TrendAI Deep Security Reviews

My company suggests Trend Micro Deep Security to our clients for server maintenance, and the customers can move a lot of servers in their environment with lesser hiccups. Our client uses around 10,000 servers, so we suggested they use Trend Micro Deep Security, a server support-based tool. Apex One and Apex Central are designed for laptops and desktops.

The most valuable features of the solution we have enabled in our organization are its anti-malware capabilities, applications, web reputation, and integrity monitoring.

Our company hasn't received any feedback or suggestions from our clients on Trend Micro Deep Security because it has been working fine. In Apex One and Apex Central, the new versions usually pose issues to their users after updating the tools. There haven't been any critical issues with the solution in the last few months.

A minor issue in Trend Micro Deep Security is that once the tool is upgraded, it shows some machines as offline or not reported while showing a recent update as outdated. The tool has some server connection issues. We have raised the concerns from our end with Trend Micro Deep Security to resolve them.

The real-time server is stopped, and it shows offline whenever we check our console.

I would like to see the tool add EDR features in the future.

I have been using Trend Micro Deep Security for the last five years. I am using Trend Micro Deep Security Version 20. My organization functions as partner support for Trend Micro Deep Security.

It is a highly stable solution. Stability-wise, I rate the solution a ten out of ten.

Scalability depends on whether Trend Micro Deep Security's dashboard shows its users with options like critical, medium, or low.

It is a good scalable tool, especially Trend Micro Deep Security Version 20, compared to its previous versions like Trend Micro Deep Security Version 10 or 12.

Scalability-wise, I rate the solution a ten out of ten.

Around 1,15,000 users are there for the solution. Mostly, my clients are large to medium-sized businesses.

The solution's technical support quickly responds when you raise a ticket. I rate the technical support a nine out of ten.

The initial setup for Trend Micro Deep Security Version 20 was comfortable for me.

The solution is deployed on-premises.

Our company has multiple customers. Some customers have on-boarded the tool on-premises, while others have opted for SaaS models. With the SaaS deployment model, it takes only 20 to 30 mins to complete the setup phase if the license is already activated. For new users of the tool, once the license is activated, it initially needs some build-up for the entire deployment of the tool on the SaaS model, which then takes around a week because after a server gets ready, we have to coordinate with multiple teams.

I have seven years of experience with the setup phase of the tool.

The setup phase is carried out with the help of application control, web reputation, and integrity monitoring.

The price of Trend Micro Deep Security is high when compared to the normal prices of Apex One and Apex Central.

I rate the price a seven on a scale of one to ten, where one is low, and ten is a high price. It is a very costly tool. We have been able to resolve the challenges related to the pricing of Trend Micro Deep Security.

There are no additional payments to be made other than the normal price of the tool.

My organization uses Trend Micro Deep Security for Windows platforms, including Windows 2012, Windows 2016, and Windows 2019, as well as Linux.

I would recommend the solution to those planning to use it.

Overall, I rate the solution a ten out of ten.

I work in a finance-based company, so what we look at would be an anti-malware suite to inspect IPS policies, firewalls, and other such stuff.

The most valuable features of the solution are the log inspection and the IPS, which are the most effective compared to other tools.

Log inspection completely reviews all the logs on the machine rather than me going and investigating. I can take a quick look into the issues with Trend Micro Deep Security.

The tool needs to be made more user-friendly. The dashboard is there, but the solution's false positives are a bit higher.

I have been using Trend Micro Deep Security for three years. I am a customer of the solution.

It is a stable solution. Stability-wise, I rate the solution a six to seven out of ten.

I have no complaints about the scalability of the product. Scalability-wise, I rate the solution a seven out of ten.

If I speak about the support directly from Trend Micro's team, I rate the technical support as five out of ten.

If I consider the support that I get from Trend Micro's sales engineering team, I would rate the support as a seven or eight. The support team does not reply, and if they do, they provide a response after a week, even if you say that we urgently need their help. The local team in my country, which is the engineering team from the sales side, contacted us and asked whether they could help us in any way with the ticket raised from our end.

Neutral

The product's initial setup phase was super easy. Trend Micro's team was there to support us when we were setting it up. The sales team and sales engineering team were also helpful.

If ten means very easy setup and one means difficult, I rate the setup phase a seven to eight.

Within business hours, the solution was deployed in two days, considering that there was a need to set up policies and servers.

