Trend Vision One Reviews

I use Trend Micro XDR to centrally visualize threats and have a single-pane-of-glass view of my security posture. In a single console, I can have visibility of all the security threats that occur in each of my Trend Micro Security consoles.

The most valuable feature is the Workbench engine.

The integration with third-party tools and with on-premises Active Directory needs improvement. 

I've been using it for about three or four years.

I would rate Trend Micro XDR's stability at nine out of ten.

For scalability, I would give a rating of ten out of ten.

I would rate technical support at eight out of ten.

Positive

Trend Micro XDR's initial setup is straightforward. We have seven people who manage the solution.

It's relatively well-priced.

If you are considering Trend Micro XDR, my advice would be to take into account your endpoints, servers, scanners, workloads, and mobile devices. Include every device you would like to monitor and protect.

Overall, I would rate Trend Micro XDR at nine out of ten.

My primary use case for Trend Vision One is for application device control, web reputation services, and malware scanning, as well as providing a remote malware scan option. I also use it for log inspection and endpoint identification.

Trend Vision One helps save us time.

I am satisfied with the security Trend Vision One provides for our cloud environment. It effectively identifies threats by regularly inspecting logs to establish a baseline of normal operations and reports any detected anomalies on the console.

Trend Vision One offers good visibility and control over our environment, providing valuable telemetry into network traffic.

Trend Vision One offers comprehensive insights into our infrastructure, allowing me to identify unmonitored endpoints, such as those without the software installed, which I can then verify through the console.

Trend Vision One allowed us to consolidate the Apex One and Deep Security consoles, which were previously used separately in our on-premises environment.

Trend Vision One offers superior integrations, enhanced tool capabilities, and expanded solutions for network security, firewalls, and remote malware scanning. Its ability to identify unmonitored endpoints and perform log inspection, which establishes operational baselines and detects anomalies, proves invaluable for threat identification. The platform's comprehensive reporting capabilities further enhance its value in maintaining a secure environment.

Trend Micro could improve its support for non-third-party products and product integrations. Technical support in our region needs improvement.

I have been using Trend Vision One for approximately one year.

Trend Vision One effectively scales to accommodate our workloads.

Trend Micro's support is suboptimal in my region, likely due to proximity to their resources, favouring areas closer to the company. Consequently, we utilize local support providers who offer better service.

Neutral

The deployment usually takes an hour, more or less. Trend Vision One was easier to deploy than other tools when integrating with the cloud environment.

We have a local vendor that provides support.

Trend Vision One is cost-effective because it offers detailed reporting and environment control features.

I would rate Trend Vision One eight out of ten because every tool needs improvement. Trend Micro has some low-cost services and minor areas for improvement.

Trend Vision One provides regular updates according to customer needs.

I would recommend Trend Vision One. There is flexibility, and their credit system is quite effective. 

One of the features I like in Trend Micro XDR is that you can drill down on the root-cause analysis for anything you find on the solution. I also like that it works for detection purposes. Behavior analytics is also what I like most about Trend Micro XDR. I love that it has features such as behavior detection, program detection, and memory scanning. By default, the solution protects against spyware, apart from the normal virus scan. Smart Scan and DLP are also available in Trend Micro XDR which I like as well.

A room for improvement in Trend Micro XDR is more visibility into the alerts. We do get alerts from the solution, but when we are away, we need to have more visibility.

An additional feature we'd like to see in the next release of Trend Micro XDR is reporting, particularly RCA reports because those will help us a lot. Right now, we need to log into the portal to drill down the RCA. For example, when an alert comes in, it will be blocked immediately by Trend Micro XDR. We get the message "This has been blocked", but when we want to drill down in terms of where it started, we need to log into the server, do the RCA, and drill down on it. While doing the RCA and drilling down on it, it would be good if we could get a report directly from Trend Micro XDR because that report could help us.

We've been working with Trend Micro XDR for more than one year, and we're still using the solution.

During the first time we used Trend Micro XDR, we had some issues in terms of stability, but later on, everything became stable.

Trend Micro XDR is a scalable solution.

My impression of the technical support for Trend Micro XDR is good.

We compared Trend Micro XDR against CrowdStrike and Palo Alto, but in terms of the features and pricing, we went with Trend Micro XDR. The solution had a really good price and we are getting almost all the features.

The setup for Trend Micro XDR was easy and didn't have much challenges, especially because we have centralized management so it was easy to manage.

The first time we implemented Trend Micro XDR, we had an integrator because we were on Trend Micro Apex One, then we wanted to migrate that existing solution to Trend Micro XDR, so during that time, we needed an integrator for the implementation of the solution.

Trend Micro XDR has a good price, and on a scale of one to five, I would rate it a four out of five in terms of price.

My company evaluated CrowdStrike and Palo Alto.

My company is working with Trend Micro XDR, an advanced version of the EDR solution.

There are around six hundred users of this solution, but only one person required for its maintenance. Normally, my company deploys this agent. There's another tool from where my company pushes this agent to the end user, pulls to the end user system, then scans from this console, then my company gets all the reports.

I would rate Trend Micro XDR seven out of ten.

Trend Micro XDR is useful for more extensive networks, and it's cost-effective for networks with over 500 or 1000 users.

I like that it is a comprehensive security solution with a lot of features. You can say XDR is an end-to-end security solution with endpoint security. It includes all your servers, networks, and other devices. The endpoint security solution does not cover this. Plus, machine learning and features like that are the main things in XDR solutions.

It would be better if it were more user-friendly. It would also be better if the implementation were more straightforward.

I have been selling Trend Micro XDR for two or three years.

Trend Micro XDR is very stable.

Trend Micro XDR is a scalable solution. We have about eight to ten clients using this solution.

Technical support is good. You have your own technical team and the Trend Micro team as well. Plus, Trend Micro itself is present in Pakistan. So typically, we don't have that many issues contacting them and getting support.

The initial setup is a little complicated. It is a huge solution, and it usually takes about a week or so to implement and deploy the solution. You will need at least two to three technical professionals to implement and maintain this solution.

Trend Micro XDR is expensive, and you have to pay for it yearly. 

I would recommend this solution to customers in the financial sector. I usually do not recommend this product to any company with about 100 to 300 users because it's not cost-effective. XDR is quite expensive, so we typically sell XDR to the financial sector, especially banking. They are the prime candidates for this kind of solution because of their extensive network.

On a scale from one to ten, I would give Trend Micro XDR a nine.

I work with it as a third party in other companies. I installed XDR in other companies. And then, I help them understand the tool, help them with developing the necessary use cases, and understand, for example, how to do a threat intel, how to do a threat investigation, and stuff like that. Sometimes, I work with it as well by implementing it and actively using it in the customer's environment.

The workbench feature is excellent. It helps a lot with understanding how the environment is working and how the threats are working in their own environment. It helps a lot to understand where the threat is coming from, where it is going, how is it being dealt with, et cetera. 

We do not use XDR to protect a multi-cloud or hybrid cloud environment. I have other solutions on the cloud, like Apex One, the endpoint protection feature in the cloud. I have Cloud One Workload Security, which is protection for workloads and servers where the main console is in the cloud. I'm mainly using this to protect an on-premises environment. 

I've been using it for emails, for networks, endpoints, workload servers, et cetera. It has the ability to cover all of those. The coverage is really important. The integration between all those different tools and those different assets makes a big difference in understanding the analytics.

It provides centralized visibility and management across our protection layers. That helps in a lot of ways. For example, the fact that it has some centralized visibility means we can do searches between email addresses and an endpoint. We can take a workspace, for example, and do IPS detection in a workspace and understand from which endpoint something is coming. 

We use the executive dashboards that they have almost every day. Once we see an anomaly or something that feels weird in the environment, we can go straight to work, straight to the detections, and we can take a look at it to see what's going on. 

We use the Risk Index mainly to help us understand a customer's environment. We use it to get a brief overview of how the environment is, how high their risk is, and then, given the score that we've received, to understand what is causing this risk and then give them suggestions on how to take the score down.

We use the Managed XDR feature. It just basically collects the telemetry and sends it to the console so we can use it in other parts. It has helped a lot with the team's workload. The detection has been really, really useful. It helps a lot to rank where we should put our efforts. Sometimes we'll have to take a deep investigation into some of the stuff we see. Sometimes other issues emerge as we dig. It's helped in detection.

We use the risk management attack surface capability to understand the vulnerabilities and how high a risk something is in the environment. It can help with detection. It's helped us effectively identify blind spots. 

The product has helped us decrease time to detect. We've had some issues with a couple of our customers in which the XDR helped us easily detect an issue, and it was fast enough for us to be able to react and respond quickly in order to mitigate damages.

The web viewer could be improved. I've had some issues with it in the past. 

The zero trust is a bit complicated compared to other parts of the solution. 

Mostly, I don't have any issues with XDR.

I've used the solution for about three years.

I haven't had any issues with stability. There has been no crashing to lagging. We occasionally get informed about maintenance that may cause downtime. 

We've had no issues with scalability. 

I've contacted support in the past. They are pretty good. They have a high understanding of the platform and the solutions. If they need to escalate, it's easy to do so. 

Positive

We did not use a different solution previously.

I was involved in the installation. We have an agent installed in the endpoints or a sensor connected to the mail sensors. 

The initial setup is straightforward. You just click through with a simple connection. 

It doesn't require any maintenance on my end. 

We had about four people handling the implementation. We just had to have some credential access, and once the connections were made, we had to distribute the sensors throughout the environment. 

You need the whole platform to use XDR. However, there are some activities you don't need XDR to use. 

I'm not familiar with their pricing and licensing. 

We are an official Trend Micro partner.

We do not yet use the automation capabilities found in XDR.

I'd rate the solution nine out of ten. 

After implementing XDR, have a good understanding of how the workbenches work to create a decent playbook. Use the service gateway to your benefit. Connect your active directories, make connections, and use integrations with your firewalls. These third-party integrations are really good, and they help you a lot with your environment. 

We use the solution primarily for monitoring. It's for running investigations.

If we need any endpoint logs, we're able to access them. It helps us with investigations. We can see, for example, if we are investigating email, the processes running, and any anomalous activity. It detects that kind of stuff. 

We are using MicroVision One and it helps us with centralized visibility and management across protection layers. Having a centralized view is very helpful. If we have everything in one place, we can see in one display all of the virtual information and attack rates, et cetera.  It makes it easier for an engineer to monitor everything. 

We use the risk index feature for the endpoints. It helps with the analysis of malware. It can automate scanning for day-to-day activities. 

Trend Micro helped us to decrease our time to detect when responding to threats. It has also helped reduce the amount of time used to investigate false positive alerts.

The support has been delayed at times. They could improve that aspect of the solution. 

I've been using the solution for about six months. 

The solution is stable. We've had a good experience. 

The solution can scale. I'd rate the ability to scale eight out of ten.

The support response can be delayed during investigations. 

Neutral

We did not previously use any other solutions. 

We did not handle the deployment. It was handled by Trend Micro.

There is a bit of maintenance required. However, the vendor handles it. 

Trend Micros handled the initial setup for us. 

I'm on the client side. I don't deal with the licensing directly. 

We use the solution across our network.

I'd rate the solution eight out of ten.

The information you get for the solution in terms of investigation, makes things easier. 

We primarily use the solution as security against ransomware as ransomware now has become the biggest threat for our customers.

Our central customer had a breach on the ransomware side. Even production is stopped by ransomware - which is why it's so important to protect against it.

The solution has similar features to Sophos. Every parameter security of Trend Micro sends the telemetry to the cloud. Then they try to analyze on the cloud. There's something like Deep Discovery for the sandboxing. Every parameter security will send the telemetry as well to the cloud.

The IPS prevention is great.

It's easy to set up the product.

The solution is stable.

You can scale the product.

It's affordable. 

Trend Micro doesn't have the next-generation firewall. They have the IPS TippingPoint, however, interms of the next generation firewall, Trend Micro doesn't have this as a part of their solution. 

We've been using the solution for three or four years. 

The solution is on the cloud and that makes it pretty stable. The accessibility of the cloud is better. They maintain the uptime so we don't have to worry about it. It's reliable. There are no bugs or glitches. 

The scalability is very good. Once again, being based on the cloud makes it very scalable. Right now, many, many people are using the product.

Most clients will start very simply with the basic functionality, like endpoint security. Then, they will move on to Deep Discovery for the sandboxing. Then they will move to another solution, like the IPS prevention system for the TippingPointing solution. Typically, they keep scaling and expanding to get more options and services. 

Technical support has been helpful and responsive in the past.

Positive

I Have also used Sophos, which does have a next-generation firewall. They are very similar solutions, however.

The implementation process is straightforward. It takes effect in eight days. For the Endpoint solution, it just depends on the number of endpoints that we deploy to customers. If it is small in size, like 50 to 100 endpoints, then it will take between ten and 20 days. If the endpoint number is around 1,000 endpoints, it will take more days to complete the deployment.

Typically, we have five to seven people that manage the implementation process. 

I'd rate the ROI at a four out of five. It offers good ransomware protection.

The pricing is okay. I'd rate it three or four out of five in terms of affordability. They are competitively priced. 

We are partners. We're also partners with Sophos. 

We are using the latest version of the solution. While we still use an on-premises version, most of the solution is now on the cloud. 

I'd advise potential new users to start using the basic check and move up from there. 

I'd rate the solution eight out of ten. 

The solution is used to secure our servers and server endpoints and acts as cloud security. It protects us and acts as an antivirus, antimalware, and web protector. 

There are lots of benefits. Definitely, it is protecting the enterprise from, you know, cyber attacks, including viruses and malware. We are protected from malicious websites and dangerous attachments in phishing emails.

It's capable of handling automatic responses. It can act to block certain files and clean up files as well automatically.

The solution has its own threat score and can give you details about events. It can recommend actions and show you the graph of execution to help you understand what is happening and what the impact is for the end-user machine. 

The threat database is continuously getting updated across the globe.

It's very stable.

The initial setup is easy.

Scaling is not a problem at all. 

There are certain items that are blocked, and another component is not working properly so the blocking does not happen correctly.

They have a DLP module in Tredn Moicros and they need to enhance its capabilities. 

I've only recently started working on the solution. I started working on the solution in March of this year. 

The solution is absolutely stable. There are no bugs or glitches. It is reliable.

It is easy to scale the solution. 

We have about two users dealing with XDR. They monitor work benching and logs. 

We previously used McAfee. I did not directly handle the product. XDR has more capabilities, including server, cloud, and network security.

The initial setup is very good, as they offer very helpful support. We didn't have any issues when it came to deploying it. It has a very good GUI that makes it easy.

The deployment started with the XDR component, which gets deployed. We add agents to the endpoints. We can see, on the dashboard, which is XDR enabled. For the cloud solution, we don't have to deploy as many agents. 

The network inspector also needs to be installed at the parameter level.

For Trend Micro  Deep Security, there are separate policies we need to configure as well.

The deployment typically takes a month to deploy if there are 500 resources. 

The support is very good, and there are quarterly health checks to ensure maintenance is very easy. The vendor handles the maintenance. 

An internal deployment would require a team. We're able to handle the process ourselves. 

The licensing is reasonable. It's not overly expensive. There is just a standard license. We do not pay additional fees. The solution is agent-based. The cost depends on the number of agents you have. 

We are using the latest version of the solution.

This is a SaaS solution. 

I'd recommend the solution to other users.

I would rate the solution eight out of ten.