Cybereason XDR vs Trellix Endpoint Security comparison

Cybereason and Trellix are both solutions in the Extended Detection and Response (XDR) category. Cybereason is ranked #22 with an average rating of 8.7, while Trellix is ranked #13 with an average rating of 8.0. Cybereason holds a 0.7% mindshare in XDR, compared to Trellix’s 1.8% mindshare. Additionally, 100% of Cybereason users are willing to recommend the solution, compared to 92% of Trellix users who would recommend it.

Cybereason XDR

Read 3 Cybereason XDR reviews

1,479 Views
473 Comparison Views

100% willing to recommend

Trellix Endpoint Security

Read 101 Trellix Endpoint Security reviews

2,608 Views
1,620 Comparison Views

92% willing to recommend

Cybereason XDR

Trellix Endpoint Security

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Trellix Endpoint Security and Cybereason XDR compete in the endpoint protection category. Cybereason XDR seems to have the upper hand due to its comprehensive features and automation capabilities.

Features: Trellix Endpoint Security is noted for its robust threat detection capabilities, real-time analytics, and commendable support for system integration. Cybereason XDR offers advanced threat intelligence, automated response mechanisms, and intuitive navigation, making it a preferred choice for feature-rich security solutions.

Room for Improvement: Trellix Endpoint Security users suggest scalability enhancements, better compatibility with third-party applications, and more intuitive user interfaces. Cybereason XDR could improve its reporting capabilities, offer more frequent updates, and refine the user experience for ease of use.

Ease of Deployment and Customer Service: Trellix Endpoint Security users find the setup process straightforward, supported by excellent customer service. Cybereason XDR receives mixed feedback on deployment, with some users experiencing initial complexity, balanced by responsive and helpful support.

Pricing and ROI: Trellix Endpoint Security is reported to offer competitive pricing, presenting a good return on investment. Cybereason XDR is seen as pricier, but users feel the cost is justified by its advanced features and long-term investment benefits.

To learn more, read our detailed Cybereason XDR vs. Trellix Endpoint Security Report (Updated: April 2025).

Buyer's Guide

Cybereason XDR vs. Trellix Endpoint Security

April 2025

Download the complete report

Helped 850,236 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason XDR

Ranking in Extended Detection and Response (XDR)

22nd

Average Rating

8.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Trellix Endpoint Security

Ranking in Extended Detection and Response (XDR)

13th

Average Rating

8.0

Reviews Sentiment

7.4

Number of Reviews

101

Ranking in other categories

Endpoint Protection Platform (EPP) (9th)

Mindshare comparison

As of May 2025, in the Extended Detection and Response (XDR) category, the mindshare of Cybereason XDR is 0.7%, up from 0.5% compared to the previous year. The mindshare of Trellix Endpoint Security is 1.8%, down from 2.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

Peter Nowak

Business Development Manager for Cybereason at Bechtle

Integration of multiple firewalls enables advanced threat detection

The integration of data from firewalls and Active Directory is most valuable. Cybereason XDR facilitates two-way communication, where the firewall sends data to the Cybereason system, and it can communicate with the firewall to stop unwanted communication. Customers can deal with multiple types of firewalls with ease. The behavioral analytics help detect advanced threats when attackers use existing software. The multilayered protection approach, including NGAV, integrates XDR detection with antivirus to assess and counter threats effectively.

Read full review

Abdullah Al Hadi

Information Security Engineer at Nhq Distribution Ltd

Customization capabilities allow clients to autonomously deploy policies

There are a few areas where Trellix Endpoint Security ( /categories/endpoint-protection-platform-epp ) can improve. Firstly, the high CPU utilization when agents are installed can negatively impact client systems. Another issue is with end-users outside the network, where the agent handler sometimes fails to deploy the product properly. Improvements are needed in forensic analytics to detect specific vulnerabilities. It would also help if detection specifics were identified more quickly and the problem-solving process accelerated, especially to meet larger clients' expectations.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cybereason XDR's most useful feature is the investigation."

"The integration of data from firewalls and Active Directory is most valuable."

"The solution has an investigation feature, which is useful for building storylines."

"The integration of data from firewalls and Active Directory is most valuable."

"The most valuable feature of Trellix Endpoint Security is its extensive customization capability, which allows me to create and deploy policies autonomously, suiting my individual needs."

"It has improved my organization because it helps with visibility, in terms of security. We can see the actual attack and can contain it. The antivirus can detect that."

"The manageability of the product itself is its most valuable aspect. You have the underlying EPO, and on top of it, you can deploy the various components as you require. This is unlike other solutions like Symantec where you have to deploy everything or nothing. With this solution, you can choose to only deploy antivirus or only deploy a firewall, or only something else. I choose the components and that deployment is done through EPO. It makes manageability very flexible."

"Trellix Security Endpoint can promptly isolate any host machines directly from the console. If alerts are received and isolation is necessary, it can be accomplished through the console. The console itself holds significant value, accessible through a browser and allowing remote actions via cloud login."

"Threat prevention is valuable because most clients use other solutions like antivirus as part of web protection. I don't find that kind of solution useful."

"The endpoint security, antivirus and firewall are the most valuable features of Trellix Endpoint Security."

"McAfee EndPoint Security has a lot of good features that work well if they are implemented properly."

"I think the costing is fine compared to other products. Cost-wise you definitely get value for your money."

More Trellix Endpoint Security pros

Cons

"Customer service is rated as a five out of ten. When they work and reach the right level, they are helpful, but getting to the right person can be time-consuming."

"The one thing we sometimes have issues with is its integration with other security applications like antiviruses."

"There could be more integrations with other data sources like NDR systems."

"Cybereason's customer support could be better."

"Users can just install software into their computers. We need some sort of application control system that, if there are any pieces of software that are not whitelisted, then the solution could flag it or maybe alert the administers. That would be very helpful."

"The solution needs to offer better local technical support."

"We experienced some bad behavior when we first installed the product. The system also starts slowly in some instances. If for some reason this solution crashes, we could lose all our data."

"When it runs in the background of the endpoint, the devices get slowed down for some applications."

"Its pricing needs to be improved."

"The solution needs to improve its virtual patching capabilities. One area where it could improve is by offering a patch management solution bundled with its security products. This would make it even more competitive against solutions like Kaspersky that offer this feature."

"The endpoint has room for improvement because it's restrictive, it's very sensitive. Sometimes it can delete something that you need and so sometimes you have to disable the antivirus."

"Recently, Trellix has introduced a CDR, which involves more manual response than automatic. I believe they should enhance the system by adding features like automated response and the ability to create custom playbooks. This is crucial for an EDR solution, and currently, Trellix lacks this feature while other products offer it."

More Trellix Endpoint Security cons

Pricing and Cost Advice

"The solution is cheaper than Microsoft Defender. It has a subscription and no standard license."

"Its price is very high. It is higher than its competitors, and it should be less."

"We pay for the license on an annual basis."

"Licensing is paid yearly."

"Since the maintenance is done by our own team, the price of the subscription should really be cheaper."

"The price of the solution is in the middle range compare to others and could be reduced. There are not any additional costs."

"The price of the solution is fair, we have a complete security package."

"Trellix may cost around $46 to $47 for a single license without an EDR."

"I would rate the cost as four to five, considering it's normal compared to other products. I find it nominal and worth the money."

More Trellix Endpoint Security pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

850,236 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

25%

Manufacturing Company

13%

Financial Services Firm

Comms Service Provider

Educational Organization

42%

Government

Manufacturing Company

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Cybereason XDR?

The solution has an investigation feature, which is useful for building storylines.

See all answers

What needs improvement with Cybereason XDR?

There could be more integrations with other data sources like NDR systems. Additionally, technical support has been slow in recent times. Enabling multifactor authentication has been problematic fo...

See all answers

What is your primary use case for Cybereason XDR?

I use Cybereason XDR for customers who don't have a SOC or managed SOC yet and want to be protected on more than their desktops. It is especially used in the manufacturing industry, yet not exclusi...

See all answers

How does McAfee Endpoint Security compare with MVISION?

The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...

See all answers

What do you like most about McAfee Endpoint Security?

It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.

See all answers

What is your experience regarding pricing and costs for McAfee Endpoint Security?

Trellix Endpoint Security is cost-effective and provides excellent value for money, with no need for extra expenses for premium support.

