The product works in the background. It does not slow down the computer, which is good. If we put the USB, it automatically asks us whether the device must be scanned. We can scan it or postpone it. If anything goes wrong, the tool informs us that a file or website was blocked. It might be because the IP is on a blacklist. The product is simple. We do not have to do anything. The product is easy to use.
Sales representative at LizardFS
A simple and easy-to-use product that works in the background and does not slow down the computer
Pros and Cons
- "The product is easy to use."
- "The tool could provide more advanced protection."
What is most valuable?
What needs improvement?
The tool could provide more advanced protection. It should do a deeper analysis of the files.
For how long have I used the solution?
I have been using the solution for eight years. I am using the latest version of the solution.
What do I think about the scalability of the solution?
The tool is scalable. We can choose when and how to scan. We can even choose to exclude certain folders. Ten people in our organization use the solution extensively.
Buyer's Guide
Trellix Endpoint Security
March 2025

Learn what your peers think about Trellix Endpoint Security. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
848,716 professionals have used our research since 2012.
Which solution did I use previously and why did I switch?
I have used NOD32 and Kaspersky. I started using Trellix Endpoint Security because my company decided to use it.
How was the initial setup?
The initial setup was straightforward. It took us 10 to 15 minutes to deploy the solution because we had to go a bit deeper into the settings.
What about the implementation team?
The product can be deployed in-house. The deployment process is quite easy and fast.
What was our ROI?
The solution is worth the money.
What's my experience with pricing, setup cost, and licensing?
We have a yearly subscription. We have bought the solution for ten stations. The pricing is more or less the same as the other tools in the market.
What other advice do I have?
Some tools use a lot of memory, so it's really difficult to use them, especially when we are scanning something. We mostly work on documents on the cloud. We do not get many files on the computer. We do get some spam. I would recommend the solution to others. So far, we've never had any problems. Nothing gets through. Overall, I rate the tool an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.

Client Engineer at KSB
An endpoint security solution with a valuable threat prevention feature
Pros and Cons
- "I like trap prevention DNS and threat prevention."
- "I would like to have the ability to have more control over the deployment in the next release. If you have this console in the cloud, you cannot make pilot groups for deploying the agents. We only have the current group. So, as soon as you inject the software, it will go directly into production, which doesn't work for us. We need to build up pilot groups slowly. We already requested to have this feature on the cloud, and we are still waiting."
What is our primary use case?
We use Trellix Endpoint Security for pattern-based scanning. We use it on all our handsets. We also use it for behavior-based adaptive threat prevention; it's a solution that will recognize malicious behavior.
What is most valuable?
I like trap prevention DNS and threat prevention.
What needs improvement?
I would like to have the ability to have more control over the deployment in the next release. If you have this console in the cloud, you cannot make pilot groups for deploying the agents. We only have the current group. So, as soon as you inject the software, it will go directly into production, which doesn't work for us. We need to build up pilot groups slowly. We already requested to have this feature on the cloud, and we are still waiting.
For how long have I used the solution?
I have been working with Trellix Endpoint Security for about 15 years.
What do I think about the stability of the solution?
Trellix Endpoint Security is mostly stable. I haven't had any false positives in the last few years.
On a scale from one to ten, I would give stability a nine.
What do I think about the scalability of the solution?
Trellix Endpoint Security is very scalable. Our company has three users, but we have more than 3000 devices.
How are customer service and support?
Technical support is good, and that's an important thing to have. They are very helpful and care about our needs. The best thing is that they speak German, and we can talk to them naturally in our language.
How was the initial setup?
The initial setup is quite straightforward.
What other advice do I have?
Trellix Endpoint Security is best suited for large companies. I would tell potential users to find an excellent partner to configure and build a basic policy setup. A third-level contact is also essential if it's not part of your daily responsibility.
On a scale from to ten, I would give Trellix Endpoint Security a nine.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Trellix Endpoint Security
March 2025

Learn what your peers think about Trellix Endpoint Security. Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
848,716 professionals have used our research since 2012.
CTO at ABM Info. tech
Pretty straightforward and good integration but does not offer good technical support
Pros and Cons
- "The installation is pretty straightforward."
