Microsoft Defender XDR vs Trellix Endpoint Security comparison

Microsoft and Trellix are both solutions in the Extended Detection and Response (XDR) category. Microsoft is ranked #5 with an average rating of 8.4, while Trellix is ranked #12 with an average rating of 8.2. Microsoft holds a 9.8% mindshare in XDR, compared to Trellix’s 2.6% mindshare. Additionally, 97% of Microsoft users are willing to recommend the solution, compared to 92% of Trellix users who would recommend it.

Microsoft Defender XDR

Read 96 Microsoft Defender XDR reviews

7,088 Views
5,406 Comparison Views

97% willing to recommend

Trellix Endpoint Security

Read 98 Trellix Endpoint Security reviews

3,483 Views
2,096 Comparison Views

92% willing to recommend

Microsoft Defender XDR

Trellix Endpoint Security

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Trellix Endpoint Security and Microsoft Defender XDR are prominent solutions in the endpoint security category. Users prefer Trellix for its pricing and support, while Microsoft Defender XDR leads in features, particularly for those using Microsoft products.

Features: Trellix Endpoint Security offers customizable threat detection settings, comprehensive reporting tools, and straightforward deployment. Microsoft Defender XDR stands out for seamless integration with Microsoft products, advanced automated threat responses, and integration capabilities that benefit users within the Microsoft ecosystem.

Room for Improvement: Trellix users report a need for real-time monitoring enhancements and reduced resource consumption. Microsoft Defender XDR could benefit from more timely updates to improve threat response times.

Ease of Deployment and Customer Service: Trellix is known for easy deployment and responsive customer support. Microsoft Defender XDR provides a seamless installation process in Microsoft environments but has been noted for needing quicker customer support response times.

Pricing and ROI: Trellix is considered cost-effective with solid ROI due to its security features. Microsoft Defender XDR has higher initial costs but justifies the expense with its advanced feature set, suitable for enterprises requiring robust protection.

To learn more, read our detailed Microsoft Defender XDR vs. Trellix Endpoint Security Report (Updated: December 2024).

Buyer's Guide

Microsoft Defender XDR vs. Trellix Endpoint Security

December 2024

Download the complete report

Helped 824,067 peers since 2012

Categories and Ranking

Microsoft Defender XDR

Ranking in Extended Detection and Response (XDR)

5th

Average Rating

8.4

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (5th), Microsoft Security Suite (2nd)

Trellix Endpoint Security

Ranking in Extended Detection and Response (XDR)

12th

Average Rating

8.0

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (9th)

Mindshare comparison

As of December 2024, in the Extended Detection and Response (XDR) category, the mindshare of Microsoft Defender XDR is 9.8%, up from 6.9% compared to the previous year. The mindshare of Trellix Endpoint Security is 2.6%, down from 3.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

Gabor Nyerd

Enterprise mobility and security evangelist at a financial services firm with 5,001-10,000 employees

Includes four services and four products, which can help organizations a lot

We found that sometimes integrations work, but testing them can take some time. Sometimes, configurations take much longer than expected. We have a configuration in place that needs to be synchronized with another server. However, the servers are four hours apart, so this can cause delays. In general, I believe that the time it takes to configure and test a service should be shorter. Sometimes, it can take a couple of hours to test a single configuration setting. Other times, it is only ten or fifteen minutes, which is normal. However, sometimes, even immediate actions can be triggered by configuration changes, and some settings can take up to eight hours to complete. I believe that this time can be improved. Microsoft is making a lot of improvements to its services in a short period of time. This is a good thing, as it means that the services are constantly being updated and improved. However, it can be challenging for customers to keep up with the changes. For example, a customer may read about an update, understand it, and share it with their colleagues and boss. However, it may take days or weeks to test the update and get the necessary approvals. This can be especially challenging for large customers with many users or machines. In some cases, Microsoft may change a service before the customer has had a chance to implement the previous update. This can be frustrating for customers, as it means that they have to constantly learn new things and adjust their workflows. On the one hand, it is important for Microsoft to keep updating and improving its services. This helps to ensure that the services are meeting the customers' needs and that they are staying ahead of the competition. Microsoft should also be mindful of the challenges that these changes can create for customers. One way to address this challenge is to provide customers with more time to implement changes. Microsoft could also provide more information about upcoming changes so that customers can plan ahead. Ultimately, Microsoft needs to strike a balance between keeping its services up-to-date and providing customers with a smooth transition to new features.

