Try our new research platform with insights from 80,000+ expert users

Tanium vs Trellix Endpoint Detection and Response (EDR) comparison

Tanium and Trellix are both solutions in the Endpoint Detection and Response (EDR) category. Tanium is ranked #21 with an average rating of 8.5, while Trellix is ranked #24 with an average rating of 7.1. Tanium holds a 2.1% mindshare in EDR, compared to Trellix’s 1.1% mindshare. Additionally, 78% of Tanium users are willing to recommend the solution, compared to 85% of Trellix users who would recommend it.
Tanium
Read 20 Tanium reviews
  • 10,837 Views
  • 4,010 Comparison Views
78% willing to recommend
Trellix Endpoint Detection ...
Read 24 Trellix Endpoint Detection and Response (EDR) reviews
  • 1,992 Views
  • 1,972 Comparison Views
85% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 18, 2026

Tanium and Trellix Endpoint Detection and Response (EDR) are key competitors in the cybersecurity domain, focusing on endpoint detection and response solutions. Trellix EDR may have a slight advantage due to its sophisticated analytics and automation capabilities.

Features: Tanium provides real-time data visibility, integrated threat detection, and comprehensive endpoint management. Trellix EDR offers behavior-based threat detection, automated responses, and deep forensic capabilities, with a strong focus on intelligence-driven threat mitigation.

Room for Improvement: Tanium could improve its complex setup process, expand integration options with third-party solutions, and enhance user interface for better navigation. Trellix EDR could benefit from streamlining its high initial cost, simplifying its user training requirements, and improving the depth of its reporting capabilities.

Ease of Deployment and Customer Service: Tanium is recognized for straightforward implementation and responsive customer support. Trellix EDR is celebrated for its adaptable deployment model fitting diverse environments, along with strong customer service and technical guidance, offering slight flexibility advantages.

Pricing and ROI: Tanium features a scalable pricing structure with favorable ROI, appealing to organizations seeking budget-friendly security investments. Trellix EDR, despite higher initial setup costs, offers strong ROI validated by its advanced features and operational efficiency, making it a compelling choice for enterprises focused on security.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Tanium vs. Trellix Endpoint Detection and Response (EDR) Report (Updated: December 2025).
Buyer's Guide
Tanium vs. Trellix Endpoint Detection and Response (EDR)
December 2025
Download the complete report
Helped 881,176 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Tanium
Ranking in Endpoint Detection and Response (EDR)
21st
Average Rating
7.8
Reviews Sentiment
6.4
Number of Reviews
20
Ranking in other categories
Server Monitoring (3rd), Vulnerability Management (23rd), Endpoint Protection Platform (EPP) (21st), Unified Endpoint Management (UEM) (7th)
Trellix Endpoint Detection ...
Ranking in Endpoint Detection and Response (EDR)
24th
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
24
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of January 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Tanium is 2.1%, down from 2.4% compared to the previous year. The mindshare of Trellix Endpoint Detection and Response (EDR) is 1.1%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Market Share Distribution
ProductMarket Share (%)
Tanium2.1%
Trellix Endpoint Detection and Response (EDR)1.1%
Other96.8%
Endpoint Detection and Response (EDR)
 

Featured Reviews

VK
Vignesh K
Infra Vulnarability Manager at Rezilyens
Immediate results in patching promptly address vulnerabilities
When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium. I have to search outside to download patches, create bundles, and then perform the task. It would be easier if Tanium provided the patches directly. Some other brands provide the patch with a direct download link, which facilitates the process. Also, I feel that if there were more detailed documents and remediations readily available online for troubleshooting, especially more up-to-date information, it would be beneficial. Currently, some resources online are very out-of-date.
Read full review
CESARCASTRO - PeerSpot reviewer
CESARCASTRO
Committee Of IT Cybersececurity at a energy/utilities company with 51-200 employees
Cross-site threat hunting has improved visibility and supports proactive incident response
I believe this is a product in evolution. I do not think it is a final tool to conduct forensics or information forensics of the incidents or information incidents that could arise in our network infrastructure. Trellix Endpoint Detection and Response (EDR) is interesting and is a very good entry point that has been evolving through the last years. In the next two months, I have a new contract, and we are pointing out to have an XDR solution with NDR and EDR together. I do not have enough time to do it because I am the manager. However, my coworkers do not understand it yet. I have a contract with a third-party company that is making reports around that, but also they do not have enough experience or enough utility of this. It would be interesting if I have a notification system from EDR. For example, if I am the manager, it would be interesting to have a warning, alarm, or something around that which could call me to get into the system and the dashboard to see what is happening. For example, if it is a high-level threat. However, most of them are just advisory or warnings. I do not enter the tool frequently. I guess I access it once every three months.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Tanium is a very good product and I would rate it eight or nine out of ten."
"The interrogation piece was the most valuable feature because it was very detailed."
"Tanium's most valuable feature is its instant discovery aspect."
"I like the tool's incident response and security patching."
"The product is granular and can build complex roles compared to other EDR vendors."
"The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization."
"When I push a quick update, it's done right away, and I can rescan immediately to confirm completion within minutes."
"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."
More Tanium pros
"This is a stable product."
"It is a stable solution. Stability-wise, I rate the solution a nine out of ten...I rate the solution's technical support team a nine and a half or ten out of ten."
"The investigation and rule detection feature of the solution has proven most useful for our company"
"Trellix Endpoint Detection and Response (EDR) offers endpoint protection and helps collect information while also allowing users to investigate malicious files in an IT environment...It is a stable solution...It is a scalable solution."
"The dashboard makes it easier and more effective to analyze data."
"Trellix has a user-friendly interface."
"The product's initial setup phase was very straightforward since you just need to install it, and it works."
"The most valuable feature I found in McAfee MVISION Endpoint Detection and Response is the guided analytics or guided EDR investigation."
More Trellix Endpoint Detection and Response (EDR) pros
 