- "Every time we open a ticket with McAfee, their response differs and they are not consistent."
What is our primary use case?
The solution is specifically used at the endpoints. We do a lot of integrations with various clients.
What is most valuable?
A single agent can cover multiple units.
The installation is pretty straightforward.
The solution can integrate into other products.
What needs improvement?
The solution is not really stable.
Every time we open a ticket with McAfee, their response differs and they are not consistent. For example, they might say the issue will be addressed in the next release. Then, the release comes, and it is not available. Basically, we don't get a resolution from support.
This version is not very effective in our region.
The functionality of the product needs to improve the way it addresses zero-day threat levels.
For how long have I used the solution?
We've been using the solution since 2003.
What do I think about the stability of the solution?
The stability isn't so great. We've had issues with it in general and have reached out to technical support for help.
What do I think about the scalability of the solution?
We have three to five people that use the product right now. In Pakistan, we have three offices in all three major cities and set up the solution for clients. We also use it in the offices.
How are customer service and support?
Technical support is ineffective. Instead of dealing with the issue head-on, they tell us that the problem at hand will be fixed in the next release. They do not help at all.
However, our organization also offers technical support to our clients and we have a good experience - almost 20 years with McAfee and other solutions. We're good at troubleshooting.
Which solution did I use previously and why did I switch?
We started using Symantec, then we adopted different technologies including McAfee and SSP, which includes Microsoft Defender. We keep changing based on the price structure in the market.
How was the initial setup?
The initial setup is not overly complex or difficult. It's pretty simple and rather straightforward.
That said, I didn't handle the installation myself. We had a team that did it.
We did the installation with the main product that integrated with McAfee Endpoint Security. Between the two, the installation took a whole day, however, just the McAfee section takes about two or so hours.
What's my experience with pricing, setup cost, and licensing?
You do need to pay for a license. It's not a good idea to try and get a pirated copy.
Which other solutions did I evaluate?
We've looked into and worked with McAfee, Trend Micro, Kaspersky, and Symantec.
What other advice do I have?
We, at one time, were the official service partner for Symantec. We still provide support to the Pakistan market on behalf of Symantec.
While the solutions we use are on-premises, the latest upgraded services that we use are moving into the cloud, and the endpoints are on-premises. Now it's sort of a hybrid solution.
I'd rate the solution at a six out of ten.
I'd choose McAfee as maybe the third-best option, based on the experience I've had with it and the issues we've faced.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
IT Infrastructure Manager at a financial services firm with 51-200 employees
Protect your business against a wide variety of threats
Pros and Cons
- "It's quite easy to install agents."
- "With McAfee, if there is a zero-day vulnerability, you have to download the patch for it from the McAfee website, then apply it to your endpoint."
What is our primary use case?
We currently have around 50 servers. We aren't really a big company but we have 50 servers which we manage. We use McAfee for the web filtering portion of it. For example, if a user is doing a search on Google, there's a risk-rating web content filter built into McAfee. This alerts us if there are any threats present.
We have licensed McAfee ENS on a per-server basis. As of now, from memory, I think we have 56 endpoints running McAfee — 56 servers in total.
What is most valuable?
From the McAfee side, I really like the ePolicy Orchestrator software that allows us to manage all of our endpoints. You can create the deployment policies and whenever there is a new update — a new version of the ENS Agent, or threat protection — we could test it out in the evaluation branch, and even test it on some of our servers.
It's quite easy to manage. Quite intuitive. I would say the dashboard of ePolicy Orchestrator software is quite intuitive and quite easy to understand and manage.
For how long have I used the solution?
I have been using this solution for 15 to 20 years.
What do I think about the stability of the solution?
We have had some issues from the performance side of things, especially when we were deploying new types of software. Sometimes the consumption of resources from McAfee was a bit high. Afterward, these problems were resolved gradually in future versions of McAfee. From what I've read from the release notes, in regard to the handling of memory, McAfee has been doing a better job, which wasn't really the case in the early years.
What do I think about the scalability of the solution?
It's easily scalable. If I need to deploy the Agent over 800 endpoints, I just have to script it and run a group policy to deploy it to all of our computers on the network — it's quite easy.
