No more typing reviews! Try our Samantha, our new voice AI agent.
Raj-Yadav - PeerSpot reviewer
Raj-Yadav
Network Security Administrator at Alethe Consulting Pvt. Ltd
Real User
Top 5
Mar 16, 2026
Download
Centralized visibility has simplified web access control but user management still needs improvement
Pros and Cons
  • "I would recommend everyone to use Trend Vision One because it is the simplest GUI management; a network engineer with one year of experience can also manage Trend Vision One, and it can be deployed in any environment such as AWS, Azure, GCP, and also in a hybrid model."
  • "Stability can also be improved. Sometimes when we perform user management or when we go to log in to create the user, there will be some lagging on the network or it will automatically log out, and then we have to log in again on the web page."

What is our primary use case?

We use TrendAI Vision One as a web proxy to block and allow users to access web pages. We are a customer and an end user.

What is most valuable?

The best feature about TrendAI Vision One is the GUI; the platform is very user-friendly. The GUI of TrendAI Vision One is amazing and very useful, simple to understand, and simple to configure and learn. It saves my time and money, reducing approximately 20% of my time. AI in TrendAI Vision One was very important. If we integrate AI in TrendAI Vision One, it will provide more detail; all the data can be fetched from the internet to provide detailed network scalability and threats details, vulnerability scans, and port scans. It would be very good if the OEM integrates AI in TrendAI Vision One.

What needs improvement?

Stability can also be improved. Sometimes when we perform user management or when we go to log in to create the user, there will be some lagging on the network or it will automatically log out, and then we have to log in again on the web page.

When I tried to explore the web gateway and the email gateway, they are present under some options. If they can be provided in a simple interface, it will be very beneficial for the users and end users to understand and configure TrendAI Vision One.

For how long have I used the solution?

I have used TrendAI Vision One for approximately five to six months, and I have used it in the past 12 months.

Buyer's Guide
TrendAI Vision One
April 2026
Free Report: TrendAI Vision One Reviews and More
Learn what your peers think about TrendAI Vision One. Get advice and tips from experienced pros sharing their opinions. Updated: April 2026.
DOWNLOAD NOW
892,776 professionals have used our research since 2012.

What do I think about the stability of the solution?

I will rate the stability at six to seven.

What do I think about the scalability of the solution?

I will rate scalability at eight or nine, around eight.

How are customer service and support?

Technical support for TrendAI Vision One was perfect; I will rate it at nine.

What was our ROI?

The ROI is around 10 to 15%.

What's my experience with pricing, setup cost, and licensing?

The pricing of TrendAI Vision One is moderate.

Which other solutions did I evaluate?

In comparison to other vendors, the GUI is perfect; it is cost-effective and easy to understand and easy to operate. Overall, the comparison is good for TrendAI Vision One.

What other advice do I have?

TrendAI Vision One provides overall network performance, such as CPU utilization, how many ports are open in the network, and how we can configure the attack in the network. Blind spots in the network can be identified through the platform.

The centralized visibility was also good; we can manage all things in a simple GUI management. It can be consolidated within a hybrid environment.

I would recommend everyone to use TrendAI Vision One because it is the simplest GUI management; a network engineer with one year of experience can also manage TrendAI Vision One, and it can be deployed in any environment such as AWS, Azure, GCP, and also in a hybrid model.

TrendAI Vision One provides detailed network performance, CPU utilization of devices, and malware functions in the devices; it is all the details in one simple GUI where we can manage it, and we can see which end user and which end system is at risk, which is not, and which has updated the antivirus or not. I rate TrendAI Vision One at eight overall. My review rating for this product is seven.

Which deployment model are you using for this solution?

Hybrid Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Last updated: Mar 16, 2026
Flag as inappropriate
PeerSpot user
Nauman Ahmed Shakeel - PeerSpot reviewer
Nauman Ahmed Shakeel
Sr. System Engineer at a healthcare company with 5,001-10,000 employees
Real User
Top 5
Dec 9, 2025
Download
Integrated threat monitoring has strengthened risk visibility and improved vulnerability response
Pros and Cons
  • "TrendAI Vision One is very effective and very market competitive, which is why we are using it."
  • "TrendAI Vision One needs to work on its logging system as the logging systems are very complex, and they need to reform their logs in a more informative way."

What is our primary use case?

My use case is to monitor my entire infrastructure, investigate the latest vulnerabilities, identify loopholes, and monitor live threat detections to mitigate these threats.

What is most valuable?

TrendAI Vision One's best features are the ESRM and its email gateways, along with its playbooks, which are useful for testing any threat or vulnerability.

It helps in identifying blind spots by providing comprehensive knowledge about risk assessment and a method to compare our organization with others, allowing us to understand our current stage in cybersecurity.

What needs improvement?

TrendAI Vision One needs to work on its logging system as the logging systems are very complex, and they need to reform their logs in a more informative way.

For how long have I used the solution?

I have been using TrendAI Vision One for the last three years.

What do I think about the stability of the solution?

I would rate the stability an eight.

What do I think about the scalability of the solution?

I would rate the scalability a nine.

How are customer service and support?

Their response rate is approximately 80 to 90%, and they mitigate the issue.

