Trellix Endpoint Security Platform Reviews

We have Trellix Endpoint Security available and are trying to do an upgrade. I am trying to figure out whether I can get rid of my SUSI manager, WSUS, or 'WaySUS' as we call it, the Windows patching environment.

I have been a customer of Trellix Endpoint Security for years, but I am not necessarily satisfied. The product does not seem to be cloud-native and there are issues with automating it. It might have something to do with our skill set, but automation is not intuitive.

Automation and overall complexity need improvement. The product does not seem to be cloud-native.

It has been in place for years.

Deployment and configuration become complex quickly, especially in a micro-segmented environment.

I have not faced any problems with scalability so far, but we are starting an upgrade or overhaul.

I would rate Trellix Endpoint Security a six and a half to seven. I am not sure whether it is a comprehensive review of the product, but these are my observations. I would rate the overall solution a 6.5 out of 10.

Our primary use case for Trellix Endpoint Security is to protect our customers' endpoints and servers from known malware and ransomware. We are also partners reselling Trellix solutions.

Trellix Endpoint Security has impacted our organization by being a reasonable choice for on-premise solutions, especially for customers in the banking sector requiring compliance.

The most valuable features of Trellix Endpoint Security include its protection capabilities such as DNS and endpoint security, DNS threat prevention, as well as advanced threat prevention. If customers require a hybrid approach, it is available only in Trellix and not in other latest antivirus solutions.

What needs improvement in Trellix Endpoint Security is the reduction of resource consumption by the scanning feature. There should be daily signature updates for protection. 

Additionally, scalability should be improved as it presents challenges such as needing downtime.

I have been using the solution for the last two to three years.

I would rate the stability of the solution as a seven out of ten, indicating moderate satisfaction.

I would rate the scalability of the solution as a six out of ten, indicating some challenges due to downtime requirements.

Technical support is rated seven out of ten. The response time is a notable issue.

Neutral

The initial setup of Trellix Endpoint Security is somewhat complex compared to other newer antivirus solutions such as ProStriq and TrendMicro, and I would rate it a five out of ten.

The license costs are very reasonable, around 1,000 to 1,200 rupees per year.

For new users considering Trellix Endpoint Security, it is advisable as it offers traditional antivirus with both on-prem and SaaS-based solutions, compliant with regulatory standards.

On-premises

The solution is a reliable and mature product. Its reporting function is robust, and the user interface is easy to use. End users can create customized reports with detailed reporting for any computer and export them in PDF or other formats. This reporting capability is very robust.

The ePO console is very efficient and doesn't hang or freeze. Its console is more stable and reliable than other products like Kaspersky, Symantec, or Microsoft. The ePO is very reliable for managing computers and servers; you can find all options in this one application.

The tool has automation capabilities. It can automatically deploy, scan, fetch reports, and update. FireEye, now part of the solution, combines great with its other features. It acquired FireEye, which now includes Network Detection and Response and Network Security Platform capabilities. It can detect network threats and gather network information. The NSP is very robust. I'd rate it ten out of ten. 

The solution needs to improve its virtual patching capabilities. One area where it could improve is by offering a patch management solution bundled with its security products. This would make it even more competitive against solutions like Kaspersky that offer this feature.

I have been working with the product since 2008. 

The solution is a very stable product. There are no significant issues with stability. It works very efficiently on both large and medium scales, and its reliability is very good, especially regarding management duties and reporting.

The tool stands out compared to competitors like Trend Micro, CrowdStrike, and Microsoft. Microsoft offers virtual patching, which is slightly better than the solution.

The tool's deployment is very quick and automated. I can deploy it on 100 nodes within half an hour to an hour. If you have a fast network setup, it can be as quick as 10 to 15 minutes for 100 computers. This is because it uses an agent that works robustly in network environments.

The solution is not an expensive tool. Compared to other options, it's mostly average-priced. I've deployed it for customers ranging from 100 nodes to over 5,000 nodes. Its renewal prices are very low, and it offers both perpetual and subscription licenses. With a perpetual license, the product will keep working as long as it's not end-of-life, which benefits companies.

