Try our new research platform with insights from 80,000+ expert users

ServiceNow Security Operations vs Trellix Helix comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

ServiceNow Security Operations
Ranking in Security Incident Response
2nd
Average Rating
8.0
Number of Reviews
19
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (7th), Risk-Based Vulnerability Management (8th)
Trellix Helix
Ranking in Security Incident Response
7th
Average Rating
8.8
Number of Reviews
10
Ranking in other categories
Security Information and Event Management (SIEM) (32nd)
 

Mindshare comparison

As of November 2024, in the Security Incident Response category, the mindshare of ServiceNow Security Operations is 20.3%, up from 9.6% compared to the previous year. The mindshare of Trellix Helix is 5.0%, up from 2.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Incident Response
 

Featured Reviews

KishoreKumar4 - PeerSpot reviewer
Jul 22, 2024
A low-cost and open-source tool for incident and change management
If we encounter challenges while deploying, we raise incidents. These incidents are categorized by priority: high, medium, and low. We assign an incident number and notify the relevant teams to address the issue. For instance, if we experience a problem with Cloud services or any other issue, we…
Abanoub Alfy - PeerSpot reviewer
May 15, 2023
Helps prevent email attacks, like phishing and email spoofing attacks
We use Trellix Helix for protection against network attacks, TLS, and SSL attacks. We also use the solution for user behaviour accesses Trellix Helix helps prevent email attacks, like phishing and email spoofing attacks. Trellix Helix's configuration and learning could be improved to identify…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The "follow" feature is really good. If the user is not responding, there's an option to "follow". Just click on the button, and it will automatically trigger an email to the end user."
"It's stable."
"​Integration to other security tools allows for a consolidated view of all vulnerabilities, incidents, etc. for all sorts of leverage in a single platform to assess governance risk and compliance as well as an enhanced, enriched intelligence.​"
"The ease of use is great."
"The product has a very simple UI."
"What I found most valuable in ServiceNow Security Operations is that it's very useful for any incoming vulnerability. For example, if my team finds any vulnerability on servers such as the CA and CMDB integrated with ServiceNow Security Operations, my team can make some changes. My team can map the vulnerabilities found on the CA server, make the changes required, and resolve the vulnerabilities before the system is attacked. You can avoid vulnerability attacks through ServiceNow Security Operations, so this is the best feature of the solution. ServiceNow Security Operations is beneficial mainly for vulnerability response and engagement purposes."
"The solution is stable."
"It gives you the ability to bring data into the system. The workflows are out of the box, and it gives you the ability to auto-assign the incidents based on criteria and vulnerabilities."
"The integration is very useful and very easy. You can have an API connection with any cloud and I'll be able to do both ways of communication with the help of APA."
"The most valuable features include predefined use cases and threatening states."
"We are able to block some advanced malware and other things."
"As far as its core functionality goes, it’s spot-on."
"Trellix Helix helps prevent email attacks, like phishing and email spoofing attacks."
"The product offers very strong automation. Our cyber security analysts don't have to correlate the information to detect problems. They only need to analyze problems that have been identified by the platform."
"We have started working with various customers, one of whom is particularly concerned about adjacency. We have identified several use cases where automation is possible."
"FireEye Helix's best features are its speed and use of an easy-to-understand language to send queries to the raw logs."
 

Cons

"​Process framework and best practices for ease of integration between IT and security teams via incident, problem, and change.​"
"It doesn't interact with things very well."
"The threat intelligence module needs a better dashboard."
"It is challenging for the customers to understand the processes for SecOps. It needs to be simplified."
"In future releases, I would like to add a follow-up and reminder feature. For the tickets in our queue, we could set reminders. This would help us prioritize older tickets before moving on to new ones."
"There are limitations for the third-parties that are providing the inputs. They should increase the robustness of the solution."
"One area for improvement for the product is the need to tailor and alter some codes for customization, which can cause issues during upgrades. It does not support customized operations."
"They should stick to the roadmap and continue to build plugins and integrations with other third parties, enhance the UI, and enhance the reporting. It's all good. They should just continue enhancing the releases."
"It should have more cloud connectors. It could also be cheaper."
"There is room for improvement in the integration capabilities of third-party tools."
"We often rely on Martins to create logs and provide professional threat services rather than basic support."
"We have certain challenges with integrating the SOAR platform with multiple vendors."
"Trellix Helix's configuration and learning could be improved to identify normal traffic from abnormal and to identify trusted domains."
"Trellix needs to address the price for the product to be more appealing to customers."
"The graphical user interface could be improved. It's not easy to handle and it's not easy for a customer or end-user to learn how to manage the solution."
"Sometimes the rules are disabled by FireEye, and we basically get it after the patch. I think there needs to be a better way of creating the application rules. I would like to see better pricing for our licensing."
 

Pricing and Cost Advice

"It is an expensive product."
"This product is a good value for the money."
"Compared to competitor tools, ServiceNow Security Operations is more affordable"
"The product is more expensive than other solutions."
"The solution is more expensive than BMC Remedy, the other ITSM tool available in the market."
"If you're going to implement it on your own, there would be internal costs. If you're going to implement it through a contractor or consultant, you have to pay for that."
"I rate Trellix Helix a five out of ten for pricing."
"The price could be better. But I think it's rightly placed when we buy everything in one shot, and we get some discount for that. That's how we basically plan our deployment, and it's holistic. We pay for the license yearly."
"It could be cheaper, but that applies to every product."
"FireEye Helix is a little expensive."
report
Use our free recommendation engine to learn which Security Incident Response solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
20%
Government
10%
Computer Software Company
10%
Manufacturing Company
10%
Computer Software Company
16%
Comms Service Provider
13%
Manufacturing Company
11%
Financial Services Firm
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about ServiceNow Security Operations?
The most valuable aspect of working with ServiceNow is its meaningful and feature-rich product.
What is your experience regarding pricing and costs for ServiceNow Security Operations?
The product is more expensive than other solutions like Archer but offers more features, making the pricing justifiable.
What needs improvement with ServiceNow Security Operations?
I cannot comment on areas for improvement because it is not within my core expertise. Also, the developers may have more insight into this aspect.
What do you like most about FireEye Helix?
Trellix Helix helps prevent email attacks, like phishing and email spoofing attacks.
What needs improvement with FireEye Helix?
There is room for improvement in the integration capabilities of third-party tools. It has no problem connecting all solutions to Helix. Right now, we only connect one of Trellix's appliances to th...
 

Also Known As

No data available
FireEye Helix, FireEye Threat Analytics
 

Learn More

Video not available
Video not available
 

Overview

 

Sample Customers

DXC Technology, Freedom Security Alliance, Prime Therapeutics, Seton Hall University, York Risk Services
Police Bank, Verisk Analytics, Teck Resources
Find out what your peers are saying about ServiceNow Security Operations vs. Trellix Helix and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.