I would rate the technical support a nine.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I compare TrendAI Vision One with Trellix and Kaspersky, and compared to both of these, TrendAI Vision One is very useful with one-window operation and is a market-gaining product.

How was the initial setup?

The deployment is easy and very moderate, taking approximately one month.

What about the implementation team?

It was a partner purchase.

What was our ROI?

The ROI is positive, and I see a reduction of 100%.

What's my experience with pricing, setup cost, and licensing?

TrendAI Vision One is not so expensive; it is very moderate.

Which other solutions did I evaluate?

TrendAI Vision One is very effective and very market competitive, which is why we are using it.

What other advice do I have?

I will definitely recommend this product because of its deep knowledge and deep features, such as ESRM, playbooks, and other email gateways.

We have approximately 50 users.

I do use TrendAI Vision One sensors, and they totally cover our network as we are using network sensors and service gateways to scan the whole network and gather information about our loopholes, mitigations, and vulnerabilities with respect to the latest CVEs.

I give this product a rating of 9.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Other
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
Last updated: Dec 9, 2025
Flag as inappropriate
PeerSpot user
Buyer's Guide
TrendAI Vision One
April 2026
Free Report: TrendAI Vision One Reviews and More
Learn what your peers think about TrendAI Vision One. Get advice and tips from experienced pros sharing their opinions. Updated: April 2026.
DOWNLOAD NOW
892,776 professionals have used our research since 2012.
reviewer2751279 - PeerSpot reviewer
reviewer2751279
Sr. Manager, IT Security at a healthcare company with 1,001-5,000 employees
Real User
Top 10
Aug 20, 2025
Download
Exceptional customer service streamlines onboarding and improves AWS security integration
Pros and Cons
  • "The best features TrendAI Vision One offers are the dashboard, reporting, and the customer service experience, specifically the customer service experience."

    What is our primary use case?

    My main use case for TrendAI Vision One is XDR security in our AWS environment for our EC2 instances, and I'm hoping to accomplish effective security measures with it.

    What is most valuable?

    The best features TrendAI Vision One offers are the dashboard, reporting, and the customer service experience, specifically the customer service experience.

    What makes the customer service experience stand out is that the onboarding process was exceptionally smooth. John, our account manager, was able to coordinate us with a technical resource to help with a white-glove onboarding process to ensure that our migration from Trend Micro Cloud One to Vision One was smooth and successful.

    TrendAI Vision One has impacted my organization positively, and it's our XDR solution, so it works as intended.

    Having TrendAI Vision One as my XDR solution has helped my team significantly. The Sentinel integration is a huge help for allowing us to detect and respond to events in our AWS environment.

    What needs improvement?

    I cannot think of anything that TrendAI Vision One can be improved.

    For how long have I used the solution?

    I have been using TrendAI Vision One for about a week.

    What do I think about the stability of the solution?

    TrendAI Vision One is stable. I have experienced minimal issues with reliability or downtime.

    What do I think about the scalability of the solution?

    TrendAI Vision One's scalability is excellent. It can handle my organization's growth and changing needs.

    How are customer service and support?

    The customer support is exceptional. Working with their technical resource, Victor, was fantastic, and I am very happy with the customer service that we experienced from both Victor and John.

    I would rate the customer support exceptionally high on a scale of one to ten.

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    I did not previously use a different solution before TrendAI Vision One.

    What was our ROI?

    I have seen a return on investment. I have been a Trend Micro customer for years and I continue to see value in their platform and have used it at several jobs.

    What's my experience with pricing, setup cost, and licensing?

    My experience with pricing, setup cost, and licensing was very easy. Our enterprise account manager, John, made all of that very easy, as he was able to send me the private offer, walk us through accepting it inside of the AWS Marketplace, and helped us cancel our existing subscription.

    Which other solutions did I evaluate?

    Before choosing TrendAI Vision One, I evaluated other options. I considered Microsoft Sentinel and Microsoft Defender.

    What other advice do I have?

    The advice I would give to others looking into using TrendAI Vision One is to try it.

    I rate TrendAI Vision One an 8 out of 10.

    Which deployment model are you using for this solution?

    Public Cloud

    If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

    Amazon Web Services (AWS)
    Disclosure: My company does not have a business relationship with this vendor other than being a customer.
    Last updated: Aug 20, 2025
    Flag as inappropriate
    PeerSpot user
    reviewer2754906 - PeerSpot reviewer
    reviewer2754906
    Manager of Cyber Security at a university with 1,001-5,000 employees
    Real User
    Top 10
    Sep 6, 2025
    Download
    We've ease of configuration and customization and improvement in threat response
    Pros and Cons
    • "The ease of configuration, customization, and organization are what I appreciate the most about TrendAI Vision One."
    • "It is a bit slow to implement kernel support on the Linux side. When doing patching and upgrades on our Linux servers, we often find that the Trend agent doesn't support the kernel version."

    What is our primary use case?

    We use TrendAI Vision One for our endpoint protection in our data center, mostly focused around our server assets, and we do anti-malware, intrusion prevention, as well as firewall, host-based firewall capabilities.

    What is most valuable?

    The ease of configuration, customization, and organization are what I appreciate the most about TrendAI Vision One

    What needs improvement?

