I haven't worked on the tool to see how it works for security workflow. My customers have not seen any challenges while working with Trellix Endpoint Detection and Response (EDR) in terms of integrations. The tool does not support any AI and security initiatives. The tool is suitable for enterprise companies. If businesses are completely on the cloud, then the tool is not required. If a company has a hybrid cloud model with an on-premises model, then it will be a good tool to use. I rate the tool an eight out of ten.
Our clients are usually medium-sized and enterprise businesses. Overall, I would recommend Trellix EDR to others. I'd rate it eight and a half out of ten. No EDR or XDR solution gets a nine from me right now because they all have room for improvement.
Technical personnel often recommend Trellix Endpoint Detection and Response (EDR) for environments that are not necessarily small, but rather SMBs, those with around 50 computers. EDR solutions are increasingly aligned with the evolving threat landscape. Trellix EDR provides advantages beyond just detection and response; it facilitates thorough investigation. It operates more like a layered approach, enabling detailed investigation through Trellix Investigator. This allows you to drill down into threats. With real-time search capabilities, you can monitor threats as they occur. Historical search features let you trace when a threat entered the environment and its progression. This granularity extends to file searches and other detailed inquiries, simplifying and enhancing threat management tasks. In terms of integration, there is still room for growth. Currently, apart from basic anonymized data sharing, there isn't much integration visible. The ability to leverage EDR with other security solutions seems limited, except perhaps through programming. Trellix EDR has the potential to be among the top EDR solutions with a few adjustments. It could become the best out there. When considering factors like support, pricing, and ease of use, Trellix EDR has the opportunity to excel. However, currently, there are areas where it can enhance user experience, particularly in simplifying tasks that end users might find challenging on the EDR platform. While it promises to enhance security posture and threat detection speed, these improvements may not be immediately apparent to users, impacting their confidence in the product. Overall, I rate the solution a seven out of ten.
information security at a insurance company with 201-500 employees
Real User
Top 10
2024-05-30T13:52:00Z
May 30, 2024
Trellix Endpoint Detection and Response (EDR) handles security incidents but generates multiple false positive alerts. If the solution is fine-tuned from time to time, then true positive results can be expected accurately. After implementing Trellix Endpoint Detection and Response (EDR) in our organization, we have witnessed great security efficiency. I would recommend the solution to others as it's very easy to use. I would rate the solution a seven out of ten.
Learn what your peers think about Trellix Endpoint Detection and Response (EDR). Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
IT Management Specialist at a computer software company with 10,001+ employees
MSP
Top 5
2024-02-22T16:44:43Z
Feb 22, 2024
We also have a DLP problem with Outlook. Sometimes, people cannot send emails because of an error. We detect the threat, and our clients manage the response. We send a communication, and the clients manage the response for the threat detected. We only administer the tool. Overall, I rate the product an eight out of ten.
Senior Vice President IT at a tech services company with 11-50 employees
Reseller
Top 5
2023-12-19T16:27:28Z
Dec 19, 2023
People must always evaluate the product first. They must see the difference in manageability and flexibility of the licenses. They must also consider the manageability and flexibility of the software before making a decision. Overall, I rate the solution a nine out of ten.
Trellix Endpoint Detection and Response (EDR) is a product that is meant for enterprise-sized businesses, and it would not be good for small and medium-sized businesses. I rate the overall tool a nine out of ten.
Security Architect at a tech services company with 1,001-5,000 employees
Real User
Top 10
2023-07-18T08:51:45Z
Jul 18, 2023
We are planning to change the vendor. We have one more year of contract on the product. Companies must use EDR, but they must research before choosing vendors. Overall, I rate the solution an eight out of ten.
My company does provide the solution at a good price for our customers. The solution needs to support their Spanish customers. Overall, I rate the solution a nine out of ten.
Cyber Security & ICT Director at Polish Security Experts Association
Real User
Top 5
2023-04-11T13:20:22Z
Apr 11, 2023
I would tell those planning to use the solution in the future that if they already have McAfee products, then they should go for it since the solution integrates well with other McAfee tools and with some endpoint protection platforms or DLP that are deployed on-premises. The software will have bugs in them at some point, and bug-related issues are to be taken care of by technical support. Our company reports such issues, and the technical support team tries to resolve them. Presently, this process works well for us. Overall, I rate the product an eight out of ten.