How are customer service and technical support?
For day-to-day management and ongoing queries, if ever I didn't have the solution to queries, I would just raise the case to the case management section of the McAfee website. Then the McAfee support team would help me out.
I was definitely satisfied with the support team. I really can't complain. They always sent me the correct knowledge-based article and they provided really insightful information to help me find a resolution to the issue.
Which solution did I use previously and why did I switch?
At the previous company that I worked for, we used Symantec Endpoint Protection. Now, we are working with CylancePROTECT and OPTICS.
The main reason that we moved from McAfee to Cylance is that McAfee is still a signature-based product. We moved to Cylance, a signatureless-based product, where everything is updated. What I was doing, from an ENS product point stance, I had set reminders to myself and my team to update the Agent and look into the software repository to see if there were any updates every month.
Indeed, every month we had software updates and fixing restrictions. It wasn't good but I now have less of a hard time looking into this from a Cylance perspective as the Cylance library doesn't push one-minute software updates per year. I would say at most, two or three software updates a year, which is very, very small from a software update perspective in comparison to McAfee.
They're both good products. I'm not saying McAfee is a bad product. It's a very, very good product. It's mainly for these reasons that we moved to Cylance.
The ePolicy Orchestrator console is good, but from my side, I would say Cylance has a better artificial intelligence module — the OPTICS module which I would say is the way to go. I haven't really seen the trend in terms of what other companies other than McAfee or Symantec are doing, but Cylance is doing a really good job with this artificial intelligence module. It's great when it comes to notifying the team when it detects something malicious.
With McAfee, if there is a zero-day vulnerability, you have to download the patch for it from the McAfee website, then apply it to your endpoint. With Cylance, it's not like that. Each agent does it by itself — it's like a self-healing application. This is something that signature-based antivirus solutions like McAfee and Symantec didn't have until now, unfortunately. That's why we moved towards Cylance.
How was the initial setup?
It's quite easy to install agents. Deployment and product updates are quite easy, as well. It goes without saying that it comes with some, I would say, low-level training and upscaling but these are easily retrievable from the knowledge base of McAfee.
We manually downloaded their AMCore versions to keep all our endpoints up to date. This way, whenever we troubleshoot the root cause of an issue, we still keep our endpoints as updated as possible and keep our environment safe.
When we installed the Agent — let's say I am building a new VM and new server. When you run the frame package, it's really intense. I would say it takes roughly two minutes to install, then afterward, to install the ENS modules, like the threat protection and web filtering packages, you've got to go through the ePolicy Orchestrator management console. I would say, all in all, it takes roughly 10 minutes.
To get it up to date, to download everything, all the packages, the software updates, and all of the AMCore DAT files as well as the virus definitions, it's quite easy. It doesn't take much time at all.
What about the implementation team?
For deployment, I worked with one external consultant.
Initially, when I came to the company, I didn't really have a background or any experience managing McAfee. I came from more of a Symantec background but I gained some knowledge from one of our external consultants who really had a deep understanding of McAfee products and their deployment. We had some training sessions and then I could manage the McAfee forum on my own. After a week's worth of training, I could manage McAfee on my own.
What's my experience with pricing, setup cost, and licensing?
We had McAfee on a year renewal. We purchased it initially and then we renewed it on a yearly basis. I think the only reason we are renewing the license is for support reasons.
What other advice do I have?
I would definitely recommend this solution to others. McAfee is a good product. I worked with Symantec, but personally, I think McAfee is better.
However, in my opinion, now having worked with CylancePROTECT and OPTICS, I think CylancePROTECT and OPTICS are on another level. Still, we have been working with McAfee for nearly 10 years and I feel it's a very good product.
Overall, on a scale from one to ten, I would give McAfee a rating of eight.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Business Development Manager at A Cyber 1 Company
Efficient safeguarding of endpoints that provides robust protection, user-friendly features and significant cost savings
Pros and Cons
- "It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts."
- "I've encountered minor challenges related to encryption."
What is our primary use case?
