Trend Vision One Endpoint Security Reviews

We utilize Trend Micro Apex One for our endpoint security needs. This solution incorporates machine-learning capabilities that assist us in monitoring and preventing attacks.

Trend Micro Apex One effectively safeguards our endpoints against threats like malware and malicious scripts, provided that we accurately define our policies.

The advanced protection capabilities of Trend Micro Apex One, which adapt to safeguard against unknown and stealthy threats, are commendable. The solution scans our system and generates a repository that it can subsequently cross-reference when an unfamiliar application attempts to access or install a file on our system, thereby restricting access.

It is important for our organization that the runtime machine learning capabilities of Trend Micro Apex One can assist our organization in defending against ransomware, especially when we activate the behavior monitoring feature.

It is important that Trend Micro Apex One offers a single console for us to investigate threats.

Trend Micro Apex One is easy to learn. Additionally, there are numerous helpful training videos available online, along with a support site designed to assist with any issues.

Administering Apex One is easy through its user-friendly console.

Apex One has nearly all the features necessary to safeguard us from malicious or viral attacks. The solution incorporates proactive machine learning, web application capabilities, and real-time scanning features. Furthermore, we have the capability to install this agent on our server. Apex One encompasses a wide range of options that allow us to create policies on our server.

Apex One has helped reduce the number of viral attacks in comparison to our previous solution.

The deployment of the services endpoint in the cloud has helped to decrease our employees' workloads by 30 percent.

Apex One has reduced our administrative overhead by 30 percent.

Trend Micro's managed XDR service, in conjunction with Apex One, adds value by offering visibility into our environment.

The most valuable features are web application features and real-time scans.

The support is slow and has room for improvement.

I have been using Trend Micro Apex One for almost two years.

It is stable.

Trend Micro Apex One is scalable.

The technical support is not consistent and can take time to resolve our issues.

Neutral

Previously we used Symantec Endpoint Security and switched to Trend Micro Apex One because we were not receiving sufficient support from Symantec Endpoint Security after its acquisition by Broadcom.

The implementation was completed through a third-party partner.

We evaluated CrowdStrike and two other solutions.

I would rate Trend Micro Apex One eight out of ten.

I recommend Trend Micro Apex One for endpoint security.

I have learned that there are features that assist administrators in granting access to specific servers by adding a MAC address and creating a policy.

We're using Apex One for data protection. It's an excellent solution because of its machine learning and other features.

Apex One delivers some components we use that aren't available in other solutions. We've seen a reduction in viruses and malware since switching to Apex One. I would estimate that the number of incidents has been reduced by about 25 percent. 

We use Apex One as a service, with a few licenses in the cloud. When it's deployed on-prem, you need to maintain a physical site and deploy it within the environment. It's easier to manage on the cloud. I had no problems implementing policies on the application. It reduced the workload by about 50 percent. It saves some money because you do not need to maintain internal infrastructure. It can reduce your spending on Cisco hardware. 

I like Apex One's DLP capabilities. You can scan and control data leakage on the user system level. Our previous solution would look at things from the user desktop level, and you had to have an agent deployed to collect that. The solution offers different levels of protection that you can invest in. 

For example, you can implement Deep Security, which provides more advanced protection for your assets. If you are working in an industry like finance or health care, you need to secure critical user data on the servers. Apex One's ML-driven ransomware protection capabilities are critical these days.

Apex One provides a central server for monitoring. You can monitor activities, issues, and compliance. From the dashboard, you can see the number of systems experiencing alerts or find other system information. Having a single console for monitoring is essential because it's difficult to monitor on-premise systems one by one. I have integrated Apex One with QRadar. 

The ease of use varies depending on the person, but you can usually learn how to do it by going to the Internet to find out how. I wasn't familiar with the solution when I started, but I could figure it out by using Google. 

Apex One could improve endpoint patching. For example, Kaspersky can download Microsoft updates and install them. Having that feature in the cloud application would help a lot.

I have used Trend Micro ApexOne for three years.

Apex One is stable. 

The SaaS version of Apex One is scalable and can increase with demand if you have the licenses. If you're using the on-prem solution, you may need to purchase some additional hardware sources. 

