Trend Micro Deep Security Reviews

We primarily use the solution for security purposes. 

I cannot speak to any specific feature that has wowed me. 

It serves its purpose and works well.

The initial setup is easy. 

The stability of the product has been good over the last 12 months. 

We have found that the solution scales well.

The cost is very high. it would be ideal if they would work on the pricing.

Technical support could be much better.

The product should be able to host a vulnerability scanner. Right now, we need to pay extra. It would be ideal if they could do a vulnerability scan of my endpoints. 

I've been using the solution for 12 months or so. It's been about a year. 

The stability has been very good in the year that we have used it. I haven't found any issues. There are no bugs or glitches. It doesn't crash or freeze.  It's reliable.

The scalability is very good. If a company needs to expand its usage, it can do so. 

Technical support has been below expectations. They don't seem to be as helpful or responsive as we need them to be. 

The price of the product is high. It's expensive. 

I'd rate the solution at a seven out of ten. It's been an okay solution, however, there still needs to be more done in certain areas. 

The most valuable feature for us is moving the AV scanning engine to the hypervisor and removing it from the virtual machine. We also use the compliance reporting (reporting in general) feature.

It's given us a significant reduction of CPU/memory footprint required to run traditional AV products inside a virtual machine (VDI).

I'm not sure how this product could improve, although we did have some compatibility issues between it and versions of vSphere.

We've used it for 13 months.

During deployment, we had the issue of compatibility between vSphere and Deep Security.

The stability issue we had was with regard to vSphere.

We had no issues with scalability.

Customer service was initially very poor, but once we reclassified our account from mid-size to enterprise, the support was very good.

Technical support is above average.

We previously used Symantec SAV, but it was too heavy for VDI.

Our initial setup was somewhat complex and required a significant interaction with Trend Micro support. This is a very new concept of taking the AV engine outside the VM and it took us some time to feel comfortable with the whole idea. It also required some deep understanding of how Trend Micro Deep Security “embeds” into a VMware environment, and that was not a easy task to master.

We did the initial setup with our in-house team with significant help from Trend Micro technical support. I'd rate them very poorly because they completely missed the compatibility with vSphere issue. It took us a lot of time to fix the entire mess.

Our ROI is still unclear, but I'll have more details once the entire enterprise is moved to Trend Micro Deep Security.

Get a good reseller (our original VAR, MicroAge, had a difficult time clarifying some of the licensing vs. maintenance costs).

ESET and Symantec

Make sure your VMware SME is plugged in from the very beginning, do a limited low-level impact POC, and plug into the Trend Micro user community.

It is lightweight and provides a multi-platform for the client. It combines host intrusion prevention and provides AV, file monitoring, log collection, etc. in a single agent.

There are a good signature set and a high rate of detection.

It is one of the best client protection available for cloud computing.

I have used this product for three years.

Installation and operations may have issues on some machines owing to their configuration of the network cards as the product is a DPI driver. The typical client-server issues exist as with any other product.

The setup is simple as the agent provides a feature called as the Recommendation Scan. This scans the profiles of the host computer and provides recommendations on the appropriate signature and the policies to apply.

The installation of the agents, subsequent patching of the agents, etc. can be automated, thereby reducing the management overhead.

We evaluated McAfee and Symantec.

If you are looking for an all-rounder for endpoint protection, then don't look any further than TM Deep Security.

The comprehensive agility is the most valuable feature. It's very agile and flexible, and performs multiple tasks simultaneously very effectively. We're able to do firewalls, IPS, and log inspections with it.

It's very difficult for an enterprise, especially one of our size, to patch effectively at all times. The IPS helped us with this. Oftentimes, there's a delay between discovery of malicious threats and production of patches. The IPS allows us to virtually protect against those threats before true patches can be applied to our inputs.

Deep Security is a fantastic product but there are certain little details that could be tweaked or improved to make it a ten.

VMware and Trend Micro are pursuing a strategy to develop a light version of NSX that will allow us to run it agentlessly.

They also need to offer support for Apple machines. Almost every vendor I've seen, they're all junk. For Trend Micro to take a step either with their office-end product or with Deep Security to actually protect Macs, that would be a huge game-changer for iOS.

We've been using it for three years.

We've had no issues with deployment.

Overall, I'd say the product is very stable, both agentless and agent-based. Agentless is less stable due to the nature of how many moving parts have to be working and in place for the whole system to work effectively. However, moving forward with the relationship with VMware, agentless protection is not going to be possible without VMware NSX setup with the environment.

Our organization has 1,500 servers and 18,000 endpoints -- and it's growing.

Trend Micro has excellent technical support.

