Trellix Helix's configuration and learning could be improved to identify normal traffic from abnormal and to identify trusted domains.

Backup capturing should be included in the solution's next release.

Integrations could be improved, and the dashboard could be a little better. I've seen Splunk and Securonix; their dashboards are definitely better than Helix.

Helix will do well after the pandemic because everybody will be looking for a cloud solution and it is cloud-native. There are certain changes we are bringing onto our endpoint and our ETP network security. So everything makes an impact on Helix because every log and every change you can manage through Helix. Helix is directly integrated into a single sign-on platform, which is free FireEye customers. They can log into any of their incentives like if they want to log into the ETP, email security, they use a third-party sandbox and intel and FireEye integrates nicely into it. There are a lot of issues because of GDPR but otherwise, it is a very good platform.

Sometimes the rules are disabled by FireEye, and we basically get it after the patch. I think there needs to be a better way of creating the application rules. I would like to see better pricing for our licensing. 

It should have more cloud connectors. It could also be cheaper.

FireEye Helix would be improved with the option of an on-prem version, which they don't currently offer. It's also not always easy to integrate Helix with other products as they mostly use API integration, and not every third party has a prepared API.

The graphical user interface could be improved. It's not easy to handle and it's not easy for a customer or end-user to learn how to manage the solution.