TrendAI Deep Security Reviews

My main use case for Trend Micro Deep Security is its best feature, virtual patching, which allows us to secure our server against known vulnerabilities without having to immediately apply OS or application patches. This has helped reduce downtime, improve compliance, and safeguard critical workloads. The solution has seven modules, including anti-malware, web reputation, firewall, integrity monitoring, and log inspection, but its best feature remains virtual patching.

I use Trend Micro Deep Security in multiple organizations, primarily in the financial sector and multiple banks, where I have protected both our physical and virtual servers from vulnerabilities. Its role is primarily virtual patching, meaning if our server is vulnerable due to a zero-day attack and a patch is not applied, Trend Micro Deep Security creates a virtual patch. That remains the best feature. I perform day-to-day operations with it.

I have implemented and tested multiple use cases on Trend Micro Deep Security solution for different modules, including intrusion prevention and integrity monitoring. For the anti-malware module, I have tested and observed how this product protects against any malicious or suspicious activity.

The best features Trend Micro Deep Security offers include virtual patching and comprehensive protection from multiple modules such as anti-malware, web reputation, firewall, integrity monitoring, and log inspection. It is very user-friendly, easy to understand, and helps us integrate multiple products with Deep Security.

The user-friendly aspect and integration of Trend Micro Deep Security have helped my team significantly. For example, we can integrate our SIEM product, Active Directory, and multiple platforms. If an operations engineer cannot find something or forgets about a suspicious activity, we can identify the suspicious thing with the help of the SIEM. With Active Directory, we maintain our compliance, checking which server has Deep Security and which does not. By integrating these solutions, we effectively maintain compliance in our environment.

Trend Micro Deep Security has positively impacted our organization because we have implemented it for multiple purposes, primarily for server security. It is installed on both multiple virtual and physical servers with minimal performance impact. It has been extremely stable throughout our usage, with no major disturbances.

Trend Micro Deep Security is a good solution. I have been working on and using this product for almost four years. While it is fundamentally good, the patches are released every month; if it could remain stable for a longer time, it would be helpful instead of requiring monthly patches.

Regarding outcomes, I have noticed reduced downtime potentially due to higher utilization on the server. By adding an exception, we can minimize this type of incident. Additionally, we can track which incidents are happening through the XDR solution.

I have been using Trend Micro Deep Security for almost four years and continue to use it.

Trend Micro Deep Security is a stable product. It has positively impacted our organization because we have implemented it for multiple purposes, primarily for server security. It is installed on both multiple virtual and physical servers with minimal performance impact. It has been extremely stable throughout our usage, with no major disturbances.

When discussing scalability, Trend Micro Deep Security is used in multiple organizations across the financial and retail sectors.

The customer support for Trend Micro Deep Security is good, and they provide timely responses.

Positive

I previously used Symantec and Trellix products before switching to Trend Micro Deep Security because the tech support was delayed and not satisfactory. I struggled to get timely assistance.

My experience with pricing, setup cost, and licensing for Trend Micro Deep Security is almost good and average.

I have seen a return on investment with Trend Micro Deep Security. It is a time-saving and money-saving product. The management console is very useful and easy to operate, allowing policy deployment in a minimal amount of time.

My experience with pricing, setup cost, and licensing for Trend Micro Deep Security is almost good and average.

Before choosing Trend Micro Deep Security, I evaluated other options such as CrowdStrike, among multiple products in the market.

I strongly recommend Trend Micro Deep Security to any organization looking for a powerful, scalable, and future-ready server security solution. It has been invaluable for us, and I believe it will be equally beneficial for future users and buyers.

Trend Micro Deep Security is a powerful solution in the market for server security.

My advice for others considering Trend Micro Deep Security is to strongly recommend it as a powerful, stable, and future-ready server security solution. It has been invaluable for us, and I believe it will be equally beneficial for future users.

On a scale of one to ten, I rate Trend Micro Deep Security a nine.

In my current scenario with the MFS company, Trend Micro Deep Security is used for servers protection. Our Unix system and Windows system have several services, so for the servers protection, firewall, application control and IPS, IDS, we are working to ensure this actual protection for the solution and servers.

The best features of Trend Micro Deep Security are its protection layer and its total control of the servers. As of now, in all of the endpoint security solutions and server security solutions, only cloud-centric options exist, but for on-premises, Trend Micro Deep Security is one of the best solutions for servers.