It serves as a comprehensive endpoint security solution that goes beyond traditional antivirus by incorporating features such as document scanning for sensitive information, approval workflows for document sharing, patch management, and advanced threat detection using AI and machine learning. It actively monitors various endpoints, including web interactions and email communications, to detect and prevent a wide range of attacks, even those that are not signature-based.
What is most valuable?
One of the standout features of this solution is its encryption capabilities and DLP functionality. It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts. The encryption feature provides peace of mind in the event of a lost or stolen device, safeguarding sensitive conversations and data from unauthorized access. This level of protection significantly reduces the risk of extortion attempts or data breaches, making it a valuable asset for any organization. So far, I haven't experienced any security breaches or attacks.
What needs improvement?
I've encountered minor challenges related to encryption.
For how long have I used the solution?
I have been using it for a year.
What do I think about the scalability of the solution?
We have a user base of over one hundred individuals who use the software.
Which solution did I use previously and why did I switch?
The decision to implement endpoint security software like Trellix is made at a company-wide level, involving discussions and agreements between various entities, including our parent company and potentially other subsidiaries like the one in Sweden. This decision isn't made independently by individual branches like Kenya; rather, it's coordinated and negotiated at a higher level.
How was the initial setup?
I operate within a managed environment where the IT team handles the installation and setup of endpoint security software. Once installed, they provide me with the necessary details, such as login credentials and instructions for changing passwords. My role primarily involves using the machines provided to me, without needing to delve into the setup process.
What was our ROI?
Compared to the solutions, it helped us to save at least ten to twenty percent, if not more.
What's my experience with pricing, setup cost, and licensing?
I would emphasize its affordability rather than merely focusing on cheapness. It provides good value by striking a balance between cost-effectiveness and feature richness.
What other advice do I have?
I would recommend conducting a proof of concept to explore the features firsthand. It's essential to understand what you currently have in place, as that will help determine whether the solution is the right fit for your needs. After that, ensure that the POC is conducted efficiently so that you can make an informed decision about whether to proceed with the solution or consider other options. Overall, , I would rate it an eight out of ten. It's a good solution that meets my needs satisfactorily.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Customer/Partner
Presales and product manager at Mi Mi Informatics Joint Stock Company
Has robust integration with ePO, enabling centralized management capabilities
Pros and Cons
- "It also allows multifunctionality within a single platform."
- "The platform needs improvement in terms of handling heavy databases."
What is our primary use case?
We use the product for EDR purposes.
What is most valuable?
The product has robust integration with ePO (ePolicy Orchestrator), offering centralized management capabilities. It also allows multifunctionality within a single platform. They offer endpoint and NLP protection as well.
What needs improvement?
The platform needs improvement in terms of handling heavy databases. We encounter database unavailability for a prolonged period. Its integration capabilities with security platforms like FireEye could be enhanced.
For how long have I used the solution?
We have been using Trellix Endpoint Security for over a decade.
What do I think about the stability of the solution?
It is a stable product.
What do I think about the scalability of the solution?
We manage around 20,000 endpoints for our enterprise customers. It is a scalable product.
How are customer service and support?
The technical support works fast and is knowledgeable and customer-friendly.
How was the initial setup?
We have to follow a step-by-step process to implement Trellix Endpoint Security. It can be deployed in the cloud and on-premises.
What about the implementation team?
I recommend product deployment assistance from a consultant, distributor, or reseller.
What's my experience with pricing, setup cost, and licensing?
Trellix Endpoint Security is an inexpensive platform.
What other advice do I have?
I recommend Trellix Endpoint Security to people looking for endpoint protection. I rate it a nine out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
General Manager at a tech services company with 11-50 employees
The central management console is powerful.
Pros and Cons
- "The central management console is powerful. You can manage endpoints, DLP, encryption, and all the other features from a single console."
- "Trellix lacked email protection when it was a McAfee product. They added this feature during the merger with FireEye, but it hasn't been fully integrated. The core features will be integrated into the next release. FireEye has several solutions for EDR and sandboxing."
What is our primary use case?
We use Trellix to secure our customers' endpoint devices and the cloud. It was a McAfee solution before the Trellix acquisition. Trellix has a full portfolio for local and cloud protection. McAfee MVISION products are managed on the cloud, but some customers need an on-premise local management console.
