IT Central Station is now PeerSpot: Here's why

Trend Micro XDR OverviewUNIXBusinessApplication

Trend Micro XDR is #7 ranked solution in XDR Security products. PeerSpot users give Trend Micro XDR an average rating of 7.4 out of 10. Trend Micro XDR is most commonly compared to CrowdStrike Falcon: Trend Micro XDR vs CrowdStrike Falcon. Trend Micro XDR is popular among the large enterprise segment, accounting for 51% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a comms service provider, accounting for 26% of all views.
Trend Micro XDR Buyer's Guide

Download the Trend Micro XDR Buyer's Guide including reviews and more. Updated: July 2022

What is Trend Micro XDR?

Trend Micro XDR (extended detection and response) gathers and systematically analyzes data across numerous security layers, such as networks, servers, endpoints, email, cloud workloads, and more. Trend Micro XDR’s security protocol grants faster investigation and response time, and improved detection of risk and threats.

Today’s malicious threats are created to conceal themselves in an organization's network's various security layers. They can easily avoid detection, thrive, and grow in intensity as time goes on. Many times, inundated IT personnel are searching with ineffective tools and very narrow perspectives. Trend Micro XDR uses a next-gen comprehensive automated analysis protocol of response and detection to find issues faster. The solution allows IT personnel to perform more effectively and respond immediately, keeping the organization’s network continuously safe and secure.

Trend Micro XDR hunts deep and wide and creates a data lake for continuous hunting, sweeping, and researching throughout all security layers. With the addition of AI combined with intuitive analytics, Trend Micro XDR greatly reduces the number of alerts going to the organization’s SIEM solution, ensuring that IT personnel can be more focused on what threats and risks are pertinent, critical, and necessitate more thorough investigation.

Trend Micro XDR Benefits

  • Full Transparency: A fascinating GUI provides a single pane of visibility to indicate the threat’s point of entry and how it entered and migrated, all endpoints affected, and more.

  • Improved Efficiency: Trend Micro XDR integrates seamlessly with SIEM and SOAR solutions and gives IT personnel greater visibility throughout the entire network. The solution facilitates improved response by minimizing manual activities and streamlining workflows to ensure responses can be more immediate.

  • Next-Gen AI Security: Supplies faster, better detection. Turns gathered data into actionable response steps to ensure the network is continually protected. Integrates seamlessly with many third-party security stacks.

  • Numerous Security Layers: Appropriate XDR protection requires multiple layers of protection. Trend Micro XDR covers cloud workloads, endpoints, networks, servers, email, and more. The solution has aggressive response capabilities and excellent integration with many of today’s popular tools.

Reviews from Real Users

“I like that it is a comprehensive security solution with a lot of features. You can say XDR is an end-to-end security solution with endpoint security. It includes all your servers, networks, and other devices. The endpoint security solution does not cover this. Plus, machine learning and features like that are the main things in XDR solutions.” - Nadeem S., CEO at Haniya Technologies.

“Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC.” - Charles D., Technical Services Manager at Psitech.

Trend Micro XDR was previously known as Trend Micro XDR for Users.

Trend Micro XDR Customers

Unigel, DHR Health,

Trend Micro XDR Video

Trend Micro XDR Pricing Advice

What users are saying about Trend Micro XDR pricing:
  • "Trend Micro XDR has a good price, and on a scale of one to five, I would rate it a four out of five in terms of price."
  • "It would be nice if it was a little bit cheaper, but I think it has a fair price. It is comparable to others in the market."
  • "We have an annual subscription and I believe there is no option for monthly billing at the moment."
  • "The price is reasonable. It's not exorbitant. CrowdStrike and other players are on the higher side."
  • "Trend Micro XDR is expensive, and you have to pay for it yearly."
  • "It is costly. It is not that affordable for a small organization. Only big organizations can afford it. It is a new feature that has been added, so its price is fair. Its licensing is probably subscription-based. It is for one or two years."
  • Trend Micro XDR Reviews

    Filter by:
    Filter Reviews
    Industry
    Loading...
    Filter Unavailable
    Company Size
    Loading...
    Filter Unavailable
    Job Level
    Loading...
    Filter Unavailable
    Rating
    Loading...
    Filter Unavailable
    Considered
    Loading...
    Filter Unavailable
    Order by:
    Loading...
    • Date
    • Highest Rating
    • Lowest Rating
    • Review Length
    Search:
    Showingreviews based on the current filters. Reset all filters
    ShashankBorude - PeerSpot reviewer
    Team Lead Infosec Incident Management at HighRadius
    Real User
    Top 20
    Good dashboards and easy to navigate but needs more flexibility
    Pros and Cons
    • "XDR provided a much more deep view into what is actually happening."
    • "Results were delayed."