The protection layer and total control features of Trend Micro Deep Security provide comprehensive protection. It has multiple security layers, including anti-malware, intrusion prevention, integrity monitoring, web reputation, application control, firewall, and log inspection. With a single lightweight agent, I have access to all of the protection layers. It also provides flexibility for Windows, Linux, and cloud workloads, as I am managing a hybrid infrastructure through Trend Micro Deep Security. Additionally, I benefit from centralized management, policy enforcement, monitoring, and quick response to threats. It also complies with regulatory standards such as PCI DSS, GDPR, and ISO 27001. Compared to other solutions, it's beneficial to have so many features consolidated in a single solution which is competitive with other companies.

Currently, we have the XDR solutions on top of Trend Micro Deep Security. In XDR, I get extra deep dive knowledge and deep dive features. We see there is the root cause ability when we find out in the XDR integration feature, which is the actual Vision One XDR with Trend Micro Deep Security. It's good to have, and they have the Vision One platform, which is good for day-to-day reaching. The feature-wise implementation is good.

In the area of policy management and overall administration, Trend Micro Deep Security could improve some settings that require attention. Their UI/UX also needs improvement to make it more user-friendly. If someone is not well-versed in Trend Micro Deep Security or lacks expertise, they can't use or utilize these tools effectively. Therefore, user experience improvement is most crucial, along with enhancements in policy management and the accuracy of the IPS, IDS features for real-time protection.

It is primarily focused on the firewall policy management, and if any server is blocked through any rule, a proactive dashboard or alert would be helpful.

I am using Trend Micro Deep Security for more than five years.

Since implementing Trend Micro Deep Security, there have been some hiccups. As a new solution running in operations, I encounter everyday busy operations. During the implementation phase, some issues arise for tuning. After proper tuning the configuration, it is now good to have stability in terms of communication and other aspects. Also, there is an improvement in the security layer. Until now, I haven't faced any anti-malware threat because of all of the proactive protections available in Trend Micro Deep Security, especially in the IPS portion and virtual patching which covers various aspects.

Trend Micro Deep Security is stable.

In terms of scalability, Trend Micro Deep Security has inbuilt features such as HA options and load balancing options. Customers can also use SQL HA for their database high availability.

In terms of customer support, I think they need to exhibit more proactiveness. That is the lacking we are facing, and thus I believe they need improvement in customer support.

In my current organization, Trend Micro Deep Security is the only solution used. However, with 12 years of experience, I have used other solutions such as CrowdStrike, Trend Micro, Symantec, Kaspersky, and ESET. I possess a diverse range of experience with these products, but compared to dedicated server security, Trend Micro Deep Security is a good solution.

I evaluated and tested other solutions in my previous organizations. Here, only Trend Micro Deep Security is employed, but as I mentioned earlier, I also have experience with Kaspersky, CrowdStrike, Sophos, and Symantec among other products.

The pricing and licensing for Trend Micro Deep Security is typical; in that part, it's high, obviously, compared to other competitors. However, if I round up all of the solutions in a single package, then the pricing is medium, reflecting a medium pricing calculation.

Trend Micro Deep Security is a good solution if you consider hybrid solutions or integrate it with XDR and EDR portions. However, if you do not consider the cloud or hybrid aspects, there are limitations. As an on-prem solution, it can single-handedly resolve your problems and protect your organization and servers. On a scale of 1-10, I rate Trend Micro Deep Security a 9.

A specific example of how I use Trend Micro Deep Security in my daily work involves a critical vulnerability related to Apache Log4j that was recently announced. Before the patching, I checked the IPS module and had a virtual patch available. By enabling that rule for Log4j, all servers were protected from exploitation without waiting for vendor-released patches, preventing potential data breaches and downtime during the patching window.

I use zero-day exploit mitigation with Trend Micro Deep Security. Whenever a zero-day vulnerability is announced, Trend Micro Deep Security's virtual patching via the Intrusion Prevention System protects workloads before vendor patches can be applied, and ransomware protection is also available. My team manages hundreds of servers across on-premise and cloud environments, and when a critical vulnerability is announced, applying OS patches manually would take days and require downtime. As a Trend Micro Deep Security engineer, I have virtual patching via IPS that instantly protects all workloads and systems without scheduling maintenance windows, eliminating emergency patching chaos, preventing downtime, and allowing faster compliance reporting. This enables my team to focus on strategic tasks instead of manual patching. The centralized dashboard also makes work much easier.

In terms of automation, auto-deployment of agents integrates with cloud APIs and orchestration tools including Chef, Puppet, and Ansible to automatically install and configure the agents on new workloads. Policy automation applies protections based on tags or templates, ensuring that whenever a new server is created, it receives the right protection without manual intervention. Scheduled tasks automate malware scans, log inspections, and integrity checks at predefined intervals, and CI/CD pipeline integration allows checks to be embedded into DevOps workflows, ensuring containers and workloads are scanned before deployment.