Cons

"It is not really additional functions, or the features that are needed, rather the complexity would be reduced based on the number of modules required to put together a comprehensive operational security and risk compliance model."
"Most of the time, agent-relative issues have to be more equipped with self-healing features. At times, the agent is there, but for some reason, it doesn't report a status. It gives certain problems that are obviously agent-based."
"Tanium required local admin or root rights on Mac devices, which did not comply with our security policies. This made the solution less suitable for our restrictive environment."
"The solution needs to improve the reporting and tracking capabilities."
"The solution lacks mobility."
"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium."
"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."
"Tanium’s scalability could be improved."
More Tanium cons
"The alert feature of McAfee MVISION Endpoint Detection and Response needs improvement because for you to get the alerts, you have to log on to the portal. What my company needs is a tool that sends you alerts. For example, if it detects a threat on your machine, it should send you an alert. My company gets the alerts instead from the antivirus software rather than the EDR. If you want to see the alerts on McAfee MVISION Endpoint Detection and Response, you have to connect to the system manually. Another area for improvement in the tool is the reporting. My company needs weekly and monthly reports about the alerts, but you can't extract reports from McAfee MVISION Endpoint Detection and Response, so a decision was made to move to another EDR solution, particularly Microsoft Defender for Endpoint, next month. My company tested Microsoft Defender for Endpoint via a POC for one to three months. The resource usage of McAfee MVISION Endpoint Detection and Response is also an area for improvement because it consumes a lot of memory. For example, during the on-demand scan, you can't work because of the high CPU usage. You need to schedule the scans. McAfee MVISION Endpoint Detection and Response has a lot of modules, but my company doesn't use all modules."
"Some modules that are doing machine learning and artificial intelligence are blocking our processes."
"The graphical view for nodes must be increased."
"The dashboard is split across different platforms. For example, if you want information on Incident Detection, you have to access one dashboard, and for DLP reporting, there's a separate platform. This fragmentation means you can't access everything from a single dashboard."
"The searching capabilities for the IOCs can be further improved"
"The technical support must be improved."
"I need some protection, possibly multi-factor authentication improvements."
"For Spanish users, it is necessary to have a knowledge base specifically designed for them, which is currently not available."
More Trellix Endpoint Detection and Response (EDR) cons
 

Pricing and Cost Advice

"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"It is higher than some competitors in the market."
"There is an annual license required to use this solution."
"It's an expensive solution. It would be nice if the cost were lower."
"The solution is expensive but it's a good investment."
"The solution offers value for money."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"The cost is okay, compared to other products."
"The licensing costs attached to the solution are very easy to manage. There is a need to make yearly payments towards the licensing costs."
"On a scale of one to ten, where one is low and ten is high, I rate the solution's pricing an eight out of ten."
"The pricing is always high."
"The product’s pricing is reasonable."
"Speaking about the price, you must use the product to find the product's cost for you."
"Pricing is a problem in South Africa. It could be cheaper here. The rand-to-dollar exchange rate makes it expensive for us. A 25 dollar endpoint cost becomes quite significant when converted to rand."
"The price is reasonable."
More Trellix Endpoint Detection and Response (EDR) pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
881,176 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
16%
Government
11%
Manufacturing Company
9%
Computer Software Company
8%
Financial Services Firm
12%
Government
10%
Computer Software Company
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise3
Large Enterprise11
By reviewers
Company SizeCount
Small Business13
Midsize Enterprise3
Large Enterprise10
 

Questions from the Community

What needs improvement with Tanium?
While there is always room for improvement, I am pleased with Tanium.
See all answers
What is your primary use case for Tanium?
The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the core functions.
See all answers
What advice do you have for others considering Tanium?
For smaller companies, Tanium is quite a big investment, and one needs to have a considerable setup to make it economically viable. I would recommend it to others with a similar use case. The solut...
See all answers
What do you like most about McAfee MVISION Endpoint Detection and Response?
Trellix has a user-friendly interface.
See all answers
What is your experience regarding pricing and costs for McAfee MVISION Endpoint Detection and Response?
I pay for what we get. But the service level from my partner company is not enough to overcome a complex case.
See all answers
What needs improvement with McAfee MVISION Endpoint Detection and Response?
I believe this is a product in evolution. I do not think it is a final tool to conduct forensics or information forensics of the incidents or information incidents that could arise in our network i...
See all answers
 