Read full review

AhmedEl-Tayeb

Product Manager at MCS

Good user behavioral analysis and helpful patching but needs better support services

Some of our products have a first and second line owned by us. We are giving support services to the customers instead of the vendor. Some other products are supported directly by the technology vendor, however. Technical support from the vendor is very bad. Usually, when the customer submits a ticket, they put a severity level on the case. Whenever the case is very important, and there is a real malfunction in the product on the customer side, and there is something down that needs someone to have a look immediately, it takes more time than it should to even engage with the customer. When someone has to contact the customer and have a remote session within the customer environment, they sometimes lack in terms of communication with the customer. The support centers are located in the East and not all have an acceptable level of English in order to communicate directly with the customer.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Many people don't realize that Microsoft Azure, Exchange Online, and the security and compliance portal all sync together. For instance, within the Azure portal you can set security restrictions and policies to help secure your tenants... The good part of it is that these products have already been integrated. When you sign on as an admin you have global admin rights and that gives you access to all these features."

"Another noteworthy feature that I find appealing in Microsoft Defender is the credit-backed simulation. This feature enables organizations to train their users on effectively responding to phishing emails through a simulated training environment."

"Microsoft 365 Defender's most valuable feature is the ability to control the shadow IP."

"I like that it's fully integrated with Windows, Microsoft 365 Exchange Online, and Outlook. It is better than other antivirus solutions because it's fully integrated with all Microsoft products. It's easy to integrate them and onboard all Windows devices from SCCM."

"It's a very scalable tool that can be used in a very small environment or in a very large environment. Everything can be managed from a simple dashboard and can be scaled up or down depending on the customer's environment."

"I like Defender XDR's reports and alerts. They give you updates about the latest hotfixes and zero-day vulnerabilities, which gives me all the information I need to maintain my servers."

"I like the easy integration and advanced possibilities. We can implement it at customer sites in a few clicks, but we can also dive deep and drill down to extended features. There's a very good starting point to get into this product and all the features from Defender."

"The integration with other Microsoft solutions is the most valuable feature."

More Microsoft Defender XDR pros

"Some of McAfee Endpoint Security's main features are it has benefits over normal conventional antivirus solutions because it works much faster."

"The loss prevention feature would be the most valuable."

"It can be deployed quickly, and it's scalable. Those are the two advantages of it."

"The most valuable features of the solution include DLP (data loss prevention), CASB (cloud access security broker) functionality, endpoint encryption, and cloud workload security."

"McAfee Complete Endpoint Protection is stable. We don't have any bugs being reported."

"The most valuable features of Trellix Endpoint Security include its protection capabilities such as DNS and endpoint security, DNS threat prevention, as well as advanced threat prevention."

"The product’s stability and security features enhance user protection and organizational security."

"It also allows multifunctionality within a single platform."

More Trellix Endpoint Security pros

Cons

"We should be able to use the product on devices like Apple, Linux, etc."

"There is definitely scope for improvement in the automation area. Because the solution is a SaaS platform, we don't have the overall ability to automate stuff.... There is no direct way to go ahead because it's a SaaS platform."

"The price could be better. It'll also help if they can continuously update and upgrade the solution. Every day there's a new virus uploaded into the network, and we have to keep updating it to identify all these things."

"There is no common area where we can manage all the policies for the EDR, third-party solutions, devices, servers, Windows, Mac, etc., but it's on the road map, and we ware waiting for that feature."

"Some of our older hardware experienced a slight bump in CPU and memory usage. Although I don't have empirical data to back that up, I would suggest possibly more streamlining in the software."

"The abundance of sub-dashboards and sub-areas within the main dashboard can be confusing, even if it all technically makes sense."

"The dashboard should be easier to use. There is also improvement needed in the reporting when it comes to exporting or scheduling reports."

"The user interface of Microsoft 365 Defender could improve. They could make it simpler."