I hardly use Trend Micro's technical support because I haven't faced any major issues. When we were using another solution, we had some challenges with support. Trend Micro is a little more responsive. 

We were previously using Symantec antivirus but switched to Apex One because we were looking for a solution that also offered DLP. Symantec has limited DLP capabilities. With Apex One, you can also implement the DLP tool at the client level as well as the endpoint.

Deploying Apex One was reasonably straightforward and took almost a month because we had to deploy it across multiple locations. Three or four engineers are enough to handle the deployment if you have any kind of organizational access and data purposes.

First, we had to identify and prioritize our assets. We did some testing on the low-level assets to analyze the solution's impact and adjust the policies. Some things might be inappropriately blocked. We deploy for a limited number of applications first to ensure they're running smoothly. After we install the antivirus, our full schedule is used for the other applications or on servers and production only.

Apex One is a bit expensive, but the additional AWS costs are limited. It's competitive compared to other solutions in the market.  It's a good price for the functionality that it provides.

We evaluated Kaspersky and CrowdStrike. The other solutions were too expensive. 

I rate Trend Micro Apex One eight out of 10. I would recommend it. 

I am supporting many clients with this solution. Each of my clients is using a different version based on their requirements.

Trend Micro Apex One is used for security for our endpoints, such as Microsoft Windows and mobile devices.

The most valuable feature of Trend Micro Apex One is the response time and detection module.

The solution could improve the Linux XDR functionality. It is not mature. There could be some improvement in the area of the use cases. For example, improvement is needed in OTN. 

There are times when the solution reboots during the installation that could be minimized or improved.

I have been using Trend Micro Apex One for approximately four years.

The solution can be unstable depending on what version is being used.

I rate the stability of Trend Micro Apex One a seven out of ten.

We have over 25,000 users using this solution and approximately four clients.

The solution is scalable.

I rate the scalability of Trend Micro Apex One an eight out of ten.

The support from Trend Micro Apex One is helpful. However, they only provide documents for XDR multiple integrations that could be improved. We had to search for more information ourselves.

I rate the support of Trend Micro Apex One an eight out of ten.

Positive

The initial setup of Trend Micro Apex One is simple if it is a fresh installation and can take only minutes. However, if there are other solutions set up prior it will take more time.

There are use cases that require assistance to implement the solution.

I have approximately five people for the maintenance of the solution.

I rate Trend Micro Apex One an eight out of ten.

It serves as a comprehensive solution for antivirus scanning across all endpoints. It facilitates the deployment of the application portal within the access center, ensuring device control for vulnerability protection which enables the implementation of device-blocking measures to enhance security.

It safeguards endpoints by detecting threats like malware or malicious scripts, employing features such as behavior monitoring and machine learning. This includes detecting zero-day attacks and analyzing application behaviors for enhanced security. It delivers excellent products for effectively safeguarding endpoints, utilizing advanced features that enhance protection and mitigate various threats. It is equipped with advanced ransomware detection capabilities through real-time machine learning. 

This detection is not solely reliant on signatures; instead, it incorporates built-in features for proactive identification of ransomware threats, offering an advanced and pre-emptive approach to detection. A single console facilitates cross-layer detection, and access to the central console is necessary for on-premises solutions. In the SaaS-based model, the EDR console serves as the unified interface. 

This single console allows for threat hunting, investigations, incident management, playbook creation, and incident response. It is essential as it provides end-to-end visibility into the entire IT security environment, especially in EDR. However, challenges may arise when dealing with endpoints that contain files lacking signatures or behavior detection capabilities. To address this, a sandboxing solution becomes crucial to analyze and understand the behavior of such files. 

It offers the capability to swiftly deploy updates to endpoints, allowing for the immediate deployment of patches or signature files in response to incidents or attacks. In scenarios with no existing signatures, the support team from the OEM can provide the necessary signatures, and these can be promptly pushed to the Apex One Center. 

Timely updates are crucial for us as they help us maintain security. 

Since transitioning to Apex One, we have observed a notable decrease in viruses and malware. 

Our product now detects threats much faster, leading people to express confidence in the effectiveness of our custom machine-learning capabilities, evident in the significant reduction in detection times. Utilizing an independent cloud has significantly reduced the workload for our staff by eliminating the need to manage hardware, operating systems, and applications. 