    It is a bit slow to implement kernel support on the Linux side. When doing patching and upgrades on our Linux servers, we often find that the Trend agent doesn't support the kernel version. It's usually not far behind, but we often are in a position where we may not be properly protected for a period.

    For how long have I used the solution?

    We started using Trend Deep Security, which was the product prior to TrendAI Vision One, seven or eight years ago, and then we transitioned to TrendAI Vision One two years ago. While we have been using TrendAI Vision One proper for two years, we had essentially the same product in an on-prem version for seven or eight years.

    What do I think about the stability of the solution?

    We've had performance issues with the agents of TrendAI Vision One at odd times, but I wouldn't say it's been a widespread issue or a common issue. Once in a while, there have been things that we've attributed to Trend.

    What do I think about the scalability of the solution?

    The scalability of TrendAI Vision One seems infinite. We're not a huge organization, so we haven't really run into any limitations, but it appears it can scale to accommodate and serve any of our purposes.

    How are customer service and support?

    The quality of support for TrendAI Vision One is generally very good. If we have any issues with support, we can leverage our sales engineer for support or escalation. I really haven't had any concerns. I have contacted the technical support or customer support via phone number or ticket.

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    We have used Microsoft Defender, Sophos, as well as McAfee as alternatives to TrendAI Vision One. I prefer TrendAI Vision One more compared to those alternatives.

    How was the initial setup?

    We transitioned from our on-premises Deep Security deployment to Vision One, and the process was relatively smooth. However, we encountered a few challenges related to legacy configurations and ensuring proper connectivity to our server assets. With an on-premises software application, we didn’t have to worry about internet accessibility for some of our server nodes. Consequently, we faced issues getting non-internet-connected server endpoints to communicate with the cloud. Luckily, there is a solution for that, but it took some time to get everything functioning properly.

    TrendAI Vision One is a large product suite. There are many features that we don't have fully deployed, but the amount of time it took for us to go from on-prem to the cloud for similar services without onboarding anything new that TrendAI Vision One offered was two months for 400 assets, server nodes.

    What was our ROI?

    It has reduced our time to detect and respond to threats, but I don’t have a way to quantify that.

    What's my experience with pricing, setup cost, and licensing?

    I know the pricing for TrendAI Vision One. It's been a while, but it doesn't seem bad. They made some changes to their pricing in the past. It used to be a per-server node pricing structure, but now they do it by credits. I would say it's improved because we can, for the same investment, shift and adjust which capabilities we're leveraging within the platform. It's not super expensive. It's definitely an increased cost over leveraging Microsoft Defender, which we already have the licensing and capability for. We chose to spend money on this as opposed to leveraging a product that we already had, but the cost is fair.

    What other advice do I have?

    The sensors we're using include the anti-malware products, and we have the EDR sensors deployed on our server endpoints. They have network sensors and other features, but we're not leveraging any of those.

    We started onboarding some of our services in the last three or four months to TrendAI Vision One to gain more visibility, so it's early in that adoption. We haven't taken any action based on alerts or notifications from TrendAI Vision One, as we're still in the early stages of getting our third-party services set up and monitored.

    TrendAI Vision One hasn't helped us consolidate use of security vendors. This product is solely used for one purpose. We're not leveraging TrendAI Vision One for other areas within IT or at our company, so we haven't reduced silos. We had an opportunity to go with Defender, which would have reduced the number of products we use, but instead we decided to keep using Trend because we did appreciate it. I'm not sure if TrendAI Vision One has helped me to reduce the noise from false positives.

    I would rate TrendAI Vision One a nine out of ten.

    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    Last updated: Sep 6, 2025
    Flag as inappropriate
    PeerSpot user
    reviewer2735652 - PeerSpot reviewer
    reviewer2735652
    Associate Specialist Infrastructure and Support at a security firm with 501-1,000 employees
    Real User
    Top 20
    Jul 15, 2025
    Download
    Helps secure endpoints and quickly respond to incidents
    Pros and Cons
    • "Trend Vision One has improved the way our organization functions by acting as both a monitoring tool and an antivirus, giving us insight on potential threats and enhancing our response time to security incidents."
    • "Our developers were understandably frustrated that they couldn’t debug code for a month and a half, which impacted our project timelines."

    What is our primary use case?

    Our use cases for Trend Vision One are monitoring and alerts.

    How has it helped my organization?

    The biggest challenges we wanted to address with Trend Vision One were securing endpoints and enabling us to quickly respond to incidents or threats. This is the main goal for using this solution.

    Trend Vision One has improved the way our organization functions by acting as both a monitoring tool and an antivirus, giving us insight on potential threats and enhancing our response time to security incidents. It is hard to measure the time savings but we save a significant amount of time in responding to potential threats. For example, we don't expect employees to respond to emails, chat, or calls outside of working hours. Trend Vision One has a feature where we can block all access to the laptop or endpoints. It allows us to take immediate action without waiting for the user to respond.

