My primary use case for Trend Vision One is for application device control, web reputation services, and malware scanning, as well as providing a remote malware scan option. I also use it for log inspection and endpoint identification.
Trend Vision One
Trend MicroExternal reviews
265 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Effectively identifies threats by regularly inspecting logs to establish a baseline of normal operations and reports any detected anomalies
What is our primary use case?
How has it helped my organization?
Trend Vision One helps save us time.
I am satisfied with the security Trend Vision One provides for our cloud environment. It effectively identifies threats by regularly inspecting logs to establish a baseline of normal operations and reports any detected anomalies on the console.
Trend Vision One offers good visibility and control over our environment, providing valuable telemetry into network traffic.
Trend Vision One offers comprehensive insights into our infrastructure, allowing me to identify unmonitored endpoints, such as those without the software installed, which I can then verify through the console.
Trend Vision One allowed us to consolidate the Apex One and Deep Security consoles, which were previously used separately in our on-premises environment.
What is most valuable?
Trend Vision One offers superior integrations, enhanced tool capabilities, and expanded solutions for network security, firewalls, and remote malware scanning. Its ability to identify unmonitored endpoints and perform log inspection, which establishes operational baselines and detects anomalies, proves invaluable for threat identification. The platform's comprehensive reporting capabilities further enhance its value in maintaining a secure environment.
What needs improvement?
Trend Micro could improve its support for non-third-party products and product integrations. Technical support in our region needs improvement.
For how long have I used the solution?
I have been using Trend Vision One for approximately one year.
What do I think about the scalability of the solution?
Trend Vision One effectively scales to accommodate our workloads.
How are customer service and support?
Trend Micro's support is suboptimal in my region, likely due to proximity to their resources, favouring areas closer to the company. Consequently, we utilize local support providers who offer better service.
How would you rate customer service and support?
Neutral
How was the initial setup?
The deployment usually takes an hour, more or less. Trend Vision One was easier to deploy than other tools when integrating with the cloud environment.
What about the implementation team?
We have a local vendor that provides support.
What's my experience with pricing, setup cost, and licensing?
Trend Vision One is cost-effective because it offers detailed reporting and environment control features.
What other advice do I have?
I would rate Trend Vision One eight out of ten because every tool needs improvement. Trend Micro has some low-cost services and minor areas for improvement.
Trend Vision One provides regular updates according to customer needs.
I would recommend Trend Vision One. There is flexibility, and their credit system is quite effective.
Has significantly improved our company because we can now track and see how many attacks we have
What is our primary use case?
Our use cases are essentially all the classic defense mechanisms that are used to protect devices, secure emails, and ensure that we don’t pull in anything harmful. We also monitor Internet and Intranet traffic to detect abnormal behavior and address it. This has helped us in many situations where we’ve faced external attacks, which then usually try to go back out. I always say that they try to drill through the wall and get back out, and in that way, we’ve been able to recognize when someone has gained access to our devices.
We operate in 60 countries with 4,000 to 4,500 employees, of which nearly 2,000 are based in Frankfurt. All of the end devices of our colleagues are under IT security monitoring. The Deep Discovery Inspector is implemented at three global locations: one in Europe, one in Asia, and one in the USA. This allows us to detect any issues early on, and with network segmentation, we can minimize potential damage in case of an incident.
The biggest security concerns in our industry are not really industry-specific but are intrusions. Identity theft is a challenge and then there are issues where people are manipulated into making money transfers to what seem like customer accounts that don’t actually exist.
Another is the classic attack, where ransomware is used to infiltrate systems and gain access through encryption and similar methods.
Additionally, we also have the issue of IP protection.
How has it helped my organization?
Trend Vision One has significantly improved our company because we can now track and see how many attacks we have. Since we’ve implemented it, we haven’t had any major attacks that have successfully entered the company. So, we know the defense mechanism is working.
