Trend Micro Deep Security Reviews

As a security competency company, we play a lot on this product. For us, it's one of the best for data center solutions. Deep Security is something that is a classic antivirus. However, it uses two-function device control. Everything is inside. We have virtual patching capabilities, which are very interesting in Deep Security. Virtual patching is just a host IPS solution which, if there is a delay in installing the patch, the patch is available by the editor.

It's a good product overall.

There is not a lot of bugs like you have in other antivirus solutions. It's quite stable. 

The initial setup is pretty easy.

The solution is scalable. 

The solution is quite secure. 

The main drawback is that it's complicated. With Trend Micro solutions, everything is complicated. Deep Security has its own management console, and every product in Trend Micro has its own management console. Everything is siloed. Now, they are trying now to connect everything inside the main control management or reporting console, however, it's still not a central management console. It makes for a lot of work when applying policies and security solutions.

The product isn't very user-friendly.

It's a bit old-fashioned in its design and approach.

While, for example, McAfee might have a new version every two months, Trend Micro might not release a new version for two years. While it's very stable, it could be a bit too long in-between versions.

It would be ideal if the solution communicated better with other security solutions from other brands. This is an issue. They need to open up their API or give access, or exchange information with other security products so that everything can communicate together, learn from each other, and block malicious threats better.

We've been using the solution for a long time. It's been three or four years or so.

The stability is very good. There aren't a lot of bugs or glitches. In comparison, for example, Sophos has some bugs and McAfee has a lot of bugs. When they give you a new version, you know that you have to wait for the service pack, to be sure that it will be up and running in production.

This product doesn't crash or freeze. It's reliable. 

The thing users need to understand about the solution is that Deep Security is not by default meant to manage 100,000 PCs. It's for data centers, and it's for less than 300 servers at the same time. That said, even a big company doesn't have a lot of servers available. In terms of scalability, we don't find a limit for the moment based on the customer base we have.

You can also scale via the cloud. It's very flexible and you can deploy on command, on a virtual server in the cloud. 

We've dealt with technical support in the past. We only call them, from time to time, if we can't figure out the answer ourselves. While four or so years ago they weren't as fast, not we get a quick response. Over the past year, we've been quite pleased with the level of support.

We're familiar with older versions of McAfee. We are playing with Sophos for the UTM, the NG Firewall, and for the antivirus, Sophos Intercept X. I've also worked with Kaspersky.

Which is best depends on the client. While Kaspersky, for example, is good for smaller clients, Trend Micro is better for medium to larger ones. However, the solution isn't something you just set and forget. You have to take details, verify, validate, and be aware that a small change will not produce too many logs on the threat detection.

The implementation process is not very complex. If the initial setup is just replacing a competitor antivirus with Trend Micro, it's very easy. The only thing you have to be sure of is that you are setting up the right functionality. Trend Micro Deep Security, has a lot of functions. If you want a classic antivirus, there are very few functions to set up. However, if you want a specific functionality, there may be more steps. There will be more fine-tuning that is required to make sure you are well-protected.

When you have start Deep Security on something that was not equipped with an antivirus, or equipped with, let's say, Bitdefender or Windows Defender, you have very few protections. If you don't take care of covering all these safety functions, you'll be vulnerable. That said, you need to be careful of which functions you activate. You need to make sure it makes sense in terms of the rest of your setup.

It's been one of the four main antivirus solutions, deployed in an industrial way. We've been quite happy with it. You can deploy it on-premises or the cloud, and it's possible to use it with Windows and Linux.

I'd rate the solution at a nine out of ten. We've been very happy with it and found it to be quite secure. 

Of course, next-generation solutions such as Crowd Strike or Carbon Black are game-changing. 

We primarily use the product for the server. We're using Trend Micro Deep Security to protect our servers. We have more than 400 of them.

The most valuable aspect, that we didn't find until now with Deep Security, is the EDR - endpoint detection and response - a feature that comes with the version that we have now. 

DLP, Data Loss Prevention, and the complexity of how we manage the console and how this client, or this tool, will notify us when there is something going wrong within the server and endpoint is good. This feature we didn't see very well developed with Trend Micro solution at first. 

The risk is very complex. We need our tools to be more intelligent, more automated, more detectable. They could improve all of those aspects. I'd specifically like to see automation in terms of detection and auto mitigation.

The integration could be better. When we need to integrate a full console to manage endpoints and servers in the same place, we need to understand better how to deploy it so we don't need an agent or something else to deploy the solution to monitor everything.

The initial setup can be difficult. 