The tool is suitable for small, medium, and enterprise businesses. I'd give it a ten out of ten for its productivity, reliability, control, and manageability. Its management console is particularly robust - I haven't seen anything similar from other vendors.

We use the solution for malware, fall behavior, and data loss prevention.

The Trellix Endpoint Security, when used in conjunction with EDR and Insight, enhances the visibility of events in the central management console, enabling us to identify events more effectively. Furthermore, Endpoint Security actively prevents threats from spreading. It reduced the action time a lot.

Trellix provides a data view of the Alpha systems with Trellix installs and makes small changes to the central management console. Nothing on the endpoints themselves works, but it focuses more on the management side.

I have been using Trellix Endpoint Security for 14 years.

I rate the solution’s stability an eight out of ten.

This solution is used by 33,000 users and covers different operating systems. I rate the solution’s scalability an eight out of ten.

We do get quick responses from support. However, it sometimes takes a bit longer to reach the final solution, particularly if something unusual requires additional investigation time.

Neutral

The initial setup is very easy and takes two hours to complete.

Trellix Endpoint Security offers substantial cost savings by reducing recovery expenses. These savings can exceed three hundred percent at this stage.

The AI portion is quite good. It is already built into the product; it does assist us. 

We have five engineers to maintain the solution.

Overall, I rate the solution an eight out of ten.

On-premises

I use Trellix Endpoint Security on all of my Red Hat and Windows 11 endpoints.

Trellix Endpoint Security seems to do a good job in terms of protecting my infrastructure from malware.

I cannot really point to any areas that need improvement at this moment. Continued available training is important for people coming in to use it.

I have had experience with Trellix products for about three years.

The solution is fairly stable, and I do not have any additional points on that.

It seems to be very scalable.

I rate customer service between an eight and nine. I have not had to use support too much, however, when I did, they were fairly responsive and able to resolve the issue.

Positive

I was using an older version of the same solution, which might have been McAfee.

The initial setup is fairly straightforward with the guide provided.

I had two other people involved in the deployment process. They were a system engineer and a network engineer.

There is a good return because I have not been compromised yet. That is the main thing.

I am familiar with other endpoint protection platforms (EPPs), however, I do not know any main differences off the top of my head.

I recommend Trellix Endpoint Security to others as it seems like one of the industry standards and is fairly stable.  I would rate the solution a nine out of ten.

Furthermore, continued training would be beneficial for those who are new to using it. 

Trellix Endpoint Security is a reliable and developed product and our company's customers are satisfied with the security offered by the product. 

The product has a robust reporting feature and a user-friendly interface. Using Trellix Endpoint Security, users can easily create customized, detailed reports and export them as PDF or Excel files. The solution's ePO console is highly efficient and does not get hanged.

The console of other competitor products from Kaspersky, Symantec, and Microsoft is very complicated. The comprehensive ePO feature of Trellix Endpoint Security is highly reliable for the management of systems and servers. 

Patch management can be included as a feature in the solution. 

As part of our company, we have been working with the solution since 2008. 

It's a very stable product. 

Our organization provides Trellix Endpoint Security as a solution to small, medium, and large enterprises. 

Tech support from Trellix Endpoint Security is better than that of its competitors. I would rate the tech support a seven out of ten. 

Neutral

The deployment time of the solution depends on the number of nodes that need to be set up. For example, 100 nodes can be setup in 30 minutes. The solution agent works robustly in the network environment leading to shorter setup time, especially if a fast network setup already exists. 

Trellix Endpoint Security is an affordable tool. Its renewal price is also quite low. The product is available as a subscription license or a perpetual license. 

At our company, we have also worked with CrowdStrike, Trend Micro, Microsoft and McAfee solutions. Trend Micro is the only tool that offers virtual patching. 

The tool offers automation in multiple segments of deployment, scanning, and fetching reports. FireEye can also be easily integrated with the tool, offering an efficient combination.  