See all answers

Comparisons

Wazuh vs Cybereason XDR

Compared 47% of the time

Microsoft Defender XDR vs Cybereason XDR

Compared 27% of the time

CrowdStrike Falcon vs Cybereason XDR

Compared 14% of the time

Cynet vs Cybereason XDR

Compared 12% of the time

More Cybereason XDR Competitors

Microsoft Defender for Endpoint vs Trellix Endpoint Security

Compared 20% of the time

Kaspersky Endpoint Security for Business vs Trellix Endpoint Security

Compared 7% of the time

Trend Micro Deep Security vs Trellix Endpoint Security

Compared 7% of the time

Trellix Endpoint Security (ENS) vs Trellix Endpoint Security

Compared 6% of the time

Cortex XDR by Palo Alto Networks vs Trellix Endpoint Security

Compared 6% of the time

More Trellix Endpoint Security Competitors

Product Reports

Buyer's Guide

Extended Detection and Response (XDR)

May 2025

Download Cybereason XDR product report

Buyer's Guide

Trellix Endpoint Security

April 2025

Download Trellix Endpoint Security product report

Also Known As

No data available

McAfee Endpoint Security, McAfee Endpoint Protection, Intel Security Total Protection for Endpoint, McAfee Complete Endpoint Protection

Overview

Cybereason is the leader in endpoint protection, offering endpoint detection and response, next-generation antivirus, and managed monitoring services. Founded by elite intelligence professionals born and bred in offense-first hunting, Cybereason gives enterprises the upper hand over cyber adversaries.

Cybereason

Trellix Endpoint Security provides aggressive robust protection for every endpoint in an enterprise organization. Trellix uses dynamic threat intelligence and mounts a superb defense across the complete threat lifecycle. This solution will keep your organization more secure and resistant to any possible threat of risks. Trellix offers an amalgamated suite of next-generation endpoint security tools. These tools give users the benefit of machine learning, intuitive intelligence, and greater assistance to ensure their networks are being protected non-stop against threats - potential or realized - and can stop attacks before they happen. Trellix uses MDR (managed detection and response) and XDR (extended detection and response) to give users a comprehensive endpoint security solution.

Trellix Endpoint Security Benefits

Intuitive Protection: Trellix Endpoint Security learns and matures to ensure organizations are continuously protected in today’s aggressive threat environment. Users have full visibility and greater control of all endpoints and are able to utilize Trellix Endpoint Security’s potent threat detection, prevention, investigation, and response to keep their enterprises safe and secure.
Streamlined Security Protection: Users have a single view of full transparency into how their networks are performing and the overall effectiveness of the security. Users can access the solution from anywhere and manage automated workflows. The solution allows for a streamlined security process to improve the overall reliability of the organization's security and can effortlessly scan through hundreds of thousands of endpoints in minutes.
Robust Risk Management: Stop attacks before they occur and keep abreast of potential threats with intuitive threat prioritization. Receive easy to understand risk assessment and repair guidance without delay to prevent any possible lapses in security. Test scenarios will allow users to see how the organization would respond to a threat scheme.

Trellix Endpoint Security Top Features

Consolidated Management: Trellix offers numerous deployment options. The unique consolidated management process provides full transparency, cost-effective processes, improved IT functionality, and streamlined operations.
Intuitive Processes: Trellix can identify zero-day threats using machine learning and develop workable risk assessment to prevent attacks. Trellix intuitively creates protocols to recognize problematic processes that could lead to future attacks.
Reduced Impact on Resources: Trellix learns to focus on suspicious or anomalous activities by quickly identifying trusted activities to greatly reduce CPU consumption.

Reviews from Real Users

“It has a great console. We can manage everything from the central console and it is very easy. Every year we are getting the benefits of legacy also. It's easy to set up.” - S Fazlul H., IT Lead Engineer, Information Technology at Banglalink

“There is a new feature where you can set thresholds for all the CPU consumption allowing for no consumption on the servers when the scans happen. It is a separate plugin or addon, and if we have it on all the virtual machines it automatically checks the resources, and based on that, it will schedule the scans. That is something that I have not seen in other antivirus solutions, such as Symantec.” - Sabari K. Senior Engineer at a comms service provider

Trellix

Sample Customers

MOTOROLA MOBILITY

inHouseIT, Seagate Technology

Buyer's Guide

Cybereason XDR vs. Trellix Endpoint Security

April 2025

Free Report: Cybereason XDR vs. Trellix Endpoint Security

Find out what your peers are saying about Cybereason XDR vs. Trellix Endpoint Security and other solutions. Updated: April 2025.

DOWNLOAD NOW

850,236 professionals have used our research since 2012.

See our Cybereason XDR vs. Trellix Endpoint Security report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.