    In terms of reducing noise from false positives, unfortunately, some behaviors can be mistaken for bad behaviors, but that isn't the fault of the software itself. It largely depends on how the developers of other applications implement their software and how it is run. We encountered an issue with another software called Rapid7, which periodically runs a command on MacBooks or Apple operating systems. This command, which is quite lengthy, searches for any unsecured credentials or API keys related to GitHub on the laptop. The way the application triggers is significant: it runs under root privileges, executing that command in the terminal for the user. Trend Vision One picks this up as a suspicious command, interpreting it as an attempt to find unsecured credentials. Despite having whitelisted the entire command in Rapid7, Trend Vision One still flagged it. We went back and forth on this issue, but ultimately we decided that it wasn't worth further troubleshooting to silence this alert due to the potential for actual malicious use of such commands. While we could whitelist it, we did not want to risk it being exploited maliciously. In the end, we chose to ignore the alert. They helped us reduce some other noise, but there was some noise that we weren't able to reduce.

    Vision One AI has been very useful. All IT people stay up to date with security risks, exposures, alerts, or attacks. Vision One AI helps us explain or understand the alerts and what actions are recommended.

    What is most valuable?

    The workbench alerts are something we find very useful, as they help us stay informed about various activities. Not all alerts are positive, but they provide valuable insights into the detection methods and help us understand how certain issues arise. For example, if someone attempts to run a piece of software that encrypts a file, one of our tools, which is used for evidence gathering in surveillance systems, may encrypt the file too quickly. As a result, Trend Vision One may trigger an alert. Although this is a false positive, it still gives us insight into the behavior involved. This allows us to investigate the alert further and provide feedback to the user or development team, letting them know that similar triggers are likely to occur with other security systems or software.

    Other useful features include intrusion and mailbox alerts, suspicious unauthorized access, tracing logs, website clicks, and email filtering for bad attachments.

    What needs improvement?

    The improvement I have been asking for is an easier way to create MDR requests. Not all alerts that come through Trend Vision One receive an investigation, and we would like the ability to easily request an investigation on lower-scored alerts without logging into the support portal to create a ticket.

    I would like to see Trend Vision One and OfficeScan consolidated into one platform. Currently, it is the same space but two different layers. It would be nice to have both combined instead of having two clients.

    There is room for improvement when it comes to support.

    For how long have I used the solution?

    I've been working with Trend Vision One for three years.

    What do I think about the stability of the solution?

    Trend Vision One is stable enough. We don't see many performance impacts on our endpoints, except for when our weekly scheduled scans happen. Our developers express that it limits how freely they can develop, but I personally appreciate the insight it gives us and the actions that allow us to take on our devices.

    How are customer service and support?

    I would rate their support a six out of ten. We encountered an issue with one of our tools—specifically, Visual Studio. One of our developers faced difficulties debugging code because Trend Vision One was blocking the debugging application or causing it to crash. This problem stemmed from a Windows update, and it took us a month and a half to identify the root cause. After we opened a ticket either at the end of March or early April, we waited several more weeks for a solution. Although the Windows update occurred back in February, we didn’t receive the fix until the end of May. The interaction between Windows and the application played a significant role in the issue, as the debugging application starts the code and injects itself into the running application, which Trend Micro flagged as problematic after the latest Windows update. Fortunately, this issue has now been resolved, but it was indeed a painful experience. Our developers were understandably frustrated that they couldn’t debug code for a month and a half, which impacted our project timelines.

    How would you rate customer service and support?

    Neutral

    Which solution did I use previously and why did I switch?

    The company previously had SentinelOne before my time, and I can say that SentinelOne was not effective. 

    We currently use Rapid7 as our Managed Detection and Response (MDR) service. In my experience, both Rapid7 and Trend Vision One serve similar purposes, but they have distinct differences. There are times when Rapid7 provides us with more detailed information, while at other times, Trend Vision One offers greater insights. This is partly because Trend Vision One collects more data from the devices, allowing it to better identify the root causes of alerts compared to Rapid7. 

    Additionally, I find that the MDR team at Trend is generally more responsive than that of Rapid7. However, there are some disadvantages as well. For instance, we haven't yet set up cloud monitoring capabilities with Trend Vision One. Rapid7 currently handles our cloud infrastructure monitoring and manages services like Office and Okta. While Rapid7 is equipped to monitor these services, Trend Vision One is not yet at that level. We are exploring ways to enhance its capabilities, and if it can provide the same level of service as Rapid7, we might consider discontinuing our use of Rapid7 altogether.

    How was the initial setup?

    We use the SaaS solution. I was not involved in the initial setup and deployment process, which occurred prior to my time here, but I have readjusted some policies.

    Previously, it was difficult to understand some alerts. However, as time goes by, we differentiate better between them, and the AI feature is an extremely good tool that explains things that are gibberish to the regular user. The learning curve is quite steep.

    What was our ROI?

    It has helped us understand some of the alerts that we did not comprehend.

    What other advice do I have?

    It is an all-around solution that includes various modules for comprehensive security monitoring and alerting. This solution is particularly effective when integrated with other hardware or on-premises solutions, such as Deep Discovery Inspector, which monitors your network.

    The interface is adequate, but it is constantly changing. New features are being added, and items are being rearranged almost daily. We might have missed some announcements regarding these frequent updates. As it is an evolving solution, such changes are to be expected. However, there are still features that are buried within menus, which previously required extensive searching to locate. For instance, until last year, isolating endpoints was only possible through the search function. Now, they have added a feature within the endpoint inventory that allows you to select devices and isolate them immediately, rather than having to jump through multiple hoops to access that option.

