Try our new research platform with insights from 80,000+ expert users

ConnectWise SIEM vs Trellix Active Response comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

ConnectWise SIEM
Ranking in Endpoint Detection and Response (EDR)
57th
Average Rating
8.6
Reviews Sentiment
6.6
Number of Reviews
3
Ranking in other categories
Security Information and Event Management (SIEM) (52nd), Secure Access Service Edge (SASE) (25th), Managed Detection and Response (MDR) (29th)
Trellix Active Response
Ranking in Endpoint Detection and Response (EDR)
45th
Average Rating
7.0
Reviews Sentiment
5.1
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of ConnectWise SIEM is 0.3%, up from 0.1% compared to the previous year. The mindshare of Trellix Active Response is 0.2%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Giulio Valeri - PeerSpot reviewer
Efficiently monitoring and detecting suspicious activities
One valuable feature of ConnectWise Fortify is the ability to add other teams and receive notifications when customers make changes or remove multi-factor authentication in Microsoft or SAP environments. For instance, once we were connecting different parts in China, and we had to reserve resources for the blue source of the login of task no v. ConnectWise Fortify successfully mitigated the issue and monitored any suspicious activity in the Microsoft environment. Despite the inconvenience, the Microsoft environment is still active and susceptible to cyber threats. We do a lot of research and utilize ConnectWise Fortify to restart and restore the system. It's essential to have a solution like ConnectWise Fortify to protect against cyber threats.
Abdullah Al Hadi - PeerSpot reviewer
Offers comprehensive incident visualization and quick response capabilities but requires clearer dashboard interface
I am an Information Security Engineer at NHQ Distribution Limited and a partner of Trellix. I work with different products in Trellix, including Trellix EDR, SDR, and MDR. Trellix Active Response is the EDR solution from Trellix that has moved from an on-premise solution to a cloud solution. The Trellix MDR solution is helpful for SOC analysis and is integrated with Trellix EDR and SDR capabilities, providing full visibility of threat detection and hunting and detection response correlating with other solutions like endpoint security and encryption. On a scale of one to ten, I rate Trellix Active Response an eight.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"One valuable feature of ConnectWise Fortify is the ability to add other teams and receive notifications when customers make changes or remove multi-factor authentication in Microsoft or SAP environments."
"The integration capabilities of ConnectWise SIEM are off the shelf, making it easy to buy and use; you just unpack it and use it."
"We have found the solution has great functionality and it is easy to use."
"The solution is scalable."
"We are hoping to automate detection and response and take advantage of user behavior analytics, given that we are working from home. About half of our workers are still remote, so Active Response gives us that visibility and lets us automate a number of those events."
"It's a little lighter compared to the older version, which was mostly signature-based."
"The alerts provided by Trellix Active Response are its most valuable feature."
"The alerts provided by Trellix Active Response are its most valuable feature."
 

Cons

"ConnectWise Fortify could work on covering more areas, like phishing messages, which have become more complicated to detect."
"ConnectWise SIEM is primarily focused on notifications and is limited in that aspect, while Wazuh can automate the elimination process."
"The manage portion of the solution is complicated and should be simplified by having different versions to meet the needs of different size companies."
"I also expected Active Response 's user interface to be much more analytical."
"There are some components on the cloud that should also reside in the on-prem deployment models but don't."
"I would rate technical support from Trellix Active Response as a seven because sometimes we face difficulties finding engineers quickly, leading to customer frustration."
"The only area for improvement is regarding operational technology devices, specifically the engineering automation systems."
"While the product is good, we are currently facing support issues."
 

Pricing and Cost Advice

"The solution is expensive."
"Our costs were somewhere around $600K in Trinidad dollars, which might be about $100K US. We have the ETP plus the EDR. Our recent renewal was 1800 licenses as opposed to the full amount. Our transaction cost was about $600K Trinidad dollars, which is somewhere around $90-100K US."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
862,624 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
20%
Manufacturing Company
9%
Comms Service Provider
8%
University
7%
Government
18%
Comms Service Provider
13%
Financial Services Firm
11%
University
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What needs improvement with ConnectWise Fortify?
I haven't utilized the advanced threat intelligence capabilities with ConnectWise SIEM. Advanced threat intelligence is an option, but I haven't explored this feature yet. The advanced threat intel...
What is your primary use case for ConnectWise Fortify?
I do not have experience with ConnectWise SIEM for RMM, as I mostly work on Wazuh, and I have a team that handles ConnectWise SIEM. I'm linking with them, serving as the bridge. I am solely working...
What advice do you have for others considering ConnectWise Fortify?
The review can be made anonymous if just my name and not the company name is used. I would assess the real-time visibility for my organization as somewhat real-time, but it's not fully real-time. T...
What is your experience regarding pricing and costs for McAfee Active Response?
Based on our evaluations, Trellix Active Response's pricing was the most feasible from a cost perspective. I rate the pricing between a six and an eight. It is justified.
What needs improvement with McAfee Active Response?
The only area for improvement is regarding operational technology devices, specifically the engineering automation systems. We would like Trellix to optimize the technology for these systems simila...
What is your primary use case for McAfee Active Response?
We use Trellix Active Response primarily for our endpoints, including desktop computers. It monitors all the tools that our users use for their day-to-day work.
 

Also Known As

ConnectWise Security Management, ConnectWise Fortify, Continuum Fortify, ConnectWise SIEM, ConnectWise SASE
McAfee Active Response
 

Overview

 

Sample Customers

Techvera, Syrex, Clark Integrated Technologies
Liquor Control Board of Ontario
Find out what your peers are saying about ConnectWise SIEM vs. Trellix Active Response and other solutions. Updated: July 2025.
862,624 professionals have used our research since 2012.