The stability is good. We haven't dealt with bugs or glitches. It doesn't crash or freeze.

It's not very scalable or automatically scalable. If you want to be scalable, you need to add more licensing, to add more costs. If you want to be scalable and have more capabilities, you need to buy more.

We use the solution to cover all of our servers and Trend Micro in general to cover all of our assets. 

I've never dealt with technical support directly. However, my colleague has, and their feedback has been positive. They have no complaints. 

For endpoints, for clients themselves, we use Endpoint Protection for Windows 8 and Windows 7. We still use Trend Micro Endpoint Protection. Also, for all our server VDIs, virtual servers, and physical servers, we use Trend Micro Security.

The solution is difficult to set up, maintain, and manage. There are a lot of options, a lot of buttons, a lot for new items. It's not very user-friendly. You need a lot of training to be able to manage and implement the solution correctly.

We have two system admins that manage servers. You need two people to manage and maintain the solution.

We did not use an integrator or consultant. We have a small team. We handled things internally. For the first implementation, however, we did have an integrator's support and they would assist when we ran into issues. 

We pay a yearly fee of between $10,000 and $15,000. There are no costs beyond the standard licensing fee. However, if you need to scale, you will have to buy more licenses. 

We are researching another solution right now. Our strategy is to find the last best version that Trend Micro has for covering endpoint detection and response.  We scaled for the next version that we have now, and we are seeing if other solutions help more. We're looking into the Kaspersky Endpoint Suite. 

We are a customer and an end-user.

While I don't know the version number off-hand, we are using the latest version of the solution.

New users must assess their exact needs from their side before starting. Look in the market, look at the risk, look at the problem of cyber security for other clients and the chances of attack, et cetera. Look also at the infrastructure, such as the type of machines - if they are full cloud, on-prem, or hybrid.

You must make an assessment locally, internally. When the customer has these visibilities, he can go to the market and select which solution, or which two or three solutions, can best suit the company's needs. Do a proof of concept and try it. Look at the cost and the ratio quality cost, as that'll definitely be determinant for the decision.

I'd rate the solution at a six out of ten.

It's kind of hard to point out one single feature, however, if I had to, then I would say that they have a great roll-back feature. You can use this if your machine is compromised. You have the ability to roll it back to the previous good version, so you can actually save, say, 90% to 95% of your data.

The solution is stable. 

You can scale the solution to different versions. 

Technical support is helpful. 

The pricing is a bit expensive. If they want to target SMBs, small enterprises, and small networks, then they need to reduce their prices.

It would be better if they merge a few features into one product. For example, they have an encryption feature that is separately sold. If they could merge it with Apex One or any endpoint security solution, maybe it would also be good for the end user.

I've used the solution for three or four years. 

The solution is very stable and reliable. There are no bugs or glitches. It doesn't crash or freeze. 

Scalability is possible if you move to different versions. For example, you can move from Apex One to the XDR solution, and then from XDR, you can involve Deep Security. There, it is very much scalable if you want to start from the bottom, from end-point security, and move it up to the servers as well.

We do not really contact technical support. 

Mostly we have technical people over here in our company. And basically, they go to training first to get some certifications from Trend Micro, then they start deploying and installing any product in any network. 

Having said that, sometimes, when we get stuck or after installation and running Trend Micro in the network, if we have a problematic situation where we are not able to solve it, then we do contact Trend Micro support.

They have a two-tier level of support. One is local support available directly from Trend Micro. Then, they also have online support where you can get help directly from their head offices.

Positive

I tend to work with Trend Micro, Kaspersky, and McAfee. I haven't used Microsoft Defender.

The solution is not too difficult and not exactly straightforward. It was a moderate setup. Anyone with a little bit of knowledge of installing antiviruses can actually handle the process. 

I'd rate the ease of setup a two or three out of five. 

I won't call the cost of the solution cheap. Compared to any other antiviruses in the market right now, they are on the expensive side.

I'd rate the level of expense a four out of five, where five is the most expensive option. 

We are a partner. 

If someone is looking to implement security solutions, including endpoint security, then I would suggest that person go for the whole Trend Micro suite, not just for the endpoint security. They have different products for security solutions, including Deep Security, Network Security, Trend, et cetera. If they buy the whole package, it would be easy for them to control their network security-wise and manage it quickly, rather than having a different brand and security solution for different departments or layers of their network.

I'd rate the solution eight out of ten. There's always a margin to improve both in a technical sense and financially as well. I'm giving them two points less in hopes they'll continue improving their product. 