In terms of our ability to manage risks, we already had the stances for risk management in place, from our side, from a purely conceptual standpoint. Through a solution like this, we always want to get a more concrete approach for the operational side. We aim to identify and assess risks and then determine the measures we can take to mitigate those risks. That’s where Trend Micro is very helpful.
Trend Vision One has significantly helped reduce our time to detect and respond to threats.
In terms of whether or not Trend Vision One has helped my organization reduce noise from false positives, it’s always a matter of perspective in terms of whether or not the number of alarms has truly been reduced or if they were false alarms. We rolled out the solution across the company, and as a result, we now monitor more devices and have a more comprehensive view of security. Therefore, the number of alarms and false alarms has certainly increased, because we are now looking at all devices. Previously, we didn’t monitor them, so we didn’t notice them.
We have always seen alarms and false alarms. However, we have incorporated mechanisms to identify where the false alarms are coming from, and we continuously refine the system. Sometimes, activities in the internal IT administrative area trigger alarms that are not actual threats, and we continuously adjust and refine those rules to reduce false alarms. We didn’t have a solution in place before to compare whether or not it has reduced false positives. The mechanisms we have now allow us to assess both alarms and false alarms in detail and, in the case of false alarms, to trace where they come from and implement rules to prevent them from happening again.
Trend Vision One has definitely reduced my organization's cyber risk. We took a holistic view of all devices, became more aware of IT security risks from the outset, and then integrated all devices into that view. In the incidents we encountered at the beginning, as we increasingly implemented and observed this solution, a clear path was outlined on how to address and resolve these issues.
What is most valuable?
We implement the sensors globally from the angle that we are, in fact, global and operate worldwide. The importance lies in the fact that we know attacks can happen from anywhere, and therefore we decided to implement this as a standard solution within our company, The Samson Group. The Samson Group itself has 60 legal entities worldwide, and from our side, this is more of a governance requirement, meaning it must be used to protect the entire organization.
We have found the Deep Discovery Inspector that is in place exceptionally valuable. It has consistently helped us identify areas where issues are happening and where there have been small vulnerabilities in the network that could lead to issues. This happens when, at some point, an unauthorized device—one that shouldn’t be in the network—somehow gains access. This is certainly one of Trend Micro's standout features, as it has provided us with insight into what is happening in our network, which has prevented us from facing significant damage.
We have a positive impression of Trend Vision One's ability to provide us with centralized visibility and management across protection layers. The impression is definitely positive for us. That’s also why we decided to extend the contracts. It’s a very mature solution that is well-understood and user-friendly for people working in this field.
Trend Micro helps us consolidate security vendors because we are now establishing this as standard software for the company. We only work with one solution provider, which is part of the consolidation. When selecting the solutions, we carefully considered what was important to us and where issues occurred. For example, we were particularly pleased that the base and system come from a Japanese company, meaning we don’t have to put ourselves in the hands of Russian or American companies to make this happen.
We use the CREM features and from our perspective, it is very helpful because it provides a supportive function. In situations where we notice something, we also have a very direct line to the team.
When it comes to having AI, from a high-level perspective, I don’t really care how it’s done in terms of the solution. It's great if AI is used because we measure based on the results we achieve. It must meet the requirements for performance and speed. Today, AI is the tool of choice to achieve the necessary speed and performance. But it’s not about the fact that AI is involved; it’s about the fact that, at the end of the day, a fast and reliable solution has been created.
What needs improvement?
We still have devices that are not traditional IT equipment but rather fall under the category of Operational Technology (OT) devices. There is increasingly a blending of the traditional OT world, which requires a specific focus, as OT devices often don't use standard Ethernet protocols and similar technologies. These are areas where I believe more can be done by Trend Vision One.
Taking it a step further, we also produce items that include IT elements, which are then used by customers. It would be great if there were Trend Micro products that could enhance the security of these devices, either as part of our product or in some other way integrated into our offering. But that's a different approach. At the moment, we use Trend Micro to protect our own company and our internal networks, but expanding this to our customer-facing products is an idea for the future.