With Trend Micro's virtual patching in place, the IPS rules are quite effective, so I don't have to patch my systems right away. Trend Micro has been quite aggressive in releasing the IPS rules, which protect our servers from any such incidents.

I wouldn't think that I have seen any reduction in security-related costs since implementing the solution. I have not seen a reduction in the pricing of the security suite, given the fact that the risks have been increasing worldwide or at a global level. We have to put more money to protect ourselves.

I would not blame Trend Micro for not ensuring that users see the cost reductions. Considering the many developments in the general market, the tool has to stay updated.

The compliance management in Trend Micro Deep Security has not very much improved the security audits, especially since we are using the on-prem version. With the on-prem version, you don't get much of the compliance management part. The SaaS version is quite different and we are looking to switch to it.

The fact that Trend Micro Deep Security has integrated everything with Trend Vision One is something that is more than sufficient.

We are using the tool's on-prem version, so I don't think I have seen anything related to AI.

I have not seen anything related to automation in the tool.

The suite is better, so when you are buying a product, make sure that you squeeze everything into one since that is where the real money lies.

I think the major value for my company does not come from Trend Micro Deep Security but from Trend Micro Vision One, XDR Telemetry, and everything else.

If a person has completed the integration, you don't have to look at the different modules of Trend Micro Deep Security, as you can just log into Trend Vision One and do all the XDR analysis.

I rate the tool an eight out of ten.

We are using it for NetSpark, and I work for two organizations where I'm using this tool. In both, we are scaling our networks and endpoints, analyzing our traffic, and analyzing the endpoints and security.

In one organization where I started, we were using a SIEM solution and facing challenges like a lack of complete information. Deep Security has helped us to know where intrusion started, penetrated, and went within our network, thereby improving security.

I appreciate the complete visibility of information, including endpoints and detailed tracing from origin to navigation. It helps us detect and protect against network penetrations at the specific point of intrusion.

New patterns need improvement, as some new data access points are challenging to investigate and allow entry without detection. Improving this area and providing complete visibility would be beneficial.

I have been using this product for nearly eleven months.

I would rate the stability as eight out of ten.

I rate technical support a nine.

Positive

I previously used QRadar. Compared to QRadar, Trend Micro improves quickly based on feedback and provides more comprehensive solutions.

In one premises, we deployed it on the cloud, which was challenging at the start, while on another it was set on TensorFlow, which was comparatively easy.

Their team was very helpful during the deployment process. Trend Micro's team was particularly cooperative.

It has saved us time, money, and resources. We saved nearly forty percent of our time previously spent on manual investigations.

The pricing is very fair, although there are other cheaper options. Due to our limitations, Trend Micro was our best option.

I would rate it an eight out of ten.

I use Trend Micro Deep Security to enhance the security of our servers, which run various operating systems, including Solaris. For our servers, especially those involved in Webex, we deploy agents and enable specific modules like anti-malware, intrusion detection, and firewall protection.

Trend Micro Deep Security has significantly improved our organization's security posture. It has streamlined reporting processes, enhanced claim filing efficiency, and provided robust protection for our IT systems. With features like real-time threat monitoring, it ensures a secure environment.

The integration options of Trend Micro Deep Security have been particularly valuable. The integration options in Trend Micro Deep Security are crucial for our banking organization. With DLP campaigns being a priority, the seamless integration ensures that endpoints are effectively enabled, providing necessary protection against current and relevant threats. 

There is room for improvement in Trend Micro Deep Security, particularly in endpoint security. Enhancements in agent performance are needed, specifically in reducing server utilization during scanning. This improvement would contribute to increased efficiency and lower operational costs, ensuring a smoother and more responsive system.

I have been working with Trend Micro Deep Security for three years.

I would rate the stability as a nine out of ten.

I have faced some issues with Trend Micro Deep Security's scalability, like communication errors and settings in green states. Resolving these requires support and knowledge to allocate resources effectively.

The technical support for Trend Micro Deep Security has been decent. However, I believe there's room for improvement in engagement. When raising a case, the ability to quickly connect remotely and discuss specific documentation related to our environment would enhance the overall support experience. I would rate the technical support as a seven out of ten. 

Neutral

I would rate the easiness of the initial setup as a seven out of ten. Setting up Trend Micro Deep Security was not entirely straightforward. While there is a comprehensive solution, the complexity arises from the diverse components in our environment. Unlike a single-box setup, we manage multiple components, which requires careful configuration for effective deployment. It took three months to deploy the solution.