More Microsoft Defender XDR cons

"The user interface could be improved by making it more user-friendly. There are multiple solutions and there is no clear line differentiating all of them. There is a centralized console where we manage everything but most of the administrators feel a little confused when it comes to managing multiple products from a single place."

"The initial setup isn't so easy. You need to know what you are doing."

"Signatures to protect against new attacks."

"We would like to see all the features available on cloud."

"We know that McAfee isn't the best antivirus and it can't protect us 100%, although we are okay with the level of protection that it gives us."

"The DAC (Dynamic Application Containment) component of this product needs improvement."

"They can improve its resource consumption, such as memory, and maybe provide better or smaller updates. It always takes a lot of resources, but it has been getting better. I have been using McAfee products for the last 20 years or so, and I know it is getting better."

"The solution could provide open XDR in addition to EDR."

More Trellix Endpoint Security cons

Pricing and Cost Advice

"Microsoft purposely makes its license combinations complex and includes combinations like Microsoft 365 E3 and Microsoft 365 E5, Office 365 E3, Office 365 E5, and Office 365 E1, so you get confused. Microsoft tries to sell you a bundle of a lot of things together."

"All I can say again is the E5 gives you all the capabilities that it offers. It also gives Office 365 and one terabyte of storage. All in all, the E5 license model makes sense. There are some people who say it's quite costly, but rather than paying different vendors, it makes sense to go all in with Microsoft if you've got that licensing. From that perspective, it's cost-effective, but I can't comment much on that."

"The license cost for a year is approximately forty-four thousand, and this annual saving is a significant factor in our decision to switch."

"They have moved from a licensing model to pay-per-use... The question is: What happens if, for any reason, there's not enough budget to accept this model? That could be a great problem."

"We've managed to navigate it effectively through our enterprise agreement, and Microsoft's academic discounts have proven to be quite generous."

"The licensing fee for Microsoft 365 Defender is fair."

"The solutions price is fair for what they offer."

"Microsoft Defender XDR is included in our license."

More Microsoft Defender XDR pricing and cost advice

"It is not that expensive. There is no additional cost. We got the entire bundle together."

"We pay 650 Rand for a license. It is a perpetual license which we normally run for two years."

"Its price is very high. It is higher than its competitors, and it should be less."

"It provides good value by striking a balance between cost-effectiveness and feature richness."

"The price of the solution is fair, we have a complete security package."

"The solution is not an expensive tool. Compared to other options, it's mostly average-priced. I've deployed it for customers ranging from 100 nodes to over 5,000 nodes. Its renewal prices are very low, and it offers both perpetual and subscription licenses. With a perpetual license, the product will keep working as long as it's not end-of-life, which benefits companies."

"The license costs are very reasonable, around 1,000 to 1,200 rupees per year."

"Trellix Endpoint Security is an inexpensive platform."

More Trellix Endpoint Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

824,067 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

11%

Government

Manufacturing Company

Educational Organization

41%

Government

Computer Software Company

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Microsoft 365 Defender?

Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.

See all answers

What is your experience regarding pricing and costs for Microsoft 365 Defender?

The pricing is a little high, however, it is on par with other competitive tools in the market.

See all answers

What needs improvement with Microsoft 365 Defender?

Microsoft could improve on threat hunting and build more on threat detection and handling. The cybersecurity and cloud security posture features are a bit lesser than standard security products.

See all answers

How does McAfee Endpoint Security compare with MVISION?

The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...

See all answers

What do you like most about McAfee Endpoint Security?

It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.

See all answers

What is your experience regarding pricing and costs for McAfee Endpoint Security?

The license costs are very reasonable, around 1,000 to 1,200 rupees per year.