For how long have I used the solution?
We have been using Trend Micro for a long time, since 2020. We started in 2019 and signed our first Trend Vision One contract in 2020.
What do I think about the stability of the solution?
The stability is very high. We rarely encounter stability issues. When we do have issues, we typically find that they originate from our side, usually because certain information couldn't be provided by the server.
What do I think about the scalability of the solution?
Compared to other companies, we're not huge, but during the rollout and expansion, we found that it scales easily. We haven't encountered any issues with scaling effects or anything like that.
How are customer service and support?
Their technical support is excellent because we continuously see that when an issue arises, direct communication is sought. The ability to act quickly and be in direct communication is very important to us. It's not just about high-level support with the chatbot; rather, when an issue occurs, we have the experts on-site and ready to respond swiftly, which is crucial. In such situations, you need to act quickly without wasting time on what should happen next.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We have used a lot of products. Over the past few years, we have been consolidating into a single corporation and replacing other solutions with the corporate mandate of Trend Micro. The reason is for efficiency reasons, among others. By using the same solution across the entire company, we can manage and maintain it centrally, ensuring uniform behavior without having to deal with individual solutions for each part of the organization.
How was the initial setup?
I was involved in the setup in terms of managing the role and function, but not from a technical standpoint.
My colleagues reported that it is a very well-designed software. We’ve experienced other solutions where we’ve worked on software for a long time, and it didn’t go as smoothly. I haven’t heard any complaints, so the setup must have been good.
We took a risk-based approach to implement this. We started rolling it out in some large manufacturing companies, where the potential damage in case of an incident would be the greatest. From there, we moved to the smaller legal entities, such as just sales offices or similar, so from large to small.
We have a relatively small team in the global function with three people who worked on it. We also have a packaging team and similar resources when it comes to creating installation scripts for end devices.
In terms of maintenance, we have purchased Trend Vision One as part of a SaaS solution. This includes updates and ongoing support, such as the provision of virus signatures, so we don't have dedicated staff specifically for maintenance. We do have designated contacts around the world dedicated to handling alarms and events. This is an additional responsibility for the IT team members after their training, so I can't give you a precise number of people involved. These activities are integrated into the existing IT staff who manage them alongside their regular tasks.
What was our ROI?
We have seen a return on investment fundamentally more qualitatively, proportionally, and quantitatively. We haven't done a strict ROI calculation. We know it's in place to counter potential damage, but it's hard to quantify potential damage in an ROI calculation. On the other hand, we had two incidents during the rollout for the global company. Thankfully, we also had cyber security insurance, and the insurance covered the incidents because, through Trend Micro and the implementation of the solution, along with the data it provided, we were able to demonstrate what had happened. Without this, we certainly wouldn’t have received the insurance payout.
What's my experience with pricing, setup cost, and licensing?
Of course, we'd prefer for it to be free. Security has its price. Regarding the prices we've experienced, we consider Trend Micro to be competitive. However, we sometimes wish for a higher discount based on more usage as the company grows.
Which other solutions did I evaluate?
We looked around at other solutions. When we started evaluating options in 2019, we explored the typical solution portfolios available at the time. We considered several options, and then, based on different factors, we decided on a company operating out of Japan, rather than an extension of an American company. I don't quite remember all the details, but at the time, there was also a Russian solution that was quite popular in the European market, which we decided not to pursue further.
The main differences between these products and Trend Vision One were the functionality and the overall environment. We wanted a truly independent solution. From the perspective of German and European data protection laws, it was a matter of weighing where we could place the most trust and where we would see those principles reflected in the implementation.
What other advice do I have?
My advice would be that one should really take the time to think carefully about what they want and need, and particularly engage in conversations with colleagues to find the right solution. One could say that to perform Deep Discovery Inspector on network traffic, more nodes could be added but at some point, the cost-benefit effect becomes minimal.
