Tanium vs Trellix Endpoint Detection and Response (EDR) comparison

"Tanium’s linear-chain architecture is valuable."

"I would say Tanium is the best tool for vulnerability management."

"Threat hunting is a very good feature on Tanium. We have just started using it and have not used it extensively."

"The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization."

"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."

"When I push a quick update, it's done right away, and I can rescan immediately to confirm completion within minutes."

"When I push a quick update, it's done right away, and I can rescan immediately to confirm completion within minutes."

"The security features are very valuable."

"Trellix Endpoint Detection and Response (EDR) offers endpoint protection and helps collect information while also allowing users to investigate malicious files in an IT environment...It is a stable solution...It is a scalable solution."

"When Trellix detects some threats, the device is isolated in a quarantine zone for examination."

"Trellix has done a good job reducing threats."

"The most valuable features of the solution are the ability to isolate or quarantine devices and block or detect Ransomware and other well-known tools that are used to exploit vulnerabilities on devices."

"The product provides a one-click recovery of encrypted files."

"Blocking browser navigation is a feature of the solution with which we have experienced success."

"It is a scalable solution and very easy to use."

"The investigation and rule detection feature of the solution has proven most useful for our company"

"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium."

"The most painful thing is the interface. It's a bit unclear sometimes."

"Tanium required local admin or root rights on Mac devices, which did not comply with our security policies. This made the solution less suitable for our restrictive environment."

"Tanium’s scalability could be improved."

"Most of the time, agent-relative issues have to be more equipped with self-healing features. At times, the agent is there, but for some reason, it doesn't report a status. It gives certain problems that are obviously agent-based."

"They could improve the UI."

"The solution needs to improve the reporting and tracking capabilities."

"It is not really additional functions, or the features that are needed, rather the complexity would be reduced based on the number of modules required to put together a comprehensive operational security and risk compliance model."

"The alert feature of McAfee MVISION Endpoint Detection and Response needs improvement because for you to get the alerts, you have to log on to the portal. What my company needs is a tool that sends you alerts. For example, if it detects a threat on your machine, it should send you an alert. My company gets the alerts instead from the antivirus software rather than the EDR. If you want to see the alerts on McAfee MVISION Endpoint Detection and Response, you have to connect to the system manually. Another area for improvement in the tool is the reporting. My company needs weekly and monthly reports about the alerts, but you can't extract reports from McAfee MVISION Endpoint Detection and Response, so a decision was made to move to another EDR solution, particularly Microsoft Defender for Endpoint, next month. My company tested Microsoft Defender for Endpoint via a POC for one to three months. The resource usage of McAfee MVISION Endpoint Detection and Response is also an area for improvement because it consumes a lot of memory. For example, during the on-demand scan, you can't work because of the high CPU usage. You need to schedule the scans. McAfee MVISION Endpoint Detection and Response has a lot of modules, but my company doesn't use all modules."

"When it comes to some unknown fileless attacks, the tool is not able to detect them properly, making it an area where improvements are required."

"Some modules that are doing machine learning and artificial intelligence are blocking our processes."

"I remember doing many tickets for Trellix support, and my EDR was not properly functioning. I didn't feel the detection or the real protection."

"The dashboard is split across different platforms. For example, if you want information on Incident Detection, you have to access one dashboard, and for DLP reporting, there's a separate platform. This fragmentation means you can't access everything from a single dashboard."

"I'd like the tool to become more like an XDR, with one management system and endpoint activation."

"The endpoints and utilization are too high, which impacts the production activity."

"An area for improvement in McAfee MVISION Endpoint Detection and Response is the historical search. For example: when you have information on the artifact and a precedent, you want to do a search, and that is a bit lacking in the tool."

"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."

"The product's pricing differs from region to region depending on negotiations and the number of endpoints."

"The solution offers value for money."

"It is higher than some competitors in the market."

"It's an expensive solution. It would be nice if the cost were lower."

"The solution is expensive but it's a good investment."

"There is an annual license required to use this solution."

"Pricing for McAfee MVISION Endpoint Detection and Response is not that expensive, but it's not something that a startup could buy. Pricing for it is for midsized businesses. There's an additional payment if you want data retention for more than thirty days. They gave us data retention for thirty days. Then if you want longer data retention, they have the paid option for a three-month data retention period and for a one-year data retention period."

"The product’s pricing is reasonable."

"The pricing is always high."

"On a scale of one to ten, where one is low and ten is high, I rate the solution's pricing an eight out of ten."

"McAfee MVISION Endpoint Detection and Response is reasonable in terms of cost. It's a tool my company has been using for a few years now. It costs $25,000 to $30,000 for six hundred users."

"Speaking about the price, you must use the product to find the product's cost for you."

"Pricing is a problem in South Africa. It could be cheaper here. The rand-to-dollar exchange rate makes it expensive for us. A 25 dollar endpoint cost becomes quite significant when converted to rand."

"The price is reasonable."