Try our new research platform with insights from 80,000+ expert users

Trellix Endpoint Security vs Trend Vision One comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 9, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
8.6
Trellix Endpoint Security delivers substantial ROI and cost savings, exceeding 300%, by efficiently preventing security breaches and reducing expenses.
Sentiment score
7.0
Companies highlighted Trend Vision One’s cost-effectiveness, automation benefits, and its role in enhancing financial outcomes through threat mitigation.
We have observed tremendous return on investment after implementing Trellix Endpoint Security as it is a more cost-effective solution compared to other products.
Clients appreciate the solution’s customization capabilities and ongoing product improvements.
Trend Vision One has improved our ROI by 30 percent.
Thankfully, we also had cyber security insurance, and the insurance covered the incidents because, through Trend Micro and the implementation of the solution, along with the data it provided, we were able to demonstrate what had happened.
The email filtering system paid for itself within a year.
 

Customer Service

Sentiment score
7.6
Trellix Endpoint Security support is praised for expertise but inconsistent service and slow response times need improvement.
Sentiment score
6.9
Trend Vision One's customer support is appreciated for responsiveness but needs improvement in technical competency and communication processes.
The response time is a notable issue.
I would rate their customer service nine out of ten.
Some engineers are knowledgeable.
It's not just about high-level support with the chatbot; rather, when an issue occurs, we have the experts on-site and ready to respond swiftly, which is crucial.
Trend Micro supported us throughout the transition from on-prem servers or other vendors, providing top-notch service at all times.
The engineers are not readily available.
 

Scalability Issues

Sentiment score
7.6
Trellix Endpoint Security is highly scalable, easily integrating across environments for diverse needs, especially excelling in cloud setups.
Sentiment score
8.0
Trend Vision One is highly scalable, flexible, and supports diverse environments, accommodating organizational growth and remote setups efficiently.
I would rate the scalability of the solution as a six out of ten, indicating some challenges due to downtime requirements.
Trellix Endpoint Security is scalable.
I’d give scalability a 10 because nearly everything is integrated.
We found that it scales easily.
Its scalability is very good as we can work with it flexibly.
 

Stability Issues

Sentiment score
8.5
Trellix Endpoint Security is stable and reliable, with improved versions addressing issues and users rating it highly.
Sentiment score
8.3
Trend Vision One is highly stable and reliable, with minor issues not affecting overall seamless performance in VDI environments.
I would rate its stability as nine out of ten.
I would rate the stability of Trellix Endpoint Security as near perfect, close to ten out of ten.
The stability is very high.
Stability is critically important for us with Trend Vision One; it is very stable, providing continuous 24/7 support.
 

Room For Improvement

Trellix Endpoint Security struggles with performance, detection speed, administration complexity, and compatibility, needing better automation and scalability.
Trend Vision One needs better reporting, UI, integration, deployment, EDR visibility, response times, filtering, flexibility, OS support, and documentation.
What needs improvement in Trellix Endpoint Security is the reduction of resource consumption by the scanning feature.
Improvements are needed in forensic analytics to detect specific vulnerabilities.
The product does not seem to be cloud-native.
The deployment can be complex, and we'd like an easier process, especially when integrating with on-prem and cloud environments.
For XDR threat investigation, there is not enough documentation about how to search for different keywords.
There is increasingly a blending of the traditional OT world, which requires a specific focus, as OT devices often don't use standard Ethernet protocols and similar technologies.
 

Setup Cost

Trellix Endpoint Security offers flexible pricing, valued for bundled deals, despite higher costs and per-user licensing concerns.
Trend Vision One offers reasonable pricing with flexibility, though some find it costly with extra feature charges.
The license costs are very reasonable, around 1,000 to 1,200 rupees per year.
Trellix Endpoint Security is cost-effective and provides excellent value for money.
Trend Vision One offers a competitive price-to-value ratio.
Trend Vision One is an expensive product.
The pricing is fair and not on the higher side.
 

Valuable Features

Trellix Endpoint Security excels in centralized management, offering robust, adaptive cybersecurity with seamless integration and user-friendly remote control features.
Trend Vision One offers centralized visibility, AI-enhanced efficiency, and XDR capabilities for comprehensive threat detection and management.
Trellix Endpoint Security is a proven, robust, and cost-effective solution that protects the organization from different types of ransomware and attacks.
Including options like Application Control (formerly Solidcore), integrated monitoring, change control, DLP, and advanced threat protection, the solution offers comprehensive security.
The most valuable features of Trellix Endpoint Security include its protection capabilities such as DNS and endpoint security, DNS threat prevention, as well as advanced threat prevention.
The most important features of Vision One include visibility, AI integration, attack pattern analysis, predictive analytics, and centralized visibility and management across protection layers.
The most critical feature of Vision One is that it gives us a single console for threat management.
Its ability to identify unmonitored endpoints and perform log inspection, which establishes operational baselines and detects anomalies, proves invaluable for threat identification.
 