We always felt that Trend Micro provided us with very good advice, suggesting that more than three nodes in a global context weren't necessary. Any additional nodes would only slightly improve performance, making it not worthwhile. It's important to listen to the Trend Micro team and communicate openly. What's key is that you have to think about your scenarios and risks in advance—this is something they can't take off your hands. For example, network segmentation, which isn't part of Trend Micro's offering, is a mechanism we also bring in. It's important to work hand in hand, and there needs to be a lot of dialogue at this stage.
Foreign Language: (German)
Hat die Unternehmenssicherheit signifikant verbessert, da wir nun Angriffe sehr genau nachverfolgen und erkennen können
Was ist unser primärer Anwendungsfall?
Im Wesentlichen alle klassischen Abwehrmechanismen, die zum Schutz von Geräten, zur Sicherung von E-Mails und zur Vermeidung von Schadsoftware verwendet werden. Darüber hinaus überwachen wir Internet- und Intranetverkehr, um abnormales Verhalten zu erkennen und entsprechend zu handeln. Dies hat uns in vielen Situationen geholfen, in denen wir mit externen Angriffen konfrontiert waren, die normalerweise versuchen, erneut auszubrechen. Ich sage immer, dass diese Angriffe versuchen, sich durch die Wand zu bohren und dann wieder auszubrechen. Auf diese Weise konnten wir erkennen, wann jemand Zugang zu unseren Geräten erlangt hat.
Wir sind in 60 Ländern mit 4.000 bis 4.500 Mitarbeitern tätig, von denen fast 2.000 in Frankfurt ansässig sind. Alle Endgeräte unserer Kolleginnen und Kollegen stehen unter IT-Sicherheitsüberwachung. Die Deep Discovery Inspection wird an drei globalen Standorten implementiert: einem in Europa, einem in Asien und einem in den USA. Dies ermöglicht es uns, Probleme frühzeitig zu erkennen und mit Netzwerksegmentierung potenziellen Schaden im Falle eines Vorfalls zu minimieren.
Die größten Sicherheitsbedenken in unserer Branche sind nicht unbedingt branchenspezifisch, sondern beinhalten Angriffe. Identitätsdiebstahl ist eine Herausforderung, ebenso wie Situationen, in denen Personen dazu manipuliert werden, Geldüberweisungen an scheinbare Kundenkonten zu tätigen, die tatsächlich nicht existieren.
Ein weiteres Beispiel ist der klassische Angriff, bei dem Ransomware genutzt wird, um Systeme zu infiltrieren und durch Verschlüsselung und ähnliche Methoden Zugang zu erlangen.
Zudem haben wir auch mit dem Thema IP-Schutz zu kämpfen.
Wie hat es meinem Unternehmen geholfen? Trend Vision One hat die Sicherheit unseres Unternehmens signifikant verbessert, da wir jetzt Angriffe sehr genau nachverfolgen und erkennen können. Seit der Implementierung hatten wir keine größeren erfolgreichen Angriffe mehr. Das zeigt: Die Verteidigungsmechanismen funktionieren.
Hinsichtlich unseres Risikomanagements hatten wir bereits Strategien zur Risikobewältigung aus konzeptioneller Sicht implementiert. Eine Lösung wie diese ermöglicht uns jedoch, einen konkreteren operativen Ansatz zu verfolgen. Ziel ist es, Risiken zu identifizieren, zu bewerten und dann Maßnahmen zu ergreifen, um diese zu mindern. Trend Micro ist dabei äußerst hilfreich.
Trend Vision One hat uns geholfen, die Zeit zur Erkennung und Reaktion auf Bedrohungen erheblich zu reduzieren.
