with more time to implement changes. Microsoft could also provide more information about upcoming changes so that customers can plan ahead. Ultimately, Microsoft needs to strike a balance between keeping its services up-to-date and providing customers with a smooth transition to new features.
Abdullah Al Hadi - PeerSpot reviewer
Customization capabilities allow clients to autonomously deploy policies
There are a few areas where Trellix Endpoint Security ( /categories/endpoint-protection-platform-epp ) can improve. Firstly, the high CPU utilization when agents are installed can negatively impact client systems. Another issue is with end-users outside the network, where the agent handler sometimes fails to deploy the product properly. Improvements are needed in forensic analytics to detect specific vulnerabilities. It would also help if detection specifics were identified more quickly and the problem-solving process accelerated, especially to meet larger clients' expectations.
report
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
848,576 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
9%
Manufacturing Company
8%
Government
7%
Educational Organization
42%
Government
9%
Computer Software Company
7%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Microsoft 365 Defender?
Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.
What is your experience regarding pricing and costs for Microsoft 365 Defender?
Licensing is somewhat confusing, particularly when presenting our pitch decks to stakeholders and leveraging key features in premium SKUs, but we managed with some assistance from Microsoft.
What needs improvement with Microsoft 365 Defender?
There is nothing I can think of at the moment that needs improvement. I am a contractor and finishing up soon, so I haven't encountered any issues requiring enhancements.
How does McAfee Endpoint Security compare with MVISION?
The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...
What do you like most about McAfee Endpoint Security?
It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.
What is your experience regarding pricing and costs for McAfee Endpoint Security?
Trellix Endpoint Security is cost-effective and provides excellent value for money, with no need for extra expenses for premium support.
 

Also Known As

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender
McAfee Endpoint Security, McAfee Endpoint Protection, Intel Security Total Protection for Endpoint, McAfee Complete Endpoint Protection
 

Overview

 

Sample Customers

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.
inHouseIT, Seagate Technology
Find out what your peers are saying about Microsoft Defender XDR vs. Trellix Endpoint Security and other solutions. Updated: March 2025.
848,576 professionals have used our research since 2012.