Daily tasks such as console endpoint restarts, application protection, and agent communications compliance become more straightforward. The ease of managing these aspects is a notable advantage. 

Moreover, the SaaS solution proves particularly beneficial when customers are unable to provide on-premises infrastructure for applications. Users can effortlessly log in, deploy agents, and manage tasks without the complexities associated with on-premises solutions, which depend on factors like hardware, databases, operating systems, networks, proxies, and other variables.

The standout and highly valuable feature of Apex One is its XDR capability. 

Featuring advanced protection capabilities that dynamically adapt to defend against evolving and emerging threats, Apex One stands out. Detecting ransomware and utilizing machine learning capabilities are crucial features, especially for safeguarding customer environments. 

It stands out as a pioneer in incorporating these features within its antivirus solution. Trend Micro was the first to integrate behavior-based analysis, signatures, and reputation-based detection to enhance protection against ransomware and other threats. 

The learning curve for Apex One is minimal, as it is a straightforward and user-friendly product. The graphical user interface is simple, making it easy to navigate without the need for additional training or complex documentation. 

The terminology and features are presented in a common and basic language, ensuring that anyone can comprehend and work with the product easily. 

Administering it is also a straightforward process. It offers virtual patching capabilities to safeguard against significant vulnerabilities. This involves an active signature-based approach to virtual patching. 

The added value that managed XDR brings to our Apex One deployment is significant.

There is room for improvement in the reporting aspect. Custom-level reporting is crucial for in-depth analysis and its significance is evident in the effectiveness of managing and prospecting products.

I have been working with it for fifteen years.

In terms of stability, Apex has proven to be a reliable product with no reported downtime requirements. In my experience, I haven't encountered any significant challenges. The only instances of the console being down were typically related to database issues, such as log saturation or routine database maintenance.

It's a scalable solution with good performance.

The support has been challenging, particularly when utilizing bots during customer calls, as it often results in ineffective solutions. The primary issue revolves around prolonged resolution times. Even with ongoing follow-ups, cases remain unresolved within the anticipated timeline. The consistent request for logs implies that multiple submissions may be necessary for a potential solution or resolution. Enhancements in specific areas are required to improve the overall support process. I would rate it seven out of ten.

Neutral

Deploying the on-premises solution is a seamless process, especially when dealing with the application components. Apex One or Apex Central is the management console, with Apex One managing antivirus consoles, groups, and parts. Policies can be efficiently pushed through Apex Central. The agent itself is equipped with XDR capabilities for on-premises solutions. Conversely, an additional service installation on endpoints is necessary for cloud-based implementations. The deployment process is relatively quick, typically taking around half an hour

Opting for cloud solutions can provide a more cost-effective and efficient alternative, with fewer dependencies on physical setups and unexpected costs associated with on-premises tasks.

Integration capabilities exist for Trend Micro with its own suite of security products, allowing seamless collaboration. However, integration with Apex One may not be supported regarding other security products from different vendors or OEMs, such as Central One, CrowdStrike, or Palo Alto. Overall, I rate it nine out of ten.

I create real-life scenarios with products and work with products such as Trend Micro, CrowdStrike, SentinelOne, Palo Alto, etc. Trend Micro is not my focus item or brand. My focus is more on CrowdStrike, but I am using Trend Micro in my lab environments to check the real-life situation. I am not okay with what vendors share on their websites, so I give my customers and partners real-life scenarios.

I offer Trend Micro Apex One to our customers just because they want a secondary signature-based solution.

Apex One did not work as per my expectations. I am doing zero-day attacks by myself, and for fileless attacks, it does not work at all.

With the current architecture, Apex One does not have advanced protection capabilities that adapt to protect against unknown and stealthy new threats. It might have these capabilities in the future if they change the architecture. For instance, McAfee merged with FireEye and created a new brand Trellix. They changed the overall architecture. If Trend Micro considers shifting its architecture, it can get this kind of protection.

Apex One is okay for detecting ransomware with runtime machine-learning capabilities. It has some signature-based protection against ransomware, but it may miss the ransomware, which has been a huge threat at least for the last seven or eight years. It is the foundation of zero-day protection, and that is why I am looking for a more capable solution besides Trend Micro.