Ob Trend Vision One meinem Unternehmen geholfen hat, den Lärm durch Fehlalarme zu reduzieren, ist eine Frage der Perspektive. Wir haben die Lösung unternehmensweit ausgerollt, wodurch wir jetzt mehr Geräte überwachen und eine umfassendere Sicherheitsübersicht haben. Die Anzahl der Alarme und Fehlalarme ist dadurch gestiegen, da wir nun mehr Geräte einbeziehen, die zuvor nicht überwacht wurden.
Wir haben Mechanismen implementiert, um Fehlalarme zu identifizieren und kontinuierlich das System zu verbessern. Manchmal lösen interne IT Administrationsaktivitäten Alarme aus, die keine Bedrohungen darstellen. Hier passen wir die Regeln kontinuierlich an, um Fehlalarme zu reduzieren.
Trend Vision One hat definitiv das Cyberrisiko in unserem Unternehmen reduziert. Wir haben einen ganzheitlichen Blick auf alle Geräte geworfen, sind uns der IT Sicherheitsrisiken von Anfang an bewusster geworden und haben alle Geräte in diese Übersicht integriert.
Was ist besonders wertvoll?
Die globale Implementierung der Sensoren ist für uns von zentraler Bedeutung, da Angriffe von überall erfolgen können. Daher haben wir entschieden, dies als Standardlösung innerhalb unseres Unternehmens, der Samson Group, zu etablieren.
Die Deep Discovery Inspection ist ein besonders wertvolles Feature, da sie uns regelmäßig dabei hilft, Schwachstellen im Netzwerk zu identifizieren. Insbesondere wenn ein unbefugtes Gerät Zugang zum Netzwerk erlangt, bietet uns Trend Micro Einblicke, die uns vor größeren Schäden bewahren.
Trend Vision One bietet uns eine zentrale Übersicht und Management-Funktion über alle Schutzebenen hinweg. Diese Funktionalität ist reif und benutzerfreundlich, weshalb wir die Verträge verlängert haben. Trend Micro unterstützt uns bei der Konsolidierung von Sicherheitsanbietern, indem wir jetzt nur mit einem Lösungsanbieter arbeiten, der als Standardsoftware im gesamten Unternehmen eingesetzt wird.
Was könnte verbessert werden?
Es gibt weiterhin Geräte, die nicht in die klassische IT-Ausstattung fallen, sondern in den Bereich der Operational Technology (OT). OT-Geräte verwenden oft keine Standard-Ethernet-Protokolle, was spezielle Aufmerksamkeit erfordert. Hier könnte Trend Vision One mehr leisten.
Darüber hinaus wäre es wünschenswert, wenn Trend Micro auch Lösungen anbieten würde, um die Sicherheit der von uns produzierten IT-Produkte zu verbessern, die an Kunden geliefert werden.
Wie lange nutze ich die Lösung?
Wir verwenden Trend Micro bereits seit einiger Zeit, genauer gesagt seit 2020. Angefangen haben wir 2019 und haben unseren ersten Vertrag für Trend Vision One im Jahr 2020 unterzeichnet.
Was denke ich über die Stabilität der Lösung?
Die Stabilität ist sehr hoch. Wir stoßen selten auf Stabilitätsprobleme. Wenn es doch Probleme gibt, stellen wir in der Regel fest, dass sie von unserer Seite kommen, meist weil der Server bestimmte Informationen nicht bereitstellen konnte.
Was denke ich über die Skalierbarkeit der Lösung?
Im Vergleich zu anderen Unternehmen sind wir nicht riesig, aber während der Einführung und Expansion haben wir festgestellt, dass die Lösung leicht skaliert. Wir hatten keine Probleme mit Skalierungseffekten oder Ähnlichem.
Was halte ich von dem Kundenservice und Support?
