We performed a comparison between CrowdStrike Falcon and Trend Micro Deep Security based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: CrowdStrike Falcon is the clear winner in this comparison. It is stable, easy to use, and high performing. In addition, it is easier to deploy and less expensive than Trend Micro Deep Security.
"The product's initial setup phase is very easy."
"Fortinet has helped free up around 20 percent of our staff's time to help us out."
"Forensics is a valuable feature of Fortinet FortiEDR."
"Fortinet FortiEDR's firewalling, rule creation, monitoring, and inspection profiles are great."
"It is stable and scalable."
"Exceptions are easy to create and the interface is easy to follow with a nice appearance."
"The console is easy to read. I also like the scanning part and the ability to move assets from one to the other."
"I like FortiClient EMS. FortiEDR has a lot of great features like lockdown mode, remote wipes, and encryption. I can set malware outbreak policies and controls for detecting abnormalities. You can also simulate phishing attacks."
"The most valuable feature of CrowdStrike Falcon is its accuracy. That's very important for me. False-positive are very bad for everyone. As we are a financial institution, it's even worse. I like Falcon because it's very accurate."
"The most valuable feature is that we don't need to re-image machines as much as we had to."
"The most valuable features are the complete IPS and IDS."
"The EDR and XDR features have been most valuable."
"The feature I like the most is the solution's detection."
"As long as the machine is connected to the Internet, and CrowdStrike is running, then it will be on and we will have visibility; no VPNing in or making some type of network connection. CrowdStrike always there and running in the background; for us, that is big. We wanted something that could give us data as long as the machines connected to the Internet and be almost invisible to the employees."
"Because it is security product and acts like an AIML smart product, not merely based on daily/weekly updates and signatures."
"I value the overall behavior analysis of CrowdStrike. The engine of this product is what drew us to this solution."
"The performance is good."
"Deep Security is a good product for managing a few servers."
"The vulnerability scanning reduces false positives by quite a bit."
"It has a perfect SaaS which integrates with AWS, offering flexibility to deploy quickly and easily in the cloud."
"Signatures are frequently updated."
"Virtual patching is a wonderful feature where we do a recommendation scan and an internal assessment on the server, and it updates the IPS signatures to block any attack. I have seen instances where it has prevented attacks on the end-of-support servers such as 2018 R2, and many years ago, even 2007 servers that were end-of-support. It certainly helped there."
"The integration options of Trend Micro Deep Security have been particularly valuable."
"The initial setup was straightforward and we didn't have any problem with it."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"
"Everything with Fortinet having to do with their cloud services. They need to invest more in their internal infrastructure that they are running in the cloud. One of the things I find with their cloud environment compared to others' is that they go cheap on the equipment. So it causes some performance degradation."
"The dashboard isn't easy to access and manage."
"The SIEM could be improved."
"The solution is not stable."
"Making the portal mobile friendly would be helpful when I am out of office."
"Once, we had an event that was locked and blocked, but information about it came to us two or three days later."
"They don't really have anything when it comes to scanning attachments."
"CrowdStrike Falcon could improve by having an easier way to search and use the interface for extracting queries from the data. The interface could improve."
"The installation process for this software needs to be simplified."
"CrowdStrike Falcon could improve the EDR functionality. Once the functionality of the solution improves, it will be even better in the market and able to compete with Carbon Black."
"Sometimes CrowdStrike changes the GUI, and they need to be better at informing us and providing guidance concerning that."
"CrowdStrike Falcon needs to improve their host management system."
"The price is too high."
"The pricing is a bit too high."
"When implementing this solution, sometimes we have challenges with SQL migration."
"There is room for improvement with Trend Micro Deep Security, as there are instances where installations may need to be redone. There seem to be glitches when working with older Windows servers, such as those from 2003 or 2005, requiring us to uninstall and reinstall the product to resolve the issue."
"The tool should integrate SIM functionality. It should also improve customer support."
"The default reports provided don't provide much insight."
"If I had more reporting, the product would be an A plus."
"The implementation can be inflexible and not easy, as it requires knowledge of things like virtualization and administration on Windows."
"It would be better if they merge a few features into one product. For example, they have an encryption feature that is separately sold. If they could merge it with Apex One or any endpoint security solution, maybe it would also be good for the end user."
"Post-implementation is time-consuming. You have to do monitoring, and that takes time. After you set up everything, it's not a full-fledged implementation. You have to keep on monitoring and configuring."
CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 105 reviews while Trend Micro Deep Security is ranked 1st in Virtualization Security with 80 reviews. CrowdStrike Falcon is rated 8.8, while Trend Micro Deep Security is rated 8.6. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Trend Micro Deep Security writes "Offers excellent endpoint protection and great stability ". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, SentinelOne Singularity Complete and VMware Carbon Black Endpoint, whereas Trend Micro Deep Security is most compared with Trend Micro Apex One, Microsoft Defender for Endpoint, Symantec Endpoint Security, VMware Carbon Black Endpoint and Trellix Endpoint Security.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
I like that Crowdstrike allows me to easily correlate data between my firewalls. What’s most useful for my needs is the intelligence modules feature. I also find that Crowdstrike Falcon’s dashboard is very user-friendly; Information is easy to find because of how it is presented and everything is linkable, which is a big win for me. Stability is fantastic and so is the scalability. I was able to do so many endpoints so easily, and without any issues. In terms of pricing, Crowdstrike Falcon is reasonable for all that it has to offer. As far as technical support, that has been great too.
Trend Micro Deep Security offers a lot of features. It guarantees security for your data center, cloud, and containers - all with a unified and comprehensive SaaS solution and without compromising performance. Although that might make it sound appealing, every time there are new features released, they have to be paid for separately, which I am not thrilled about.
Trend Micro Deep Security offers powerful protection, an all-in-one workload security option (which may help with eliminating the cost of deploying multiple point solutions), and flexible integration. They also offer a “pay-for-what-you-use” pricing model which is hard to come by. While their pricing model seems enticing, a big downside for me is that it does not support versions prior to Windows 7. It has a good intrusion prevention feature that I like. However, that is not enough for me to settle for Trend Micro Deep instead of Crowdstrike.
Conclusion:
I much prefer Crowdstrike Falcon over Trend Micro Deep Security because I feel that it is much more reliable. While Trend Micro Deep Security may be represented as a classic antivirus solution, I am satisfied with the overall performance of Crowdstrike Falcon and happy with my purchase of the product.
Having previously run a penetration testing company, I can tell you that the general feedback I have from professional hackers is that CrowdStrike Falcon does make their job a lot more difficult.
The "traditional" players in the endpoint protection market e.g. Trend Micro, Symantec and McAfee they generally view as trivial to bypass.