    What is our primary use case?

    I was team lead with incident responses and incident management. We used the solution for that.

    How has it helped my organization?

    We were already using Trend Micro endpoint, NGAV by Trend Micro, and we got that upgraded to the XDR version. There was not much of a change after that. The only good thing about upgrading to XDR from NGAV was, having those real-time logs and network activities in front of us.

    What is most valuable?

    My reviews with Trend Micro are somewhere average. I won't rate it as an excellent tool or utter nonsense. I won't rate the two extremes, however, I would say it's in between them. It was mostly fine.

    XDR provided a much more deep view into what is actually happening.

    The rest of the features were pretty simple. There's nothing glamorous about them, however, it works. Nothing much really stood out amongst what the others were giving and what Trend Micro was giving. They are all pretty typical.

    The dashboard was pretty easy to navigate. It was pretty convenient and user-friendly.

    What needs improvement?

    Results were delayed. We had all the logs in our hands. We were pretty quick in giving out the results and coming up with a conclusion. Trend Micro was pretty delayed on that front, however.

    Their turnaround time or the response to their MDR services was slow. While doing POC, we did MDR as well. They could improve the response time on that. That was my view back then, as it used to take a lot of time to get that case generated, get that case analyzed. In the end, we were more interested in the responses from the actual human analysts. Instead of having a machine-generated thing, we were banking on understanding how an incident is treated and how a response is being given. For us, for example, we were able to do our analysis and come to the same conclusion maybe four or five hours before we received Trend Micro's report. Almost all the results were identical.

    There was one feature called Sandbox that I wanted to try on, however, at that time, they had not released it yet. 

    Since last August, I have been working with another organization, so I am not sure how Trend Micro has developed within the last ten months.

    I was never able to test the live response feature, wherein I could take access, remote access of the infected system, and send some commands to kill the processes, or maybe to grab the artifacts, to triage the artifact. By the time it came online, I was moving to another organization.

    We'd like a bit of freedom or flexibility on the portal. If I'm the end-user, and I see something bad which might not be bad from Trend Micro's perspective, however, for my organization, was an abnormal activity.

    Executing things via PsExec might be something that is normal for some organizations, however, for my organization, it is a highly suspicious thing. If I want to investigate that, having the flexibility for me to investigate it in a deeper sense would be ideal.

    That was something that was not possible at that time. I don't know if they have given more freedom to Trend Micro admins. 

    We'd love more flexibility in terms of implementing some of the configurations, estate-wise. That is something that I would have loved to see in Trend Micro.

    Buyer's Guide
    Trend Micro XDR
    July 2022
    Learn what your peers think about Trend Micro XDR. Get advice and tips from experienced pros sharing their opinions. Updated: July 2022.
    619,967 professionals have used our research since 2012.

    For how long have I used the solution?

    I used the solution for a month and a half, maybe. Or six weeks.

    What do I think about the stability of the solution?

    The response time, the analysis, or the human part was something which was requiring improvement. From the tool perspective, there were a lot of things that were to be released at the time I was using it.

    We used to see those on the dashboard. For example, the sandbox. They had a sandbox, just like what CrowdStrike does where you can have a license for the sandbox. You can run those EXEs or whatever files, or malicious artifacts through those sandboxes and get a result.

    That was something that was under development, though it was being displayed on the dashboard as "coming soon". There were a lot of features that were to be implemented. It was notified to the end-user as "Okay, that these features are coming in, and we are not sure how long it will take." 

    The trend lines were pretty extensive - like a year or maybe seven months, eight months. Those were the timelines for the actual deployment of those features into the dashboard. Therefore, it's hard to speak to the stability of the product.

    What do I think about the scalability of the solution?

    The scalability is good. It was just a matter of installing the agent, which was pretty easy to deploy via a group update. Scalability was not an issue. The more licenses we purchased, the more systems we could get coverage upon.

    There were endpoints plus servers covered. 

    We were heavily dependent on them. The reason was, that we had Trend Micro NGAV and we upgraded to Trend Micro XDR. 

    How are customer service and support?

    Their technical support isn't that great. 