Der technische Support ist hervorragend, da wir immer wieder sehen, dass bei auftretenden Problemen der direkte Kontakt gesucht wird. Die Fähigkeit, schnell zu handeln und direkt zu kommunizieren, ist für uns sehr wichtig. Es geht nicht nur um Support auf hoher Ebene mit einem Chatbot, sondern darum, dass Experten vor Ort sind und schnell reagieren können, wenn ein Problem auftritt. Das ist entscheidend, denn in solchen Situationen muss man schnell handeln, ohne Zeit zu verlieren.
Wie bewerte ich den Kundenservice und Support bewerten?
Positiv.
Welche Lösung habe ich zuvor genutzt und warum habe ich gewechselt?
Wir haben viele Produkte verwendet. In den letzten Jahren haben wir uns zu einer einheitlichen Unternehmenskultur konsolidiert und andere Lösungen durch die Unternehmensvorgabe von Trend Micro ersetzt. Ein Grund dafür sind Effizienzüberlegungen. Durch die Verwendung derselben Lösung im gesamten Unternehmen können wir sie zentral verwalten und warten, was ein einheitliches Verhalten sicherstellt, ohne dass jede Organisationseinheit eigene Lösungen benötigt.
Wie war der anfängliche Set-Up?
Ich war in Bezug auf die Verwaltung der Rolle und Funktion beteiligt, jedoch nicht aus technischer Sicht.
Meine Kollegen berichteten, dass es sich um eine sehr gut konzipierte Software handelt. Wir haben andere Lösungen erlebt, bei denen die Arbeit mit der Software viel länger gedauert hat und nicht so reibungslos verlief. Ich habe keine Beschwerden gehört, daher muss die Einrichtung gut gewesen sein.
Wir haben einen risikobasierten Ansatz gewählt, um die Implementierung durchzuführen. Wir begannen damit, die Lösung in großen
Fertigungsunternehmen einzuführen, wo der potenzielle Schaden im Falle eines Vorfalls am größten wäre. Von dort aus gingen wir zu kleineren rechtlichen Einheiten über, wie reinen Vertriebsbüros oder Ähnlichem, also von groß nach klein.
Wir haben ein relativ kleines globales Team mit drei Personen, die an der Implementierung gearbeitet haben. Außerdem gibt es ein Verpackungsteam und ähnliche Ressourcen, die Installationsskripte für Endgeräte erstellen.
Wie sieht es mit der Wartung aus?
Wir haben Trend Vision One als Teil einer SaaS-Lösung gekauft. Diese umfasst Updates und laufenden Support, wie die Bereitstellung von Virensignaturen, sodass wir keine dedizierten Mitarbeiter speziell für die Wartung haben. Wir haben jedoch weltweit benannte Ansprechpartner, die für die Bearbeitung von Alarmen und Ereignissen verantwortlich sind. Diese Aufgaben sind eine zusätzliche Verantwortung der IT-Teammitglieder nach deren Schulung. Daher kann ich Ihnen keine genaue Anzahl an Personen nennen, die daran beteiligt sind. Diese Aktivitäten sind in das bestehende IT-Personal integriert, das sie neben seinen regulären Aufgaben verwaltet.
Was war unser ROI?
Wir haben einen Return on Investment im Wesentlichen qualitativ, proportional und quantitativ gesehen. Eine strikte ROI-Berechnung haben wir nicht durchgeführt. Wir wissen, dass die Lösung eingesetzt wird, um potenzielle Schäden zu verhindern, aber es ist schwierig, potenzielle Schäden in einer ROI Berechnung zu quantifizieren. Andererseits hatten wir während der Einführung für das globale Unternehmen zwei Vorfälle. Zum Glück hatten wir auch eine Cyberversicherung, die die Vorfälle abgedeckt hat, weil wir durch Trend Micro und die Implementierung der Lösung sowie die bereitgestellten Daten nachweisen konnten, was passiert war. Ohne dies hätten wir sicherlich keine Versicherungszahlung erhalten.
Was sind meine Erfahrungen mit Preisen, Einrichtungskosten und Lizenzierung?