Trend Micro Deep Security has positively impacted my organization by reducing risk and response times while being cost-effective and saving on operational efficiency, compliance, audit readiness, scalability, and business agility, supporting both on-premise and container workloads.

Virtual patching via IPS protects all servers instantly, resulting in no downtime and eliminating overtime labor, saving around $50,000. Additionally, there is a reduced risk of breach. For improved efficiency, with Trend Micro Deep Security, I built 100 new cloud instances without needing manual agent installations and policy assignments, which would have taken hours and delayed securing workloads, ultimately increasing risk. With Trend Micro Deep Security automation, agent deployment occurs automatically via AWS and Azure integration, and policies are applied instantly based on tags, saving eight to ten hours per deployment cycle, allowing my team to focus on more strategic tasks instead of manual deployment and patching.

Additional recommendations for improvements include policy optimization and enhanced reporting features.

We switched from Symantec because it was taken over by Broadcom, and we were not receiving proper customer support from Broadcom, which led us to make the change.

My main use case for Trend Micro Deep Security was that I worked as an implementation engineer, and I was responsible for managing the tool in the client environment, so it served as a main resource for that and a single point of contact.

I managed Trend Micro Deep Security in my client's environment by implementing the project and the policies based on their environment, such as when any server was going to upgrade or some activity was going to happen.

Trend Micro Deep Security has positively impacted my organization by being a mature tool and a stable platform, and its virtual patching capability is very strong, with good visibility and reporting features that I find beneficial.

When I mention good visibility and reporting, I have seen measurable improvements since using Trend Micro Deep Security. The visibility refers to the dashboard where I can see an overall summary of the environment in a single view, and if there is any critical alert, I can take action on that, such as checking with the consent team if a server abruptly shuts down or restarts.

The best features Trend Micro Deep Security offers include virtual patching, which is well-known to protect against zero-day vulnerabilities, integrity monitoring, which is useful for monitoring unauthorized config changes, and anti-malware and firewall that helps to reduce noise, along with cloud integration that assists in the auto-discovery of different workloads.

In my experience, virtual patching has been the most valuable feature because Trend Micro Deep Security is well-known for this capability, and it helps clients using legacy servers who do not want to upgrade as their applications require that functionality. Virtual patching helps us by providing the necessary security to protect those servers.

Trend Micro Deep Security can be improved in areas such as policy tuning, which takes time in a complex environment, along with slightly high pricing for smaller deployments, especially for SMBs, and the help documentation on their website can be simplified for new users to easily understand solutions to their issues, as I have observed that they can sometimes feel confused.

SMBs face challenges with higher pricing, compelling them to seek competitive solutions for better pricing. Regarding documentation, for example, if you check FortiGate, you can find good solutions for different issues, so Trend Micro Deep Security can also enhance that aspect.

I have been using Trend Micro Deep Security for more than five years.

Trend Micro Deep Security is stable.

The scalability of Trend Micro Deep Security is also acceptable.

Customer support is very responsive and technically strong, and the ticket resolution time is very acceptable, as the engineers are knowledgeable and help resolve issues as soon as possible.

Positive

Previously, I have worked on Symantec and WatchGuard, but when I started working on Trend Micro Deep Security, I found it to be very user-centric and helpful, requiring no excessive technical expertise to manage.

I have seen a return on investment with Trend Micro Deep Security because its deployment feature is very effective, and the single agent helps monitor multiple things while ensuring employees were not affected during the deployment, as the downtime was minimal, so much so that they did not notice when it happened.

My experience with pricing, setup cost, and licensing is that pricing is a little high for smaller environments, but for larger organizations, it is acceptable. The setup cost is reasonable, and we work with a partner who assists with deployment along with Trend Micro Deep Security support.

Before choosing Trend Micro Deep Security, I evaluated other options and have used features from all the tools, including integrity monitoring, anti-malware, cloud, virtual patching, IPS, and IDS, so I have experience with all the features of this tool.

My advice for others looking into using Trend Micro Deep Security is that they can proceed with the solution if they have a hybrid environment or a cloud environment, as it is suitable for all types of environments, and I would recommend it. My overall rating for this solution is 8.5 out of 10.

Trend Micro Deep Security's main use case is to protect our servers and containers.

The best feature of Trend Micro Deep Security is Application Control, where we can put it in lockdown mode, and applications that are already applied or installed will be executed, while new ones will be blocked automatically.

Trend Micro Deep Security is an advanced threat protection product that helps our servers prevent upcoming attacks and also logs inspections and firewall preventions, helping our servers in daily life by protecting them from advanced cyber attacks.

