Cybereason Endpoint Detection & Response vs Trellix ESM comparison

"What I find most valuable is the clarity of the platform. It is very straightforward."

"It gives all the information in a clear response."

"The initial setup was easy and straightforward."

"The interface is user-friendly."

"Cybereason's threat hunting and investigation are the most valuable features. Threat hunting is a user-friendly feature that keeps you safe. Investigation offers an added value that I haven't seen with other EDR services. It allows you to find specific policy problems within your environment."

"I haven't had any issues with the solution. Stability-wise, I rate the solution a ten out of ten."

"They do a very good job of providing multi-stage visualizations of malicious operations that immediately show all attack details across all devices and users. Since it is MalOp-centric model, you can see if there has been a similar operation across multiple machines. If it is the same thing appearing on multiple machines, you see all the machines and users affected in one screen."

"The initial setup process is straightforward."

"It is a good central viewpoint for issues. These can then be investigated in more detail on the subnet server(s)/endpoints."

"We are now able to completely monitor our environment so we can review what is there, which is a big win for us."

"The most valuable feature is that if the scanning does find something, it quarantines it. Then you can decide what you are going to do with it."

"I like the ease of deployment."

"The most valuable feature is the capability to correlate different events from different platforms that we feed into it."

"It has performed well and delivered the results that I have been looking for."

"Trellix ESM is very user-friendly."

"Compared to other solutions, the user interface is good."

"There can be problems with the EDI."

"Its Microsoft PowerShell protections still need some compatibility improvements. We have run across just a few. It is compatible with 90% of what we have in our network, but there is that 10% that we are still struggling with as far as compatibility with the type of PowerShell scripts needed to run our day-to-day business."

"There is room for improvement in the product features related to device control, particularly USB management."

"Compared to our previous endpoint, we have a lot more false positives and a lot more duplication of alerts. So we're chasing more alerts."

"Ad hoc higher-level reporting to senior management can be improved or can be implemented. That's definitely an area of improvement that they need to focus on."

"What needs to improve in Cybereason Endpoint Detection & Response and what I'd like to see in its next release is a centralized dashboard that allows you to view what is there, similar to what's on Symantec Endpoint Protection Manager: a beautiful display and reporting. Cybereason Endpoint Detection & Response has to start with the compliance, the homepage, etc. Everything should be there and should be customizable. The options should be there. The tool is very good currently, but visibility for IT administrators is lacking and needs to be worked on."

"The reporting feature needs improvement."

"I would like to see improvements on the operational side, specifically in grouping."

"There are some banking and transactional cases that are local, South America transactions. I would like to see them add features that can be used locally, to make those transactions more reliable."

"I would like to see fingerprint recognition included in the next release of this solution."

"Customized reports and alerting functionality could be included in the dashboard."

"McAfee is no more providing security updates on this product, and the enhancements to this product seem to have stopped. Moreover, we don't get proper support, and we struggle to get its support. It would be good if they can add some AI engine and out of the box use cases because it is currently limited to the same scenario and the same setup. I have done a POC for Securonix, LogRhythm. These products are much more ahead as compared to McAfee ESM. They have included multiple modules in the same solution. Correlation is very easy. If McAfee ESM can improve, especially in such implementations, then I believe it would be much better."

"The support from McAfee ESM could improve. They could improve the speed."

"Update to user interface from version 9 is cosmetic in some aspects, and after a few clicks you are back on the old interface."

"There should be support for multitenancy in the product."

"The initial setup is difficult and could improve."

"I do not have experience with the licensing of the product."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"This product is somewhat expensive and should be cheaper."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"In terms of cost, this is a good choice for our needs."

"In terms of pricing, it's a good solution."

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

"We pay for our licensing fees on a yearly basis, and there are no costs in addition to the standard licensing fees."

"The product is slightly expensive."

"The pricing is good, and they are competitive compared to providers such as RSA and IBM QRadar."

"Regarding pricing, Trellix ESM is not that expensive. It's less than half the cost of IBM QRadar."

"The price of McAfee ESM is higher than some of the other solutions. There are additional features that can be added at an additional fee."

"The cost is dependent on the customer's environment and requirements."

"We renew our license annually."

"The price is good. It's moderate. We follow a pay-as-you-go model. There are different models available, and they can also be monthly. You can choose monthly or yearly. It's very flexible. If our existing customers exceed the current plan, you can just call McAfee and get it extended."