NetWitness XDR vs Trellix Endpoint Security comparison

NetWitness XDR
Read 15 NetWitness XDR reviews
  • 848 Views
  • 602 Comparison Views
87% willing to recommend
Trellix Endpoint Security
Read 96 Trellix Endpoint Security reviews
  • 17,035 Views
  • 10,213 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jul 8, 2023

We performed a comparison between Trellix Endpoint Security and NetWitness XDR based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

  • Features: Trellix Endpoint Security users like the ePolicy Orchestrator, the solution’s robust central management console. NetWitness XDR is commended for its prompt threat response, seamless integration capabilities, and user behavior analytics. Trellix could improve by reducing resource usage, enhancing stability, and making the solution more user-friendly. Users say NetWitness XDR could improve its threat intelligence and investigation. Some suggested updates to its reporting engine.

  • Service and Support: Some users say Trellix support is helpful and responsive, while others believe there is room for improvement in communication and resolution times. NetWitness XDR provides effective 24/7 technical support. While some were satisfied with the response times, others experienced delays of up to 48 hours.

  • Ease of Deployment: Setting up Trellix Endpoint Security is simple if the user has some expertise. Some users found the initial setup of NetWitness uncomplicated, but others faced challenges.

  • Pricing: Trellix Endpoint Security’s pricing is considered flexible, competitive, and about average compared to other solutions. The total cost of NetWitness XDR depends on the environment and the number of endpoints. Larger users can receive discounts, but users say the solution might be too pricey for smaller companies. NetWitness XDR provides various licenses, including some that feature premium support.

  • ROI: Users reported saving time by implementing Trellix Endpoint Security. NetWitness XDR has demonstrated positive outcomes by improving threat detection capabilities and facilitating digital forensics.

Comparison Results: Our users prefer Trellix Endpoint Security over NetWitness XDR. Users praised Trellix's extensive management capabilities, low resource usage, and reasonable price. NetWitness XDR receives mixed reviews for its slower performance, and complex licensing. Users also that NetWitness could improve its threat intelligence and user interface. Trellix Endpoint Security earned positive feedback for its customer service and support, while some NetWitness users were unsatisfied with response times.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness XDR vs. Trellix Endpoint Security Report (Updated: July 2024).
Buyer's Guide
NetWitness XDR vs. Trellix Endpoint Security
July 2024
Download the complete report
Helped 793,295 peers since 2012
 

Categories and Ranking

NetWitness XDR
Ranking in Endpoint Protection Platform (EPP)
53rd
Ranking in Extended Detection and Response (XDR)
25th
Average Rating
8.0
Number of Reviews
15
Ranking in other categories
Threat Intelligence Platforms (23rd), Endpoint Detection and Response (EDR) (49th), Security Orchestration Automation and Response (SOAR) (21st), Network Detection and Response (NDR) (11th)
Trellix Endpoint Security
Ranking in Endpoint Protection Platform (EPP)
10th
Ranking in Extended Detection and Response (XDR)
10th
Average Rating
8.0
Number of Reviews
96
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2024, in the Endpoint Protection Platform (EPP) category, the mindshare of NetWitness XDR is 0.2%, up from 0.2% compared to the previous year. The mindshare of Trellix Endpoint Security is 4.5%, up from 3.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
Unique Categories:
Threat Intelligence Platforms
0.8%
Endpoint Detection and Response (EDR)
0.4%
Extended Detection and Response (XDR)
4.2%
 

Featured Reviews

HS
Aug 11, 2022
Advanced threat detection undermined by issues with blocking
I primarily use NetWitness Endpoint to detect anomalies like the presence of web shields that are not detected by traditional antivirus solutions. I also use it for digital forensics and containment NetWitness Endpoint has enabled us to detect attacks that bypass the first stage of cybersecurity,…
Read full review
SS
Oct 31, 2022
Scalable and quickly deployable, but they should try moving away from the signature-based model
It covers the AV and malware security piece It's mainly for compliance. In terms of products in the market, it's probably not the best, but it's the one that is already paid for under the corporate buy. It basically checks the box that we're doing malware threat prevention and antivirus…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"RSA NetWitness does market analysis in a more granular form. It gives you full visibility."
"NetWitness Endpoint's most valuable features are its interoperability across many different operating systems and the ease of pivoting from network to endpoint via a single console."
"They have recently updated the features and the most valuable ones are the instant threat response, ease of use, web interface, integration, and easy access. RSA NetWitness Endpoint is very compatible with other solutions and technologies. However, they do not rely on third-party solutions and have most features built-in."
"Technical support is knowledgeable."
"The most valuable feature of RSA NetWitness Network is the single unified dashboard from which you can manage all the different products of RSA. Additionally, the integration with native applications is good."
"The most valuable feature is the way it captures the traffic, and it contains every detail of the communication."
"It helps our security team respond more accurately when there are threats, then we get less false positives or negatives."
"The stability of the RSA NetWitness Endpoint is very good."
More NetWitness XDR pros
"Technical support is always available and very helpful."
"It's quite easy to install agents."
"The central management console is powerful. You can manage endpoints, DLP, encryption, and all the other features from a single console."
"The installation is pretty straightforward."
"Tech support is responsive. They're good, the very best."
"We receive good protection with this solution."
"It provides a lot of information and great visibility, with really great options for managing the environment."
"The solution scales well."
More Trellix Endpoint Security pros
 