What is most valuable?
The central management console is powerful. You can manage endpoints, DLP, encryption, and all the other features from a single console.
What needs improvement?
Trellix lacked email protection when it was a McAfee product. They added this feature during the merger with FireEye, but it hasn't been fully integrated. The core features will be integrated into the next release. FireEye has several solutions for EDR and sandboxing.
For how long have I used the solution?
I have used Endpoint Security for more than 10 years.
What do I think about the stability of the solution?
I rate Trellix nine out of 10 for stability.
What do I think about the scalability of the solution?
I rate Trellix 10 out of 10 for scalability.
How are customer service and support?
I rate Trellix support nine out of 10.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I have always used McAfee, but I know a little about Symantec. I used it more than a year ago.
How was the initial setup?
I rate Trellix seven out of 10 for ease of setup. It is a complex tool, but you can use many of the new features while you're installing it. The deployment time varies depending on the number of endpoint accounts and how the client is distributed. It typically takes less than a day for a large enterprise. If nothing goes wrong, you can finish in a few hours. One person is enough to deploy and maintain it.
What's my experience with pricing, setup cost, and licensing?
I rate Trellix five out of 10 for affordability. It isn't cheap, but not expensive.
What other advice do I have?
I rate Trellix Endpoint Security nine out of 10.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer:
CEO at Haniya Technologies
A strong solution that would benefit from additional DLP features
Pros and Cons
- "Would benefit with the addition of DLP features."
- "There is room to improve with scalability."
What is our primary use case?
McAfee is a security-based company. All of their products are related to the security of networking. We have approximately 15 to 20 customers working with McAfee Endpoint Security.
What is most valuable?
McAfee Endpoint Security does not hang the machines. They are also not very heavy on the end-users.
What needs improvement?
Along with improving scalability, I would like DLP features to be added in to the endpoint security.
For how long have I used the solution?
I have been using McAfee Endpoint Security for almost 12 years.
What do I think about the stability of the solution?
The solution is quite stable.
What do I think about the scalability of the solution?
I would give McAfee a 7 out of 10 for scalability, there is room to improve.
How was the initial setup?
The initial installation is not complex. It does depend on how big your network is, but normally it's one day's work.
What's my experience with pricing, setup cost, and licensing?
I believe their prices are very good. Our customers pay an annual license fee.
Which other solutions did I evaluate?
All of the endpoint security solutions have more or less the same kind of features. There is nothing exceptional about one product versus the other. McAfee is not as strong as other solutions like Kaspersky, Trend Micro, or Carbon Black.
What other advice do I have?
I would not discourage anyone from using McAfee Endpoint Security as it is quite a strong solution. I would rate the solution a 7 out of 10.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner

Buyer's Guide
Download our free Trellix Endpoint Security Report and get advice and tips from experienced pros
sharing their opinions.
Updated: March 2025
Popular Comparisons
CrowdStrike Falcon
Microsoft Defender for Endpoint
SentinelOne Singularity Complete
Cortex XDR by Palo Alto Networks
Fortinet FortiClient
Cisco Secure Endpoint
Symantec Endpoint Security
HP Wolf Security
Trend Vision One Endpoint Security
Kaspersky Endpoint Security for Business
Intercept X Endpoint
ESET Endpoint Protection Platform
Check Point Harmony Endpoint
Buyer's Guide
Download our free Trellix Endpoint Security Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Symantec Endpoint vs. McAfee Complete Endpoint Protection: Technical Comparison Between Data Loss Protection Solutions
- How does McAfee Endpoint Security compare with MVISION?
- What is the biggest difference between EPP and EDR products?
- Can Cylance be used with Symantec or Kaspersky endpoint solutions without conflict?
- When evaluating Endpoint Security, what aspect do you think is the most important to look for?
- What's the best way to trial endpoint protection solutions?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- Which Endpoint Protection Solution offers Zero Trust (ZTN) as a feature?
- What to choose: an endpoint antivirus, an EDR solution or both?
- Which ransomware is the biggest threat in 2020?