With the help of Application Control, we first scan the inventory of our applications that are installed on the server. After that, we get a scanned and checked inventory where all the executable files of the servers are present with the help of hashes. By putting application control in lockdown mode, all the applications that pre-exist in the file will execute at any time. However, when a new file or new update comes to the server, it will be denied due to the lockdown policy. If any attack comes, the new hashes will be found and blocked, making it a very good feature of Trend Micro Deep Security.

Trend Micro Deep Security requires us to depend on a third-party tool to block hashes, so we need add-on features to block hashes in Trend Micro Deep Security itself without depending on a third-party tool such as hash push.

I have been using Trend Micro Deep Security for the last four years.

Trend Micro Deep Security is stable.

Trend Micro Deep Security's scalability is good because it is a stable product. With the help of it, we do not need to migrate or change over time, as it will fix itself.

In my opinion, we have very good articles for customer support, and most of the issues have been solved with the help of these articles. If we do not get any resolution from KB articles, we can create a case. According to my service experience with normal support, an engineer is assigned to the case in 12 hours, and we get a resolution as soon as possible.

Negative

Previously, I was using Sophos Server Security and switched to Trend Micro Deep Security because Sophos Server Security got stuck in some cases, slowing down our servers.

Trend Micro Deep Security saves money. It is a costly product, but with the help of this, we secure our organization's infrastructure very much and also get real prevention with the help of these features.

My experience with pricing is that it is really challenging because its pricing is very high. However, the setup cost is easier because on-premises deployment is straightforward, and licensing is based on nodes. The number of servers you have determines how many node licenses you must purchase.

Before choosing Trend Micro Deep Security, I evaluated other options such as CrowdStrike.

Trend Micro Deep Security prevents advanced attacks from third parties or attackers, and it helps us get log analysis of our applications and operating system.

Trend Micro Deep Security has eight modules: anti-malware, web reputation, device control, log inspection, integrity monitoring, firewall, and IDS/IPS rules. It essentially provides virtual patching, preventing our servers from all channels. When a signature-type attack or pattern-type attack happens, anti-malware will block it. When a user goes through a browser, web reputation will block threats. When any person executes something with the help of a pen drive, device control will block it. When a firewall pre-existing rule is there, it will block malicious sites, URLs, and IPs. Additionally, with the help of IDS/IPS rules, it will virtually patch our application or system.

In our organization, we must monitor the logs to see what is blocked or we get notifications of alerts that something is being blocked or some files are being affected, so we get an analysis of that part.

We have also used Trend Micro XDR, so it reduces the alerts. However, I believe we must check manually to determine whether a file is genuine or not. It reduces alerts, but we must check and apply false positives with trusted vendors, trusted sources, or trusted destinations.

Because we need to achieve a 10 out of 10 score, one point I deducted was for its long-term support. It provides new patches of agents to upgrade in one to two months, which is why I took off that one point.

For server security, I would advise others to try Trend Micro Deep Security with the full features, as you will definitely see an increase in performance. This review has a rating of 9 out of 10.

Trend Micro Deep Security is used in our environment for monitoring and incident response to detect any malicious activity. We utilize the Intrusion Prevention System module, virtual patching, and application control features to manage and secure our applications effectively.

Incident response and monitoring through Trend Micro Deep Security are integrated with Trend Micro Vision One. When an alert is triggered, such as a workbench ID being created for detected malware activity, we receive the alert and begin our investigation in Vision One. We identify the source of the alert, verify associated indicators such as the SHA value, and determine whether the file is malicious. A detailed investigation is conducted to understand the threat, assess its impact, and implement preventive measures. If the file has not been quarantined automatically, we collect and submit it to Trend Micro for further analysis before assessing its severity.

On a daily basis, Trend Micro Deep Security supports our operational activities. We add exclusion files as needed, monitor all malware-related activity, and review application control data to ensure that only approved applications are whitelisted while any unauthorized or risky applications are blocked.

Trend Micro Deep Security helps organizations stay protected by offering a single, centralized platform that secures physical, virtual, cloud, and container environments from cyber threats and vulnerabilities. What sets it apart is how it brings together different layers of defense—like intrusion prevention, anti-malware, virtual patching, application control, and integrity monitoring—into one easy-to-manage solution. This approach not only helps prevent breaches but also reduces downtime through virtual patching, keeping systems safe even before traditional patches are deployed. When integrated with Trend Micro Vision One, it enhances visibility and speeds up incident detection and response with better context and threat intelligence. It also supports compliance by simplifying reporting and applying consistent security policies across all environments. In short, Trend Micro Deep Security strengthens overall protection, improves efficiency, and helps organizations stay compliant while maintaining strong performance across their hybrid and cloud setups.