Apex One integrates with other security products. As part of this integration, when a threat is detected in the network sandbox, it deploys rapid updates to endpoints, which has huge importance because if you can respond to events in a short time, you get the least damage from attacks. It is of huge importance.

Apex One provides us with virtual patching to protect against vulnerabilities even before a patch is available for the source of the issue, but it is a problem in itself because it consumes too many resources on an endpoint. It is a good feature, but it is a problematic feature because it consumes lots of the system resources. If you use signature-less architecture, you do not have to deal with virtual patching because all attack types are already addressed with some framework, such as the MITRE ATT&CK framework. You do not have to deal with virtual patching at all.

There has been no reduction in viruses and malware since moving to Apex One because my customers are using it as a secondary solution. They have primary products, and there are not many things left for Apex One. My customers are using it as a secondary solution just because of their habits of using signature-based. Some of my customers could not understand the concept of signature-less protection. Antiviruses have been there for 40 years or so, and their habits are a little bit hard to change. That is the reason why I am offering this product.

I offer this solution only if a customer is looking for a signature-based protection solution. Its database is better than most of the endpoint protection solutions.

It is weak in terms of intelligence. By implementing Trend Micro Apex One, I wanted to see real-life scenarios. I deployed it on 50 clients to check if I could do lateral moments and zero-day exploits. I wanted to check how the zero-day protection works with Trend Micro. It fails with most of them because it is signature-based. They are not looking at the MITRE ATT&CK framework, so with zero-day attacks, it mostly fails. Instead of signature-based, Trend Micro may want to change the architecture to use more behavior analysis. Behavior analysis is included with Trend Micro, but it is not a complete set, so it needs enhancement.

Apex One does not provide a single console for cross-layer detection, threat hunting, and investigation. Managing it is a little bit hard. You have to use different consoles for Apex One, Deep Security, and Trend Micro endpoint protection, so managing it is a little bit tricky.

In terms of the learning curve, Apex One is easy for me, but regular users may have some issues. The management of Trend Micro products is a little bit tricky. Apex One does not include every protection in itself, so you have to use endpoint protection, and you have to use Deep Security. If three of them come together, at some point, it will be competitive with next-generation antiviruses or EPPs such as SentinelOne, Microsoft, CrowdStrike, etc.

Its implementation takes too much time. With CrowdStrike, I do not have to restart any operating system, but with Trend Micro, I have to.

Its administration is also a little bit tricky. It is easier when you have background knowledge.

I have been using this product for a year.

Its stability is quite good. I cannot complain about the stability.

It sometimes also depends on luck. The product can sometimes conflict with other products, but to this day, I never encountered any issue like that.

It is a little bit hard to scale as compared to CrowdStrike. I am using on-prem solutions most of the time. With on-prem solutions, it is a little bit hard to maintain, deploy, or scale a product, but cloud products are easier to scale.

I have a centralized customer, and I also have customers who have distributed locations all over Turkey, so I have both types of customers.

It takes a little bit of time, and it can be improved. Sometimes, I get a response in two days, and at other times, I get a response in two hours. It depends. More consistency would be great, but I have already gotten used to this kind of issue, so I cannot complain at all. I would rate them a seven out of ten.

Neutral

I am using other server protections and intelligence products. I still have CrowdStrike in my portfolio. I have clients for that, and I am okay with CrowdStrike.

Its deployment takes time. If I have to deploy it in a huge company with over 10,000 clients, it takes a little bit of time. If I am using CrowdStrike, it would take only two or three days, whereas Trend Micro takes more time. I have not measured the exact time difference, but it takes more time compared to other solutions or the next-gen antiviruses. It also depends on the environment because organizational units are not available all the time.

I deployed it on the cloud and on-premises. It depends on the end-user scenarios and topology. In Turkey, customers mostly prefer on-prem solutions, but this is changing day by day. Customers in Turkey tend to have their information on-premises. If a customer wants an on-prem solution, then I offer them the Trend Micro product or Trellix product. It also depends on their budget.

Its deployment is not too complex in my experience, but from the customer perspective, it is a little bit tricky. It takes a little bit of time. They have to have a little bit of background knowledge.