Patch management is most valuable. The major selling point of Deep Security is that it is based on the cloud. Deep Security is for the servers and databases of data centers, and generally, for patch management, you have to shut down the machines, and then you have to restart them. So, they need shutdown time, which is a cost. Big enterprises don't want to shut down their database or their data center for any kind of patch. Deep Security creates a wall and downloads all patches. You install it on the cloud. So, it saves your server from any kind of intrusion or any kind of penetration, and whenever you get a chance or time, in six, eight, or nine months, you can physically download or install all those patches in one go. So, it saves you time. It also saves your shutdown time and keeps your data center safe.

Along with patching, they also provide antivirus protection on the servers.

It should have XDR and EDR integration. It would be nice if they can tie it up with an XDR or EDR.

Its price is also quite high. It is more expensive than other products for patching. So, it would be nice if they lower its price.

We have been providing this solution for about two to three years.

It is very stable. That's why it is doing so well. They have already captured 90% of the financial market in our country.

I won't say that it is scalable. It is the final product, but it has a few add-ons. You can add other products of Trend Micro, for example, XDR or EDR, along with DDI, but you can't scale Deep Security to another level. It is the final product.

It is a very expensive solution, so it has mostly been used at an enterprise level. Around 90% of the customers belong to the financial sector, and around 95% of banks in Pakistan are using it.

They have a pretty good support system. The best part is that they have their support team on the ground in Pakistan. They also have a support team back at their headquarters. Along with that, they have built a support team at the distributor level. They have also trained the partners. So, support is quite good and efficient.

Its installation is pretty easy. You can do the installation remotely because it is on the cloud, so you have access from anywhere.

Installation duration depends on how many servers you have, but it normally takes about four to five days. It is not just the installation. After installing it, you also have to do testing and other stuff.

You do need certified engineers for it.

It is a very expensive solution. It would be nice if they lower its price.

Its license is based on the machines.

I recommend Deep Security to almost all of my customers. It is a very good product. I would rate Deep Security a nine out of 10.

We use Trend Micro Deep Security for workload security. I also use it for protecting my critical server because it has an intrusion prevention feature.

Trend Micro Deep Security protected us from a ransomware attack two months ago. I can protect my server from ransomware using the product.

What I like best about Trend Micro Deep Security is its ransomware protection feature.

Pricing is on the expensive side and could be more affordable. The technical support for Trend Micro Deep Security also needs improvement.

I've been using Trend Micro Deep Security since 2019. I started using it in my previous company when I was the head of IT there. I transferred to another company nine months ago, and we're also using Trend Micro Deep Security.

Trend Micro Deep Security is very, very stable, and we are happy with this solution.

Trend Micro Deep Security is scalable. We bought 15 licenses for 15 servers. Whenever I want some enhancements, it's very scalable just to buy the license and apply it on the server. You can add it from the portal. It's a very, very scalable product. It's very easy to scale.

Technical support for the product was sometimes good. It could be improved. On a scale of one to five, with five being the best, I'm scoring support a three.

The initial setup for Trend Micro Deep Security was very easy.

Deployment of the product was done by the reseller. He came to my office and deployed Trend Micro Deep Security in all locations, through remote deployment.

Trend Micro Deep Security is quite expensive.

We're on a yearly subscription with Trend Micro Deep Security.

We bought the license with support and all the features. We bought 15 server licenses. I deployed the product on the most critical servers.

We're on the sales-based, software-based, and service-based model with Trend Micro Deep Security.

Most of the financial sectors and banks use Trend Micro Security with XDR, which we're also using. The main reason we selected the product is for its XDR or Extended XDR.

There are multiple products and solutions under Trend Micro. Now I'm evaluating Trend Micro Apex One for endpoint security. We will replace Kaspersky with Trend Micro.

They've already added an additional feature, XDR. They're monitoring my servers at their own SOC, so this is an additional feature, and I don't think there's any need for an additional feature at the moment.

My score for Trend Micro Deep Security, on a scale of one to ten, with one being the worst and ten being the best is nine.

Deep Security is a server protection product. We use it for virtual patching and file integration. You can use this with your cloud or an NX environment, virtual services, VMware, etc. 

Deep Security is a good product for managing a few servers.

I've been using Deep Security for more than five years.

Performance is fine. You need to keep an eye on the new files getting detected, or so you have to keep on applying those file folders. So you have to keep monitoring, or else it is not going to help. So especially for the file integrity model and all. 

I don't know about the scalability, but it's good for few servers where you can manage. 

There is a local Trend Micro team in Mumbai that we call for support or to log a ticket.