Comparisons

CrowdStrike Falcon vs Tanium Logo
CrowdStrike Falcon vs Tanium
Compared 9% of the time
Microsoft Defender for Endpoint vs Tanium Logo
Microsoft Defender for Endpoint vs Tanium
Compared 6% of the time
BigFix vs Tanium Logo
BigFix vs Tanium
Compared 5% of the time
Microsoft Configuration Manager vs Tanium Logo
Microsoft Configuration Manager vs Tanium
Compared 4% of the time
NinjaOne vs Tanium Logo
NinjaOne vs Tanium
Compared 4% of the time
More Tanium Competitors
Trellix Endpoint Security Platform vs Trellix Endpoint Detection and Response (EDR) Logo
Trellix Endpoint Security Platform vs Trellix Endpoint Detection and Response (EDR)
Compared 32% of the time
CrowdStrike Falcon vs Trellix Endpoint Detection and Response (EDR) Logo
CrowdStrike Falcon vs Trellix Endpoint Detection and Response (EDR)
Compared 15% of the time
SentinelOne Singularity Complete vs Trellix Endpoint Detection and Response (EDR) Logo
SentinelOne Singularity Complete vs Trellix Endpoint Detection and Response (EDR)
Compared 9% of the time
Trend Vision One vs Trellix Endpoint Detection and Response (EDR) Logo
Trend Vision One vs Trellix Endpoint Detection and Response (EDR)
Compared 9% of the time
Elastic Security vs Trellix Endpoint Detection and Response (EDR) Logo
Elastic Security vs Trellix Endpoint Detection and Response (EDR)
Compared 6% of the time
More Trellix Endpoint Detection and Response (EDR) Competitors
 

Product Reports

Buyer's Guide
Tanium
January 2026
Tanium reportDownload Tanium product report
Buyer's Guide
Trellix Endpoint Detection and Response (EDR)
January 2026
Trellix Endpoint Detection and Response (EDR) reportDownload Trellix Endpoint Detection and Response (EDR) product report
 

Also Known As

Tanium Inc Cloud, Tanium XEM
McAfee MVISION EDR, MVISION EDR, MVISION Endpoint Detection and Response
 

Overview

Tanium offers robust endpoint protection, patching, and inventory management, consolidating the functions of tools like BigFix with capabilities in incident response, network security, and cloud or on-premise deployments.

Known for real-time capabilities, Tanium provides detailed analytics, security features, and device management. Users benefit from quick implementation, real-time updates, and patching campaigns. Despite its strengths, integration and custom plugin expansion remain areas to improve, along with data visualization and network optimization. Reporting enhancements and user training could advance its usability, and some UI elements may require updates for clarity and security.

What are the essential features of Tanium?
  • Detailed Analytics: Provides actionable insights for better decision-making.
  • Security Capabilities: Offers strong defense measures against threats.
  • Real-Time Queries: Facilitates immediate information access.
  • Patch Management: Streamlines software updates across devices.
  • Device Management: Efficiently handles comprehensive inventory and monitoring tasks.
What benefits should users expect?
  • Ease of Use: Simplifies complex IT tasks.
  • Scalability: Adapts to growing IT infrastructure needs.
  • Integration Flexibility: Merges with existing systems effortlessly.
  • Real-Time Updates: Ensures current data availability for informed actions.

Tanium's deployment spans industries focusing on endpoint protection and compliance, ensuring reliable device and server management in settings where safety and quick adaptation are critical. Organizations use it for application deployment, compliance checks, and integrating it as an EDR solution, enhancing overall security and operational efficiencies.

Tanium

Reduce Alert Noise

Reduce the time to detect and respond to threats. Trellix EDR helps security analysts quickly prioritize threats and minimize potential disruption.

Do More with Existing Resources

Guided investigation automatically asks and answers questions while gathering, summarizing, and visualizing evidence from multiple sources—reducing the need for more SOC resources.

Low-Maintenance Cloud Solution

Cloud-based deployment and analytics enables your skilled security analysts to focus on strategic defense, instead of tool maintenance. Benefit from implementing the right solution for you.

Trellix
 

Sample Customers

JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Sutherland Global Services
Buyer's Guide
Tanium vs. Trellix Endpoint Detection and Response (EDR)
December 2025
Free Report: Tanium vs. Trellix Endpoint Detection and Response (EDR)
Find out what your peers are saying about Tanium vs. Trellix Endpoint Detection and Response (EDR) and other solutions. Updated: December 2025.
DOWNLOAD NOW
881,176 professionals have used our research since 2012.
See our Tanium vs. Trellix Endpoint Detection and Response (EDR) report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.