See all answers

Comparisons

CrowdStrike Falcon vs Microsoft Defender XDR

Compared 35% of the time

Wazuh vs Microsoft Defender XDR

Compared 8% of the time

Microsoft Defender for Cloud vs Microsoft Defender XDR

Compared 8% of the time

Trend Vision One vs Microsoft Defender XDR

Compared 4% of the time

Microsoft Purview Compliance Manager vs Microsoft Defender XDR

Compared 4% of the time

More Microsoft Defender XDR Competitors

Microsoft Defender for Endpoint vs Trellix Endpoint Security

Compared 21% of the time

Trellix Endpoint Security (ENS) vs Trellix Endpoint Security

Compared 11% of the time

Trend Micro Deep Security vs Trellix Endpoint Security

Compared 7% of the time

Kaspersky Endpoint Security for Business vs Trellix Endpoint Security

Compared 6% of the time

CrowdStrike Falcon vs Trellix Endpoint Security

Compared 6% of the time

More Trellix Endpoint Security Competitors

Product Reports

Buyer's Guide

Microsoft Defender XDR

December 2024

Download Microsoft Defender XDR product report

Buyer's Guide

Trellix Endpoint Security

November 2024

Download Trellix Endpoint Security product report

Also Known As

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender

McAfee Endpoint Security, McAfee Complete Endpoint Protection, McAfee Endpoint Protection, Total Protection for Endpoint, Intel Security Total Protection for Endpoint, MCAFEE Complete Endpoint Protection

Learn More

Microsoft

Trellix

Overview

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.

It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.

Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.

Watch the Microsoft demo video here: Microsoft Defender XDR demo video.

Trellix Endpoint Security provides aggressive robust protection for every endpoint in an enterprise organization. Trellix uses dynamic threat intelligence and mounts a superb defense across the complete threat lifecycle. This solution will keep your organization more secure and resistant to any possible threat of risks. Trellix offers an amalgamated suite of next-generation endpoint security tools. These tools give users the benefit of machine learning, intuitive intelligence, and greater assistance to ensure their networks are being protected non-stop against threats - potential or realized - and can stop attacks before they happen. Trellix uses MDR (managed detection and response) and XDR (extended detection and response) to give users a comprehensive endpoint security solution.

Trellix Endpoint Security Benefits

Intuitive Protection: Trellix Endpoint Security learns and matures to ensure organizations are continuously protected in today’s aggressive threat environment. Users have full visibility and greater control of all endpoints and are able to utilize Trellix Endpoint Security’s potent threat detection, prevention, investigation, and response to keep their enterprises safe and secure.
Streamlined Security Protection: Users have a single view of full transparency into how their networks are performing and the overall effectiveness of the security. Users can access the solution from anywhere and manage automated workflows. The solution allows for a streamlined security process to improve the overall reliability of the organization's security and can effortlessly scan through hundreds of thousands of endpoints in minutes.
Robust Risk Management: Stop attacks before they occur and keep abreast of potential threats with intuitive threat prioritization. Receive easy to understand risk assessment and repair guidance without delay to prevent any possible lapses in security. Test scenarios will allow users to see how the organization would respond to a threat scheme.

Trellix Endpoint Security Top Features

Consolidated Management: Trellix offers numerous deployment options. The unique consolidated management process provides full transparency, cost-effective processes, improved IT functionality, and streamlined operations.
Intuitive Processes: Trellix can identify zero-day threats using machine learning and develop workable risk assessment to prevent attacks. Trellix intuitively creates protocols to recognize problematic processes that could lead to future attacks.
Reduced Impact on Resources: Trellix learns to focus on suspicious or anomalous activities by quickly identifying trusted activities to greatly reduce CPU consumption.

Reviews from Real Users

“It has a great console. We can manage everything from the central console and it is very easy. Every year we are getting the benefits of legacy also. It's easy to set up.” - S Fazlul H., IT Lead Engineer, Information Technology at Banglalink

“There is a new feature where you can set thresholds for all the CPU consumption allowing for no consumption on the servers when the scans happen. It is a separate plugin or addon, and if we have it on all the virtual machines it automatically checks the resources, and based on that, it will schedule the scans. That is something that I have not seen in other antivirus solutions, such as Symantec.” - Sabari K. Senior Engineer at a comms service provider

Sample Customers

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.

inHouseIT, Seagate Technology

Buyer's Guide

Microsoft Defender XDR vs. Trellix Endpoint Security

December 2024

Free Report: Microsoft Defender XDR vs. Trellix Endpoint Security

Find out what your peers are saying about Microsoft Defender XDR vs. Trellix Endpoint Security and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,067 professionals have used our research since 2012.

See our Microsoft Defender XDR vs. Trellix Endpoint Security report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.