We have seen a return on investment from using the solution.

I would rate the costliness of the solution as a seven out of ten. The pricing for Trend Micro Deep Security is fixed for five years, and there are no additional costs beyond the standard license increase during this time.

My advice for someone considering Trend Micro Deep Security is to conduct a thorough POC before implementation. Ensure all modules are enabled during the POC and carefully assess how the solution works in your specific environment. Check the enrollment process and functionality before moving forward with the implementation. Overall, I would rate the solution as an eight out of ten.

I use the solution in my company to reduce SMB attacks on the data center site and ensure data center protection from flooding and threats.

For server security purposes, I like the product's firewall. The firewall has three features we use in our company, of which one controls flooding, the other blocks unwanted ports, and the third allows us to control traffic via Deep Security if the firewall port is open from the switch or router side.

In our company's infrastructure, we have not faced any challenges with the product. Considering the lack of issues or challenges faced with the use of the product in our company's environment, I feel that it is a good solution.

Sometimes, the product is not very stable, but it is something that depends on the infrastructure in which the tool is used. The aforementioned area can be considered for improvement.

If Trend Micro Deep Security wants to implement some new features in it, then I would say that it should focus from a networking point of view and see how to control network traffic specifically coming from external to internal traffic on the servers.

I have been using Trend Micro Deep Security for two years. My company operates as a system integrator for Trend Micro.

If I consider my company's infrastructure, everything is good with the product because we have enabled the threat protection systems to control our environment, so we don't see any suspicious activities.

I rate the solution's stability as ten out of ten.

Scalability-wise, it is a good tool, and I rate the solution as nine out of ten.

When it comes to technical support, I would say that none of the products are bad, and all the tools are usually good. There are a few areas where certain modifications or changes are required, and it is something that varies from client to client. In my opinion, all products, including Symantec and Trend Micro, are good. Based on the infrastructure of users and what they want to implement, there are a few things that Trend Micro should understand. I rate the technical support an eight out of ten.

Positive

I work with Trend Micro Endpoint Security with Apex One. I also use Symantec.

If I consider my company's infrastructure, everything is good with the product because we have enabled the threat protection systems to control our environment, so we don't see any suspicious activities.

I rate the solution's stability as ten out of ten.

The solution is deployed on the cloud.

Symantec and Trend Micro Deep Security are good products, and I don't have any issues with either of the solutions, specifically from a technical perspective.

The costs associated with both the products are taken care of by the sales department or management in our company. Symantec and Trend Micro Deep Security have features that are almost 80 to 90 percent similar. The only area where Symantec needs to improve is related to the remote capabilities it offers.

The product's intrusion prevention system works fine, but we have not implemented any other policies in our company. In our company, we use the default policy in our environment to deal with and prevent intrusions, so we have not customized any policies associated with the intrusion prevention system. With the default policies in place, whenever there is some traffic coming in, the tool will automatically detect, allow, or take action based on the signatures.

I have learned many things while using the product, including the fact that it is very important for a company to decide what they want before purchasing a solution.

I rate the tool a nine out of ten.

The virtual patching features of Trend Micro Deep Security are very good. If you're running an unpatched server and you need to do n-1 patching, you need to wait for a month for the patch to be rolled out. That one month is a long time for an attacker to do an attack. Virtual patching is a wonderful feature where we do a recommendation scan and an internal assessment on the server, and it updates the IPS signatures to block any attack. I have seen instances where it has prevented attacks on the end-of-support servers such as 2018 R2, and many years ago, even 2007 servers that were end-of-support. It certainly helped there.

Another big advantage of Trend Micro at the time was that it supported Linux. Nowadays, most of the vendors seem to be supporting the Linux operating system, but Trend Micro was the initial organization that started supporting Linux and anti-malware solutions. It only had the anti-malware solution. It didn't do file integrity monitoring or other things.

Trend Micro Deep Security is easy to use and deploy.