Cons

"The initial setup requires a high level of skill."
"I would like to see Security Orchestration and Response Automation (SOAR) integration."
"We would like to see the hunting and investigation features of this solution improved, in order to provide better visibility of issues."
"The solution is modular, for example you can buy the RSA ePack, which you buy as a module is not part of the conduit solution. They could include it and have it as an all-in-one solution."
"Threat detection could be better."
"NetWitness Endpoint's blocking feature does not work properly - if there's a malicious process, it's not possible to kill it via a custom rule unless and until it's flagged as malicious."
"The solution lacks a reporting engine."
"The contamination feature could be improved."
More NetWitness XDR cons
"The tool could provide more advanced protection."
"The platform needs improvement in terms of handling heavy databases."
"The VirusScan needs to improve in order to detect ransomware and other advanced threats."
"The local technical support could be better."
"The software download features could stand improvement."
"The solution's technical support should be improved since we faced a lot of issues with the support. There were some delays in responses from the technical support."
"The product is not easy to use."
"If there's a possibility for remote assistance or investigation support in the future, it would be beneficial. Currently, we use another remote software for such purposes. If this feature could be included in the next version, that would be an improvement. The feature is called Remote Administration. I'm somewhat satisfied, but there's an issue I recently encountered. When attempting to scan a suspected host machine, Symantec Endpoint Security did not provide any alerts. However, when we installed Malwarebytes and ran a scan, it detected a threat that wasn't identified by Symantec. We raised this concern with the team for resolution, and the investigation is still ongoing."
More Trellix Endpoint Security cons
 

Pricing and Cost Advice

"It is an expensive product."
"We are on a three-year contract to use RSA NetWitness Network."
"It is highly scalable. It can be bought based on your requirements."
"NetWitness Endpoint is less costly than its competitors, but it offers fewer features."
"The pricing is not very economical. It is a quite costly product for India. One thing is that when you purchase it, you have to purchase a module separately."
"The price of the solution depends on the environment. If the environment is large then it will cost more. However, the larger the environment with more endpoints, you will receive an increased discount. If the environment is very small, then you might think it is expensive. It is always better to buy in bulk to receive a discount. The minimum number of assets is usually 500, with discounts on 1000 and 2000."
"The cost depends on the number of endpoints that you want to monitor, but it is not expensive."
"I do not have any opinion on the pricing or licensing of the product."
More NetWitness XDR pricing and cost advice
"Compared to Bitdefender, Trellix Endpoint Security is more expensive, but considering it comes with DLP, the solution's price is fine."
"It is reasonably priced."
"The pricing is more or less the same as the other tools in the market."
"There is a one-year and a three-year license available for this solution, we are currently on a three-year license."
"It is not that expensive. There is no additional cost. We got the entire bundle together."
"For each computer that is connected to the server McAfee charges us for each computer based on our license agreement."
"Trellix Endpoint Security is neither a cheap nor an expensive solution."
"The price of the solution is fair, we have a complete security package."
More Trellix Endpoint Security pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
793,295 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
16%
Computer Software Company
15%
Government
9%
Manufacturing Company
7%
Educational Organization
38%
Government
10%
Computer Software Company
8%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about NetWitness XDR?
Technical support is knowledgeable.
See all answers
What is your experience regarding pricing and costs for NetWitness XDR?
The solution is expensive. I'd rate it at a one or two out of five. They need to adjust it to keep up with the competition. I cannot speak to the exact pricing of the product.
See all answers
What needs improvement with NetWitness XDR?
I have no real complaints about the solution. Threat detection could be better. They need to enhance their threat intelligence feeds. We would like to have more IOCs or more trade intelligence to n...
See all answers
How does McAfee Endpoint Security compare with MVISION?
The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...
See all answers
What do you like most about McAfee Endpoint Security?
It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.
See all answers
What is your experience regarding pricing and costs for McAfee Endpoint Security?
Trellix Endpoint Security is an affordable tool. Its renewal price is also quite low. The product is available as a subscription license or a perpetual license.
See all answers
 