    I used to speak with their CSMs quite frequently. They used to take a lot of feedback from us, asking about how things were, as their detection improvement was something which, also we were part of, not directly, however, we had one more team who used to do VAPT.

    We used to post those results and say, "Okay, this is what we did. We did not get any alerts from you. We did not get any communications from you. What if this was an active hands-on keyboard activity and we were under attack?" They used to take that feedback. They used to get it implemented. Detection was then pushed in. They were in that development phase. I am not sure how well they are doing right now.

    How would you rate customer service and support?

    Negative

    Which solution did I use previously and why did I switch?

    I've worked with CrowdStrike and Sophos and they provide a much better way to handle things than Trend Micro.

    We never had any other tools or other antiviruses, other EDR solutions, that were playing any roles in the infrastructure. We only had ESET, and we were phasing those ESET servers out to Trend Micro. The only tool that we worked on, or XDR that we worked on, was Trend Micro.

    How was the initial setup?

    The initial setup was pretty straightforward. They had given us one file which we could push through group policy updates. It was implemented throughout the organization. Implementing was pretty easy and it was pretty lightweight.

    I was happy about that as it was not a resource-hungry agent which was running in the background, and we could not kill it, we could not limit it. Typically, XDR agents can be a bit resource-hungry, however, this one from Trend Micro was very light. 

    I'm not sure how long the deployment itself took.

    Our IT team was pretty huge. It was around 30 odd people who used to work on it, however, I'm not sure how many of them were dedicated to working on Trend Micro for maintenance.

    What about the implementation team?

    We had our internal IT team who we used to do the installation.

    What was our ROI?

    The company I worked for did not lose its money as Trend Micro was a low-cost tool. The features which we were getting were justified by the cost. It was not too costly to have those features.

    What's my experience with pricing, setup cost, and licensing?

    I'm not sure of the exact price, although it is moderate. I'd rate it 3.5 out of five in terms of affordability.

    You could get new features with an added cost per license, or it used to be bulk. Having that modularity helped in choosing and protecting our systems, and keeping the cost down. That modularity helped us in the beginning.

    Which other solutions did I evaluate?

    We also evaluated CrowdStrike with Trend Micro. CrowdStrike was phenomenal. I have all the good answers for them. If I have to rate them, I will rate each feature four out of five and above since they were that good.

    CrowdStrike was too costly for our organization to have, as we had started building the Infosec inside, having Infosec in-house. Previously, it was outsourced.  I was the first person who was enrolled for Infosec.

    What other advice do I have?

    I was an end-user.

    I'm not sure which version we were using it. 

    The solution was on the cloud. We were discussing having it on-prem, however, the cloud made much more sense for such a small organization rather than utilizing the resources on-site.

    I'd rate the solution six out of ten.

    Which deployment model are you using for this solution?

    Public Cloud
    Disclosure: My company has a business relationship with this vendor other than being a customer: partners
    Flag as inappropriate
    PeerSpot user
    Senior IT Manager at a pharma/biotech company with 1-10 employees
    Real User
    Top 5Leaderboard
    Has behavior detection and memory scanning features and allows users to drill down on root-cause analysis, but needs more visibility into the alerts and expanded reporting
    Pros and Cons
    • "One of the features I like in Trend Micro XDR is that you can drill down on the root-cause analysis for anything you find on the solution. I also like that it works for detection purposes. Behavior analytics is also what I like most about Trend Micro XDR. I love that it has features such as behavior detection, program detection, and memory scanning. By default, the solution protects against spyware, apart from the normal virus scan. Smart Scan and DLP are also available in Trend Micro XDR which I like as well."
    • "A room for improvement in Trend Micro XDR is more visibility into the alerts. We do get alerts from the solution, but when we are away, we need to have more visibility."

    What is most valuable?

    One of the features I like in Trend Micro XDR is that you can drill down on the root-cause analysis for anything you find on the solution. I also like that it works for detection purposes. Behavior analytics is also what I like most about Trend Micro XDR. I love that it has features such as behavior detection, program detection, and memory scanning. By default, the solution protects against spyware, apart from the normal virus scan. Smart Scan and DLP are also available in Trend Micro XDR which I like as well.

    What needs improvement?

    A room for improvement in Trend Micro XDR is more visibility into the alerts. We do get alerts from the solution, but when we are away, we need to have more visibility.

