It is used for correlating data.
SOC Services Manager at a healthcare company with 10,001+ employees
Simple, reliable, and easily deployable
Pros and Cons
- "It is kind of simple and very easily deployable. You can start working with it very fast."
- "It should have more cloud connectors. It could also be cheaper."
What is our primary use case?
What is most valuable?
It is kind of simple and very easily deployable. You can start working with it very fast.
What needs improvement?
It should have more cloud connectors. It could also be cheaper.
For how long have I used the solution?
I have been using this solution for almost three years.
Buyer's Guide
Trellix Helix
November 2024
Learn what your peers think about Trellix Helix. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
824,053 professionals have used our research since 2012.
What do I think about the stability of the solution?
It is reliable.
What do I think about the scalability of the solution?
It is scalable.
How are customer service and support?
Their support is okay. It is not bad.
How was the initial setup?
It is very easy to deploy. Most of its maintenance is automatic. We just get the notification that it is going to happen. So far, we haven't faced any issues.
What about the implementation team?
It was FireEye itself.
What's my experience with pricing, setup cost, and licensing?
It could be cheaper, but that applies to every product.
What other advice do I have?
I would recommend this solution to others. I would rate FireEye Helix an eight out of 10.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
CTO & CISO at a tech vendor with 51-200 employees
Easy to set up with strong automation and few false positives
Pros and Cons
- "The product offers very strong automation. Our cyber security analysts don't have to correlate the information to detect problems. They only need to analyze problems that have been identified by the platform."
- "The graphical user interface could be improved. It's not easy to handle and it's not easy for a customer or end-user to learn how to manage the solution."
What is our primary use case?
The solution is typically used for sub-services, managed detection, and response services as well as advanced sub-services. The solution was managed by the company where I worked and we offered the services to the customer.
What is most valuable?
The solution is very high-quality. It offers a very small number of false positives. We don't have to get distracted by checking up on false data and making sure nothing is wrong.
The product offers very strong automation. Our cyber security analysts don't have to correlate the information to detect problems. They only need to analyze problems that have been identified by the platform.
The initial setup is very easy.
What needs improvement?
The graphical user interface could be improved. It's not easy to handle and it's not easy for a customer or end-user to learn how to manage the solution.
For how long have I used the solution?
I first started working with the solution at my previous company, in 2017, and I continue to work with it. It's been over two or so years.
What do I think about the stability of the solution?
The solution is very stable. It's reliable. There aren't issues with bugs or glitches. It doesn't freeze.
What do I think about the scalability of the solution?
From a technical point of view, it's quite scalable. You only need to have agents on the endpoint or devices. It's really just a little less scalable from the economic point of view as there's a huge cost. The cost was a limiting factor for our organization. We had a limited budget and therefore acquired less of the solution than we technically need. There are parts that are not monitored, not because it can't physically scale but due to the fact that budget-wise, it's not possible.
How are customer service and technical support?
The technical support has been very good. We're quite satisfied with the level of support we get.
How was the initial setup?
The initial setup is not complex at all. It's a very straightforward implementation.
The deployment is also relatively quick. You can be online in about two or three days at the most. It does not require a lot of time.
What's my experience with pricing, setup cost, and licensing?
It's quite an expensive solution. FireEye is one of the top artificial intelligence solutions on the market. It's not made for, in my opinion, small businesses. It's more for leading enterprises.
There are no hidden costs. We don't have professional services because they are very, very expensive.
What other advice do I have?
We're just customers. We don't have a business relationship with the company.
With FireEye, everything is managed by cloud artificial intelligence.
The solution is built to target larger enterprises. Their market's different from many other markets as it's made for 99% of mid-sized enterprises of 1,000 or so people. In Italy, that's quite a large-sized company. We're most likely not their target market as our businesses tend to be a bit smaller.
If this solution would work for another company, I'd say it depends on the size of the company and the maturity level. For a small company that is not structured for security instruction and competencies, I wouldn't advise this solution. That said, it does offer a lot of features surrounding security and this is something that you can put on top of your security program if you have the right infrastructure in place.
I'd rate the solution nine out of ten. It does everything we need it to do. It's not really lacking in any regard.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Trellix Helix Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Popular Comparisons
Splunk Enterprise Security
Microsoft Sentinel
IBM Security QRadar
Elastic Security
LogRhythm SIEM
Rapid7 InsightIDR
Fortinet FortiSIEM
Exabeam
USM Anywhere
ArcSight Enterprise Security Manager (ESM)
Trellix ESM
Masergy
Buyer's Guide
Download our free Trellix Helix Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What Solution for SIEM is Best To Be NIST 800-171 Compliant?
- When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
- What are the main differences between Nessus and Arcsight?
- Which is the best SIEM solution for a government organization?
- What is the difference between IT event correlation and aggregation?
- What Is SIEM Used For?
- What Questions Should I Ask Before Buying SIEM?
- RSA-EMC vs. other SIEM products?
- What are the pros and cons of internal SOC vs SOC-as-a-Service?
- Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region