Trend Micro Deep Security offers several powerful features, with the Intrusion Prevention System module standing out as one of the most valuable. Unlike a typical antivirus product, Deep Security functions more like an advanced AV or EDR solution. It not only provides protection but also assists in managing vulnerability patches. The IPS module delivers virtual patching that mitigates risks immediately, making it an especially effective tool for securing servers.

The virtual patching capability has been highly beneficial for our organization. On Windows platforms, not all vulnerabilities can be patched through standard updates, but the IPS module typically offers virtual patches to close those gaps. This helps maintain system stability and protection without requiring disruptive updates.

In addition to IPS, the platform includes strong features such as the anti-malware module, firewall, and application control modules—all of which enhance system security and help prevent unknown or suspicious activities. Web reputation capabilities further strengthen protection and assist our team in daily operations.

Trend Micro Deep Security has positively impacted our organization by supporting both Windows and non-Windows environments, including Linux and AIX. Its cross-platform compatibility simplifies deployment and monitoring. The product performed exceptionally well even on older systems such as Windows Server 2003, where many antivirus solutions often struggled.

From an operational perspective, Deep Security also improves compliance outcomes. Unlike many tools that require reinstallation for issue resolution, most problems can be fixed by reactivating the agent or using simple troubleshooting commands. Moreover, its integration with Trend Micro Vision One provides comprehensive visibility across the environment, helping our team maintain better oversight and security posture.

Trend Micro Deep Security performs well overall, but the anti-malware exclusion policy requires improvement, as adding exclusions is a complicated process. Everything else is good.

I use Trend Micro Deep Security currently, and my day-to-day activity involves going through Trend Micro Deep Security. I have used it for a total of four years or more.

Trend Micro Deep Security has demonstrated excellent stability. Over the past four to five years, I have not encountered any downtime or reliability issues.

Trend Micro Deep Security offers excellent scalability, allowing it to easily adapt to growth or changes within an environment. I have observed clients expand their deployment from around one hundred to as many as one thousand eight hundred servers without any disruptions or performance issues.

I have had a positive experience with Trend Micro Deep Security’s customer support. The platform offers two types of support: normal and premium. I have used the premium support, which ensures immediate and efficient assistance. Even the normal support is far superior to that of other providers, such as Microsoft, whose response times are often much longer.

Positive

Before using Trend Micro Deep Security, I worked with solutions such as Symantec, CrowdStrike, and Trellix. I switched to Trend Micro Deep Security because its implementation and management are more efficient, and its console is intuitive, making it easier to troubleshoot and handle issues.

Setting up Trend Micro Deep Security was fairly easy with proper preparation. The process required ensuring that the system met all requirements and that the network was correctly configured. You had to install the manager, set up the database, open the necessary ports, and deploy agents on each machine. A few steps, such as verifying software authenticity and synchronizing system clocks, required attention. Overall, with the installation guide and a bit of planning, the setup went smoothly, and once everything was configured, the solution started protecting the environment seamlessly.

I’ve had experience implementing Trend Micro Deep Security through both a vendor team and an in-house setup. The vendor team demonstrated solid expertise and handled the deployment efficiently, ensuring that all configurations and network prerequisites were properly met. On the other hand, managing the setup in-house provided deeper technical insight and more control over customization and fine-tuning. Both approaches were effective, but having hands-on involvement in the in-house implementation offered valuable learning and operational flexibility.

I have experienced a strong return on investment with Trend Micro Deep Security, as it has helped save both time and money. Several people I know have also invested in it, and they have found it equally beneficial in both aspects.

Regarding the pricing, setup cost, and licensing for Trend Micro Deep Security, I do not have much firsthand experience since it is managed internally, but from what I know, it is good.

I did not evaluate any other options before choosing Trend Micro Deep Security.

I highly recommend Trend Micro Deep Security to anyone considering it. If you have prior experience with security solutions such as Microsoft Defender, Symantec, or Trellix, you will appreciate its user-friendly interface and straightforward management. The platform stands out for its simplicity, efficient policy deployment, and excellent technical support. It is definitely worth trying to experience the difference compared to other tools.

Although our organization purchased Trend Micro Deep Security through another channel, I do not recall the exact source. Overall, I rate this solution a solid ten out of ten.

Trend Micro Deep Security serves as my main solution for antivirus and endpoint security. In this use case, we manage security policies, file protection, and scanning activities with Trend Micro Deep Security.

Virtual patching stands out as the best feature Trend Micro Deep Security offers. Patching allows us to virtually patch servers without downtime, which is critical given our limited patching windows, and helps prevent servers from being exploited.