Deployment and post-deployment implementation are a little complicated. We can't touch servers, and we can't modify the settings. It should be automated, and Trend Micro should make the process more intelligent. The scope is broad, and you have to manually monitor the file scans and respond whenever there is a detection. 

The deployment itself is not that difficult because it's client based. So you want to install clients on each of those servers, and then you have to keep monitoring and adding features. You check the server's performance, and if everything is fine, you can keep adding servers. But post-implementation is time-consuming. You have to do monitoring, and that takes time. After you set up everything, it's not a full-fledged implementation. You have to keep on monitoring and configuring. 

And there are times when the malware protection or some other virtual patching is working fine, but you need a technician to get all the more advanced features to work. It takes around two or three technicians to implement. Our team is responsible for security while a different team handles server management. Then there are one or two people who manage the security console. And then, there are OEM support and SI support.

We have a subscription. It's not a surface subscription. It's only the AMC part.

I rate Trend Micro Deep Security six out of 10. I would recommend it. It depends on the other security controls you have in place. If you're using the entire Trend Micro suite, then you have a PT web gateway. So if you have the whole suite, you have tight integration with your APT and firewall story. In that case, Trend Micro Control Manager is there. So you have everything tied to a single console, so security and everything play as a complete story.

Our primary use case of Deep Security is running our server smoothly and without any security flaws. The server-level layers have more functionality when compared to desktop-level layers, so Deep Security captures and fulfills all of that functionality and runs smoothly. At the end of the day, Deep Security is also getting the zero-day vulnerabilities from our on-premise and other solutions. 

This solution is deployed on-premise, and we are using the latest version. 

One of the most valuable features is that it's a firewall-based solution. We just open the required reports to the server—to server communication—and that's how we use Deep Security. 

Deep Security's reporting functionality could be improved. 

We have been using Deep Security for more than three years. 

Deep Security is stable. 

This solution is scalable, but you need to procure licenses for each server. 

We have around 50 users of Deep Security in our organization. Whether we will increase usage depends on our business requirements. If our business needs more servers, then we will procure more servers and more Deep Security licenses. 

The technical support could be better. Whenever an issue is raised, we need to wait for a long time for technical support to resolve it. Our only issue is that the support could be faster. 

Before implementing Deep Security, we used Trend Micro OfficeScan alone. 

Deep Security is very easy to install. Installation didn't take much time, but after installing the center console, we needed to apply some kinds of policies, for which we needed some experience. It took some time to decide which policies we needed to apply and which rules we didn't want to apply, and for those things, we needed help from more experienced people—either Trend Micro support or their authorized partner's support. You can handle the installation on your own, with the help of some technical team. The implementation is not a very long-term process. 

The pricing is okay. Deep Security is single-server license-based, so it will work based on how many licenses you have procured. There is a yearly subscription for each license. 

I rate Deep Security an eight out of ten, and would definitely recommend it to others to use. 

Trend Micro Deep Security protects our organization from threats. Trend Micro has kept us compliant with PCI and PPA.

Support and threat prevention are the most valuable features of this solution.

I have been using Trend Micro Deep Security for five years.

The solution is stable. Trend Micro gets threat intelligence and is always up-to-date with all cybersecurity threats zero-day. Updates are provided through our email. If anything needs to be adjusted on our system, or their product, they will advise us right away.

Trend Micro is scalable if you have the budget for it. All of our 2,500 employees are covered with Trend Micro Deep Security.

The support from Trend Micro Deep Security is good. The company has a good knowledge base where we can troubleshoot any issues. We also have a support portal with them where we can raise issues that we can't solve on our own. This includes on-call support with them in case the issue needs to be resolved urgently.

Positive

Prior to using Trend Micro, we were using Sophos.

The initial setup of the product was straightforward. All you need to do is install the firmware, ensure the firewall connections are open, and you are done. 

It took about one month for us to deploy Trend Micro Deep Security. We had an integrator deploy the pilot of the first 30. After the pilot, our team deployed the rest.

If you need an additional 10 or 20 licenses, you will need to pay additional fees.

This product is one of the leaders in terms of endpoint protection, server protection, and network protection. They provide good support, and it is easy to deploy. They are scalable, and the threat intelligence is very good. They stay up to date with what is happening in the cyber world.

Personally, I like anti-malware and integrity monitoring. The anti-malware has its own behavioral monitoring and machine learning. It detects all species and objects in the server or the file integrity monitoring. If there are any changes on the server side, they will alert you. I would like to see these tools as part of Trend Micro Deep Security.

I would rate Trend Micro Deep Security a nine out of ten overall.