Share your experience using NSFOCUS NGIPS

The easiest route - we'll conduct a 15 minute phone interview and write up the review for you.

Use our online form to submit your review. It's quick and you can post anonymously.

Your review helps others learn about this solution
The PeerSpot community is built upon trust and sharing with peers.
It's good for your career
In today's digital world, your review shows you have valuable expertise.
You can influence the market
Vendors read their reviews and make improvements based on your feedback.
Examples of the 83,000+ reviews on PeerSpot:

Brett Tatum - PeerSpot reviewer
Director of Technology at Summit Carbon Solutions
Real User
Top 10
We can quickly deploy cloud conformity, provides good visibility, and control
Pros and Cons
  • "Detection response and cloud conformity are valuable features."
  • "Documentation on cloud architecture and job architecture would be helpful."

What is our primary use case?

We use Trend Vision One - Cloud Security for our cloud security, but we especially love it because we're multi-cloud. We want a single solution that can help us protect, inspect, and gain information about all of our cloud assets, regardless of whether they're in Microsoft Online, Office 365, Azure, or AWS, where we have most of our workload.

We also love that Trend Vision One - Cloud Security is not just an endpoint solution or a DevSecOps add-on. It also has a source code repository, which allows us to put things in our DevOps pipeline to protect them. Additionally, we can use Cloud Conformity, which is part of Trend Vision One - Cloud Security, to monitor our posture management.

This means that Trend Vision One - Cloud Security is not just a reactive solution that runs software on virtual machines or in containers. It can stop problems in the development process before they even happen, even if the code is still on someone's machine or in the pipeline or repository. This helps us protect ourselves in a way that many other solutions cannot.

Before implementing Trend Vision One - Cloud Security, we were facing all sorts of unknown threats, including third-party vulnerabilities and misconfigurations. We need to protect ourselves from bad actors, but that's only half of it. We also have to protect our infrastructure from ourselves. No one on our team is going to intentionally do anything malicious, but they can make mistakes. And I can't monitor every piece of code or infrastructure that my team writes or has. I need a solution that can monitor our infrastructure continuously and notify us of any misconfigurations or mistakes so that we can fix them before they become major problems.

We deployed Trend Vision One - Cloud Security 100 percent on the cloud and we use AWS and Azure.

How has it helped my organization?

I am satisfied with the protection that Trend Vision One - Cloud Security provides for our multi-cloud environment. I need a single pane of glass that will give me the information I need quickly and easily. I set up Trend Vision One - Cloud Security in one afternoon, which I have done before. With one person, it only takes a day or so. Now, it is so simple to get it into any cloud and give it a small permission set to go in there and read our infrastructure, and then get some valuable insights very quickly.

Trend Vision One - Cloud Security provides us with contextual data, which is especially useful when we are acquiring a company or when I take on a new role and need to quickly understand what they have. Trend Vision One - Cloud Security also helps me to quickly correlate information in the DevSec process, as it protects everything. There are three times when a security vulnerability can be caught: when we write the code, when we deploy the code, or when the code is running. If a vulnerability is not caught until the code is running, we probably made a mistake. We can then go back and look at the first two steps to see where we should have caught the issue. I am 100 percent satisfied with the context provided by Trend Vision One - Cloud Security.

Trend Vision One - Cloud Security protects my cloud workloads. If an attack gets past the first two layers, I still need a way to protect the endpoints, whether they're EC2 instances, virtual machines in Azure, or even on-premises servers. I need a single pane of glass to see all of my endpoints. And let's say there's a zero-day attack, something that no one knew about and couldn't have caught. With Workload Security, I don't need to patch it immediately, even if it's a Windows update. Workload Security can patch it for me and put security tools around it. So we use it for patching and filtering, as well as other security needs. It sits on our virtual machines and whatever cloud we use.

The biggest benefit of Trend Vision One - Cloud Security is its single pane of glass view. Other cloud providers, such as AWS and Azure, offer similar features, but they require multiple dashboards and reports. With Trend Vision One - Cloud Security, I have a single pane of glass view of my entire infrastructure. We also use Trend Vision One - Cloud Security for many security needs, including endpoint protection and Office 365 protection. This gives me a single vendor, a single pane of glass, and a single console to manage the security of all of my platforms.

Trend Vision One - Cloud Security gives us full visibility and control of our cloud environments.

When I am asked difficult questions, or when I am going through an audit or other process, I use its reporting and dashboarding capabilities to get all the information I need in one place. This saves me from having to correlate data from different sources, and it helps me to resolve audit and compliance workflows more quickly.