Trellix Endpoint Security offers NDR and NSP network security across platforms and device sensors by obtaining network information for threat detection. I would rate Trellix Endpoint Security a nine out of ten. 

The solution's productivity, reliability, and manageability control are outstanding. 

The company is using it for cybersecurity, malware, and anti-malware.

We have customers who were facing challenges with traditional security solutions such as Trend Micro or Symantec that were not working. They would receive reports indicating no malware in their network. However, when we implemented Trellix Endpoint Security in their network, multiple types of malware was detected.

The solution is easy to manage, easy to implement, easy to install, and the support is excellent.

The detection capability of Trellix Endpoint Security is higher than traditional antivirus solutions.

The AI functionality has proven quite useful with the new version. Trellix Endpoint Security has introduced the new MVISION solution, MVISION Endpoint, which works completely on AI and machine learning.

The agent is very heavy, so we have to ensure that we have a lightweight agent for Windows systems.

We have been using the solution for almost 20 years now.

The cloud management console ensures there are no limits on scalability. It's quite scalable with no restrictions.

Support has been excellent overall. 

Positive

The solution has been easy to manage, easy to implement, and very easy to install.

I'd rate the solution ten out of ten. 

Hybrid Cloud

Other

We primarily use Trellix for drive encryption and malware prevention, but we also use some advanced features, such as centralized control and policy management. 

Trellix enables us to customize and centrally manage policies. We can set on-prem policies and synchronize them with the cloud. 

Trellix integrates well with most SIEM and data classification solutions.

You do not have access to all the features when you use the Trellix web interface. For example, you cannot do device or drive encryption from the web interface. Also, when we're working with customers, it's sometimes challenging to get sales support.  Delays mean we might lose an opportunity. Lastly, Trellix lacks some documentation about custom features. 

I would like to see Trellix add database activity monitoring. They don't have a plan for this, and there isn't a significant roadmap around it. They have an enterprise service manager, which is sort of like a SIEM, but there is no roadmap. I want to see a clearer roadmap for integrating specific critical solutions like PAM and other things, too.

I have used Trellix ENS for two to three years.

Trellix ENS is stable. 

Trellix is scalable with some limitations. I recommend it for small or medium-sized businesses.  The integration needs to be simplified for it to work in an enterprise with a large, complex environment.

I rate Trellix support six out of 10. They need more local presence in South Africa and a faster response. Other distributors work through a partner system. There are also some challenges due to the merger of McAfee and FireEye to form Trellix and some legacy issues around a lack of innovation. 

Standard support is included with the subscription, and there are layers of escalation when you open a ticket. You can pay extra to get premium support, which is priced separately. 

Neutral

Trellix is easy to deploy if you have enough skills. Some customers think they can do it alone without professional services, but the deployment doesn't go smoothly. They have misconfigurations, which become a problem. They have issues when they are renewing the license because they didn't scale sufficiently in the beginning. The deployment time can range from five days to three months, depending on the size and complexity of your environment. 

Trellix is reasonably priced, but the cost goes up by about 7 to 10 percent annually, so some of our customers complain at renewal time. The license is based on the number of devices. There are discounts as you add more devices, so you may pay $15 per device or up to $50 per device. 

Standard support is included with the subscription for the first year, but you'll pay for the deployment costs. In the next year, you'll pay only for the license and support.

Trellix is one of the best legacy endpoint protection solutions, but we're also looking at Crowdstrike. Other solutions have advantages over Trellix in brand awareness and local presence. 

The company needs to do more to build its presence in this country. I've never seen an account manager or sales rep show up to an in-person event in South Africa. Other companies like Trend Micro have offices here. 

I rate Trellix Endpoint Security six out of 10. I would give it a seven or an eight if not for the vendor's shortcomings in terms of support and local presence. The scale and speed of response make a difference. It's an excellent product that may not be perceived as such because of how it's supported and the awareness of potential customers. 

Before implementing Trellix, you should take time to understand the core use cases you want to achieve and match them to specific features. You should also do a limited proof of concept with the vendor or a distributor.

On-premises