Categories and Ranking

Trellix Endpoint Security
Ranking in Extended Detection and Response (XDR)
13th
Average Rating
8.0
Reviews Sentiment
7.4
Number of Reviews
101
Ranking in other categories
Endpoint Protection Platform (EPP) (10th)
Trend Vision One
Ranking in Extended Detection and Response (XDR)
5th
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
70
Ranking in other categories
Endpoint Detection and Response (EDR) (4th), Network Detection and Response (NDR) (3rd), Attack Surface Management (ASM) (2nd), AI-Powered Cybersecurity Platforms (3rd)
 

Mindshare comparison

As of May 2025, in the Extended Detection and Response (XDR) category, the mindshare of Trellix Endpoint Security is 1.8%, down from 2.5% compared to the previous year. The mindshare of Trend Vision One is 4.1%, down from 4.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR)
 

Featured Reviews

Abdullah Al Hadi - PeerSpot reviewer
Customization capabilities allow clients to autonomously deploy policies
There are a few areas where Trellix Endpoint Security ( /categories/endpoint-protection-platform-epp ) can improve. Firstly, the high CPU utilization when agents are installed can negatively impact client systems. Another issue is with end-users outside the network, where the agent handler sometimes fails to deploy the product properly. Improvements are needed in forensic analytics to detect specific vulnerabilities. It would also help if detection specifics were identified more quickly and the problem-solving process accelerated, especially to meet larger clients' expectations.
DavidBowman - PeerSpot reviewer
It improves the detection speed, but it could be more customizable
They need to stop changing Vision One once a week. They're in a hurry to change things so badly and so fast that I can't find where stuff is half the time, which is a challenge sometimes. I've given one piece of feedback to their product guys. One thing that they're trying to make is a SIEM. It's a product where you input all the logs from your tools, and it creates additional insights into how things look. They've been kind of playing the "me too" game on that, even though that's not what I bought the product for. They have a new gateway where I can take my firewall of email logs and send it over there. In theory, it's supposed to do a more comprehensive evaluation of all my stuff to improve that risk index score. I'm not impressed with it, and I've told them as much. I feel if you're good at something, you should keep working on that and not try to be all the things to all the people. I bought a different email solution even though it would have been 10 times easier to just stay with their email solution because they aren't great at it. They are great at other things, but they're playing the "me too" game with some of their products. Their competitors do this, so they should be doing this, too. They need to pick a product and keep being good at that. If they're going to roll new things out, they should do it but do it right. They have a button to isolate an endpoint because it looks bad, but it doesn't usually work. I've had no chance to argue with the product guys to show them examples of how their button doesn't work. You think it does, but it doesn't work in a real environment. That can be a challenge sometimes. I can see in the data showing what is a false positive. But it doesn't save me time helping them figure out how to fix the problem in their engine. It can help me identify it as a false positive, but it doesn't apply that consistently. It will ignore the false positive for that device, but if they start detecting a false positive on Apple devices, I have eight thousand Apple devices and get 8,000 alerts. I can tell that specific false positive, but it doesn't learn from that particularly well. We use the executive dashboards, but I don't find them particularly useful. One is the ability to customize. That has gotten a little better, and it'll be better in the future. Most of what they have on there are data points that are generic and not particularly actionable. That's why it's called an executive dashboard. Executives want to see if we are secure, but it's hard for me to find out why our attack surface risk went down by x percentage. I don't know. It says that on the dashboard, but it doesn't give me specific details about why. I find it confuses my executives, and it's not useful for me because it doesn't give me things to work on. It will give me generic things on the executive dashboard like you have a thousand accounts with an old password. Those are big generic things, but I also can't tell it that our password policy is different from what your automatic detection model means, and I don't have a problem with that, so quit lowering my risk score. The risk score is useless. In theory, it's based on the random intelligence they're getting from their various customers. I'm in K-12 education, so they have a decent amount of K-12 customers, but it's a subset, and the baseline of what's common in K-12 education is not the same. There's not enough data to make that particularly clean or useful. Vision One is not custom, and that's part of my beef. That index score is based on whatever random report they're looking at from their data sources at any given moment in time. It's nice, but I'd rather have one that's based on your particular circumstances. Instead, it's saying that the number one attack threat surface for school districts is email phishing. It's too generic.
report
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
850,028 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
42%
Government
9%
Computer Software Company
7%
Manufacturing Company
7%
Educational Organization
20%
Computer Software Company
19%
Financial Services Firm
6%
Healthcare Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How does McAfee Endpoint Security compare with MVISION?
The flexible manageability of McAfee Endpoint Security is one of our favorite aspects of this solution. You can deploy various components as desired with McAfee Endpoint Security, whereas many othe...
What do you like most about McAfee Endpoint Security?
It provides a robust defense against cybersecurity threats while offering user-friendly features like notifications and approval prompts.
What is your experience regarding pricing and costs for McAfee Endpoint Security?
Trellix Endpoint Security is cost-effective and provides excellent value for money, with no need for extra expenses for premium support.
What do you like most about Trend Micro XDR?
I appreciate the value of real-time activity monitoring.
What needs improvement with Trend Micro XDR?
In future releases of Trend Vision One, I would like to see improvements regarding role-based access control, as it is important to ensure that when granting admin access to a person, their visibil...
 

Also Known As

McAfee Endpoint Security, McAfee Endpoint Protection, Intel Security Total Protection for Endpoint, McAfee Complete Endpoint Protection
Trend Micro XDR, Trend Micro XDR for Users, Trend Vision One - XDR for Networks
 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

inHouseIT, Seagate Technology
Panasonic North America, Decathlon, Fischer Homes, Banijay Benelux, Unigel, DHR Health,
Find out what your peers are saying about Trellix Endpoint Security vs. Trend Vision One and other solutions. Updated: April 2025.
850,028 professionals have used our research since 2012.