Trend Micro Deep Discovery Reviews

It's a good fit for organizations that follow strict data regulations and need to keep sensitive data on-premises. In Sri Lanka, for example, financial data cannot be used in the cloud. So, Deep Discovery is a good solution because it's an on-premises device. We can do the sandboxing on-site. This is a strong selling point.

We are distributors. A couple of our customers use this product. There are three customer references in Sri Lanka that use Deep Discovery.

There are some zero-day attacks that we cannot block with regular firewall rules. We need to execute the file to see whether it is truly an attack or not. Sandboxing helps to identify this by safely executing and analyzing suspicious files in an isolated environment.

Moreover, it has some features that stand out compared to other products. For example, we can get live snapshots and instant reports, and we can submit files manually for free.

It is effective at protecting against various threats.  

The custom sandboxing capability is well-received by customers, who appreciate its performance and flexibility.

With the custom sandboxing feature, customers can replicate their own environment within the sandbox, allowing for more accurate threat detection and analysis.

So, the sandbox itself is a major factor. Additionally, the reporting is very good, providing detailed analysis in a short amount of time. It takes just a millisecond to analyze the file. It doesn't take much time. 

Another thing is the integration capability with other Trend Micro products. We can integrate Deep Discovery with, for example, Trend Micro Vision One to gain insights and visibility into network threats and vulnerabilities.

The price range is a little high, which can deter customers from buying the product. 

Additionally, cloud sandboxing features are valuable now, and their inclusion would be a significant improvement. These are points of concern that should be addressed with Trend Micro regarding pricing.

I have experience with it for about three years now.

The product is stable. If you configure the product in the correct way, it runs smoothly without any issues. I can rate it a nine or ten for stability.

I can rate it a ten out of ten for scalability.

The first response time and accountability should be improved.

Neutral

We worked with Sophos, BluVector Cortex and Kaspersky.

There are no difficulties in the setup process. 

The device comes with a preloaded sandbox. We can upload custom sandbox images to the device if needed. The installation is straightforward, documentation is available, and our team is certified as a Deep Discovery Analyzer.

The deployment time depends on the environment. The deployment can take a couple of days or be completed within a day. It depends on the customer providing the necessary resources. 

From the beginning, we need redundant power, network configuration, port forwarding, and other requirements. So, it usually takes two to three days to complete the deployment.

Deployment resources: We can do it with two people. It is usually two to three people. My team and I, for example, have three people involved in the deployment.

Having a sandbox improves our security posture. Traditional security tools cannot detect all zero-day and sophisticated attacks.  

We can't check the monetary value directly, but it can prevent ransomware attacks, spam attacks, and phishing attacks. It helps to avoid enormous losses, which is crucial for any organization.

I would rate the pricing a three out of ten, where one would be very expensive, and ten would be very cheap.

Overall, I would rate it a nine out of ten.

We use the product for signature-based user behavior analysis. It helps us detect threats in virtual environments as well.

The platform provides all essential features for discovery and administration. There is no need for customization options as the features are designed with a user-centered approach. We can identify the root cause of the problem and share the results with the users.

The product's security features need enhancement.

We have been using Trend Micro Deep Discovery for ten months.

I rate the product's stability an eight out of ten.

I rate Trend Micro Deep Discovery's scalability an eight out of ten. We use it 24/7.

The technical support team replies on time in case of any issues.

Positive

The initial setup process is easy. It doesn't require a lot of experience for implementation. It needs five executes for deployment and maintenance.

I recommend Trend Micro Deep Discovery to others and rate it an eight out of ten. I advise others to implement it in a test environment if they use it for IPS and IDS purposes.

It's been useful in checking network traffic.

The performance and stability are great.

We've been using it to detect any malicious traffic. It confirms any malicious traffic that is detected from other products. It informs us whenever we need to remediate or lock or quarantine or block or disable a workstation. It provides us with the threat analysis, the CVEs. 

The initial setup is easy.

The scalability is sometimes limited. 

I've used the solution for five years. 

The solution is okay. It's been stable for the longest time. There's little degradation of performance. We've been able to maximize the bandwidth allocated to us. The Trend Micro vendor really provided us with good steps in computing the bandwidth that we need and also where to place all the missing sniffing ports. Strategically, they've been very, very helpful to us. The DVI really, really works well for us.

Part of the limitation is the switches. If you want to sniff traffic from a certain segment, you have to have an integrator. There's something where you can put your DDI in the middle of the connection so that you can intercept traffic. You have to purchase that part of the solution.

While the scalability could be better, it depends on the design of our network. The DDI is there. If you want to sniff more segments, you have to have the DDI, however, you have to also calculate your ports and switches, and you have to purchase additional switches if you want more segments to be sniffed.

The solution's technical support is okay. The solution works well, however, and we're benefitting from that aspect of it. 

We get premium support of Trend Micro, so we have no problems with them.

I'm not sure if we previously used a different solution. 

The solution is easy to implement. It's very straightforward. We just deploy the machine. We plug in all the sniffing ports. Then we added another dirty line for the sandboxing, that's it. We're able to get logs from it with no problem.

For Deep Discovery, the deployment took around one to two weeks.

Our vendor handled the deployment for us. 

We're seen a pretty good ROI. Considering the cost incurred if you are infected, it stabilizes cybersecurity and helps save money.

I'm not sure about the licensing aspect of the solution. 

We have an enterprise license and then we just renew it as needed. 

We are not quite at version 5.5.

I'd recommend the solution to others. 

The relationship our company has with Trend Micro is very, very good. They've been very, very supportive of us. We are prioritized whenever we have a problem. 

I'd rate the solution nine out of ten.

Our primary use case of Deep Discovery is as a sandbox. It sorts the DDAN, our on-premise Deep Discovery Analyzer solution, so if Deep Security or Trend Micro isn't able to find out whether a particular file or memory is a threat or not, they will send that file signature or file to the DDAN. The DDAN will then deploy that file inside their virtual sandbox, analyze the implications, and return the result to the concerned agent. We mainly use it for zero-day vulnerability protection. 

Deep Discovery is deployed on-premise. 

One of the most valuable features is the performance, since, so far, we have not faced any issues with Deep Discovery. 

This solution could be improved with faster technical support and cheaper licensing prices. 

We have been using Deep Discovery for a couple of years. 

I'm satisfied with the stability and performance of Deep Discovery. So far, we have not faced any issues. 

In our organization, we have around one thousand licenses for Trend Micro. Whether or not we increase our usage will depend on business requirements. 

Trend Micro's technical support could be better and faster. 

The installation was done by a Trend Micro implementation partner. It took about one or two weeks. 

For deployment and maintenance, we have a team of two engineers and a few managers. 

We implemented Deep Discovery through a Trend Micro partner. 

The licensing cost is a bit pricey. We pay a yearly subscription. 

I rate Deep Discovery an eight out of ten. I would recommend Deep Discovery to others. If people are ready to invest as a capital, then I can recommend a Deep Discovery license. Otherwise, they can go with their cloud-based solution. 

We use the solution for its security features. Trend Micro has an MSP portal where you can create customer accounts, assign some licenses, and make your customers use those licenses from a portal. Trend Micro is ahead of its competitors in providing MSP services to customers.

Trend Micro Endpoint Encryption is stable and easy to use. It's very useful for an MSP company, making it easy and efficient to work with.

Security features could be improved.

I have been using Trend Micro Endpoint Encryption for one year.

The product is very stable.

The solution is scalable because it doesn't require an on-premise server installed. Everything is being monitored and managed from the cloud portal, irrespective of the number of agents. You can manage all from one portal.

Vendors are locally present in our country. We contact them via email, etc. We are very flexible with vendor support.

The initial setup is straightforward. One person is enough for it.

An MSP company creates customer accounts from Trend Micro's MSP portal. Then, the customer gets the key. After that, they can log in to the Trend Micro portal. They will see the agent to be downloaded for Windows and Linux. It takes about two or three minutes to deploy.

Deployment can be done by yourself.

The MSP's model and licensing is global and has very reasonable prices. Also, the perpetual license model is reasonable. It's cheap for the assembly companies. Licensing is very straightforward.

Around five to ten technical persons are using the support. We will be able to sell those agents to more than 20 companies.

Only one technical person is enough for a large company for the installation and the management. In terms of management, many logs, alarms, and entries are happening in the portal.

