NetWitness Platform vs Trellix Network Detection and Response comparison

"The product has a user-friendly interface and a valuable feature for threat intelligence integration."

"NetWitness Platform offers flexibility for deployment and robust integration capabilities."

"The most valuable features are the integration and ease of use."

"The software is scalable to whatever is required, and you can also put a lot of resources in the cloud."

"The most valuable feature is the correlation. It can report in real-time and monitor the management."

"NetWitness Platform is valuable for creating rules that the solution must detect."

"It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible."

"The most valuable feature is the security that it provides."

"We see ROI in the sense that we don't have to react because it stops anything from hurting the network. We can stop it before we have a bigger mess to clean up."

"Trellix Network Detection and Response is a great tool that integrates with a lot of security tools such as Palo Alto, which is a good firewall, and if you have these types of tools, your organization would benefit greatly."

"The MVX Engine seems to be very capable against threats and the way it handles APTs is impressive."

"Improved our systems and our customers' by providing better malware protection, defense against zero-day threats, and improved network security."

"It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature. When there is a threat or any malicious activity with a signature, it can be blocked by IPS. However, attacks that do not have any signatures and are very new can only be blocked by using the sandboxing feature, which is available only in FireEye. So, FireEye has both engines. It has an IPS engine and a sandbox engine, which is the best part. You can get complete network protection by using FireEye."

"The sandbox feature of FireEye Network Security is very good. The operating system itself has many features and it supports our design."

"If we are receiving spam emails, or other types of malicious email coming from a particular email ID, then we are able to block them using this solution."

"The features that I find most valuable are the MIR (Mandiant Incident Response) for checks on our inbound security."

"Its technical support could be better."

"The implementation needs assistance."

"It is not so easy to customize this product."

"An area for improvement would be better automation and more inbuilt use cases."

"Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10."

"The log system is a bit complex and has room for improvement."

"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."

"Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."

"As far as future inclusions, it would be useful to display more threat intelligence, such as the actual area of the threat and the origin of the web crawling (Tor and Dark Web)."

"Improvements could be achieved through greater integration capabilities with different firewall solutions. Integrating with the dashboard itself for different firewalls so users can also pull tags into their firewall dashboard."

"Technical support could be improved."

"Based on what we deployed, they should emphasize the application filtering and the web center. We need to look deeper into the SSM inspection. If we get the full solution with that module, we don't need to get the SSM database from another supplier."

"There is a lot of room for Improvement in the offering, from cost to functionality. It is pretty straightforward to implement which is an advantage. However, it falls short in pricing, detection capabilities, and, most importantly, reporting and policy management."

"It is very expensive, the price could be better."

"A better depth of view, being able to see deeper into the management process, is what I'd like to see."

"The world is currently shifting to AI, but FIreEye is not following suit."

"Compared to the competition, the is price is not that high."

"It provides tools to assist in selecting the appropriate license and usage scenarios."

"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."

"It’s cheaper to run virtual machines in a VMware environment."

"The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."

"The licenses are good but the cost is very expensive."

"The product is expensive."

"Our license is for one year."

"We're partners with Cisco so we get a reasonable price. It's cheaper than Palo Alto in terms of licensing."

"The pricing is a little high."

"Its price is a bit high. A small customer cannot buy it. Its licensing is on a yearly basis."

"There are some additional services that I understand the vendor provides, but our approach was to package all of the features that we were looking to use into the product."

"It's an expensive solution."

"The pricing is fair, a little expensive, but fair. We've evaluated other products, and they're similarly priced."

"Because of what the FireEye product does, it has significantly decreased our mean time in being able to identify and detect malicious threats. The company that I work with is a very mature organization, and we have seen the meantime to analysis decrease by at least tenfold."

"When I compare this solution to its competitors in the market, I find that it is a little expensive."