Visibility helps us resolve complexity in our environment by providing quick snapshots of an account. This is especially useful when I'm trying to get an overview of a new workload or a new company, as it allows us to take a snapshot of the environment to make it easier to ingest.

We buy our subscriptions through the marketplace because it's easier. I don't want to buy credits, because I can use the marketplace as needed. It also allows us to quickly bill the subscriptions to our existing account, so I don't have to set up another vendor or billing terms. I can just quickly use the marketplace, choose the subscriptions I want, and pay as I go. It's perfect.

Conformity would give me a good overview of what infrastructure we are using and where we can potentially save costs by emphasizing the infrastructure that we do not necessarily need.

Trend Vision One - Cloud Security protects me in the cloud, protects my registry, and protects my DevOps pipeline. It is not necessary for Trend Vision One - Cloud Security to protect all of these things. Additionally, Trend Vision in general also protects our Office 365 infrastructure, including SharePoint, Teams, and Outlook.

Protecting all the data across our environment is extremely important these days. No matter what industry we're in, it's crucial to understand our data security protocols, where our data is stored, how it's protected, and how it's accessed. This information gives us a single, overarching view of our data security posture, which helps us to identify and remediate misconfigurations and quickly respond to zero-day attacks or compromises. The sooner we know about a security incident, the fewer repercussions we're likely to experience.

What is most valuable?

Detection response and cloud conformity are valuable features. I like how repository scanning helps us to scan our source code. I think these two features have helped me to detect potential threats before they even occur. I have also used cloud conformity when I start working in a new environment, such as a company with cloud infrastructure. Even if I don't know their workloads, I can quickly deploy cloud conformity to get a good understanding of what they have, how secure it is, and where they can improve.

What needs improvement?

Documentation on cloud architecture and job architecture would be helpful. It would also be enlightening to know what security context we get. 

Trend Vision One - Cloud Security is a really good product overall, including Trend Vision One - Cloud Security. However, their authorization and authentication could be improved. They have too many different ways to log in to their tools, which can be confusing. It would be better if they had just one or two ways to log in.

For how long have I used the solution?

I have been using Trend Vision One - Cloud Security for six years.

What do I think about the stability of the solution?

Trend Vision One - Cloud Security is stable. I have not experienced any outages.

What do I think about the scalability of the solution?

Trend Vision One - Cloud Security is 100 percent scalable.

How are customer service and support?

In the few interactions I have had with technical support, it has been a great experience. The only area where technical support could improve is in communication. They need to be more clear because there was a time when they sent us a communication that did not clearly explain how the issue would affect our environment.

How would you rate customer service and support?

Neutral

How was the initial setup?

The initial deployment was straightforward. The first time I deployed the solution, many years ago, it was a very different product than it is today. However, it was still very easy to deploy back then. We provide the solution with IAM keys in AWS, and it provisions our environment. If it is a Windows workload, we install an agent. This process was also very straightforward.

After that, I knew that manual deployment could be a pain, so we wanted to automate it. As soon as a VM spins up, the agent is automatically installed and checks in. Just as importantly, the agent also spins down the VM when it is no longer needed. This is very important in the cloud because we scale our environment up and down based on usage. Unlike on-premises environments, cloud environments are not static.

I think the solution is very easy to get started with, and it scales up and down as our business needs change.

Two people completed the deployment.

What about the implementation team?

The implementation was completed in-house.

What was our ROI?

We have seen a return on investment with Trend Vision One - Cloud Security.

What's my experience with pricing, setup cost, and licensing?

The pricing for Trend Vision One - Cloud Security is reasonable because my costs scale up and down based on my infrastructure usage. If I scale up my infrastructure, such as by adding a new workload, my AWS and security costs will both increase. However, if I scale down my infrastructure, my security costs will also decrease. This is not the case with other vendors, where I may still have to pay for security even if I scale down my infrastructure.

For example, if I implement traditional security measures, such as gate guards and guns, I will still have to pay for these security measures even if I scale down my infrastructure. However, with Trend Vision One - Cloud Security, I am charged based on my usage of security features, such as the number of host-based agents I have deployed, the number of times my DevOps pipeline runs, or the amount of data I store in my repository. This means that I can save money on security costs if my team scales down and my DevOps pipeline slows down.

Which other solutions did I evaluate?

I've implemented Trend Vision One - Cloud Security four times now, with different companies and organizations. I also spent some time directly with AWS, and I did a lot of work with Palo Alto and their firewalls, both in the cloud and with their Prisma Cloud. It was just a pain. It took so much more time to set up and configure, and the mean time to value was insane compared to Trend Vision One - Cloud Security.