Starting off with agentless, it was complex. With agentless, you have a lot of moving parts and they all have to be in-sync and working together for the whole system to work. It adds a level of complexity with vShield, the DSVA's, and all the different moving parts.

Come up with a solid working plan before you even think about actually implementing anything. The foundation is all in the preparation, the education and the project management.

No product is perfect. Deep Security is a fantastic product but there are certain little details, I think, that could be tweaked or improved. Do your homework, engage Trend Micro, get trained, get all the knowledge you can and come up with a solid working plan before you even think about actually implementing anything.

Trend Micro Deep Security is a complete solution and all the threat management has been taken care of.

I have been using Trend Micro Deep Security for two years.

I have not used technical support.

The price of Trend Micro Deep Security could be less expensive.

My advice to others is they can use Trend Micro Deep Security for their server-side instead of choosing Azure Firewall or AWS Firewall, which is a lot costlier when compared with the others. All threat management is taken care of, such as DDoS protection, and ransomware attacks.

I rate Trend Micro Deep Security an eight out of ten.

It gives clients an additional view of what's happening in their data centers.

Deep Security is on-prem at this stage, but it has got cloud workload protection that has similar functionality in the cloud.

In addition to providing our clients a view of what's happening in their data centers, it also does virtual patching in the data center. It enhances the security in the data center big time.

What this product lacks at this stage is the ability to have automated workbooks to do the response. At this stage, the response is more manual, and it is not automated. If there is a response functionality in Deep Security, similar to what we have in EDR these days, to automatically respond to some of the threats, it would be cool. So, we'd like to have an automated response. There should be a response functionality.

We have been providing this solution for a few years.

It is stable.

It is scalable, but it is fairly expensive.

In terms of its usage, we're not using it internally. We have three clients at the moment. They are fairly big clients.

Their technical support is good.

It is a bit more difficult because it needs a bit of hardware, etc. Deep Security is more complex to set up than web security. Implementing Deep Security properly is usually about a week's worth of work because of the change control in the company. It is the change control that's an issue.

In terms of people required for its deployment, one engineer is usually enough.

Most of it is annual at this stage.

I would definitely recommend it for medium enterprises. 

I would rate it a seven out of ten.

We use Trend Micro Deep Security for security protection.

The performance is good. It is better than FireEye Email Security.

I would like to see a retroactive alert. If it had the capability of generating retroactive alerts it would be helpful.

While it is stable, it has room to improve.

I have been working with Trend Micro Deep Security for six months.

Trend Micro Deep Security is a stable solution.

Trend Micro Deep Security is scalable.

In our company, we have approximately 1,000 users.

I am satisfied with the technical support that we have.

We are also working with FireEye Email Security.

I was not a part of the installation. It was installed by our technical team.

This solution is maintained and deployed by a team of ten managers and engineers.

We don't pay any licensing fees.

I would recommend this solution to others who are considering using it.

I would rate Trend Micro Deep Security a nine out of ten.

Deep Security is a server protection product. We use it for virtual patching and file integration. You can use this with your cloud or an NX environment, virtual services, VMware, etc. 

Deep Security is a good product for managing a few servers.

I've been using Deep Security for more than five years.

Performance is fine. You need to keep an eye on the new files getting detected, or so you have to keep on applying those file folders. So you have to keep monitoring, or else it is not going to help. So especially for the file integrity model and all. 

I don't know about the scalability, but it's good for few servers where you can manage. 

There is a local Trend Micro team in Mumbai that we call for support or to log a ticket.

Deployment and post-deployment implementation are a little complicated. We can't touch servers, and we can't modify the settings. It should be automated, and Trend Micro should make the process more intelligent. The scope is broad, and you have to manually monitor the file scans and respond whenever there is a detection. 

The deployment itself is not that difficult because it's client based. So you want to install clients on each of those servers, and then you have to keep monitoring and adding features. You check the server's performance, and if everything is fine, you can keep adding servers. But post-implementation is time-consuming. You have to do monitoring, and that takes time. After you set up everything, it's not a full-fledged implementation. You have to keep on monitoring and configuring. 

And there are times when the malware protection or some other virtual patching is working fine, but you need a technician to get all the more advanced features to work. It takes around two or three technicians to implement. Our team is responsible for security while a different team handles server management. Then there are one or two people who manage the security console. And then, there are OEM support and SI support.

We have a subscription. It's not a surface subscription. It's only the AMC part.

I rate Trend Micro Deep Security six out of 10. I would recommend it. It depends on the other security controls you have in place. If you're using the entire Trend Micro suite, then you have a PT web gateway. So if you have the whole suite, you have tight integration with your APT and firewall story. In that case, Trend Micro Control Manager is there. So you have everything tied to a single console, so security and everything play as a complete story.