No more typing reviews! Try our Samantha, our new voice AI agent.

Tanium vs Trend Micro Smart Protection [EOL] comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 3, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Endpoint Detection and Response (EDR) (6th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Tanium
Average Rating
7.8
Reviews Sentiment
6.2
Number of Reviews
22
Ranking in other categories
Server Monitoring (3rd), Vulnerability Management (26th), Endpoint Protection Platform (EPP) (15th), Endpoint Detection and Response (EDR) (23rd), Unified Endpoint Management (UEM) (8th)
Trend Micro Smart Protectio...
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
45
Ranking in other categories
No ranking in other categories
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
MA
Division Manager, Information Technology at a legal firm with 51-200 employees
Centralized policies have improved remote endpoint control and have simplified data visibility
The integration is not simple and easy. It requires experienced users or people who have done the implementation. When certain policies are applied, they do not immediately push the policies. For example, we manage endpoint device USB access. We set a policy to block it, but it does not come into effect immediately. Sometimes it takes three or four days for it to reflect. That is a pain point. I have raised this issue with support as well, but they said that I need to limit the number of devices in the policy. In terms of application deployment, for us, it was seamless.
reviewer2759025 - PeerSpot reviewer
Information Technology Service Desk Manager at a tech vendor with 5,001-10,000 employees
Deep traffic inspection has strengthened threat detection and provides smooth zero day protection
I have been dealing with Deep Discovery that inspects incoming and outgoing traffic, and it is used for packet filtering. The most valuable features and functionalities in Deep Discovery are that it is used for monitoring malicious traffic, and it operates down to the firewall and inspects any malicious traffic. I have used Deep Discovery's sandbox analysis feature. The sandboxing feature helps our threat detection efforts as it internally inspects the malicious data and holds it in the sandbox, and after the analysis, the file is quarantined. I evaluate Deep Discovery's real-time visibility on network traffic as a better solution for inspecting traffic. In incident response, Deep Discovery captures zero-day threats easily and provides the best visibility on the console. I assess the effectiveness of Trend Micro's real-time analysis in my defense strategy as good, as it does not disturb any work and operates very smoothly in the background without any utilization.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The interface is easy to use and it is more up to date than our previous solution."
"Technical support is the best in class, in my opinion, because they have invested heavily in research and development."
"Traps has drastically reduced our endpoint attack surface via advanced detection capabilities, sandboxing of never before seen programs, and by drastically limiting where executables can launch in the first place."
"Cortex XDR lets us manage several clients from the same console, and its endpoint defense is more advanced than traditional antivirus."
"One of the main benefits of the solution is its intelligence to correlate the events into an incident."
"The solution helps find bugs, and it is safe to use to prevent attacks by hackers."
"The scalability of Cortex XDR by Palo Alto Networks is very good."
"It has a higher cost than other solutions, like CrowdStrike or Microsoft’s EDR tools, but it reduces the cost of our operations because it’s a new generation antivirus tool."
"The most valuable features of this solution are the consolidation of all historical data on device endpoints, security drivers, firmware, and Software version gaps."
"Tanium has made the process of detecting threats more proactive with its detection. So, the process is easier and more efficient."
"I like the tool's incident response and security patching."
"I find the inventory and compliance features of Tanium to be the most impressive."
"Tanium’s best features include support for any Windows, Linux, or Mac endpoint, regardless of where it is, and the ability to do IT operations and security operations."
"Tanium's most valuable feature is its instant discovery aspect."
"Tanium is highly scalable."
"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."
"As a Japanese company, it doesn't have any restrictions on usage in our country."
"The advantages of Trend Micro Smart Protection include its best feature, which is virtual patching."
"Product-wise, it is amazing."
"The solution overall is very helpful and very reliable."
"Installation is easy."
"One of the most valuable features of Trend Micro Smart Protection is the integration with other solutions."
"The sandboxing is more proactive and more reliable than any of the other endpoint protection solutions."
"The most useful feature is endpoint security."
 

Cons

"I would like to see them include NDR (Network Detection Response). Then it would work well with SIEM Response."
"I don't like that they have different types of licenses. For example, if users select a license, they think they will have all the platforms they need to improve their network or security. But after some time, Palo Alto Networks changed their licensing, and some of the features that, for example, were free at the beginning now have a cost. I think the integration can be improved. For example, a lot of tools are just integrated through APIs."
"It would be better if they could educate the customers more. Some sort of seminars and roadshows will help educate the customers and show what the product can do. The price could be better. It would also help if they had a team for deployment and support."
"Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth."
"The downsides of Cortex XDR by Palo Alto Networks are that in many incidents, when I enter the causality chain, there are numerous logs."
"Whenever the tool releases a new version when deploying the product across the organization, I feel like there are some disturbances in the CPU usage after upgrading the tool to the latest version."
"Cortex XDR could be improved with more GUI features."
"The tool needs to be improved in terms of integration and interface."
"The most painful thing is the interface. It's a bit unclear sometimes."
"The solution can give a lot of false positives."
"The solution lacks mobility."
"Tanium’s scalability could be improved."
"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."
"They could improve the UI."
"Tanium's limitations should be improved because although it is a great tool, it is limited to only a few classes during a session."
"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium. I have to search outside to download patches, create bundles, and then perform the task."
"Some functionalities within the DLP can be improved."
"Sometimes, the tool bases its actions on behaviour, and we lack a policy learning mechanism. If Trend Micro Smart Protection introduced an AI model, its protection capabilities would be enhanced. I used a different browser once, which may have prevented protection. Another time, our own ISP was added to the blacklist, and it took the support team two business days to resolve it."
"We were considering switching to SentinalOne because it has pre-detection, and Trend Micro does not offer this; it's something the solution should add."
"No online encryption or cloud services are available for the tool, so my company has to install it mostly in an on-premises environment. Encryption or cloud services need to be made available in the product."
"The solution’s technical support is not very good and could be improved."
"Enhanced capability to detect and protect against various malicious programs would be beneficial."
"The product is solid overall, but it could be faster in responding to new threats like ransomware."
"I haven't used the solution for very long, so I haven't encountered many issues using the solution."
 

Pricing and Cost Advice

"Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
"Its pricing is kind of in line with its competitors and everybody else out there."
"I did PoCs on products called Cylance and CrowdStrike. Although, I consider these products and they were also good, when it come to cost and budgetary factors, Traps has been proven to be better than the other two products. It is quite cost-effective and delivers all the entire solution which we require."
"It's the most expensive solution, but features-wise, it's quite strong. It's very good for protection, so the results are very good in the case of protection. I would rate it a two out of ten in terms of pricing."
"If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."
"The price was fine."
"The pricing is okay, although direct support can be expensive."
"Cortex XDR's pricing is ok."
"It's an expensive solution. It would be nice if the cost were lower."
"The solution offers value for money."
"There is an annual license required to use this solution."
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"The solution is expensive but it's a good investment."
"It is higher than some competitors in the market."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"There is an annual license required for this solution."
"The tool's licensing costs are yearly."
"Our organization has paid licensing for three years, which averaged about $4.00 USD per user. We've been satisfied with the licensing. It's quite reasonable."
"A yearly price has to be paid. I rate the pricing an eight out of ten."
"The product pricing for PCs is reasonable, but server security can be expensive."
"The licensing is on a yearly basis and I believe our organization paid about $2,000/year. However, it's been a while since I looked at the pricing and we no longer use the solution."
"Instead of going for monthly or yearly licensing models, it is better to go ahead with three-year or five-year licensing models as it can be cheaper."
"Whether something is affordable or pricy, is relative. It depends on the value an institution has attached to a capability. For us, security is a premium requirement, I can't say a solution is pricey if we are able to afford it and run it for seven years, I would say it's affordable."
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
904,836 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Financial Services Firm
14%
Government
10%
Manufacturing Company
9%
Healthcare Company
6%
Financial Services Firm
10%
Construction Company
9%
Outsourcing Company
8%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise3
Large Enterprise12
By reviewers
Company SizeCount
Small Business15
Midsize Enterprise16
Large Enterprise17
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What needs improvement with Tanium?
While there is always room for improvement, I am pleased with Tanium.
What is your primary use case for Tanium?
The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the co...
What advice do you have for others considering Tanium?
For smaller companies, Tanium is quite a big investment, and one needs to have a considerable setup to make it econom...
What is your experience regarding pricing and costs for Trend Micro Smart Protection?
I find that Trend Micro Smart Protection is affordable; I don't think it can be quite expensive.
What needs improvement with Trend Micro Smart Protection?
Trend Micro Smart Protection has been discontinued because it uses Linux CentOS OS, so currently we are using the ser...
What is your primary use case for Trend Micro Smart Protection?
We are using Deep Discovery Inspector in our banking environment, DDI. Many banking clients are using DDI, so it is w...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
Tanium Inc Cloud, Tanium XEM
Trend Micro Smart Protection Complete
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Atma Jaya Catholic University of Indonesia, Blekinge County Council, Bulgarian American Credit Bank, Cancer Research UK, Delacour, Evalueserve, Gulftainer, Hiroshima Red Cross Hospital & Atomic-bomb Survivors Hospital, Mazda Motor Logistics Europe, MEDHOST, Nikigolf, Ochsner Health System, SIAX Computing Solutions, Tegen
Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: June 2026.
904,836 professionals have used our research since 2012.