Trend Vision One Endpoint Security Reviews

I primarily use the solution for endpoint protection. 

It's made it easier for us to monitor the security environment in general.

The DLP functionality is very good. It helps us effectively defend endpoints against threats such as malware or malicious scripts.

The solution offers advanced protection capabilities that adapt to protect against unknown and new threats. This is very important for me. 

Apex One provides us with a single console for cross-layer detection issues, threat hunting, and investigation. It helps me with monitoring and makes it easier. 

The learning curve is okay. It's not too hard to learn. The learning materials are helpful. I found the documentation very useful.

It's not difficult to administer Apex One. That said, you do need to have a person that has a technical background to administer it.

It doesn't take a long time to update from old to new versions. 

I've found that it isn't long before you realize the benefits of Apex One.

We haven't had any viruses or malware since moving to Apex One. 

The product has reduced the amount of time spent administering our security environment. We've reduced the time spent by about 10%.

It takes time to update when I update the security patch. I'd like updates to take less time. 

The cost could be improved. If it was cheaper it would be better.

I have no notes on what extra features could be added. 

I've used the solution for four or five months.

The stability is good. I am satisfied with the level of reliability.

We are able to increase its capacity and functionalities. We may increase usage in the future.

I do not have experience with technical support. I never called them.

I did not previously use a different solution. 

The solution is easy to implement. It took about three hours to implement it.

My team of maybe two or three people were able to handle the deployment. We have three people who can handle maintenance as well. 

Everything for the deployment was handled in-house.

The solution is expensive. 

The price is fixed. There are no additional costs.

I'm a customer and end-user. I am using the latest version of the solution. 

We do not utilize its ZDR services right now. 

My understanding is the solution offers virtual patching. I'm not sure if I've used it on my system or not. 

I'd rate the solution nine out of ten. I'm satisfied with the service of Apex One. It's easy to monitor.

We use Trend Micro to build our entire, CI/CD pipeline. In short, I check out the code from my VCS (Version Control System), then I run a static code analysis as the first job in the pipeline.

From that point onward, I can do multiple scans in multiple environments. For example, I can have the code checkout from my Dev environment, run the static code analysis, then I can do a folder scan. I perform the scan in my Dev environment, in the integration environment, and in the UAP environment. These are the multiple scans that you can run and enter on your application.

All the static code analysis is on the application-side, and the rest of the workflows can be triggered in several places throughout the pipeline and on the infrastructure side as well. I can use it to do VAPT (vulnerability assessment and penetration testing) throughout the entire pipeline.

Broadly speaking, it means adopting the DevOps culture of Trend Micro. DevOps culture is well adopted in Trend Micro. It's very comparable to Prisma Cloud. Palo Alto has recently informed me about their Prisma Cloud offering regarding CI/CD deployment.

We develop and deploy the CI/CD pipeline in the free workflow, using various tools like GitLab.

Palo Alto is a big competitor of Trend Micro.

Within our organization, there are roughly 1,000 plus users, using Trend Micro.

We definitely plan on using Trend Micro in the future. They are one of our preferred vendors, along with Forescout.

Forescout handles the initial stages of threat discovery and it integrates with SIEM.

If we are going to continue with Trend Micro as our endpoint security solution, then we need to have a SIEM solution, like IBM QRadar, ArcSight, Forescout, Micro Focus ArcSight.

Trend Micro does region-based scanning — the threats are shown in different regions.

I did some workshops based on tracking zero-day vulnerabilities, etc.

Trend Micro's coverage and scans can be broadened to encompass different types of classified threats based on different parameters.

For example, say I want to filter out all of the threats in The United States. In this case, I will see the US region and I will see the number of threats that are present on my infrastructure. This is referred to as threat intelligence.

When I was in this workshop, the filters always recommend that we start with the region as a first parameter. Once you get into the region (the US region), you might look at the different data centers within the US, then within the different data centers, you can drill down on the folder — on the number of hosts.

The host can then be extracted from the region and the region can be marked red. Red means there are a lot of vulnerabilities in a particular region. If Multiple hosts have multiple vulnerabilities, then the entire region will be marked red. Trend Micro somewhat shows this on their dashboard. In other words, the parameters should be improved, including zero-day filtering.

They should include easy-to-use connectors to make it easier to connect to SIEM. The integration environment has to be available so it can easily connect to SIEM. 

Also, you should be able to perform more scans.

I have been using Trend Micro for two years.

Trend Micro is both scalable and stable.

We are satisfied with the technical support. They are available 24/7.

The initial setup was very straightforward. I did the installation by myself.

Regarding deployment topologies, whether it's on-premises, a hybrid cloud, or a public or private cloud, installation is quite easy. It will be up and running within a couple of hours.

Once we deployed it, we had to connect the console to the dashboard. Once the dashboard was up and running, we could filter out threats by connecting to the Trend Micro Data Security Operations Center, which has a threat intelligence ability that highlights all of the threats. The data comes from the CMDB database and It shows us the CVS4 of each threat.

If you buy Trend Micro, you will also need to purchase a SIEM solution which is often quite expensive.

I would definitely recommend Trend Micro to other potential users.

On a scale from one to ten, I would give Trend Micro a rating of eight.

The solution is used for security management in the broadest sense. It was for antivirus and malware scanning. 

The client already phased the product out. However, it was used as endpoint protection.

I only worked with it for a couple of months, and we phased it out due to some technical reasons.  

The cloud-based management portal was okay.

It does help prevent various threats. While it's protecting in a broader sense, the issue is I can't see the results of what is happening. 

ApexOne does integrate with other security products. We had a different solution from Trend Micro running. We also are running a server-based solution available from Trend Micro, although they were not necessarily integrated. 

We had it installed within a Microsoft environment. 

If you are an administrator who needs to access the console, it's pretty straightforward. It's easy to administer ApexOne.

The solution provides you with virtual patching to protect against vulnerabilities. 

We were able to use Trend Micro's XDR services in conjunction with ApexOne. It helped give us some extra insights and additional security measurements.

In terms of protecting points against threats, it's hard to answer the question. I'd only worked for it for a couple of months. From what I'd seen, we weren't able to see well reporting-wise. For example, what it does, what it catches, and what it prevents, Defender 365 is way more advanced and transparent. The reporting can be improved. We'd like to have had broader insights as to what was happening on a machine.

As a user or as an administrator, you should be able to see what the product actually does. You would like to see what's happening. What's scanning, et cetera, and it doesn't do a good job like Defender 365 does.

We had some pretty severe issues in a VDI environment. Every time a machine reboots, it needs to fetch the latest updates. However, we had some caching issues, and Trend Micro did not update some specific components which caused VMs to fall out or some people not to be able to work on their VDI anymore. We had some support cases open with Trend Micro, however, it was not easy at all. It was pretty hard to comprehend our specific situation as it was a little in-depth.

I have used the solution for less than a year. 

We experienced instability with a few different Trend Micro products. Typically, after an update, we would have some issues.

The solution is scalable. 

We had severe cases with VMs falling down. Support took too long to help define the root cause of the issue. 

Neutral

We implemented Microsoft Defender 365 in its place. When you look at, for example, reporting from all kinds of incidents it seems to be better than what I have seen from Trend Micro.

There was a period of time when the company paid for both Microsoft licenses and Defender and the reason for the transition was to just have the one solution already covered under 365. 

The solution was deployed on-premises. The company used Citrix Cloud, however, the machines that people worked on were local. There was no cloud-based machinery.

I was not involved with the deployment of ApexOne. I can't speak to how long it took. 

Uninstalling or removing the product wasn't easy.

The solution did require maintenance. Every month we did an image update of the VDI environment. We manually had to make sure everything from ApexOne was exactly right, and the update process was very tricky.

I was not in a position to compare the cost of licenses. 

I'm an independent freelance consultant. I used the solution within the last company I worked for and used it as an administrator and a user. 

I'm not sure if I have noticed a reduction in viruses and malware since moving on to ApexOne. I worked with it for too short of a time period. We never had a real outbreak or anything.

I'd advise those considering the product to do a good proof of concept to really make sure the solution fits. Have your needs and everything in place. Get all the people who will administer the product involved and well-trained. Look at all of the reports as well.

Overall, I would rate the solution six out of ten.

We use Trend Micro Apex One for Endpoint detection.

We have deployed Apex One both on-premises and as a SaaS.

Trend Micro Apex One demonstrates a strong ability to protect endpoints against various threats, including malware, ransomware, and malicious scripts. The solution is considered one of the best in our region's market.

Apex One's advanced protection capabilities adapt to safeguard against unidentified threats, making this visibility crucial for endpoint security.

Apex One's runtime machine learning helps in detecting ransomware, for which we are grateful.

The learning curve for Apex One is easy. The documentation from Trend Micro is excellent, covering all aspects of security, and we also have access to their personnel if needed.

The administrative aspect of Apex One becomes easier as we continue to use the solution. Initially, we encountered some challenges with technical threats and passwords, but Trend Micro promptly assisted us in resolving these issues.

Apex One has helped our staff save time and has also assisted with saving resources.

Apex One has automatically blocked all malware and ransomware.

The deployment of endpoints in the cloud has reduced our employee workloads by 1,200 endpoints.

Apex One reduces administrative overhead by automating many tasks and consolidating all the information into a single dashboard.

We utilize Trend Micro's XDR in combination with Apex One. The pairing of XDR and Apex One enhances the security of our environment.

The most valuable feature is the vulnerability attack and detection since it enables swift action.

The UI has room for improvement. Trend Micro Apex One does not allow us to select a user and deploy a product while creating a new policy and adding users. For example, this limitation occurs when trying to add a USB block.

I have been using Trend Micro Apex One for three years.

Apex One is extremely stable, which is important to me.

Apex One is highly scalable.

The technical support is helpful and efficient.

Positive

The initial deployment took one hour and we had the assistance of the Trend Micro team.

The Trend Micro team helped with our first deployment.

Apex One has a high cost.

I give Trend Micro Apex One an eight out of ten.

Apex One is deployed in our government headquarters as well as 50 branches.

For maintenance, we have a technical team that conducts security and policy checks every quarter.

I recommend Apex One to others.

Apex One is used for endpoint security. I deployed it for two major financial institutions in my previous company. I also installed it in my internal lab in the previous company. 

I am currently not using it. I am currently at a banking site, but before that, I was at a managed service provider vendor site.

Apex One is a great solution for defending endpoints against threats such as malware, ransomware, and malicious scripts. It can detect malicious files, ransomware, and suspicious files.

I have not had any issues regarding detection. I have deployed it on two customer sites, and I have not heard of any issues from them. It provides great protection to endpoints.

We have seen a reduction in viruses and malware since moving to Apex One. It provides great protection. It detected ransomware for one customer. After you install it and sign in, it quickly detects all the viruses.

Apex One provides a single console for cross-layer detection, threat hunting, and investigation. It shows everything on the console. If you integrate it with Apex Central, then Apex Central provides a centralized dashboard of every product of Trend Micro. It provides full visibility into the environment. You get full visibility of all the products installed on the site such as DLP, encryption, XDR, and Vision One. Apex Central is the centralized management system.

Apex One integrates with other security products. I have integrated it with SIEM solutions. I have integrated it with LogRhythm and QRadar for log collection.

Apex One is an all-in-one solution. It provides application control, vulnerability management, and protection. It is also for EDR.

It is easy to administer. You have to specify the policy criteria and automate the policies.

Apex One reduces the administrative overhead. There is a 20% to 30% reduction.

Its reporting and dashboard are valuable. Its dashboard is easy to use.

It could be more customizable. Some clients' systems are slow after the installation of Apex One.

I have been using it from the start. It has been more than five years.

It is stable.

It is a scalable solution. Our clients were enterprise clients.

Their support team has been very helpful when we needed support. 

Neutral

I have not used any other solution.

I have experience with on-premises and cloud deployments. I prefer the cloud. The cloud setup is easy. 

The deployment depends on the client. If client requirements are clear, it is easy. Otherwise, it can be complex. In Pakistan, there are many problems that we are facing with the deployment process of Apex One because some clients are not pushing the agents to Active Directory or remote registry. We have to install it manually on every computer or place it on a shared server to install it on their endpoints.

The deployment duration depends on the number of endpoints. For more than 2,000 endpoints, it can take two to three months. If you are only installing the endpoint solution from a remote site without making any policies, then it does not take too much time. You just need to push the agent.

It requires maintenance. There are upgrades. They inform the customers and partners when they are having a major upgrade.

Overall, I would rate Trend Micro Apex One an eight out of ten.

I am using Apex One as a SOC analyst. I solve problems and open tickets if Trend Micro doesn't block, remedy, or quarantine threats. We don't deploy it. The Apex Trend Micro team deploys it at the customer's company, and we use it.

We use Apex One for things like URL and domain blocking, as well as detecting and blocking malicious files. We typically use the DLP solution, too. We can make groups and set policies that we push out. For example, we can set a policy for who is allowed to use a USB and who can use Zoom or any other software. 

I like Apex One's DLP and EDR features. The DLP is a good solution because it allows you to push policies. Source detection is another one. It automatically detects malicious IPs, domains, and URLs. Most of the time, it works automatically, but sometimes it doesn't quarantine or block, so we have to perform remediation manually and delete the file or application through PowerShell.

ApexOne has many advanced protection capabilities that help guard against new and unknown threats. It's critical because zero-day threats and ransomware have the most potential to destroy an organization. 

It's easy to use. Its GUI is so basic, and you can easily understand what is there or what is not. The interface is old-fashioned, but it's a good product. It's easy to administer, but I don't have the privileges to use it as an administrator.

Apex One could use some updates to its UI, threat modeling, and insights. I would like to see better integration with helpdesk platforms and more AI-driven features. It has some machine learning EDR capabilities, but they're not quite up to the level of some other solutions. 

I've been using Trend Micro products for the past year, including Apex One and Vision One. 

Apex One runs smoothly. I've never had any issues. 

Apex One is easy to scale. 

I also work with SentinelOne and CrowdStrike, which I regard as the most advanced solutions. Apex One's GUI is way too old school and their R&D is behind. Apex One has most of the features, but it's lacking some things that are necessary in today's landscape. 

SentinelOne is the clear winner out of these three because it offers end-to-end protection against anything malicious. If it's a Mac endpoint, SentinelOne can end the process through launch. SentinelOne also offers a more in-depth EDR analysis than Apex One. 

Trend Micro Vision One has a different feature set because Vision One is an XDR, but Apex One is an EDR. In my use case, Apex One is too old school compared to Vision One, which has more capabilities and advanced features. 

I wasn't involved in the deployment. The client deployed Apex One, and I use it in my capacity as a SOC analyst. It doesn't require any maintenance from our side. I am using it remotely. However, the client may need to update agents and things like that.

I rate Trend Micro Apex One eight out of 10. 

My primary use case is for end-point protection such as anti-virus, anti-malware, etc. 

The benefit for the organization is that we're getting secured.

One of the advantages for me is that it is very easy to use. Moreover, it's cloud-based, so we're not managing any local hardware here. This means it's always updated.

In future releases, I would like to see more advanced protection.

Trend Micro Apex One could improve advanced threat protection or include more in-depth endpoint protection.

I have been using Trend Micro Apex One for three years. I am currently using the latest version. 

I would rate it an eight for stability.

We have around 700 users from all departments, including front-end, back-end, and executive offices.

I would rate it an eight out of ten because you can easily add licenses to scale it up.

The customer service and support are very responsive.

Positive

The initial setup is easy. You just need to install the agent, which usually takes a couple of minutes. Moreover, maintenance is not required because the product automatically updates to the cloud.

What you get for the license, you get it. If you want to get another product, then you have to get another license for that. That's how they do it.

I would rate the solution an eight out of ten because there's still room for improvement.

Trend Micro Apex One has various applications. We use the solution for our network interface, and also for endpoint malware attacks. We have also conducted simulation testing, and phishing attacks using the solution.

We have implemented three levels of security to minimize endpoint security for user protection. We have also implemented a Data Loss Protection (DLP) policy to protect data in transit, data in motion, and data at rest. Additionally, we have implemented Server Deep Security to protect virtualized servers hosted in our organization.

Email security is the most valuable feature.

Trend Micro Apex One can improve its vulnerability assessment and monitoring tools.

In a future release, I would like to have more assessment tools and tracing testing.

I have been using the solution for two years.

The solution is stable.

I give the scalability a nine out of ten.

We have over 300 people using the solution.

Technical support provides an immediate response.

We previously used Kaspersky and switched to Trend Micro Apex One because of the Integrated Business Solutions. My goal was to accomplish two areas, particularly the Deep Security server. I was searching for my server and subsequently, data loss protection. For the two extra seasons, the cost was lower than that of Kaspersky and the features were more extensive.

The initial setup is not complex, but good documentation and knowledge are required. The person implementing the setup should be knowledgeable of all the features available, and the knowledge should be distributed among the end users so they are aware of what they will have and the benefits.

We completed the implementation within one week using three people. Our initial target was around three hundred users with endpoint protection and our deep security, which can virtualize our servers, as well as the additional features of the DLP.

The implementation was completed with the help of a consultant, a Trend Micro support person, and myself.

We have seen a return on investment since we implemented Trend Micro. We have been able to get rid of all the spam features and additional tools we were using. Another benefit is that we are using the solution to prevent malware issues, which is cost-saving every year. Definitely, if I look at the past five years, I have still managed to save the cost because the implementation cost is a one-time fee, not an annual cost. In a five-year period, the solution has saved us around 30 percent of the cost.

The price of the solution is reasonable but we also have to factor in the cost of the implementation which is expensive because we have to hire a third party.

The license fee for 300 users is approximately $2,000 USD and $500 USD for the implementation cost.

I give the solution an eight out of ten.

We require three people to maintain the solution.

I advise people to focus on data protection and network security as these are the key areas in order to utilize the full benefit of Trend Micro Apex One. This includes data protection loss per the CTAR, which provides cybersecurity with data loss protection, and the networks.