    The application has also become slightly more responsive. Regarding its functionality, the insights it provides are quite useful. The application displays various actions, and you can drill down into alerts to view the execution path associated with them. For example, if an application triggers an alert, you can right-click on that alert and select "Check Execution Profile." This feature shows you where the process started, what actions it took, and where it ended. This improvement is beneficial for understanding how tasks are executed.

    I would rate Trend Vision One an eight out of ten.

    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    Flag as inappropriate
    PeerSpot user
    PankajKumar24 - PeerSpot reviewer
    PankajKumar24
    IT Manager at Gigabit Technologies Pvt Ltd
    Reseller
    Top 5Leaderboard
    Apr 28, 2026
    Download
    Centralized security management has unified risk visibility and simplifies attack response
    Pros and Cons
    • "In terms of price and technical solution, the security solutions provided by TrendAI Vision One stand out as the best offering."
    • "Support is low. When we raise a ticket for P0 or P1, the response tends to be quite late."

    What is our primary use case?

    We are currently working with Trend Micro as a partner, managing multiple OEMs like Trend Micro and Trellix. TrendAI Vision One is a managed single centralized management console. We are using multiple Trend Micro products and managing them through TrendAI Vision One.

    When customers use multiple security solutions in their environment such as email security, EPP, endpoint security, NDR, and data security posture management (DSPM), we manage everything through TrendAI Vision One console for Trend Micro products, while integrating with third-party security tools such as firewalls and Microsoft to capture telemetry and metadata from both sides. TrendAI Vision One then correlates this data and shows us the observed attack techniques, along with options for sandboxing ransomware file samples through TrendAI Vision One.

    What is most valuable?

    TrendAI Vision One gathers risk management information such as risk scores at the OS level, account level, and domain level through the endpoint agent that monitors all machines for vulnerabilities. The CREM shows us vulnerabilities at the OS level, application level, and cloud application level while highlighting how we will remediate and mitigate loopholes in our environment or customer environment.

    TrendAI Vision One also helps us with consolidated management, but there is a need for improvement if the customer has multiple branches and their IT admin is location-wise. We require location-wise console segregation in TrendAI Vision One, but there are gaps in policy management that hinder that, as all branch IT admins see all policies in the console despite needing to segregate them by location.

    What needs improvement?

    There are support challenges when we are using TrendAI Vision One console. If a customer needs a remote session with support, they generate multiple queries and logs, which we escalate to Trend Micro management for remote support, and aligning with remote support becomes a significant challenge.

    When dealing with 10,000 users of EPP with the XDR solution, there are complication issues due to the agent size being between 500 and 700 MB, which hampers our ability for mass deployment through Active Directory. We do use hybrid solutions and cloud solutions in TrendAI Vision One, and face challenges only with mass deployment regarding sizing.

    For how long have I used the solution?

    We have been using TrendAI Vision One for over four years.

    What do I think about the stability of the solution?

    There are no glitches, and TrendAI Vision One is scalable and stable.

    What do I think about the scalability of the solution?

    We are not currently facing any risks as TrendAI Vision One platform manages multiple Trend Micro products within a single management console.

    How are customer service and support?

    Support is low. When we raise a ticket for P0 or P1, the response tends to be quite late.

    Which other solutions did I evaluate?

    We are working with Trend Micro, CrowdStrike, and Trellix.

    What other advice do I have?

    After sharing Trend Micro pricing with the customer and understanding their budget, we chase the Trend Micro OEM sales person to reduce the price given the budget that the customer has, and hopefully Trend Micro sales representatives manage and close these deals.

    In terms of price and technical solution, the security solutions provided by TrendAI Vision One stand out as the best offering. Time to action for delete and quarantine is crucial, and it is approximately ten percent.

    We are not experiencing any noise on their side, and thus TrendAI Vision One solution is working smoothly in multiple organizations, which helps us reduce attack risks. The overall review rating for this solution is eight out of ten.

    Disclosure: My company has a business relationship with this vendor other than being a customer. Reseller
    Last updated: Apr 28, 2026
    Flag as inappropriate
    PeerSpot user
    SH
    Silvia Harder
    Works at Optigrün international AG
    User
    Top 10
    Mar 3, 2025
    Download
    Provides solid security, centralized visibility, and flexible licensing
    Pros and Cons
    • "The dashboard is valuable. It provides a comprehensive view of our security status and allows us to compare ourselves with other companies using Trend Vision."
    • "Our speed has increased significantly."
    • "Improving the user interface would be helpful—it can be confusing, especially if you do not use it daily."
    • "Improving the user interface would be helpful—it can be confusing, especially if you do not use it daily."

    What is our primary use case?

    We have been in contact with Trend Micro for a very long time. We have a Domino server, which is the alternative to an Exchange server, and we have implemented their virus scanner there. Because of that, we decided to stick with the company and integrate Email Gateway Protection as well. It is important for us because we host our own mail server, and we receive a huge amount of spam. The goal was to reduce that. So far, we have reduced our email traffic by almost 50%—thanks to email filtering. This means our employees do not have to handle those emails anymore.