The implementation strategy varies. Sometimes, I use third-party solutions, and sometimes, I am just pushing from the central management console. It depends on the customer's topology.

In terms of maintenance, it does require maintenance. It depends on the company budget because some of my customers have a few locations in Turkey, and sometimes, they have only one IT specialist. They send that one person everywhere in Turkey or to multiple locations. If they have more than one IT guy and if they are also distributed, they do not have to send those guys to other places. It depends on the customer's budget.

If I deploy the product, then one person is enough, but if I have to leave it to my customers, they need two or three people. They are usually IT specialists, but they are not so knowledgeable.

It takes time, but it is better than some of the other products such as Symantec. Symantec takes more time compared to Trend Micro.

It is okay. Compared to Sophos, it is a little bit expensive, but it is a good product and it is better than Sophos, for instance. It is equivalent to Trellix.

Its cost depends on the country. I am in Turkey, and Trend Micro is not so affordable in Turkey. SMB companies are looking for cheaper products. In Turkey, enterprise customers tend to use Trend Micro, and if they have more money, then they use next-generation antivirus or EPP products such as SentinelOne, CrowdStrike, or Microsoft E5 package.

I evaluate most of the popular brands such as Trellix, Sophos, and Kaspersky.

Trend Micro Apex One has some good benefits, and CrowdStrike also has some benefits. I would recommend Apex One depending on the scenario. I have to check it with my customer first. I have to identify their basic needs and what they want to do. Sometimes, it just matches the requirements, and sometimes, it does not, so it depends.

If you are looking for the productivity of employees, go for a signatureless solution.

For an SMB, I would rate it an eight out of ten.

We primarily use the solution for our endpoints. We do occasionally use it for some servers as well.

The general anti-virus on offer is the solution's most valuable aspect.

We're actually looking to upgrade to more sophisticated ADL products. We need a more sophisticated endpoint. We need to have the ability to automate those instant response processes.

I've been using the solution for about a decade. It's been about ten years at least.

The solution is very stable. It doesn't crash or freeze. There aren't bugs or glitches. We find it to be very reliable at all times.

We have between one and 2,000 users on the solution at any given time.

We haven't needed to scale up in the past few years, so I can't speak to its ability to do so.

We have a separate team in-house that handles tickets, therefore, I've never been directly in touch with technical support myself. I can't speak to the level of service they provide.

Since I have been working at the organization, the company has always used Trend Micro. I don't know if they used anything else prior to that. That said, we use a number of other services as security in depth. We have other gateways and firewalls and a bunch of other items that we use.

I wasn't part of the team that implemented the solution. I wouldn't be able to say if it was complex or straightforward.

It's pretty low-maintenance. We do continuous updates and we also update the backend security appliance that goes with it, which probably happens three or four times a year.

The costs of the service fluctuate for us; I can't really say how much it costs our organization in general. I do know that it's not expensive. cost-wise, it's on the lower end of the spectrum. The licensing we have is all-inclusive; there aren't any extra costs involved. If we decide to stay with Trend Micro and upgrade to a better service, we'll be paying a higher price.

We're currently looking for another solution that may be a bit more sophisticated than Trend Micro, so we are currently evaluating other options. We're down to two or three other vendors. Those we've looked at include an upgraded Trend product, Microsoft Defender ATP, XDR, Crowdstrike and MacAfee.

Some of the other products give the capability of virtual sandboxing, endpoint threat detection, automated response, that kind of service.

We're just a customer. We don't have a business relationship with Trend Micro. We're using the latest version of the solution.

OfficeScan offers basic anti-virus security, but if you're looking for more advanced security features, you really need to look at more sophisticated and modern services.

I'd rate the solution five out of ten.

Trend Micro Apex One has various applications. We use the solution for our network interface, and also for endpoint malware attacks. We have also conducted simulation testing, and phishing attacks using the solution.

We have implemented three levels of security to minimize endpoint security for user protection. We have also implemented a Data Loss Protection (DLP) policy to protect data in transit, data in motion, and data at rest. Additionally, we have implemented Server Deep Security to protect virtualized servers hosted in our organization.

Email security is the most valuable feature.

Trend Micro Apex One can improve its vulnerability assessment and monitoring tools.