The alerting system is another valuable feature, as we can use the logs for SIEM integration and receive real-time alerts, enabling us to track and work on any issues. Activity monitoring and automation in Trend Micro Deep Security have saved us time and improved our response time for critical alerts, as we immediately receive alerts that prompt our team to begin working on them.

The most prominent positive impacts of Trend Micro Deep Security on my organization include how we configure alerting and automate tasks. Additionally, we are using cloud security capabilities, and the file integrity monitoring is very helpful.

The console provided by Trend Micro Deep Security seems quite complicated. Although Trend Micro Deep Security offers many features related to policy creation, making it more user-friendly would encourage more people to use it and enhance trust in the product.

The main improvement needed is to make the console's appearance more attractive. I work with multiple platforms, including Defender, Sophos, Palo Alto Networks, and Proofpoint, and the dark colors of Trend Micro Deep Security's console can deter administrators from spending time on it.

I have been in my current field for more than five years.

Trend Micro Deep Security is comparatively stable in its performance.

The scalability of Trend Micro Deep Security is adequate, as it is utilized across our enterprise services, making it scalable.

I have interacted with customer support mostly for analysis when we encounter issues. About eighty percent of the time, we receive satisfactory responses, with the remaining twenty percent reflecting delays or the necessity for their internal engineering team to provide assistance.

Positive

I previously used McAfee, which is now Trellix. We made the switch after a ransomware attack in our organization on November 9, 2022, when McAfee failed to detect the ransomware threat.

Before selecting Trend Micro Deep Security, I looked into Defender due to its lower costs and also reviewed Sophos, as we were already utilizing it to manage external devices on laptops. After reviewing both, we decided on Trend Micro Deep Security.

I would rate Trend Micro Deep Security around eight out of ten. I chose an eight out of ten because I noted two points regarding the console not being visually appealing or simple to operate and the limitations in creating various policies, emphasizing the need for flexibility in policy creation to show clients that we can implement advanced security measures such as zero-trust segmentation.

My advice for others looking to use Trend Micro Deep Security is to consider the excellent feature of virtual patching, particularly if they currently only run basic antivirus or file integrity systems. Trend Micro Deep Security is good and has significantly contributed to my career growth, but I am very unhappy with its current performance, as it struggles to compete with CrowdStrike. Customers often prioritize attractiveness and marketing over product performance. I have assigned a review rating of eight to Trend Micro Deep Security.

The usual use cases for Trend Micro Deep Security that I have been working with mostly involve server security, and like anti-virus, I use it for the endpoint. I will also have Trend Micro Deep Security solution for the servers. The good thing, as I compared it with other solutions related to server security in the form of anti-virus, is that Trend Micro Deep Security is very good. It has multiple features available, not only anti-malware but also an anti-ransomware feature as well. Apart from that, it acts as a firewall with IPS and IDS kind of features. IDS works as IDS with signatures. The main feature that other solutions didn't have is virtual patching, which provides the best help for vulnerabilities available on the server. Besides that, it has other modules like application control, which I can use to restrict the installation of new software. Multiple modules are available, and this again depends on the licenses and other factors. The customer who purchases must take all the licenses and implement them properly to gain from the solution. If I have taken the solution but have missed application control, it will not function. Therefore, the multiple modules team must evaluate, and the settings or configurations must be made according to best practices to help as a security tool and prevent many attacks.

The most valuable features of Trend Micro Deep Security first of all include anti-malware. Second, as I mentioned, virtual patching is very critical. If a customer has a business and needs to patch one of their critical servers, but due to business requirements, they cannot patch the systems immediately, this virtual patching will help the servers avoid exploit. Trend Micro Deep Security will cover it as a patch: when an attacker tries to exploit a particular CVE, it will block and secure the system from that exploit. Vulnerabilities will be virtually patched, making it the main and most helpful feature. Additionally, this anti-malware finds any malware or spyware, fulfilling all anti-malware functions. It also has a File Integrity module; if I provide a custom file path, it will give alerts if there are any changes to those particular files.

The areas of Trend Micro Deep Security that I think could be improved or enhanced include the dashboards in the Deep Security console because multiple modules exist. While the Deep Security console is a good product, I request that it should be understandable for laypersons when they see the dashboard. What risks are present should be highlighted; in the dashboards, it is visible under the File Integrity module that a certain number of events were detected, but improvements are needed.

Another aspect needing improvement is the dashboards themselves. Dashboards should be easily understandable for laypersons as well. Anyone working as an administrator should understand the dashboards; when I want to showcase them to executives, those executives do not know the inbuilt features or functionalities; they will only view the dashboards. By seeing the dashboards, executives should understand whether our servers are secure or if there are vulnerabilities, which should be showcased immediately, indicating reasons for risk.

I have been working with Trend Micro Deep Security for around five years.

For the level of stability and reliability of Trend Micro Deep Security, I rate it a nine. Only a few changes and aspects, particularly regarding IOC, pose occasional challenges; however, these experiences differ from vendor to vendor. Sometimes, Trend Micro mentions certain files as genuine, while other solutions, like threat intel platforms and open-source tools, may classify certain hashes as malicious. Hence, in these cases, I find that Trend Micro can mark some incidents as false positives, leading to my rating of nine, which relates specifically to IOC aspects rather than the product itself.

For scalability, I can give Trend Micro Deep Security a rating of ten. As I mentioned, I have not faced challenges, and regarding scalability, whatever the OS available, I have agents for multiple operating systems such as Windows and Red Hat, and they support agents for IBM AIX. I can manage all the servers, and I can even install an endpoint on regular PCs. Trend Micro also offers multiple solutions, now introducing Vision One and XDR, which allows integration with Deep Security for greater visibility from a security standpoint. Not only securing the server but also providing much more detailed information.

I often communicate with the technical support team of Trend Micro Deep Security; to be frank, I have not faced any recent technical challenges, so I have not raised any issues. I mentioned earlier that I possess considerable experience with this solution, allowing me to resolve many issues independently. In earlier stages, I faced challenges and raised multiple technical calls, receiving perfect resolutions on time, and the issues were fixed.

For the technical support received, I would rate them an eight from one to ten.

Positive

Before Trend Micro Deep Security, I was using solutions like Symantec and McAfee on the servers. After implementing it for one client, that client felt happy due to the many new modules available. I explained these to them and implemented them, which made the client feel their servers were secured using Trend Micro Deep Security.

I participated in the initial setup and deployment of Trend Micro Deep Security.

The setup process I participated in for deploying Trend Micro Deep Security involved first opening the necessary ports. For any solution to implement, I need to identify what ports are required for communication. Since it is Trend Micro, I need a connection to the Trend Micro database, where signatures and IOC details get updated. I also need a custom port or can use a default port for the console, which can be decided while configuring, and those ports must be accessible for the administrator of Deep Security. Additionally, I require bi-directional communication from the agent to the console where I install the Trend Micro Deep Security agent on the server. For installing Trend Micro Deep Security agent, a requirement is that it should have one GB of free space; those prerequisites are necessary for every solution, and similarly, Trend Micro Deep Security has its prerequisites that I must ensure before going for installation. Trend Micro Deep Security is available in both on-premises and cloud-based formats. For the cloud-based version, the console will be deployed in the back-end, and I only install the agent and ensure communication towards that URL. If it is on-premises, as I mentioned, I need to open the ports internally and towards Trend Micro. Trend Micro refers to the cloud version as Workload.

I have faced no issues during the initial setup of Trend Micro Deep Security. No issues have arisen because I understand the prerequisite requirements. Before proceeding, I review that Trend Micro has vast documentation available for known issues, along with implementation guides, user guides, and admin guides. With this information, I did not face any challenges. The only occasional issue arises when the agent becomes corrupted; they provide a solution by uninstalling it or using the cut tool from Trend Micro to remove the agent. Afterward, I reboot the server and reinstall it. Other than that, I have not encountered significant difficulties.

Normally, where I have seen, customers will engage in the RFP process for purchasing Trend Micro Deep Security. Vendors or third parties participate based on the RFP, and the decision depends on factors such as technical evaluation and various requirements.

I evaluated other options and other vendors before choosing Trend Micro Deep Security. As mentioned, in a few clients, other solutions were already present, but due to the features, modules, and functionality, a few customers migrated from other solutions to Trend Micro as well.

To be frank, I have not personally compared Trend Micro Deep Security with other vendors; customers have compared them and chosen.

I often utilize documentation, guides, or manuals for Trend Micro Deep Security. As mentioned earlier, prerequisite documents are always available. If I proceed with upgrades as well, I check the release notes provided by Trend Micro, detailing the advantages, fixes from older versions, and known issues. Upgrade and installation guides are also accessible. When planning an upgrade, the upgrade guide specifies which version can be upgraded to and any installation details for later versions. There are numerous documents available, and as I mentioned, I ensure to go through those documents to perform upgrades, implementations, or configurations accordingly.

I am happy with the official documentation provided by Trend Micro.

I also work with a few more products including Zscaler and others from Trend Micro. At this moment, I collect reviews for Trend Micro InterScan Message Security, and I do work with that as well.

I gave this review an overall rating of nine.

We have many use cases. We deployed it, and we replaced Semantic with Trend Micro Deep Security for one of our customers in the Telecom sector. Some of our customers are actually looking for Microsoft solutions because most of the endpoints and the infrastructure are Microsoft-based, so they want the platform to be the same.

We are satisfied because we have experience deploying it in a big Telecom sector that has 7,000 NPCs, and they are running different services, Microsoft, Linux-based, and some other operating systems with many applications. They remain satisfied.

At different time spans, we often required technical support. Their portal is available, or we engage with this for any technical issue or if there is any breach, so they often get help from them, and their technical team works with our teams to find out different issues.

Trend Micro Deep Security has very good features such as virtual patching and almost all other features are the same as all the Endpoint detection and response systems are capable of doing the security features such as deep scanning, secret scanning, and the advantage of Microsoft is that it protects the cloud services as it protects the on-prem.

For threat detection, they use heuristic behavior detection, and sometimes, if they think there is a sort of attack which is new, they alert you, and they detect and show where the attack is coming from. They even suggest patching or any solution to stop that attack.

Trend Micro Deep Security is not a very cheap solution, but customers are satisfied. It's working, so every year, once they purchase it, and after a year, they renew it, or whenever the subscription expires, they renew it, unless there is any security breach.

Trend Micro Deep Security should provide a bundle solution for the customer similar to what Microsoft provides. For example, Microsoft provides ATP solution in their Defender, that not only filters the emails but also detects spam and malware in attachments, and it provides security for SharePoint solution, Teams, and other products available on the cloud.

Most of the features are adequate. Customers are satisfied. If there are some new types of attacks which are still not identified, these vendors will improve their solutions according to the attacks.

One important improvement would be to reduce their cost. The countries which are progressing, and which have budget issues, such as third world countries or poor countries, have very limited budgets. They have to pay in dollars, and the dollar is very expensive in most countries.

We have been working with Microsoft's Trend Micro Deep Security solutions for the last 3 years.

Implementation is not complex. It has been so far good. One important aspect that should be addressed is they should try to reduce their cost.

We have different experiences. Sometimes one Endpoint Security solution could not detect or mitigate any attack type, while the other one works adequately and sometimes, Microsoft solution doesn't work adequately for any sort of attacks. We have different sorts of experiences and responses from the customer side.

There are some minor issues, which are mostly NPC or user end issues such as when they use unwanted software or click on illegitimate or malicious links. There are issues regarding the end user, but as far as the software is concerned, we believe that software works fine until it is patched, managed, or monitored by the IT teams.

It's an enterprise company. They have many endpoints. There are more than 3,000 endpoints, but in most organizations, they are using a mix of these security solutions. They use it for comparison base, and they sometimes have budget issues, so they use it in different departments.

Support in Trend Micro Deep Security is very good. They have very professional engineers, and they often respond effectively. We are satisfied.

Positive

It's not difficult to maintain because we have experience that when the customer is trained adequately, and if they are really concerned about security, they maintain it properly. They have the IT teams, security teams to look after the server endpoints and monitor them, patch them and if there is any vulnerability or any detection found on the endpoints, they try to mitigate that.

Mostly in our country, customers are quickly migrating to the cloud. We get different sorts of requirements from the customers in different sectors, such as customers in the Banking sector have different requirements, customers in the Government sector have different requirements.

We give the comparison and demo to the customer. If the customer is interested in technical capabilities, we demonstrate the tools, setup, implementation, and their working. At the end, the customer is more interested in the cost.

We give the comparison and demo to the customer. If the customer is interested in technical capabilities, we demonstrate the tools, setup, implementation, and their working. At the end, the customer is more interested in the cost. This is the strategy. We give a fair comparison of all the products, and give them clear insights of the products, which makes it helpful for the customer to make a final decision to purchase the license or product.

If it meets the customer budget, we will recommend Trend Micro Deep Security.

We recommend them because the virtual patching is a very good feature. Customers are very satisfied, especially when there is Microsoft infrastructure. We pitch them the solution stating that if there is any security breach in the market, then this solution is capable, based on the information, it virtually patches your servers even if Microsoft has not released the real patch for that issue.

Implementation is not complex. It has been good so far.

We give the comparison and demo to the customer. If the customer is interested in technical capabilities, we demonstrate the tools, setup, implementation, and their working. At the end, the customer is more interested in the cost. This is the strategy.

It's not difficult to maintain because we have experience that when customers are trained adequately, and if they are really concerned about security, they maintain it properly. They have the IT teams, security teams to look after the server endpoints and monitor them, patch them, and if there is any vulnerability or any detection found on the endpoints, they try to mitigate that.

On a scale from one to ten, I would rate Trend Micro Deep Security as an eight.

Neutral