    We receive around 1,000,000 emails per year and 500,000 of those are junk. That was a key factor in saving work time. Every email that lands in an inbox has to be handled—either deleted or responded to. We tested this with different employees and found that deciding whether an email is relevant or junk takes about 10 to 15 seconds per email. With 500,000 unnecessary emails, you can imagine how much time we are saving company-wide.

    Another major reason we implemented this solution is phishing emails. This is a huge issue. Trend Micro offers phishing awareness training, but ideally, these phishing emails should not even reach our company, as they are highly dangerous. So far, Trend Micro has filtered out around 3,700 phishing emails for us.

    There is another extremely dangerous issue—malicious software hidden in attachments. If an employee clicks on such an attachment, files could get encrypted. In the past year, Trend Micro has intercepted 60 such cases, meaning 60 incidents where our files did not get encrypted.

    This is why we use this solution. Of course, there are other providers, but we find Trend Vision One's interface very user-friendly. We also have a dashboard where we can track everything and pull these statistics.

    How has it helped my organization?

    In Germany, such a security solution is very important. Due to a change in the law, company management is now obligated to ensure that IT security is based on best practices. If they fail to do so or are unaware of their security status and neglect it, they are now personally liable with their private assets. I also need a tool that allows my management and board to monitor our security status. One of the reasons why we chose Trend Vision One was that it provides the option for the board to check the dashboards. This means that every morning while having coffee, they can see the security status of the company on their phones. They can also ask, "Hey, why is our security score high? Is our IT department not working properly? Or do we have a real problem that requires additional software or other measures?" Additionally, negotiations become easier for the IT department, for management, and for us. If security gaps arise, we can say, "Hey, we need software or an investment of a certain amount." We now have a solid foundation for our case.

    We use email security and endpoint protection. Endpoint protection is installed on every computer and server, with enhanced sensors on the servers. These security tools are crucial for us—without them, we would be blind in IT. They allow us to monitor the health of each system and user activity, including preventing access to inappropriate websites.

    We have a lot of remote work, and we used to struggle because we could not properly monitor devices outside our network or firewall. Now, we can control things like applications, websites, USB sticks, and external hard drives, which was previously impossible. A key feature of our endpoint protection is that if a computer reaches a certain security risk score, it is automatically blocked by the software. This means that if an attack occurs, the affected computer is isolated from the network, preventing further spread.

    Our biggest challenge is not direct hacking attacks—our company is not a high-priority target. Instead, phishing emails are the main issue. These emails attempt to trick employees into making fraudulent payments or providing access to our systems, allowing ransomware installation. Email security is our biggest focus area.

    It has significantly reduced email volume, which is crucial, especially for our security team, as they do not have time to review every message. IT also receives fewer inquiries about whether emails are legitimate. Additionally, phishing training has helped—our employees recognize phishing attempts better, and our click rate on phishing simulations has dropped to zero. Previously, conducting a phishing simulation would have cost €2,500 per test, but now, we can run one or two tests per month at no additional cost. This provides great value.

    It is important for us that Trend Vision One has AI built into its platform. It is essential for detecting abnormalities quickly. Humans may not notice certain threats, but AI can. However, AI is not perfect and sometimes lets suspicious emails through, which we then manually review in quarantine. AI is constantly learning, and the more it improves, the less manual intervention is needed, which is beneficial for us.

    We now have visibility. Previously, we were blind and could not assess our security status.

    Trend Vision One helped reduce our time to detect and respond to threats. Previously, we relied on reading security forums and websites to identify vulnerabilities. Now, we get real-time alerts and can take immediate action.

    Our speed has increased significantly. We can update and patch security threats daily, whereas before, it took weeks or even months.

    Trend Vision One has helped our organization reduce its cyber risk, especially through endpoint protection. For example, our field employees used to connect unknown external hard drives, which posed a risk. That is no longer possible, eliminating a major threat vector.

    Trend Vision One has helped consolidate our use of security vendors. Previously, we only had basic endpoint protection from another provider, which we replaced with Trend Vision. We now have more security software, not less, because our company has grown significantly—from a small business to a mid-sized enterprise. The IT department was lagging behind, and security was not a priority. Now, we manage everything with one provider, rather than multiple vendors.

    What is most valuable?

    The dashboard is valuable. It provides a comprehensive view of our security status and allows us to compare ourselves with other companies using Trend Vision. We can immediately see if we need to take action when updates are released with high CVE scores, without having to check multiple websites. This saves time and enables faster decision-making.

    The platform provides not only visibility but also intervention capabilities, such as blocking threats. We are operating at a high level in this regard. I would rate Trend’s Vision One platform very high in providing centralized visibility and management across protection layers.

    What needs improvement?

    Improving the user interface would be helpful—it can be confusing, especially if you do not use it daily.

    We do not see a need for additional features. The tool has so many capabilities that it can be overwhelming at first, which is why we implemented it step by step to avoid overwhelming our administrators.

    For how long have I used the solution?

    We started with the Email Gateway Protection solution in December.

    What do I think about the stability of the solution?

    Its stability is very good. We have not had any failures so far.

    What do I think about the scalability of the solution?

    Its scalability is very good as we can work with it flexibly.

    We have an environment with 160 users and about 15 servers, all virtualized and running entirely on-premise.

    How are customer service and support?

    It is very good. If we have a problem, we call Mr. Weckwert or send him an email and receive a response.

