Trellix Helix Connect Reviews

We use it for everything like our logs, data allocation, and ransomware. We basically do malware objects and malware callbacks. I think it's our integration tool. It's our centralized SIEM where we look at all the events, alerts and then do a tryout. The major playbooks that we use are ransomware and phishing campaigns. We basically use it for our PTI-based credit card fraud detection. 

I like that it's easy. It's got the protection set up, and we can see whatever is required. We write our own rules and the rules that we can input. I think it is good.

Sometimes the rules are disabled by FireEye, and we basically get it after the patch. I think there needs to be a better way of creating the application rules. I would like to see better pricing for our licensing. 

I have been using FireEye Helix for three years.

FireEye Helix is a stable solution.

FireEye Helix is a scalable solution. I have about nine users on my team.

Technical support is good.

The price could be better. But I think it's rightly placed when we buy everything in one shot, and we get some discount for that. That's how we basically plan our deployment, and it's holistic. We pay for the license yearly.

I would recommend this solution to new users.

On a scale from one to ten, I would give FireEye Helix a nine.

The solution is typically used for sub-services, managed detection, and response services as well as advanced sub-services. The solution was managed by the company where I worked and we offered the services to the customer.

The solution is very high-quality. It offers a very small number of false positives. We don't have to get distracted by checking up on false data and making sure nothing is wrong.

The product offers very strong automation. Our cyber security analysts don't have to correlate the information to detect problems. They only need to analyze problems that have been identified by the platform.

The initial setup is very easy.

The graphical user interface could be improved. It's not easy to handle and it's not easy for a customer or end-user to learn how to manage the solution. 

I first started working with the solution at my previous company, in 2017, and I continue to work with it. It's been over two or so years.

The solution is very stable. It's reliable. There aren't issues with bugs or glitches. It doesn't freeze.

From a technical point of view, it's quite scalable. You only need to have agents on the endpoint or devices. It's really just a little less scalable from the economic point of view as there's a huge cost. The cost was a limiting factor for our organization. We had a limited budget and therefore acquired less of the solution than we technically need. There are parts that are not monitored, not because it can't physically scale but due to the fact that budget-wise, it's not possible. 

The technical support has been very good. We're quite satisfied with the level of support we get.

The initial setup is not complex at all. It's a very straightforward implementation.

The deployment is also relatively quick. You can be online in about two or three days at the most. It does not require a lot of time.

It's quite an expensive solution. FireEye is one of the top artificial intelligence solutions on the market. It's not made for, in my opinion, small businesses. It's more for leading enterprises.

There are no hidden costs. We don't have professional services because they are very, very expensive. 

We're just customers. We don't have a business relationship with the company.

With FireEye, everything is managed by cloud artificial intelligence.

The solution is built to target larger enterprises. Their market's different from many other markets as it's made for 99% of mid-sized enterprises of 1,000 or so people. In Italy, that's quite a large-sized company. We're most likely not their target market as our businesses tend to be a bit smaller. 

If this solution would work for another company, I'd say it depends on the size of the company and the maturity level. For a small company that is not structured for security instruction and competencies, I wouldn't advise this solution. That said, it does offer a lot of features surrounding security and this is something that you can put on top of your security program if you have the right infrastructure in place.

I'd rate the solution nine out of ten. It does everything we need it to do. It's not really lacking in any regard.

We work for a company that provides secret services related to XDR and NSS. We offer the Helix solution to many companies in Brazil. We manage the implementation and provide solutions to our customers. We are a Helix service provider for ten companies in Brazil.

We have started working with various customers, one of whom is particularly concerned about adjacency. We have identified several use cases where automation is possible. However, we face challenges with FSO tools, regarding integration versions. For example, our platform uses API V2, while Cisco uses V3 in some integrations. This has caused issues with professional services.

We are currently working with a provider where I need to send a lot of reports and queries to my customers. Instead, I create reports manually and provide customers with information about the solution.

We often rely on Martins to create logs and provide professional threat services rather than basic support. However, accessing these services can be inconsistent. Sometimes, responses are quick and valuable, but other times, they are delayed. For example, I've waited up to seven months for Martins to resolve an issue with Azure WAF in Helix. It can also be challenging to get timely responses from partners regarding updates and new features

When we undertake projects to install Helix, initially, our company had all the logistical information needed from the installation guide. However, there are details not included in the manuals that we sometimes discover only through direct communication with Trelix experts. This process has become more manageable over time, but initially, we encountered significant challenges, such as issues with connectors, which handle different log formats. These discrepancies weren't clearly outlined in the manuals and caused delays.

For instance, it took about a month to deploy components like SSO and group collection for our customer's infrastructure. Each deployment involves specialized roles—one focusing on connections and another on development and automation with CFA. With these two roles, we can effectively implement Helix.

When the merge of the companies start to use some about the price of the issue. We are using the FSO and security administrator.

I have some case of sources with some customer that returned with some a big security and and can resolve with some attacks.

I have numerous advantages with ten client customers who use our services. We have a dedicated team working directly with the Helix system at PeerSpot within our company, providing maintenance and generating reports for our customers.

The solution offers extensive platform visibility, event tracking, and integrations. While we explore other integration possibilities like CNA, we haven't found a comparable solution yet. Integrating with other vendors and multi-platform environments presents challenges, especially in ensuring API compatibility and staying current with integrations.

I strongly recommend Helix to our new customers for its capabilities and reliability.

Overall, I rate the solution a nine out of ten.