We performed a comparison between Cybereason XDR and Trellix Endpoint Security based on real PeerSpot user reviews.
Find out in this report how the two Extended Detection and Response (XDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We are able to consolidate licences and make use of many Microsoft products using this solution. If we have any Microsoft customers, we encourage them to use this solution for enterprise defence."
"The integration between all the Defender products is the most valuable feature."
"The ability to integrate and observe a more cohesive narrative across the products is crucial."
"The threat intelligence is excellent."
"Scanning, vulnerability reporting, and the dashboard are the most valuable features."
"Microsoft Defender's most critical component is its CASB solution. It has many built-in policies that can improve your organization's cloud security posture. It's effective regardless of where your users are, which is critical because most users are working from home. It's cloud-based, so nothing is on-premise."
"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."
"I like Defender XDR's automation capabilities. XDR isn't automated by default, but you can automate it to respond. If an attack is performed anywhere within the organization, you can isolate that instance from the network. This is what I can figure out for it. When integrated with Sentinel, you can set up playbooks to automate all the alerts gathered on Sentinel from different Microsoft solutions. Sentinel has a wider range of capabilities than XDR."
"The solution has an investigation feature, which is useful for building storylines."
"Cybereason XDR's most useful feature is the investigation."
"This product has the capability to check a wide range of vulnerabilities and devices."
"The endpoint security, antivirus and firewall are the most valuable features of Trellix Endpoint Security."
"The solution provides dashboard control, so we can centrally monitor the entire status of our organization."
"The solution is broken down into different components from the portals. Web filtering, which is an added feature has been great for us."
"The solution offers very good endpoint security."
"The thing that I like is that they have gathered almost all the products in one management server, the ePolicy Orchestrator."
"The loss prevention feature would be the most valuable."
"What I like best is the integrated end-to-end security that works with the security information and events manager."
"Automated playbooks and automated dashboards would be preferable to the way the data is currently being presented."
"Stability could be improved by avoiding frequent changes to the interface."
"The only problem I find is that the use cases are built-in. There is no template available that you can modify according to your organization's standards. What they give is very generic, the market standard, but that might not be applicable to every organization."
"When we do investigations, it would be better if Microsoft could populate the host dashboard more. When we open any host for investigation, we want the entire timeline of what is happening on the host, including all the users logging in, their hardware, Windows version, etc."
"The licensing is a nightmare and has room for improvement."
"The design of the user interface could use some work. Sometimes it's hard to find the exact information you need."
"The abundance of sub-dashboards and sub-areas within the main dashboard can be confusing, even if it all technically makes sense."
"The support team is not competent or responsive."
"Cybereason's customer support could be better."
"The one thing we sometimes have issues with is its integration with other security applications like antiviruses."
"It would be nice if the solution were to allow not just on-cloud management, but on-premises, as well."
"Recently, Trellix has introduced a CDR, which involves more manual response than automatic. I believe they should enhance the system by adding features like automated response and the ability to create custom playbooks. This is crucial for an EDR solution, and currently, Trellix lacks this feature while other products offer it."
"There is room to improve with scalability."
"There are times the solution has some additional software added that is not fully integrated properly, such as Exchange Group Sheild. It is quite old and is not fully integrated properly and could be improved."
"It didn't work well for some of the use cases. We have different use cases for each entity. Their support is also not good and needs improvement."
"The user interface could be improved by making it more user-friendly. There are multiple solutions and there is no clear line differentiating all of them. There is a centralized console where we manage everything but most of the administrators feel a little confused when it comes to managing multiple products from a single place."
"The solution should provide a more easy way to uninstall it on specific stations."
"The product could do more to keep administration alerted to detected threats on endpoints."
Cybereason XDR is ranked 18th in Extended Detection and Response (XDR) with 2 reviews while Trellix Endpoint Security is ranked 10th in Extended Detection and Response (XDR) with 94 reviews. Cybereason XDR is rated 8.6, while Trellix Endpoint Security is rated 8.0. The top reviewer of Cybereason XDR writes "Provides effective incident response and investigation features". On the other hand, the top reviewer of Trellix Endpoint Security writes "Good user behavioral analysis and helpful patching but needs better support services". Cybereason XDR is most compared with Cortex XDR by Palo Alto Networks, Wazuh, Cynet, Trend Vision One and TEHTRIS XDR, whereas Trellix Endpoint Security is most compared with Microsoft Defender for Endpoint, Trellix Endpoint Security (ENS), CrowdStrike Falcon, Cortex XDR by Palo Alto Networks and Trend Micro Deep Security. See our Cybereason XDR vs. Trellix Endpoint Security report.
See our list of best Extended Detection and Response (XDR) vendors.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.