    Which solution did I use previously and why did I switch?

    We used SonicWall’s endpoint protection before, but it had issues. For example, the endpoint protection conflicted with VPN installations, requiring us to uninstall security features before updating VPN settings—an unacceptable security risk. With Trend Vision, we feel much better protected.

    SonicWall is just a basic antivirus tool, whereas Trend Vision One provides more advanced features like software firewalls and the ability to block specific applications and websites, such as preventing employees from using Telegram or WhatsApp on work computers.

    A downside is that Trend Vision One requires more system resources, so we had to upgrade some computers with additional RAM. However, that is not just due to Trend Vision One but also Windows 11’s increased demands.

    How was the initial setup?

    We use a hybrid model—Trend Vision’s cloud solution with local installations on our devices. We operate entirely on-premise.

    We worked with a partner and now manage everything internally.

    What about the implementation team?

    For the implementation, all admins were present to understand how it works. It was like a training session for us.

    Fundamentally, there is one colleague responsible for it, and they spend about an hour to an hour and a half on it daily.

    In terms of maintenance, it only requires updates.

    What was our ROI?

    We have seen an ROI through time savings. The email filtering system paid for itself within a year.

    What's my experience with pricing, setup cost, and licensing?

    It is very good. The flexibility to temporarily exceed license limits when setting up new devices is helpful, as it allows us to ensure security before purchasing additional licenses.

    What other advice do I have?

    Try it out. Ultimately, everyone has to decide for themselves if it fits their admin team. What I always say is that this tool monitors you and provides insights—it exposes weaknesses in an IT department. If IT management cannot handle that level of transparency, they should avoid it. If they see value in having more insights, it is a very valuable tool.

    I would rate Trend Vision One an eight out of ten.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: My company does not have a business relationship with this vendor other than being a customer.
    Flag as inappropriate
    PeerSpot user
    FT
    Frank Titze
    Works at Kreiskrankenhaus Grünstadt
    User
    Top 10
    Feb 6, 2025
    Download
    If a user mistakenly clicks on something they shouldn’t, the system can respond immediately and prevent damage before it occurs
    Pros and Cons
    • "The SOC team is the most valuable feature for us because having experts who monitor global threat landscapes and can respond accordingly is incredibly helpful."
    • "Sometimes it’s difficult to find your way around."

    What is our primary use case?

    Our primary use case is to secure our endpoints and servers via Managed Detection. We secure them using XDA and Trend Micro’s SOC. We secure it based on behavior so that we have someone to respond if there are unusual issues with PCs, even on weekends and holidays when we’re not onsite, and then they inform us. That’s why we chose Trend Vision One.

    We have it deployed on all of our PCs, both Windows and Linux laptops.

    The security coverage is very important for my company's network. It is a requirement under the NIS2 directive, which is now coming into effect in the EU. The coverage is also important for us because we operate 24/7, but our IT staff is not available around the clock. To fill this gap, we opted for Trend Micro’s XDR solution. Trend Micro’s SOC team can respond even when no one from our team is available.

    They also make sure we are properly notified because if an email comes in at 3 AM on a Sunday, no one will read it but if Trend Micro's SOC team calls, someone will check immediately. That’s why we chose this solution.

    The security coverage is also particularly important for us because, as a hospital running 24/7, we must ensure the security of patient data and maintain the IT infrastructure's operational capability. If our systems go down, it could directly impact patient treatment. Around 10 years ago, before we had Trend Micro, we experienced an attack and our IT systems were down for an entire week. That was incredibly difficult.

    With increasing digitalization and more medical processes relying on computers, doctors need easy access to X-rays, prior medical examinations, and other records. Since all of this data is stored digitally, solutions like Trend Vision One become even more essential. Availability must be guaranteed, and we cannot afford a situation where a system gets attacked and taken down. That’s why it is crucial for us to have this protection in place.

    The biggest security challenges in my organization are:

    1. Preventing unauthorized external access.

    2. Reducing the risk of employees unknowingly giving attackers access to the network due to inexperience.

    That’s why we use these solutions, in combination with Apex One and Deep Security, to prevent such incidents. If a user mistakenly clicks on something they shouldn’t, the system can respond immediately and prevent damage before it occurs.

    How has it helped my organization?

    With Trend Micro Vision One we now have a comprehensive overview of our entire network of all of our endpoints and Active Directory. We also have an industry comparison feature that allows us to gauge our security status.

    For example, our advisor recently reviewed our security score and confirmed that we are in a good position. That gives us peace of mind.

    What is most valuable?

    The SOC team is the most valuable feature for us. Having experts who monitor global threat landscapes and can respond accordingly is incredibly helpful. They keep an eye on our system and can intervene if necessary to prevent significant damage. That is the most important aspect for us.

    That’s a bit tricky to answer. Trend Vision One is a powerful tool that provides a vast amount of information. It requires some practice to filter out the most relevant insights and respond accordingly like investigating specific endpoints when necessary.

    Since we are still relatively new to the platform and have a small IT team, we haven’t been able to fully explore all of Vision One’s capabilities. However, the data we do utilize helps us react appropriately and address potential threats before they escalate.