Check Point Firewall in AWS is also a problem. Both of these solutions require us to rearchitect our application, infrastructure, and network design so that we can protect it. That's why we love Trend Vision One - Cloud Security. It's right on the endpoints, instances, or virtual machines. It's a host-based firewall instead of a gate guards and guns mentality of putting something at the front door.

The big difference between the cloud and on-premises is that our house or data center has one front door, one thing to go in and one thing to go out. The cloud is not the case. It's hard to do that gate guards and guns approach with one firewall in the cloud. It's possible, but from a cost perspective, it just doesn't scale. Instead of having one door, we might now have a hundred or a thousand, and we can't put that same firewall over and over again.

So, we have to change how we do security in the cloud, and that's where I think Trend Vision One - Cloud Security really excelled early on. Everyone else didn't get it first. And I think everyone is trying to catch up to Trend Vision One - Cloud Security, but that's why we went with them originally. They changed the way we think about security and how we're going to secure our infrastructure based on our architecture. The other competitors are falling behind, and they're still trying to secure the cloud the same way they secured the data center, which doesn't work from a cost-and-scale perspective.

What other advice do I have?

I would rate Trend Vision One - Cloud Security nine out of ten.

We have about a hundred users. We are still in the early stages of our cloud journey, but I have used Cloud Security with thousands of users in the past. Thousands of daily users access our information and workflows.

Trend Vision approaches our business like a partnership. That's one of the reasons we keep coming back. Anytime I call or need something, Trend Vision One - Cloud Security is there hand-in-hand. If they make a mistake, something gets pushed out, or it doesn't go exactly how it should have, they take ownership. That's the only reason I've been a customer for so long: because they take ownership and they care.

It only takes a couple of hours to set up a proof of concept and get it running. I recommend that organizations try Trend Vision One - Cloud Security for themselves.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)
Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
Flag as inappropriate
Senior Manager for IT and Security at a tech services company with 1,001-5,000 employees
Real User
Top 20
Helps organizations understand their environment better, but it doesn't show violations for specific compliances
Pros and Cons
  • "The product helps us understand our environment better."
  • "They should provide a way for users to see violations for specific compliance."

What is our primary use case?

My organization uses Trend Vision One - Cloud Security and to get information based on business-critical applications running on the cloud environment. We get information on workload security, vulnerabilities, or third-party package issues. We also focus on configuration management changes that are suspicious.

Four teams in our organization use the tool across multiple regions. Since my team is an information security team, we have visibility into all the different teams and how they use it. We support the teams with alerts and issues. If an alert comes up, someone from my team will respond. If we need more information, we work with the team impacted because of the alert to understand the issue and do the remediation with them.

How has it helped my organization?

We implemented Trend Vision One - Cloud Security to enhance our security and visibility into different cloud networks, especially on AWS. We deal with different environments, storage, and S3 buckets. We wanted to ensure we have full visibility of file-based threats, network threats, and any misconfigurations we may have when a new environment is being spun out.

We can detect crypto mining easily, see what's going on, and block it. Lastly, we use the tool to focus on compliance because we need to stay compliant. The tool really helps drive our compliance information and deliver requirements to auditors and other regulatory organizations that need necessary information from us.

The biggest jump has been on the compliance side. We actively see the vulnerabilities, the third-party package issues, misconfigurations, and network threats. The solution is helping us get the information and do the remediation to achieve compliance. We do SOC 2 and PCI. We are able to drive our vulnerability management program well.

What is most valuable?

Trend Vision One - Cloud Security helps us take proactive actions on network threats and cloud misconfiguration. These are the two pain points that we are trying to solve. The product helps us understand our environment better.

What needs improvement?

They should provide a way for users to see violations for specific compliance. Suppose I focus on SOC 2 or PCI compliance. If I see an alert that tells me the exact details of the control for the compliance I'm violating, I can prioritize the remediation of the issue and ensure that the systems are compliant. I'll be able to provide evidence to the auditors accordingly.

For how long have I used the solution?

I have been using the solution for a year and a few months.

What do I think about the stability of the solution?

The solution is pretty robust. It beat out other competitors we were looking at in the market. We feel comfortable and happy that Trend Vision can meet all our business use cases.

What do I think about the scalability of the solution?

About 70 to 75 people are using the product in our organization. The product is scalable. That is why we are rolling out more environments into it and looking to add more non-AWS cloud providers like GCP. We are testing GCP with Trend Vision.

How are customer service and support?

The technical support has been good so far. Right now, our issues are about ensuring we understand the system because it's just been a year and a few months. We are rolling out new things and onboarding new environments. The support has been good. We have had no issues.

Which solution did I use previously and why did I switch?

We used Sumo Logic, but it wasn't as robust as Trend Vision One - Cloud Security. Sumo Logic didn't have enough visibility for us to understand the compliance gaps in our cloud environment. It was a manual process. Somebody had to read through all the information to provide that.

How was the initial setup?

The product is currently deployed on AWS, and we are also rolling it on GCP. My team and the infrastructure team were involved in the deployment of the solution. The initial deployment was pretty much straightforward. We did the testing with the Trend Vision team and the internal teams to ensure it meets our needs.

Once we felt comfortable, we slowly did the beta testing in one environment and looked at different reports and results. The internal team learned how to use the platform to the best. Then, we slowly rolled it out into different environments. From start to finish, the entire process was about two months.

What about the implementation team?

A Trend Vision team of two to three people helped us with the onboarding. When there's an update, we get information on the new release from Trend Vision. Someone from my team does the testing to ensure that nothing breaks down if we push the update. Once we feel comfortable, we push the changes. Usually, there's a small amount of downtime to ensure everything is working.

Which other solutions did I evaluate?

We looked into a few other tools to see how they can help us and whether they meet our current use case. Trend Vision One - Cloud Security was the one that came up on top. We sought information from all the vendors on areas like detection and response, compliance, and remediation. In remediation, we saw what elements Trend Vision was reporting on and how much information we had to make a judgment and act upon it. Trend Vision's platform did a great job in helping us break down the different silos, understand the visibility of threats, and secure our business-critical applications.

What other advice do I have?

We have recently started onboarding some elements on GCP. We are using Trend Vision One - Cloud Security on both AWS and GCP. It is an initial use case to test and see how we can ramp up in GCP. It's an ongoing journey.

Trend Vision One - Cloud Security provides context to the data it provides to us. The alerts that come up have full information. It really helps us understand the issue, whether it is a false positive, known behavior, or an issue we need to resolve. Accordingly, our team can make the judgment.

We do not use Trend Vision One - Cloud Security. It is something that we are planning on using as we expand our cloud environment. We'll need to see what applications are being run. It can help us in resource planning and add more visibility to our cloud environment.

The solution has helped us reduce costs on AWS. Cloud misconfigurations help us understand where to save on the provisioning account. When we spin up the environment and see unnecessary resources, we can definitely cut back on them. It really helps us understand our cost. We can work with the infrastructure team to provide the reporting so they can make the adjustments accordingly. The tool has helped us save 50,000 to 60,000 per month.

Trend Vision One - Cloud Security gives us insights not only into the cloud security posture but also into the entire cloud architecture to a certain extent. We are slowly rolling Trend Vision One - Cloud Security into different areas. As we onboard new systems and applications, we get more and more visibility. Our initial use case focused on the cloud applications and ensuring they run as they should. 

As we see more use cases popping up, we're able to onboard new things on Trend Vision One - Cloud Security and deploy them. We have better visibility. In another six to ten months, we will see a lot more improvement in how we handle security issues and how much more useful Trend Vision One - Cloud Security is for us. We want to ensure that all our resources, network, storage, and pipelines for source codes are secure. The more things we do, the better it will be for us. It's a lot to take on right now, so we are slowly rolling it out.

The product is only for the cloud. We are a customer of the solution. We didn't think about being a partner. It was never a thought that we came across. The tool is value-driven. If my organization is on the cloud and I need insight and visibility, Trend Vision would give us a good return on investment. It really helps me drive the conversation with my internal team and the senior leadership. We can show them how there has been a huge culture shift in how we respond to different security issues after deploying the solution.

There's a lot we can do with Trend Vision. We haven't fully reached the product’s true potential. As we're making that journey with Trend Vision, we are doing more and more things and learning more about the product and different areas we can utilize. In the next six to ten months, we see our use cases improving from seven and a half out of ten to almost an eight and a half to nine.

Anybody evaluating the solution should consider how the tool would enable the developers or the infrastructure team, how they would automate security and compliance checks, and how they plan to use Trend Vision for auto-remediation issues. It will really help drive a lot of business use cases. It will help the new customer understand how Trend Vision helps with the key use cases we see daily and how to ensure that the infrastructure stays compliant. We consistently show compliance, and our cloud security doesn't go down.

Overall, I rate the product a seven and a half out of ten.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate