Trellix Active Response Reviews

Name: Trellix Active Response
Brand: Trellix
Rating: 3 (3 reviews)

3.2 out of 5

3 reviews
0% willing to recommend

What is Trellix Active Response?

Continuous Visibility into Your Endpoints:
Capture and monitor events, files, host flows, process objects, context, and system state changes that may be indicators of attack or dormant attack components.

Get the Endpoint Detection and Response (EDR) Buyer's Guide and find out what your peers are saying about Trellix Active Response, Microsoft Defender for Endpoint, Trellix Endpoint Security (ENS) and more!

Trellix Active Response is the #63 ranked solution in EDR tools. PeerSpot users give Trellix Active Response an average rating of 6.4 out of 10. Trellix Active Response is most commonly compared to Microsoft Defender for Endpoint: Trellix Active Response vs Microsoft Defender for Endpoint. Trellix Active Response is popular among the large enterprise segment, accounting for 68% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a government, accounting for 24% of all views.

Buyer's Guide

Endpoint Detection and Response (EDR)

September 2024

Get the category report

Helped 813,418 peers since 2012

Featured reviews

LeonWessels

IT Security Manager at Telecommunications Services of Trinidad & Tobago Limited (TSTT)

It's still not lightweight enough and not as light as they claim to be with the McAfee area of a next-gen AV. They can do some improvements along that line. There needs to be some improvement around the white-listing or black-listing. The product could improve aspects around the removal of blacklisted applications, et cetera. This was an exercise to centralize the AV cell, and that's how we ended up upgrading. The truth, however, is that I was really looking for something much more advanced with user behavior analytics and some AI features that the other competitor's next-gen AV does offer. It is okay for what it's doing now, however, it's not the ultimate software. There are some components on the cloud that should also reside in the on-prem deployment models but don't. They should ensure they are doing parallel development for cloud and on-prem when they are doing R&D.

Read full review

LeonWessels

IT Security Manager at Telecommunications Services of Trinidad & Tobago Limited (TSTT)

Active Response provides endpoint protection for remote workers. It covers primarily laptops and desktops, not servers. Active Response is replacing our existing on-prem McAfee solution, and it will protect about 1,300 endpoints when fully deployed. We haven't brought in everybody. Right now, we…

Read full review

reviewer1591818

Senior Manager Information Technology at a pharma/biotech company with 10,001+ employees

We make use of the latest version I don't consider any one specific feature to be the most valuable, but I look at the advantages inherent in EDR holistically. While the product is good, we are currently facing support issues. We are working with McAfee on that front. When it comes to technical…

Read full review

Trellix Active Response mindshare

As of October 2024, the mindshare of Trellix Active Response in the Endpoint Detection and Response (EDR) category stands at 0.2%, down from 0.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Key learnings from peers

Last updated Sep 9, 2024

Valuable Features

Trellix Active Response receives praise for its real-time monitoring capabilities, efficient threat detection, and robust automated response features. Users appreciate its intuitive dashboard and comprehensive reporting tools. Enhanced endpoint visibility and effective integration with other security tools are highlighted as key strengths.

"We are hoping to automate detection and response and take advantage of user behavior analytics, given that we are working from home. About half of our workers are still remote, so Active Response gives us that visibility and lets us automate a number of those events."
"The solution is scalable."
"It's a little lighter compared to the older version, which was mostly signature-based."

Room for Improvement

Users feel Trellix Active Response requires better integration with other platforms, faster response times, and more comprehensive documentation. They mention it would benefit from enhanced automation features and easier configuration. Additionally, clearer reporting and improved alert accuracy are desired.

"I also expected Active Response 's user interface to be much more analytical."
"While the product is good, we are currently facing support issues."
"There are some components on the cloud that should also reside in the on-prem deployment models but don't."

ROI

Users highlighted significant improvements in threat detection and response times with Trellix Active Response, noting a measurable drop in incident resolution timeframes. Several users observed enhanced operational efficiency and cost savings attributed to proactive threat management capabilities. They also commended the intuitive interface and robust integration features, emphasizing its impact on streamlining cybersecurity workflows. An increase in the security team's productivity and a more effective allocation of resources were frequently mentioned benefits.

Pricing

Trellix Active Response typically offers a transparent pricing model with no setup costs, ensuring a smooth integration process for users. Pricing methods usually involve subscription-based models, accommodating per-user or per-endpoint licensing options. The pricing range varies based on the specific features and level of support required, catering to diverse organizational needs and budgets.

"Our costs were somewhere around $600K in Trinidad dollars, which might be about $100K US. We have the ETP plus the EDR. Our recent renewal was 1800 licenses as opposed to the full amount. Our transaction cost was about $600K Trinidad dollars, which is somewhere around $90-100K US."

Popular Use Cases

Trellix Active Response is primarily utilized for threat detection and incident response. It helps automate and streamline processes, providing real-time monitoring and alerting capabilities. Trellix Active Response aids in identifying malicious activities and addressing potential security threats quickly, enhancing overall cybersecurity measures. It is valued for its ability to correlate data from various sources, improve response times, and minimize risks associated with potential security breaches.

Service and Support

Customers mention that Trellix Active Response provides responsive and knowledgeable support, resolving issues swiftly. They appreciate the accessibility and professionalism of the support team. Users highlight that assistance is effective and efficient, helping to address technical challenges promptly. Trellix Active Response support staff is praised for their expertise and ability to provide clear, concise guidance.

Deployment

Users find Trellix Active Response's initial setup straightforward, noting that the configuration process is intuitive and time-efficient. IT professionals appreciate the comprehensive documentation and support provided. Others mention that installation steps are clear, with minimal issues encountered. Some users state that the initial deployment quickly integrates with existing systems. Feedback highlights satisfaction with the ease of setup, making Trellix Active Response a favored choice for cybersecurity needs.

Scalability

Users mention Trellix Active Response as highly effective in handling large volumes of data with seamless integration. They appreciate its ability to easily scale for growing business requirements, noting strong performance and reliability. Some also highlight quick setup and straightforward deployment, making it a valuable tool for extensive security frameworks.

Stability

Users feel Trellix Active Response provides reliable performance and remains stable even under heavy use. They appreciate its consistent uptime and note that it rarely crashes. Some find it performs well in complex environments, handling large datasets efficiently. However, a few mention occasional delays during peak usage. The general sentiment emphasizes its robustness and dependability in various operational contexts.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Endpoint Detection and Response (EDR) Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews

Government

24%

Financial Services Firm

10%

Comms Service Provider

Energy/Utilities Company

Wholesaler/Distributor

Aerospace/Defense Firm

Computer Software Company

University

Non Profit

Real Estate/Law Firm

Manufacturing Company

Media Company

Outsourcing Company

Construction Company

Logistics Company

Import And Exporter

Recreational Facilities/Services Company

Retailer

Transportation Company

Hospitality Company

Compare Trellix Active Response with alternative products

Learn more about Trellix Active Response

Identify and Remediate Breaches Faster:
Access tools you need to quickly correct security issues. Send intelligence to analytics, operations, and forensic teams.

Target Critical Threats:
Get preconfigured and customizable actions when triggered, so you can target and eliminate threats.

Trellix Active Response was previously known as McAfee Active Response.