    An additional feature we'd like to see in the next release of Trend Micro XDR is reporting, particularly RCA reports because those will help us a lot. Right now, we need to log into the portal to drill down the RCA. For example, when an alert comes in, it will be blocked immediately by Trend Micro XDR. We get the message "This has been blocked", but when we want to drill down in terms of where it started, we need to log into the server, do the RCA, and drill down on it. While doing the RCA and drilling down on it, it would be good if we could get a report directly from Trend Micro XDR because that report could help us.

    For how long have I used the solution?

    We've been working with Trend Micro XDR for more than one year, and we're still using the solution.

    What do I think about the stability of the solution?

    During the first time we used Trend Micro XDR, we had some issues in terms of stability, but later on, everything became stable.

    What do I think about the scalability of the solution?

    Trend Micro XDR is a scalable solution.

    How are customer service and support?

    My impression of the technical support for Trend Micro XDR is good.

    Which solution did I use previously and why did I switch?

    We compared Trend Micro XDR against CrowdStrike and Palo Alto, but in terms of the features and pricing, we went with Trend Micro XDR. The solution had a really good price and we are getting almost all the features.

    How was the initial setup?

    The setup for Trend Micro XDR was easy and didn't have much challenges, especially because we have centralized management so it was easy to manage.

    What about the implementation team?

    The first time we implemented Trend Micro XDR, we had an integrator because we were on Trend Micro Apex One, then we wanted to migrate that existing solution to Trend Micro XDR, so during that time, we needed an integrator for the implementation of the solution.

    What's my experience with pricing, setup cost, and licensing?

    Trend Micro XDR has a good price, and on a scale of one to five, I would rate it a four out of five in terms of price.

    Which other solutions did I evaluate?

    My company evaluated CrowdStrike and Palo Alto.

    What other advice do I have?

    My company is working with Trend Micro XDR, an advanced version of the EDR solution.

    There are around six hundred users of this solution, but only one person required for its maintenance. Normally, my company deploys this agent. There's another tool from where my company pushes this agent to the end user, pulls to the end user system, then scans from this console, then my company gets all the reports.

    I would rate Trend Micro XDR seven out of ten.

    Which deployment model are you using for this solution?

    Public Cloud
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    Flag as inappropriate
    PeerSpot user
    Buyer's Guide
    Trend Micro XDR
    July 2022
    Learn what your peers think about Trend Micro XDR. Get advice and tips from experienced pros sharing their opinions. Updated: July 2022.
    619,967 professionals have used our research since 2012.
    Wisnu Nursahid - PeerSpot reviewer
    Technical Manager for Network Security at VTI
    Real User
    Top 5
    Affordable and easy to set up with good IPS prevention
    Pros and Cons
    • "The solution is stable."
    • "Trend Micro doesn't have the next-generation firewall."

    What is our primary use case?

    We primarily use the solution as security against ransomware as ransomware now has become the biggest threat for our customers.

    How has it helped my organization?

    Our central customer had a breach on the ransomware side. Even production is stopped by ransomware - which is why it's so important to protect against it.

    What is most valuable?

    The solution has similar features to Sophos. Every parameter security of Trend Micro sends the telemetry to the cloud. Then they try to analyze on the cloud. There's something like Deep Discovery for the sandboxing. Every parameter security will send the telemetry as well to the cloud.

    The IPS prevention is great.

    It's easy to set up the product.

    The solution is stable.

    You can scale the product.

    It's affordable. 

    What needs improvement?

    Trend Micro doesn't have the next-generation firewall. They have the IPS TippingPoint, however, interms of the next generation firewall, Trend Micro doesn't have this as a part of their solution. 

    For how long have I used the solution?

    We've been using the solution for three or four years. 

    What do I think about the stability of the solution?

    The solution is on the cloud and that makes it pretty stable. The accessibility of the cloud is better. They maintain the uptime so we don't have to worry about it. It's reliable. There are no bugs or glitches. 

    What do I think about the scalability of the solution?

    The scalability is very good. Once again, being based on the cloud makes it very scalable. Right now, many, many people are using the product.

    Most clients will start very simply with the basic functionality, like endpoint security. Then, they will move on to Deep Discovery for the sandboxing. Then they will move to another solution, like the IPS prevention system for the TippingPointing solution. Typically, they keep scaling and expanding to get more options and services. 

    How are customer service and support?

    Technical support has been helpful and responsive in the past.

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    I Have also used Sophos, which does have a next-generation firewall. They are very similar solutions, however.

    How was the initial setup?

    The implementation process is straightforward. It takes effect in eight days. For the Endpoint solution, it just depends on the number of endpoints that we deploy to customers. If it is small in size, like 50 to 100 endpoints, then it will take between ten and 20 days. If the endpoint number is around 1,000 endpoints, it will take more days to complete the deployment.

    Typically, we have five to seven people that manage the implementation process. 

    What was our ROI?

    I'd rate the ROI at a four out of five. It offers good ransomware protection.

    What's my experience with pricing, setup cost, and licensing?

    The pricing is okay. I'd rate it three or four out of five in terms of affordability. They are competitively priced. 

    What other advice do I have?

    We are partners. We're also partners with Sophos. 

    We are using the latest version of the solution. While we still use an on-premises version, most of the solution is now on the cloud. 

    I'd advise potential new users to start using the basic check and move up from there. 

    I'd rate the solution eight out of ten. 

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: My company has a business relationship with this vendor other than being a customer: Partners/integrators
    Flag as inappropriate
    PeerSpot user
    Technical Services Manager at Psitech
    Real User
    Top 20
    Good detection rate, effective, rock-solid, and easy to install and manage
    Pros and Cons
    • "Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC."
    • "There isn't a lot I'd do to change it. The web interface could be improved to sort of make it a little easier to manage multiple clients out of one location. It could also be made a bit easier to sort of manage the licensing side of it."

    What is our primary use case?

    It is for endpoint protection. It is essentially a modern updated version of antivirus that has more heuristic and behavioral detection components. 

    We are using its latest version. In terms of deployment, it is a combination of cloud and on-premises. There is a local install on the endpoints, but it is controlled through a cloud interface.

    What is most valuable?

    Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC.

    What needs improvement?

    There isn't a lot I'd do to change it. The web interface could be improved to sort of make it a little easier to manage multiple clients out of one location. It could also be made a bit easier to sort of manage the licensing side of it.

    In terms of additional features, probably the only thing would be a rollback function. They are actually working on it because they're halfway there with it.

    For how long have I used the solution?

    It is a new product. We have been using it since they released it. It has probably been about 6 to 12 months.

    What do I think about the stability of the solution?

    It is a very good product. I've been working with Trend Micro as a company for probably 20 years. Their products are pretty rock solid.

    What do I think about the scalability of the solution?

    It is easy to scale. We've got about 150 or 200 endpoints at the moment.

    How are customer service and support?

    I have contacted their support, and they are very good. Their response time is quick.

    How was the initial setup?

    It is very straightforward to install. It is pretty clear, and it takes a couple of minutes per device. You can automate that process of rollout as well.

    What about the implementation team?

    Because it was a new product, I reached out and spoke with technical and obviously salespeople and so on within the company to do some basic training and get my head around it to be able to deploy it. I could've researched that myself, and it would've been fairly easy, but I chose to sort of speak to my company rep and so on. He organized a bunch of short get-togethers with some of their technical staff, which was useful.

    What's my experience with pricing, setup cost, and licensing?

    It would be nice if it was a little bit cheaper, but I think it has a fair price. It is comparable to others in the market.

    What other advice do I have?

    It is basically Trend Micro's response to other products in the market such as SentinelOne and so on. I don't know how it stacks up against SentinelOne and others, but I suspect that it is sort of right up there.

    Trend Micro is a very large company. They put a lot of money into the development of their products and so on. I would recommend it to others, and I have already been recommending it to others because our clients pretty much are on Trend Micro products. So, there would be legacy ones. To those who are coming for renewal, I recommend moving to XDR.

    I would rate Trend Micro XDR about a nine out of 10.

    Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
    PeerSpot user
    Consultant at a computer software company with 51-200 employees
    MSP
    Top 5Leaderboard
    Pinpoints patient zero via full visibility into the root cause of an attack, but the reporting needs work
    Pros and Cons
    • "What I like the most about Trend Micro XDR is that the detection and response domain extends to the network. It goes beyond the endpoint and includes data about the network which lets you pinpoint patient zero as well as the root cause of the attack."
    • "In new versions I would like to see better implementation of the reporting features, especially in regards to EDR visibility."

    What is our primary use case?

    We have about three clients who are running Trend Micro XDR. It can be deployed on-premises, in the cloud, or wherever you want. As an endpoint detection and response solution, it is used to identify attack points that reach even beyond the individual endpoints, such as the network environment itself.

    What is most valuable?