IT Security Specialist at Commercial Bank of Ethiopia
Real User
2022-07-29T14:01:02Z
Jul 29, 2022
I'm a user of McAfee MVISION Endpoint Detection and Response. I work for a bank. McAfee MVISION Endpoint Detection and Response is deployed both on-premises and on the cloud in my company. My company has six hundred endpoints on McAfee MVISION Endpoint Detection and Response. The tool is installed on six hundred machines or devices. Two administrators take care of maintaining the tool. My advice to people who want to implement McAfee MVISION Endpoint Detection and Response is that it's a good product, but it has its limitations. My rating for McAfee MVISION Endpoint Detection and Response is seven out of ten.
Senior IT Systems Administrator at IndusInd Bank ltd
Real User
2022-07-03T14:37:00Z
Jul 3, 2022
If I were to advise on this solution, it would be that irrespective of the endpoint a company uses, it should have a good endpoint configuration. I would rate this solution a nine out of ten.
Sr. Sales Engineer at a tech services company with 11-50 employees
MSP
2022-05-18T03:15:00Z
May 18, 2022
There are a lot of companies in this space now and they are all pretty close to each other in terms of what they offer. I think those that are more user-friendly, and have the agentless client have the advantage over the legacy companies with older architecture. They lost a lot of product managers and engineering managers in the breakup. That said, I think this is a good product with a good strategy, they just haven't quite reached maturity yet. I rate this solution eight out of 10.
We don't use any backup protection, but previously, we used Commvault for backups. In terms of maintaining the tool, you don't have to do a lot of fine tuning, because the fine tuning will happen on the endpoint protection, in particular, the tool will do all the hunting. What we just need to do is to monitor the data location and the database. My rating for McAfee MVISION Endpoint Detection and Response is eight out of ten.
My advice for anybody looking into implementing this product is to first look into who will be providing the support. If they do not have good capabilities and the support is not very strong, then do not choose this option. I would rate this solution a three out of ten.
Reduce Alert Noise
Reduce the time to detect and respond to threats. Trellix EDR helps security analysts quickly prioritize threats and minimize potential disruption.
Do More with Existing Resources
Guided investigation automatically asks and answers questions while gathering, summarizing, and visualizing evidence from multiple sources—reducing the need for more SOC resources.
Low-Maintenance Cloud Solution
Cloud-based deployment and analytics enables your skilled security analysts to focus...
I haven't worked on the tool to see how it works for security workflow. My customers have not seen any challenges while working with Trellix Endpoint Detection and Response (EDR) in terms of integrations. The tool does not support any AI and security initiatives. The tool is suitable for enterprise companies. If businesses are completely on the cloud, then the tool is not required. If a company has a hybrid cloud model with an on-premises model, then it will be a good tool to use. I rate the tool an eight out of ten.
Our clients are usually medium-sized and enterprise businesses. Overall, I would recommend Trellix EDR to others. I'd rate it eight and a half out of ten. No EDR or XDR solution gets a nine from me right now because they all have room for improvement.
Technical personnel often recommend Trellix Endpoint Detection and Response (EDR) for environments that are not necessarily small, but rather SMBs, those with around 50 computers. EDR solutions are increasingly aligned with the evolving threat landscape. Trellix EDR provides advantages beyond just detection and response; it facilitates thorough investigation. It operates more like a layered approach, enabling detailed investigation through Trellix Investigator. This allows you to drill down into threats. With real-time search capabilities, you can monitor threats as they occur. Historical search features let you trace when a threat entered the environment and its progression. This granularity extends to file searches and other detailed inquiries, simplifying and enhancing threat management tasks. In terms of integration, there is still room for growth. Currently, apart from basic anonymized data sharing, there isn't much integration visible. The ability to leverage EDR with other security solutions seems limited, except perhaps through programming. Trellix EDR has the potential to be among the top EDR solutions with a few adjustments. It could become the best out there. When considering factors like support, pricing, and ease of use, Trellix EDR has the opportunity to excel. However, currently, there are areas where it can enhance user experience, particularly in simplifying tasks that end users might find challenging on the EDR platform. While it promises to enhance security posture and threat detection speed, these improvements may not be immediately apparent to users, impacting their confidence in the product. Overall, I rate the solution a seven out of ten.
Trellix Endpoint Detection and Response (EDR) handles security incidents but generates multiple false positive alerts. If the solution is fine-tuned from time to time, then true positive results can be expected accurately. After implementing Trellix Endpoint Detection and Response (EDR) in our organization, we have witnessed great security efficiency. I would recommend the solution to others as it's very easy to use. I would rate the solution a seven out of ten.
We need to get special training for maintenance. Maintenance is very easy, but it requires engineers. Overall, I rate the solution a six out of ten.
We were looking for other solutions. Whoever is interested in the product can learn to use it. Overall, I rate the solution an eight out of ten.
We also have a DLP problem with Outlook. Sometimes, people cannot send emails because of an error. We detect the threat, and our clients manage the response. We send a communication, and the clients manage the response for the threat detected. We only administer the tool. Overall, I rate the product an eight out of ten.
Overall, I rate Trellix Endpoint Detection and Response an eight out of ten.
People must always evaluate the product first. They must see the difference in manageability and flexibility of the licenses. They must also consider the manageability and flexibility of the software before making a decision. Overall, I rate the solution a nine out of ten.
Trellix Endpoint Detection and Response (EDR) is a product that is meant for enterprise-sized businesses, and it would not be good for small and medium-sized businesses. I rate the overall tool a nine out of ten.
I recommend the solution to others in the future. I rate the overall tool an eight out of ten.
We are planning to change the vendor. We have one more year of contract on the product. Companies must use EDR, but they must research before choosing vendors. Overall, I rate the solution an eight out of ten.
My company does provide the solution at a good price for our customers. The solution needs to support their Spanish customers. Overall, I rate the solution a nine out of ten.
I would tell those planning to use the solution in the future that if they already have McAfee products, then they should go for it since the solution integrates well with other McAfee tools and with some endpoint protection platforms or DLP that are deployed on-premises. The software will have bugs in them at some point, and bug-related issues are to be taken care of by technical support. Our company reports such issues, and the technical support team tries to resolve them. Presently, this process works well for us. Overall, I rate the product an eight out of ten.
I'm a user of McAfee MVISION Endpoint Detection and Response. I work for a bank. McAfee MVISION Endpoint Detection and Response is deployed both on-premises and on the cloud in my company. My company has six hundred endpoints on McAfee MVISION Endpoint Detection and Response. The tool is installed on six hundred machines or devices. Two administrators take care of maintaining the tool. My advice to people who want to implement McAfee MVISION Endpoint Detection and Response is that it's a good product, but it has its limitations. My rating for McAfee MVISION Endpoint Detection and Response is seven out of ten.
If I were to advise on this solution, it would be that irrespective of the endpoint a company uses, it should have a good endpoint configuration. I would rate this solution a nine out of ten.
There are a lot of companies in this space now and they are all pretty close to each other in terms of what they offer. I think those that are more user-friendly, and have the agentless client have the advantage over the legacy companies with older architecture. They lost a lot of product managers and engineering managers in the breakup. That said, I think this is a good product with a good strategy, they just haven't quite reached maturity yet. I rate this solution eight out of 10.
We don't use any backup protection, but previously, we used Commvault for backups. In terms of maintaining the tool, you don't have to do a lot of fine tuning, because the fine tuning will happen on the endpoint protection, in particular, the tool will do all the hunting. What we just need to do is to monitor the data location and the database. My rating for McAfee MVISION Endpoint Detection and Response is eight out of ten.
My advice for anybody looking into implementing this product is to first look into who will be providing the support. If they do not have good capabilities and the support is not very strong, then do not choose this option. I would rate this solution a three out of ten.