Comparisons

Darktrace vs NetWitness XDR Logo
Darktrace vs NetWitness XDR
Compared 13% of the time
ExtraHop Reveal(x) vs NetWitness XDR Logo
ExtraHop Reveal(x) vs NetWitness XDR
Compared 11% of the time
CrowdStrike Falcon vs NetWitness XDR Logo
CrowdStrike Falcon vs NetWitness XDR
Compared 9% of the time
Vectra AI vs NetWitness XDR Logo
Vectra AI vs NetWitness XDR
Compared 9% of the time
Microsoft Defender for Endpoint vs NetWitness XDR Logo
Microsoft Defender for Endpoint vs NetWitness XDR
Compared 8% of the time
More NetWitness XDR Competitors
Microsoft Defender for Endpoint vs Trellix Endpoint Security Logo
Microsoft Defender for Endpoint vs Trellix Endpoint Security
Compared 20% of the time
Trellix Endpoint Security (ENS) vs Trellix Endpoint Security Logo
Trellix Endpoint Security (ENS) vs Trellix Endpoint Security
Compared 17% of the time
CrowdStrike Falcon vs Trellix Endpoint Security Logo
CrowdStrike Falcon vs Trellix Endpoint Security
Compared 7% of the time
Trend Micro Deep Security vs Trellix Endpoint Security Logo
Trend Micro Deep Security vs Trellix Endpoint Security
Compared 6% of the time
Cortex XDR by Palo Alto Networks vs Trellix Endpoint Security Logo
Cortex XDR by Palo Alto Networks vs Trellix Endpoint Security
Compared 6% of the time
More Trellix Endpoint Security Competitors
 

Product Reports

Buyer's Guide
NetWitness XDR
July 2024
NetWitness XDR reportDownload NetWitness XDR product report
Buyer's Guide
Trellix Endpoint Security
June 2024
Trellix Endpoint Security reportDownload Trellix Endpoint Security product report
 

Also Known As

RSA ECAT, NetWitness Network
McAfee Endpoint Security, McAfee Complete Endpoint Protection, McAfee Endpoint Protection, Total Protection for Endpoint, Intel Security Total Protection for Endpoint, MCAFEE Complete Endpoint Protection
 

Learn More

Video not available
NetWitness
Trellix
 

Overview

Using a centralized combination of network and endpoint analysis, behavioral analysis, data science techniques and threat intelligence, NetWitness XDR helps analysts detect and resolve known and unknown attacks while automating and orchestrating the incident response lifecycle. With these capabilities on one platform, security teams can collapse disparate tools and data into a powerful, blazingly fast user interface.

Trellix Endpoint Security provides aggressive robust protection for every endpoint in an enterprise organization. Trellix uses dynamic threat intelligence and mounts a superb defense across the complete threat lifecycle. This solution will keep your organization more secure and resistant to any possible threat of risks. Trellix offers an amalgamated suite of next-generation endpoint security tools. These tools give users the benefit of machine learning, intuitive intelligence, and greater assistance to ensure their networks are being protected non-stop against threats - potential or realized - and can stop attacks before they happen. Trellix uses MDR (managed detection and response) and XDR (extended detection and response) to give users a comprehensive endpoint security solution.

Trellix Endpoint Security Benefits

  • Intuitive Protection: Trellix Endpoint Security learns and matures to ensure organizations are continuously protected in today’s aggressive threat environment. Users have full visibility and greater control of all endpoints and are able to utilize Trellix Endpoint Security’s potent threat detection, prevention, investigation, and response to keep their enterprises safe and secure.

  • Streamlined Security Protection: Users have a single view of full transparency into how their networks are performing and the overall effectiveness of the security. Users can access the solution from anywhere and manage automated workflows. The solution allows for a streamlined security process to improve the overall reliability of the organization's security and can effortlessly scan through hundreds of thousands of endpoints in minutes.

  • Robust Risk Management: Stop attacks before they occur and keep abreast of potential threats with intuitive threat prioritization. Receive easy to understand risk assessment and repair guidance without delay to prevent any possible lapses in security. Test scenarios will allow users to see how the organization would respond to a threat scheme.

Trellix Endpoint Security Top Features

  • Consolidated Management: Trellix offers numerous deployment options. The unique consolidated management process provides full transparency, cost-effective processes, improved IT functionality, and streamlined operations.

  • Intuitive Processes: Trellix can identify zero-day threats using machine learning and develop workable risk assessment to prevent attacks. Trellix intuitively creates protocols to recognize problematic processes that could lead to future attacks.
  • Reduced Impact on Resources: Trellix learns to focus on suspicious or anomalous activities by quickly identifying trusted activities to greatly reduce CPU consumption.

Reviews from Real Users

“It has a great console. We can manage everything from the central console and it is very easy. Every year we are getting the benefits of legacy also. It's easy to set up.” - S Fazlul H., IT Lead Engineer, Information Technology at Banglalink

“There is a new feature where you can set thresholds for all the CPU consumption allowing for no consumption on the servers when the scans happen. It is a separate plugin or addon, and if we have it on all the virtual machines it automatically checks the resources, and based on that, it will schedule the scans. That is something that I have not seen in other antivirus solutions, such as Symantec.” - Sabari K. Senior Engineer at a comms service provider

 

Sample Customers

ADP, Ameritas, Partners Healthcare
inHouseIT, Seagate Technology
Buyer's Guide
NetWitness XDR vs. Trellix Endpoint Security
July 2024
Free Report: NetWitness XDR vs. Trellix Endpoint Security
Find out what your peers are saying about NetWitness XDR vs. Trellix Endpoint Security and other solutions. Updated: July 2024.
DOWNLOAD NOW
793,295 professionals have used our research since 2012.
See our NetWitness XDR vs. Trellix Endpoint Security report.
See our list of best Endpoint Protection Platform (EPP) vendors and best Extended Detection and Response (XDR) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.