We're primarily using the solution for endpoints, for EDR. It's for server protection. Weve created a customer license portal and create policies around data loss and antivirus.
- "It has good vulnerability protection."
- "The solution only supports Windows and Mac. It would be helpful if it could support other OS, such as Linux."
What is our primary use case?
What is most valuable?
The policies that help protect data loss are very good.
It has good vulnerability protection.
There are a lot of different features available.
It's one of the best EDRs on the market.
The initial setup is easy.
What needs improvement?
The solution is issue-free. There are no missing features.
The solution only supports Windows and Mac. It would be helpful if it could support other OS, such as Linux.
We'd like to have more application and data loss features in the future.
For how long have I used the solution?
I've been using the solution since October 2022. I've had around six months of access so far.
How are customer service and support?
We've dealt with support in the past. If we need to get assistance, we can send them an email. They do help if you need some sort of troubleshooting.
How was the initial setup?
The initial setup is very straightforward and simple. It is not overly complex.
What's my experience with pricing, setup cost, and licensing?
We use the cloud and have a subscription for it.
The pricing is pretty expensive. I'm not sure of the exact cost, as I don't deal with licensing. I am on the technical side.
What other advice do I have?
We're partners.
I'd recommend the solution to others.
I'd rate the solution nine out of ten.
Which deployment model are you using for this solution?
- "Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC."
- "There isn't a lot I'd do to change it. The web interface could be improved to sort of make it a little easier to manage multiple clients out of one location. It could also be made a bit easier to sort of manage the licensing side of it."
What is our primary use case?
It is for endpoint protection. It is essentially a modern updated version of antivirus that has more heuristic and behavioral detection components.
We are using its latest version. In terms of deployment, it is a combination of cloud and on-premises. There is a local install on the endpoints, but it is controlled through a cloud interface.
What is most valuable?
Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC.
What needs improvement?
There isn't a lot I'd do to change it. The web interface could be improved to sort of make it a little easier to manage multiple clients out of one location. It could also be made a bit easier to sort of manage the licensing side of it.
In terms of additional features, probably the only thing would be a rollback function. They are actually working on it because they're halfway there with it.
For how long have I used the solution?
It is a new product. We have been using it since they released it. It has probably been about 6 to 12 months.
What do I think about the stability of the solution?
It is a very good product. I've been working with Trend Micro as a company for probably 20 years. Their products are pretty rock solid.
What do I think about the scalability of the solution?
It is easy to scale. We've got about 150 or 200 endpoints at the moment.
How are customer service and support?
I have contacted their support, and they are very good. Their response time is quick.
How was the initial setup?
It is very straightforward to install. It is pretty clear, and it takes a couple of minutes per device. You can automate that process of rollout as well.
What about the implementation team?
Because it was a new product, I reached out and spoke with technical and obviously salespeople and so on within the company to do some basic training and get my head around it to be able to deploy it. I could've researched that myself, and it would've been fairly easy, but I chose to sort of speak to my company rep and so on. He organized a bunch of short get-togethers with some of their technical staff, which was useful.
What's my experience with pricing, setup cost, and licensing?
It would be nice if it was a little bit cheaper, but I think it has a fair price. It is comparable to others in the market.
What other advice do I have?
It is basically Trend Micro's response to other products in the market such as SentinelOne and so on. I don't know how it stacks up against SentinelOne and others, but I suspect that it is sort of right up there.
Trend Micro is a very large company. They put a lot of money into the development of their products and so on. I would recommend it to others, and I have already been recommending it to others because our clients pretty much are on Trend Micro products. So, there would be legacy ones. To those who are coming for renewal, I recommend moving to XDR.
I would rate Trend Micro XDR about a nine out of 10.
- "It has the feature to track an attack back. If there is an incident or an attack occurs, you can get a bird's eye view of that attack. You can see how the attackers came in and how they managed the attack. You can trace an attack. If you are giving a presentation to the management, you can easily show it to them in a live environment how the attackers came, which is amazing."
- "It should integrate with more tools. There are a lot of tools that can do the PTP dump."
What is our primary use case?
It is used for protection and tracking back an attack. It can be deployed on-prem or on the cloud.
What is most valuable?
It has the feature to track an attack back. If there is an incident or an attack occurs, you can get a bird's eye view of that attack. You can see how the attackers came in and how they managed the attack. You can trace an attack. If you are giving a presentation to the management, you can easily show it to them in a live environment how the attackers came, which is amazing.
What needs improvement?
It should integrate with more tools. There are a lot of tools that can do the PTP dump.
For how long have I used the solution?
We have been providing this solution for almost a year.
What do I think about the stability of the solution?
Its stability is good. Its performance is also good.
What do I think about the scalability of the solution?
Its scalability is good. Currently, we have only one major customer who is using this solution.
How are customer service and technical support?
Their technical support is fine.
How was the initial setup?
It is straightforward.
What about the implementation team?
Its implementation is done based on the discussions with the customer. For the implementation part, one or two people are enough.
What's my experience with pricing, setup cost, and licensing?
It is costly. It is not that affordable for a small organization. Only big organizations can afford it. It is a new feature that has been added, so its price is fair.
Its licensing is probably subscription-based. It is for one or two years.
What other advice do I have?
It is a very good solution. It is a new product in the market, so you cannot compare it with many products.
I would rate Trend Micro XDR a nine out of 10.
- "What I like the most about Trend Micro XDR is that the detection and response domain extends to the network. It goes beyond the endpoint and includes data about the network which lets you pinpoint patient zero as well as the root cause of the attack."
- "In new versions I would like to see better implementation of the reporting features, especially in regards to EDR visibility."
What is our primary use case?
We have about three clients who are running Trend Micro XDR. It can be deployed on-premises, in the cloud, or wherever you want. As an endpoint detection and response solution, it is used to identify attack points that reach even beyond the individual endpoints, such as the network environment itself.
What is most valuable?
What I like the most about Trend Micro XDR is that the detection and response domain extends to the network. It goes beyond the endpoint and includes data about the network which lets you pinpoint patient zero as well as the root cause of an attack. Thus, it gives you full visibility from end to end.
What needs improvement?
In new versions I would like to see better implementation of the reporting features, especially in regards to EDR visibility. However, Trend Micro XDR has only been around for a year or so, so I know it's still being developed and I think it will get more mature given time.
For how long have I used the solution?
I have been using Trend Micro XDR for about a year, as it is still a new product.
What do I think about the stability of the solution?
Despite that it's a new product that is still being worked on, it's a stable product overall. There aren't any major problems with it.
What do I think about the scalability of the solution?
So far it has been scalable to our needs.
How are customer service and support?
Their support is good.
How was the initial setup?
The installation wasn't too hard. It's obviously a bit more difficult than installing something like Microsoft Office, because it's a security product. But in comparison to other security products, it is not that difficult.
It did take a little bit more time than expected to get it all set up, but that was primarily because it's a new product and our guys aren't as experienced in it as they would be with similar products. I would guess it takes about 20% longer than the rest, but that's only due to the learning curve.
In our case, maintenance of Trend Micro XDR in general requires around two engineers, because it's a bit more complex and you will need more configuration done than what you would do on a single endpoint.
What's my experience with pricing, setup cost, and licensing?
We have an annual subscription and I believe there is no option for monthly billing at the moment.
What other advice do I have?
While Trend Micro XDR is still new and can be rough around the edges, I would like to emphasize that it is a good product and it's working fine. I can definitely recommend it.
I would rate Trend Micro XDR a seven out of ten.
- "The telemetric report is the most valuable feature."
- "The agent system is very slow, it needs to improve its performance."
What is our primary use case?
We are currently still in the implementation phase. However, we do look forward to the telemetric report provided by Trend Micro XDR.
What is most valuable?
The telemetric report is the most valuable feature.
What needs improvement?
The Endpoint Basecamp we are installing to every system is not recognized. It is important to know what feature needs to be enabled.
The printer driver is automatically disabled, which is creating some concerns for us.
The agent system is very slow, it needs to improve its performance.
For how long have I used the solution?
I have been using the solution for three months.
What do I think about the stability of the solution?
It is a stable solution.
How are customer service and support?
We are working with technical support as the implementation has been difficult. They are taking too long to resolve the problems.
How would you rate customer service and support?
Neutral
How was the initial setup?
We are using a system integrator for the initial setup. It is difficult. I would rate it a three out of five in terms of difficulty to implement.
Which other solutions did I evaluate?
Trend Micro XDR is the first XDR solution we have worked with.
What other advice do I have?
I would rate Trend Micro XDR a seven out of ten.
Which deployment model are you using for this solution?
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
- "We've found the pricing to be reasonable."
- "The solution lacks compatibility with other products. It needs to integrate better with other surrounding solutions."
What is most valuable?
The endpoint features are excellent.
The email capabilities are great.
The stability of the product is quite good.
Technical support has been pretty helpful.
We've found the pricing to be reasonable.
What needs improvement?
The reporting could be better. We've had some reporting issues in the past. It would be ideal if they could improve it and make it more robust.
The solution lacks compatibility with other products. It needs to integrate better with other surrounding solutions.
For how long have I used the solution?
I've been using this solution for more than two and a half years at this point.
What do I think about the stability of the solution?
We've found the stability to be reliable. There aren't issues with bugs or glitches. I haven't found that the product freezes or crashes. It's been pretty good.
What do I think about the scalability of the solution?
The scalability is excellent. If an organization needs to expand the solution they can do so with relative ease.
How are customer service and technical support?
We've been very satisfied with technical support. They've been responsive and know the solution quite well.
Which solution did I use previously and why did I switch?
We did not previously work with other similar solutions before using Trend Micro. This is the first product we've used in this way.
How was the initial setup?
The initial setup is not complex. It's pretty straightforward.
What's my experience with pricing, setup cost, and licensing?
The pricing is quite good. It's not too expensive.
What other advice do I have?
We're a partner. We have a business relationship with Trend Micro.
I'd advise other organizations to try it out. It's a good, solid product. We've been quite pleased with the overall results.
On a scale from one to ten, I'd give it an eight.
- What is the biggest difference between EPP and EDR products?
- What is the difference between EDR and traditional antivirus?
- What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?
- Which is the best EDR for a logistics company with 500-1000 employees?
- What is the best EDR or XDR product for a company with 9000 employees?
- What to choose: an endpoint antivirus, an EDR solution or both?
- Do we need to use both EDR and Antivirus (AV) solutions for better protection of IT assets?
- How does EternalBlue work?
- What are the best on-premise Endpoint Security solutions for a Tech Services company with 10,000 employees?
- What is Mimikatz?