    A major advantage is that we can integrate Active Directory into Vision One. This means we get alerts if something unusual happens in AD, and these notifications appear directly in Vision One. I believe firewalls can also be integrated, though we haven’t done that yet as we are currently upgrading our firewall infrastructure.

    Having a centralized platform where logs and security alerts from multiple systems converge is a huge benefit, as it allows us to react efficiently from a single interface.

    AI is beneficial because it can operate independently of predefined patterns, reacting based on behavior rather than fixed rules. It continuously learns and can detect threats that might not yet be covered by existing security protocols. This is a major step forward in cybersecurity.

    We realized Trend Vision One's benefits quite quickly. Within one to two weeks, we already saw improvements. We really noticed the full impact after receiving our first report. That allowed us to analyze incidents, track past threats, and understand what was happening within our network. After about four weeks, we fully realized the platform's value.

    It does save time when searching for an incident because you can simply display the incidents in the Vision One console. You can drill down to the task level and see which file was affected on which endpoint.

    That makes things much easier when tracking a specific incident. It saves more than fifty percent of the time because, as mentioned, you can drill down directly from the endpoint in the console, down to the task, down to the file, the DLL, or whatever it is. And you also get a display of what it is without having to access the computer and search on Google. As mentioned, everything is displayed clearly and neatly in the Vision One console, sometimes even with suggestions on what to do.

    My organization has reduced its cybersecurity risk. We have a centralized view of where the risks are, you can specifically access individual endpoints, and as mentioned, the SOC in the background immediately reports unusual behavior even when you’re not around. If it’s high-risk, we get a call.

    In this regard, cybersecurity has improved significantly because a lot of things that previously went unnoticed are now detected.

    What needs improvement?

    Trend Vision One is already very powerful. The clarity and usability could be improved a bit. Sometimes it’s difficult to find your way around.

    It’s such an important tool, and you can do a lot with it. With some practice and proper training, you can manage quite well.

    We are currently implementing, as a pilot hospital, an ICAP virus scanner through the Service Gateway via Vision One, which scans our KIM emails. This was an important feature and Trend Micro has now implemented it.

    For how long have I used the solution?

    I have been using Trend Vision One for about six months.

    What do I think about the stability of the solution?

    I would rate the stability a nine out of ten.

    What do I think about the scalability of the solution?

    We are currently working on scaling. We are integrating with ICAP functionality.

    The scalability is very good. You can integrate almost everything you need, including mail security, etc. I’d give scalability a 10 because nearly everything is integrated.

    How are customer service and support?

    The staff we have dealt with were always very competent. What I find a bit difficult is that there is no German support. Since my English isn’t the best, we usually go through our consultant, as he knows the Trend Micro support team well and handles these things daily. So, we rely on our partner for that.

    In terms of knowledge, the support is competent. The language barrier is just a bit challenging because when they speak fast in English and I don’t understand much.

    What about the implementation team?

    The initial setup was done by a consultant from SoftwareOne. He did a really good job, and everything went smoothly except for the hybrid installation with Deep Security.

    That went quite smoothly. Apex One had some issues, and we had to keep a support case open for a long time before it worked properly. But now, everything works fine.

    We are only four people in IT here, and everyone does a bit of everything for the setup.

    We install the agents ourselves, meaning we have to manually set them up on each computer or server.

    The clients are already rolled out, and everyone contributes when needed like whenever we work on something, another sensor gets installed, etc.

    We have around 400 endpoints and approximately 600 users with a Windows environment and a virtualized setup using VMware.

    Our server environment also includes VMware View in some areas.

    In terms of maintenance, I have to regularly check reports and see what needs to be done. Otherwise, everything updates itself in Vision One.

    Since Vision One is cloud-based, the console updates itself, as do the agents. Once everything is installed, there’s little to do.

    What's my experience with pricing, setup cost, and licensing?

    There are additional costs.

    Overall, the price-performance ratio is okay.

    Which other solutions did I evaluate?

    We looked at Sophos beforehand because we use it as a firewall. Since Vision One integrates well with existing solutions like Deep Security and Apex One, we chose an integrated solution and decided to go with Trend Vision One.

    We also deliberately opted against a purely web-based solution. We run a hybrid installation, meaning that Apex One and Deep Security are still managed locally and connected to Vision One.

    This is because we have been hacked before, and if I cut off internet access to our firewall, I wouldn’t be able to administer my security suite. With this setup, I can still manage and configure it before reconnecting to the internet.

    What other advice do I have?

    I would rate Trend Vision One a nine out of ten.

    My advice to anybody considering Trend Vision One is that the most important aspect is the integration with existing solutions like Apex One and Deep Security.

    It’s stable and provides a lot of information. The only downside is that it can be a bit complex to navigate.

    Which deployment model are you using for this solution?

    Public Cloud
    Disclosure: My company does not have a business relationship with this vendor other than being a customer.
    Flag as inappropriate
    PeerSpot user
    Buyer's Guide
    Download our free TrendAI Vision One Report and get advice and tips from experienced pros sharing their opinions.
    Updated: April 2026
    DOWNLOAD NOW
    Buyer's Guide
    Download our free TrendAI Vision One Report and get advice and tips from experienced pros sharing their opinions.
    Buyer's Guide
    TrendAI Vision One
    April 2026
    DOWNLOAD NOW
    Quick Links
    Learn More: Questions: