We performed a comparison between Trend Micro XDR and WatchGuard Threat Detection and Response based on real PeerSpot user reviews.Find out what your peers are saying about Palo Alto Networks, Microsoft, Trellix and others in Extended Detection and Response (XDR).
"The security policy is the most valuable feature for us. We can go into the environment settings and attach any globally recognized framework like ISO or any benchmark."
"The most valuable features of the solution are the insights, meaning the remediation suggestions, as well as the incident alerts."
"Technical support is helpful."
"With respect to improving our security posture, it helps us to understand where we are in terms of compliance. We can easily know when we are below the standard because of the scores it calculates."
"This is a platform as a service provided by Azure. We don't need to install or maintain Azure Security Center. It is a ready-made service available in Azure. This is one of the main things that we like. If you look at similar tools, we have to install, maintain, and update services. Whereas, Azure Security Center manages what we are using. This is a good feature that has helped us a lot."
"One of the features that I like about the solution is it is both a hybrid cloud and also multi-cloud. We never know what company we're going to buy, and therefore we are ready to go. If they have GCP or AWS, we have support for that as well. It offers a single-panel blast across multiple clouds."
"The most valuable features are ransomware protection and access controls. The solution has helped us secure some folders on our systems from unauthorized modifications."
"Threat protection is comprehensive and simple."
"One of the features I like in Trend Micro XDR is that you can drill down on the root-cause analysis for anything you find on the solution. I also like that it works for detection purposes. Behavior analytics is also what I like most about Trend Micro XDR. I love that it has features such as behavior detection, program detection, and memory scanning. By default, the solution protects against spyware, apart from the normal virus scan. Smart Scan and DLP are also available in Trend Micro XDR which I like as well."
"Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC."
"It has the feature to track an attack back. If there is an incident or an attack occurs, you can get a bird's eye view of that attack. You can see how the attackers came in and how they managed the attack. You can trace an attack. If you are giving a presentation to the management, you can easily show it to them in a live environment how the attackers came, which is amazing."
"XDR provided a much more deep view into what is actually happening."
"The solution is stable."
"I like that it is a comprehensive security solution with a lot of features. You can say XDR is an end-to-end security solution with endpoint security. It includes all your servers, networks, and other devices. The endpoint security solution does not cover this. Plus, machine learning and features like that are the main things in XDR solutions."
"The telemetric report is the most valuable feature."
"What I like the most about Trend Micro XDR is that the detection and response domain extends to the network. It goes beyond the endpoint and includes data about the network which lets you pinpoint patient zero as well as the root cause of the attack."
"The protection that it provides from ransomware is valuable. The awareness that it has is also valuable. It didn't have a central console earlier, but now it has a central console, which is pretty good."
"WatchGuard Threat Detection and Response is a reliable solution."
"WatchGuard is very user-friendly. It provides us with all of the security services we need."
"The most valuable feature is the correlation of logs from different devices."
"Microsoft sources most of their threat intelligence internally, but I think they should open themselves up to bodies that provide feel intelligence to build a better engine. There may be threats out there that they don't report because their team is not doing anything on that and they don't have arrangements with another party that is involved in that research."
"Most of the time, when we log into the support, we don't get a chance to interact with Microsoft employees directly, except having it go to outsource employees of Microsoft. The initial interaction has not been that great because outsourced companies cannot provide the kind of quality or technical expertise that we look for. We have a technical manager from Microsoft, but they are kind of average unless we make noise and ask them to escalate. We then can get the right people and the right solution, but it definitely takes time."
"The overview provides you with good information, but if you want more details, there is a lot more customization to do, which requires knowledge of the other supporting solutions."
"The product was a bit complex to set up earlier, however, it is a bit streamlined now."
"Defender is occasionally unreliable. It isn't 100% efficient in terms of antivirus detection, but it isn't an issue most of the time. It's also somewhat difficult to train new security analysts to use Defender."
"Agent features need to be improved. They support agents through Azure Arc or Workbench. Sometimes, we are not able to get correct signals from the machines on which we have installed these agents. We are not able to see how many are currently reporting to Azure Security Center, and how many are currently not reporting. For example, we have 1,000 machines, and we have enrolled 1,000 OMS agents on these machines to collect the log. When I look at the status, even though at some places, it shows that it is connected, but when I actually go and check, I'm not getting any alerts from those. There are some discrepancies on the agent, and the agent features are not up to the mark."
"The solution could improve by being more intuitive and easier to use requiring less technical knowledge."
"They could always work to make the pricing a bit lower."
"The agent system is very slow, it needs to improve its performance."
"Trend Micro doesn't have the next-generation firewall."
"In new versions I would like to see better implementation of the reporting features, especially in regards to EDR visibility."
"We'd like to see a few more integrations."
"There isn't a lot I'd do to change it. The web interface could be improved to sort of make it a little easier to manage multiple clients out of one location. It could also be made a bit easier to sort of manage the licensing side of it."
"It should integrate with more tools. There are a lot of tools that can do the PTP dump."
"A room for improvement in Trend Micro XDR is more visibility into the alerts. We do get alerts from the solution, but when we are away, we need to have more visibility."
"Results were delayed."
"It can have a couple of false positives, but after you add them to your allow list, it works fine. It could have better Mac support. I am pretty sure it doesn't have much support for Mac. It can be installed on a Mac, but it is not that good."
"This product needs to be fully integrated with the firewall. Currently, it only sends logs to the cloud and asks the firewall to correlate them."
"When it comes to live-monitoring, the user-interface could be improved to make things easier."
Microsoft Defender for Cloud protects your Azure and hybrid resources. Microsoft uses a wide variety of physical, infrastructure, and operational controls to help secure Azure—but there are additional actions you need to take to help safeguard your workloads. Turn on Azure Security Center to strengthen your cloud security posture. Within Azure Security Center, use Azure Defender to protect your hybrid cloud workloads. With Azure Security Center, you can:
- Assess and visualize the security state of your resources in Azure, on-premises, and in other clouds with Azure Secure Score
- Simplify enterprise compliance and view your compliance against regulatory requirements
- Protect all your hybrid cloud workloads with Azure Defender, which is integrated with Security Center
- Use AI and automation to cut through false alarms, quickly identify threats, and streamline threat investigation
To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.
Trend Micro XDR (extended detection and response) gathers and systematically analyzes data across numerous security layers, such as networks, servers, endpoints, email, cloud workloads, and more. Trend Micro XDR’s security protocol grants faster investigation and response time, and improved detection of risk and threats.
Today’s malicious threats are created to conceal themselves in an organization's network's various security layers. They can easily avoid detection, thrive, and grow in intensity as time goes on. Many times, inundated IT personnel are searching with ineffective tools and very narrow perspectives. Trend Micro XDR uses a next-gen comprehensive automated analysis protocol of response and detection to find issues faster. The solution allows IT personnel to perform more effectively and respond immediately, keeping the organization’s network continuously safe and secure.
Trend Micro XDR hunts deep and wide and creates a data lake for continuous hunting, sweeping, and researching throughout all security layers. With the addition of AI combined with intuitive analytics, Trend Micro XDR greatly reduces the number of alerts going to the organization’s SIEM solution, ensuring that IT personnel can be more focused on what threats and risks are pertinent, critical, and necessitate more thorough investigation.
Trend Micro XDR Benefits
Reviews from Real Users
“I like that it is a comprehensive security solution with a lot of features. You can say XDR is an end-to-end security solution with endpoint security. It includes all your servers, networks, and other devices. The endpoint security solution does not cover this. Plus, machine learning and features like that are the main things in XDR solutions.” - Nadeem S., CEO at Haniya Technologies.
“Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC.” - Charles D., Technical Services Manager at Psitech.
Hackers are designing malware to be more sophisticated than ever. Through packing, encryption, and polymorphism, cyber criminals are able to disguise their attacks to avoid detection. Zero day threats and advanced malware easily slip by antivirus solutions that are simply too slow to respond to the constant stream of emerging threats. Organizations of all sizes need a solution that leverages a holistic approach to security from the network to the endpoint. WatchGuard Threat Detection and Response (TDR) is a powerful collection of advanced malware defense tools that correlate threat indicators from Firebox appliances and Host Sensors to stop known, unknown and evasive malware threats.
Trend Micro XDR is ranked 9th in Extended Detection and Response (XDR) with 10 reviews while WatchGuard Threat Detection and Response is ranked 20th in EDR (Endpoint Detection and Response) with 4 reviews. Trend Micro XDR is rated 7.6, while WatchGuard Threat Detection and Response is rated 8.6. The top reviewer of Trend Micro XDR writes "Good dashboards and easy to navigate but needs more flexibility". On the other hand, the top reviewer of WatchGuard Threat Detection and Response writes "Good log correlation features, straightforward to set up, and works with traditional antivirus products". Trend Micro XDR is most compared with CrowdStrike Falcon, Microsoft Defender for Endpoint, SentinelOne, Fortinet FortiEDR and Sophos Intercept X, whereas WatchGuard Threat Detection and Response is most compared with Sophos Intercept X, Fortinet FortiEDR, SentinelOne, CrowdStrike Falcon and Bitdefender GravityZone Ultra.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.