I've not worked with CrowdStrike Falcon, but one of our customers also had CrowdStrike Falcon on some of the devices. I was only supporting Trend Micro. They had a ransomware attack, but Trend Micro didn't detect that particular ransomware attack, whereas CrowdStrike did. I was not a big fan of CrowdStrike till then, but when I saw that Trend Micro couldn't detect that particular attack but CrowdStrike could, my opinion changed. All the servers with Trend Micro were impacted, but all the devices on which CrowdStrike agents were running weren't impacted. CrowdStrike detected and blocked the attack immediately. From that perspective, I have high regard for CrowdStrike because the role of an EDR is to detect and respond immediately and block an attack. Containment is the first priority. Trend Micro can give numerous ifs and buts about why it couldn't detect that attack, and even though I'm a fan of Trend Micro and have extensive experience with Trend Micro Deep Security and Trend Micro Apex One, in that particular instance, CrowdStrike literally beat Trend Micro.

A disadvantage of Trend Micro as compared to CrowdStrike is that it doesn't work well with other solutions. If you have McAfee for anti-malware and IPS and the firewall of Trend Micro, they don't go very well. I had challenges deploying it with Carbon Black as well as McAfee and Symantec. It's because of the way Trend Micro works. It integrates with the NIC driver, so if two agents are running, it doesn't work well because they both want to integrate with the NIC driver.

It's easy to deploy. I've deployed it for more than 12,000 devices, which includes endpoints and servers. It's easy to deploy and easy to manage. You can do it automatically through the script. The ease of implementation and ease of management are there, but there are a few challenges. Linux compatibility has some issues because it's a kernel-based rollout. Especially with CentOS, I face challenges. CentOS is now Red Hat, so if we are running CentOS, we have to deploy Red Hat agents and not CentOS agents. It's not that easy to manage on Linux. If it's a stable, standard Linux version, it works, but with beta versions, there are some challenges.

CrowdStrike had an advantage over Trend Micro when it came to pricing. Trend Micro had several modules, so it was a little priced up, but CrowdStrike was not. However, even CrowdStrike has increased their price now, so probably both of them are on par, but the number of modules that Trend Micro has is far more than CrowdStrike. It comes with file integrity monitoring, application control, and web reputation. It has outbound URL protection, and it also has ransomware protection for servers, whereas CrowdStrike Falcon is a straightforward solution. It isn't an apple-to-apple comparison. It's a big apple versus small apple kind of comparison.

My general advice to everyone is to first define your must-haves. What is it that you are looking for in a product? Nowadays, there are so many products with overlapping features, so you need to first decide what it is you are looking for. From a feature perspective, you should define must-haves and nice-to-have. 

You also need to test it out if you are running multiple products on the same server. You need to test it out on the utilization side because there is a huge utilization hit if you are running multiple agents on the same server. You need to work it out because Trend Micro, CrowdStrike, or any other agent would require a good amount of memory. There should be dedicated memory for them. If there is a 16-gig memory, at least 2-gig memory should be dedicated to them. There should be 2 gigs for it to just work and 8 gigs for the OS, so we are talking about a minimum of 10 gigs. If your servers are running on low memory, there'll be a huge utilization hit on the servers. Therefore, you need to choose the right agent. If you are running multiple agents, then you probably need to do a capacity evaluation before purchasing any of the tools. There are trial versions available, and PoCs are also available, so you can certainly check on it and see the utilization. Do proper homework before purchasing the tool. The tool is good, and it will perfectly work fine, but it also depends on the implementation.

At this time, I'd rate it an eight out of ten because of the challenge that I faced when I was dependent on this, but it couldn't protect the server. However, by now, Trend Micro would have fixed the problem that I faced a year ago. I know their Singapore EDR team. I worked with them, and they are quick in terms of fixing any bugs or issues. They would've definitely looked into it, but that was one instance for me where CrowdStrike outperformed Trend Micro.

In our company, all critical systems are connected to a Security Operation Center (SOC), and we use Trend Micro Deep Security on these servers. Our company is in the manufacturing industry, dealing with metals and mining processes, and many of our solutions are hosted on public IP and accessed from outside organizations' networks. Installing Trend Micro Deep Security helps us prevent ransomware attacks and other unauthorized access attempts. Since we are connected to SOC, we receive detailed information on any attempts to penetrate our systems from outside, apart from just letting us know if there are any vulnerabilities or not. Additionally, Trend Micro Deep Security provides features like sandboxing. However, we have not been able to utilize these features fully.

Since I wanted to know the additional features that Trend Micro Deep Security offers beyond what we currently use in our solution, I was trying to find a comparison between Trend Micro Deep Security and Trend Micro Apex One.

Virtualization and sandboxing are the two features available in the solution. I learned about these two features from our service provider, through whom we secured the license required for the solution. So, our service provider is a reseller and not directly related to Trend Micro. Also, I am yet to go through the technical documents of the solution since I couldn't find much information about the solution online.