In a future release, I would like to have more assessment tools and tracing testing.

I have been using the solution for two years.

The solution is stable.

I give the scalability a nine out of ten.

We have over 300 people using the solution.

Technical support provides an immediate response.

We previously used Kaspersky and switched to Trend Micro Apex One because of the Integrated Business Solutions. My goal was to accomplish two areas, particularly the Deep Security server. I was searching for my server and subsequently, data loss protection. For the two extra seasons, the cost was lower than that of Kaspersky and the features were more extensive.

The initial setup is not complex, but good documentation and knowledge are required. The person implementing the setup should be knowledgeable of all the features available, and the knowledge should be distributed among the end users so they are aware of what they will have and the benefits.

We completed the implementation within one week using three people. Our initial target was around three hundred users with endpoint protection and our deep security, which can virtualize our servers, as well as the additional features of the DLP.

The implementation was completed with the help of a consultant, a Trend Micro support person, and myself.

We have seen a return on investment since we implemented Trend Micro. We have been able to get rid of all the spam features and additional tools we were using. Another benefit is that we are using the solution to prevent malware issues, which is cost-saving every year. Definitely, if I look at the past five years, I have still managed to save the cost because the implementation cost is a one-time fee, not an annual cost. In a five-year period, the solution has saved us around 30 percent of the cost.

The price of the solution is reasonable but we also have to factor in the cost of the implementation which is expensive because we have to hire a third party.

The license fee for 300 users is approximately $2,000 USD and $500 USD for the implementation cost.

I give the solution an eight out of ten.

We require three people to maintain the solution.

I advise people to focus on data protection and network security as these are the key areas in order to utilize the full benefit of Trend Micro Apex One. This includes data protection loss per the CTAR, which provides cybersecurity with data loss protection, and the networks.

We use Apex One for Antivirus only.

Our company currently has more than 8,500 machines with the Apex One agent installed, including servers and workstations. We are a 100% Microsoft Windows environment.

Being a financial institution, data integrity is paramount to keeping our customers' information safe, as well as the well-being of the bank. We use the Apex One web console to review logs and triage any infections that may be occurring or that have occurred.

We really like the ability to have different policies to keep servers and endpoints unique to their own policy.

Apex One has streamlined our AV. We use the SaaS instance in the cloud.

We use real-time scans, manual and scheduled scans for viruses, malware, grayware, ransomware, etc. We also use other modules like Behavior monitoring and predictive machine learning, malicious web tracking, and blocking.

We were previously using the Trend Micro OfficeScan antivirus product, so it was only natural that we upgraded to the Apex One product when we decided to upgrade. The SaaS instance in the cloud was right for us.

We really have found the web reputation monitoring and the behavior monitoring portions to be highly valuable. These modules really cut down on careless user impact.

Behavior monitoring keeps ransomware from taking hold.

Real-time scans also monitor files as they are accessed, downloaded, sent, etc.

We have our environment set up to alert our security department not only when endpoints are infected, but for anything that is considered a low risk that may need further investigation.

A daily check of the logs helps us keep an eye on those things.

The console is divided into two parts. One for the policy and configuration, another for agent management. I'd like to see the different interface components combined into one, or be allowed to get to the agent management portion without having to log into the main console.

Another item that I would like to see change is the fact that, on occasion, the console will be updated and items that I once knew the location of have moved to a different location. I would like to see a model where we are alerted to the changes as they happen.

We have been using Trend Micro Apex One for six months.

Stability-wise, we have no complaints. We have had zero downtime with our SaaS instance.

From what I've seen, we would have no issue adding more policies, endpoints, etc. to our environment.

Our account manager and lead tech were essential in setting this up and getting everything the way we needed. They were quick to answer our questions and very knowledgeable.

We were an OfficeScan portion, which was rebranded and upgraded to Apex One.

The initial setup was very straightforward.

Go to the site, answer a few questions and within five minutes, you're up and running.

We did the work in-house, with support from our Trend team if needed.

Our ROI is yet to be determined, as we have not had the product long enough.

The SaaS version is competitively priced and amazingly easy to set up.

We evaluated CrowdStrike, Carbon Black, and FireEye.

We have really had a good experience so far with Apex One.