    What I like the most about Trend Micro XDR is that the detection and response domain extends to the network. It goes beyond the endpoint and includes data about the network which lets you pinpoint patient zero as well as the root cause of an attack. Thus, it gives you full visibility from end to end. 

    What needs improvement?

    In new versions I would like to see better implementation of the reporting features, especially in regards to EDR visibility. However, Trend Micro XDR has only been around for a year or so, so I know it's still being developed and I think it will get more mature given time.

    For how long have I used the solution?

    I have been using Trend Micro XDR for about a year, as it is still a new product.

    What do I think about the stability of the solution?

    Despite that it's a new product that is still being worked on, it's a stable product overall. There aren't any major problems with it.

    What do I think about the scalability of the solution?

    So far it has been scalable to our needs.

    How are customer service and support?

    Their support is good. 

    How was the initial setup?

    The installation wasn't too hard. It's obviously a bit more difficult than installing something like Microsoft Office, because it's a security product. But in comparison to other security products, it is not that difficult.

    It did take a little bit more time than expected to get it all set up, but that was primarily because it's a new product and our guys aren't as experienced in it as they would be with similar products. I would guess it takes about 20% longer than the rest, but that's only due to the learning curve.

    In our case, maintenance of Trend Micro XDR in general requires around two engineers, because it's a bit more complex and you will need more configuration done than what you would do on a single endpoint.

    What's my experience with pricing, setup cost, and licensing?

    We have an annual subscription and I believe there is no option for monthly billing at the moment.

    What other advice do I have?

    While Trend Micro XDR is still new and can be rough around the edges, I would like to emphasize that it is a good product and it's working fine. I can definitely recommend it.

    I would rate Trend Micro XDR a seven out of ten.

    Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
    Flag as inappropriate
    PeerSpot user
    CISO at a computer software company with 5,001-10,000 employees
    Real User
    Top 10
    Is reasonably priced but meeds more maturity and improved technical support
    Pros and Cons
    • "Trend Micro XDR is stable, scalable, and reasonably priced."
    • "The product needs to have a lot more maturity, and they need to improve the overall technical support framework for getting the value out of XDR."

    What is our primary use case?

    Everybody is working from home, so we wanted to ensure that there was an additional layer of security put into every end product. Since we were using the Trend Micro antivirus and antimalware, we wanted to upgrade it with the XDR as well. We did that about nine months ago.

    What is most valuable?

    Trend Micro XDR is stable, scalable, and reasonably priced.

    What needs improvement?

    The product needs to have a lot more maturity, and they need to improve the overall technical support framework for getting the value out of XDR.

    They need to improve their overall market presence and make sure they are bringing value for the company that is spending money on them. From the business side, there are a lot of areas for improvement, like improving their business relationships. That will help them increase their customer presence as well.

    For how long have I used the solution?

    I have been using Micro XDR for nine months.

    What do I think about the stability of the solution?

    The solution is stable.

    What do I think about the scalability of the solution?

    The solution is scalable.

    How are customer service and support?

    Technical support is not good. Their technical team should be more competent. I have reached out to their product manager, but they weren't very responsive. They need to improve their own technical competency in terms of supporting customers with complex environments because our environment is very complex. The product is not that user-friendly for the complex environment.

    How was the initial setup?

    They are doing the hybrid environment, and that is where the complexity goes up. Earlier, it was halfway on-prem and halfway to the cloud, and that was causing a lot of issues. That is when we decided to have everything migrated to the cloud. Post-migration to the cloud, the complexity has reduced significantly.

    What's my experience with pricing, setup cost, and licensing?

    The price is reasonable. It's not exorbitant. CrowdStrike and other players are on the higher side.

    What other advice do I have?

    I would give Trent Micro XDR a 5 out of 10.

    I would not recommend it, but in a situation where somebody has already invested in antivirus from Trend Micro, then it would be okay to go for Trend Micro XDR just to ensure that you are extending the platform. But if somebody is evaluating everything from scratch and looking out for something fresh, then I would not recommend Trend Micro as a go-to-product.

    Which deployment model are you using for this solution?

    Public Cloud
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    Flag as inappropriate
    PeerSpot user
    Nadeem Syed - PeerSpot reviewer
    CEO at Haniya Technologies
    Reseller
    Top 5Leaderboard
    A comprehensive extended detection and response solution with a lot of features
    Pros and Cons
    • "I like that it is a comprehensive security solution with a lot of features. You can say XDR is an end-to-end security solution with endpoint security. It includes all your servers, networks, and other devices. The endpoint security solution does not cover this. Plus, machine learning and features like that are the main things in XDR solutions."
    • "It would be better if it were more user-friendly. It would also be better if the implementation were more straightforward."

    What is our primary use case?

    Trend Micro XDR is useful for more extensive networks, and it's cost-effective for networks with over 500 or 1000 users.

    What is most valuable?

    I like that it is a comprehensive security solution with a lot of features. You can say XDR is an end-to-end security solution with endpoint security. It includes all your servers, networks, and other devices. The endpoint security solution does not cover this. Plus, machine learning and features like that are the main things in XDR solutions.

    What needs improvement?

    It would be better if it were more user-friendly. It would also be better if the implementation were more straightforward.

    For how long have I used the solution?

    I have been selling Trend Micro XDR for two or three years.

    What do I think about the stability of the solution?

    Trend Micro XDR is very stable.

    What do I think about the scalability of the solution?

    Trend Micro XDR is a scalable solution. We have about eight to ten clients using this solution.

    How are customer service and support?

    Technical support is good. You have your own technical team and the Trend Micro team as well. Plus, Trend Micro itself is present in Pakistan. So typically, we don't have that many issues contacting them and getting support.

    How was the initial setup?

    The initial setup is a little complicated. It is a huge solution, and it usually takes about a week or so to implement and deploy the solution. You will need at least two to three technical professionals to implement and maintain this solution.

    What's my experience with pricing, setup cost, and licensing?

    Trend Micro XDR is expensive, and you have to pay for it yearly. 

    What other advice do I have?

    I would recommend this solution to customers in the financial sector. I usually do not recommend this product to any company with about 100 to 300 users because it's not cost-effective. XDR is quite expensive, so we typically sell XDR to the financial sector, especially banking. They are the prime candidates for this kind of solution because of their extensive network.

    On a scale from one to ten, I would give Trend Micro XDR a nine.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: My company has a business relationship with this vendor other than being a customer:
    Flag as inappropriate
    PeerSpot user
    BobenGeorge - PeerSpot reviewer
    Sr.Customer Engineer- Projects at a tech services company with 201-500 employees
    Real User
    Top 5Leaderboard
    Provides amazing capability to trace an attack back and has good performance, stability, and scalability
    Pros and Cons
    • "It has the feature to track an attack back. If there is an incident or an attack occurs, you can get a bird's eye view of that attack. You can see how the attackers came in and how they managed the attack. You can trace an attack. If you are giving a presentation to the management, you can easily show it to them in a live environment how the attackers came, which is amazing."
    • "It should integrate with more tools. There are a lot of tools that can do the PTP dump."

    What is our primary use case?

    It is used for protection and tracking back an attack. It can be deployed on-prem or on the cloud.

    What is most valuable?

    It has the feature to track an attack back. If there is an incident or an attack occurs, you can get a bird's eye view of that attack. You can see how the attackers came in and how they managed the attack. You can trace an attack. If you are giving a presentation to the management, you can easily show it to them in a live environment how the attackers came, which is amazing.

    What needs improvement?

    It should integrate with more tools. There are a lot of tools that can do the PTP dump.

    For how long have I used the solution?

    We have been providing this solution for almost a year.

    What do I think about the stability of the solution?

    Its stability is good. Its performance is also good.

    What do I think about the scalability of the solution?

    Its scalability is good. Currently, we have only one major customer who is using this solution.

    How are customer service and technical support?

    Their technical support is fine.

    How was the initial setup?

    It is straightforward.

    What about the implementation team?

    Its implementation is done based on the discussions with the customer. For the implementation part, one or two people are enough.

    What's my experience with pricing, setup cost, and licensing?

    It is costly. It is not that affordable for a small organization. Only big organizations can afford it. It is a new feature that has been added, so its price is fair.

    Its licensing is probably subscription-based. It is for one or two years.

    What other advice do I have?

    It is a very good solution. It is a new product in the market, so you cannot compare it with many products.

    I would rate Trend Micro XDR a nine out of 10.

    Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
    PeerSpot user
    Buyer's Guide
    Download our free Trend Micro XDR Report and get advice and tips from experienced pros sharing their opinions.
    Updated: July 2022
    Buyer's Guide
    Download our free Trend Micro XDR Report and get advice and tips from experienced pros sharing their opinions.