Regarding the deployment process, we first conducted a study to identify potential vulnerabilities and cybersecurity requirements for the business. Once we clearly understood these objectives, we began exploring solutions that could meet them. We then evaluated options such as a Security Operations Center (SOC) and Trend Micro Deep Security as part of this process.

I haven't received any distribution emails from the Trend Micro team regarding recent vulnerabilities and their efforts to mitigate them. It would be helpful if they could send emails notifying their users about the recommended upgraded versions to address the newly discovered vulnerabilities. This is an area that could be improved from more of a marketing perspective than a technical aspect.

In our company, we have been using Trend Micro Deep Security for at least two years now. Presently, we are using the latest version. So, we keep updating the solution. We provide the solution to the servers on a public IP.

It is a stable solution.

It is a scalable solution. Considering the different price ranges available, one needs to buy a device. It needs device-based licensing. For instance, if 50 more devices in our organization require Trend Micro Deep Security, then I have to purchase 50 more licenses. So, scalability is not a challenge in the solution. Also, we have around 100 people in our organization using the solution.

The solution is being used very extensively in our organization. In the company where I work, we have only a single solution for all of our servers. That single solution is Trend Micro Deep Security. Also, we have been using Trend Micro Apex One for the past two or three years.

I need to check with my team to know whether we ever interacted with the solution's technical support team.

The solution's initial setup was straightforward. It's not kind of a cumbersome one.

The deployment process did not take more than two months post-order placement for the solution. So, Trend Micro Deep Security and SOC are two separate parts. For SOC's deployment, we took around six to nine months. Trend Micro Deep Security is a type of endpoint security solution which, post procurement, takes around four to six weeks to configure.

Regarding the solution's deployment model, the managing, monitoring and diagnostics part of the solution is on the cloud, while all of our clients have chosen an on-premises deployment model. Basically, the clients are installed on physical devices.

Previously we had support for a deployment and maintenance procedure from the service provider. Currently, the solution is managed by our team as it is deployed on-premises.

We need to make yearly payments for the solution's licensing. There are different pricing models, like subscription-based and perpetual. Our company has chosen perpetual pricing. So for us, multiple reassignments are possible. If I choose one license and assign it to one device, I can later remove it from that device and assign it to a different one. Given the requirements that our company has, the solution is not too expensive.

According to our process, our organization usually explores three solutions by making a detailed technical comparison. After that, based on the business requirements, pricing and technical ratings that our experts provide, we go ahead with one of them. I do not know which two solutions were compared with Trend Micro Deep Security.

Currently, my organization relies on Trend Micro Deep Security to meet its business needs in the cybersecurity space. It is important to stay vigilant and explore all possible cybersecurity interventions. Despite having access to many of the solution's features, my organization has not yet deployed them all. As our organization and its systems and solutions continue to grow, in our organization, we want to enable all of the solution's potential, which can provide us with security. Therefore, I was seeking to compare the additional features available within the solution to identify any that could provide significant security benefits to my organization.

I would definitely recommend the solution to those planning to use it. Overall, I rate the solution between eight to nine out of ten.

I use the solution to provide general security for my enterprise clients, primarily for servers. Deployments include cloud and on-prem. 

I've been deploying Trend Micro for my clients for a long time, which has been a significant factor in our security posture.

The solution's endpoint protection is the most valuable feature. 

The email relays and proxies could be improved. 

I've been using the solution for around 16 years.

The stability is very good. In my experience, everyone is in the same boat because every product has faults or challenges.

The product is scalable; I rate it eight out of ten for scalability. 

Technically speaking, the customer support is okay, but the responsiveness needs to be improved. I'm referring to the universal support, as the Israeli staff are excellent and always willing to help. However, opening a case and entering into a back-and-forth with emails takes too much time. It should be working more quickly and smoothly.

Neutral

The deployment is straightforward; I rate it nine out of ten for ease of setup. The time the solution takes to set up depends upon the deployment's scale and complexity, as well as the use case.

Trend Micro Deep Security is average compared to other products on the market; it's neither particularly expensive nor cheap.

I rate the solution nine out of ten; it's in the top three or top five products of its type. 

My advice to others considering the solution is that two major considerations when looking for a product are stability and vendor company experience. Trend has been around for ages and has a good reputation; this and the stability work in their favor.