Trend Micro can be a viable option for SMBs looking for a basic EDR or PRT solution. However, for larger organizations or those with highly complex security needs demanding advanced services and sophisticated department knowledge, Trend Micro's capabilities might not be sufficient.

Overall, I rate the solution a seven out of ten.

Most of our clients are in the government, so they must comply with regulatory requirements for security because their networks are classified as critical infrastructure. Trend Micro ticks all the boxes for endpoint protection, application whitelisting, file protection, disk protection, etc. Our solutions are typically on-prem because our clients aren't comfortable with the cloud. There use a few cloud solutions, but it's rare.

Deep Discovery is scalable and compatible with other products. It's crucial to have that compatibility because it's an integral part of our security solution.  It integrates smoothly. The interface is user-friendly, so administration is simple. 

Deep Discovery is easy to manage, but there is still room for improvement on the administration and operations side. Competing products have a cleaner interface that makes it easier to manage their products. Trend Micro offers a lot of features in one product suite, but it can be unwieldy for the customer to manage all that with a single interface.

I've worked with Trend Micro solutions for many years on various projects, but I've only used Deep Discovery at this company for three or four years. 

I rate Deep Discovery eight out of 10. The stability depends on the customer's environment. In an environment that meets all the prerequisites, I would give it an eight out of 10. 

I rate Deep Discovery seven out of 10 for scalability. It's scalable, but I haven't worked on many use cases that push the limits of it. 

I rate Trend Micro support eight out of 10. We've contacted them for a few issues, and they were excellent. 

Positive

I rate Deep Discovery seven out of 10 for ease of setup. I wouldn't necessarily say that the deployment is hard, but there are many external factors that might determine whether the deployment goes smoothly. Overall, it's straightforward, but it's not the easiest product to install. It isn't a "next, next, finish" installation. One person is enough to implement Deep Discovery, but you need someone from the network and applications team to deploy the entire project. 

I am not involved in purchasing. However, I know that the price isn't the same for every customer. We have account managers who work with distributors, so the price isn't stable. However, I can say generally that the price is competitive. There are more expensive vendors than Trend Micro. It's reasonable.

There are many factors to consider, such as pricing, interface, support, and integration. Based on all those dimensions, I would place Trend Micro in the top three. 

I rate Trend Micro Deep Discovery eight out of 10. I would recommend it. You need a knowledgeable team to work with the solution. It isn't a solution where you can run an installer, and it's ready to go. You must understand your use cases and prepare accordingly. It's an excellent product, and you will get a lot of value from it if you know what you're getting yourself into.

Deep Discovery is good for network protection. There is also an Email Inspector.

It is a very good solution. It is very light, and it is quite quick to figure out the problem in your network.

It is very easy to use. It is also very easy to install and deploy.

Trend Micro can improve the pricing in general. There is nothing else they can add or improve in the solution.

It is very stable.

There are quite a lot of clients who use this solution. It is an enterprise solution, and 80% of the enterprise-level companies are using it over here.

We do hear of issues from our clients. We go over there for technical support, but there is nothing major for which they require support from Trend Micro itself.

It is straightforward. It doesn't take much time. It usually takes an hour or two. It requires a maximum of a day.

Its price is fine, but Trend Micro can improve the pricing in general. 

It is a hardware solution. It is based on the number of nodes, and according to the number of nodes, clients decide which box they should acquire. They have to renew their license every year. It is subscription-based.

Trend Micro has divided most of the solutions into different sectors. If you want to go for the end-to-end solution, they are very much in a position to provide that. You do not have to add different kinds of products or vendors. Trend Micro covers almost everything.

I would definitely recommend this solution. It is a very good solution. I would rate it a nine out of ten.

We use Trend Micro Deep Discovery to identify ransomware attacks.

The most valuable feature of Trend Micro Deep Discovery is its complete end-to-end visibility of threats.

Trend Micro Deep Discovery's technical support could be improved, and it could be made more active.

I have been using Trend Micro Deep Discovery for four to five months.

Trend Micro Deep Discovery's initial setup is easy.

Trend Micro Deep Discovery's interface and threat mechanism are very proactive.

Overall, I rate Trend Micro Deep Discovery a nine out of ten.