Natürlich würden wir uns wünschen, dass es kostenlos wäre. Sicherheit hat jedoch ihren Preis. Was die von uns erlebten Preise betrifft, halten wir Trend Micro für wettbewerbsfähig. Manchmal wünschen wir uns jedoch einen höheren Rabatt bei steigender Nutzung, da das Unternehmen wächst.
Welche anderen Lösungen habe ich evaluiert?
Wir haben uns andere Lösungen angesehen. Als wir 2019 mit der Evaluierung begonnen haben, haben wir die typischen Lösungsportfolios geprüft, die zu dieser Zeit verfügbar waren. Wir haben mehrere Optionen in Betracht gezogen und uns dann, basierend auf verschiedenen Faktoren, für ein Unternehmen aus Japan entschieden, anstatt für eine Erweiterung eines amerikanischen Unternehmens. Ich erinnere mich nicht mehr an alle Details, aber damals gab es auch einerussische Lösung, die auf dem europäischen Markt recht beliebt war, die wir jedoch nicht weiter verfolgt haben.
Die Hauptunterschiede zwischen diesen Produkten und Trend Vision One lagen in der Funktionalität und der Gesamtumgebung. Wir wollten eine wirklich unabhängige Lösung. Aus Sicht der deutschen und europäischen Datenschutzgesetze war es eine Frage des Abwägens, wo wir das größte Vertrauen haben können und wo wir diese Prinzipien in der Umsetzung wiedererkennen würden.
Welche weiteren Ratschläge habe ich?
Mein Rat wäre, sich wirklich Zeit zu nehmen, um sorgfältig zu überlegen, was man will und braucht, und sich insbesondere mit Kollegen auszutauschen, um die richtige Lösung zu finden. Man könnte sagen, dass man zur Durchführung einer Deep Discovery Inspection auf Netzwerkverkehr mehr Knoten hinzufügen könnte, aber irgendwann wird der Kosten-Nutzen-Effekt minimal.
Wir hatten immer das Gefühl, dass uns Trend Micro sehr gut beraten hat und uns empfahl, dass mehr als drei Knoten im globalen Kontext nicht notwendig wären. Zusätzliche Knoten würden die Leistung nur geringfügig verbessern, was sich nicht lohnen würde. Es ist wichtig, auf das Team von Trend Micro zu hören und offen zu kommunizieren. Entscheidend ist, dass man seine Szenarien und Risiken im Voraus durchdenkt – das können sie einem nicht abnehmen. Zum Beispiel ist die Netzwerksegmentierung, die nicht Teil des Angebots von Trend Micro ist, ein Mechanismus, den wir ebenfalls einsetzen. Es ist wichtig, Hand in Hand zu arbeiten, und es muss in dieser Phase viel Dialog geben.
Welches Bereitstellungsmodell nutzen Sie für diese Lösung?
Hybrid-Cloud
Cloud oder Hybrid Cloud: Welcher Cloud-Anbieter wird genutzt? Amazon Web Services (AWS)
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
It gives us a single, intuitive console for threat management
What is our primary use case?
I use Trend Vision One for banking, retail, and government clients. We sell it with other technologies. It provides more sources for alerts and visibility into threats and vulnerabilities. We have all Trend Micro's modules, including full asset protection, EPS, IDS, endpoint protection, and email security.
How has it helped my organization?
Vision One has reduced our detection time by approximately 30 percent, enabling us to use our human resources more effectively. The solution has allowed us to consolidate 90 percent of security tools across hybrid environments, improving our operational efficiency. We've reduced our administration and management tasks by half. Vision One has also decreased our risk.
What is most valuable?
The most critical feature of Vision One is that it gives us a single console for threat management. The organizational view simplifies management and improves visibility, helping us identify areas for action. The solution is intuitive and easy to manage.
The solution's ransomware protection with runtime machine-learning capabilities gives us peace of mind. We also get total protection and fewer false positives than in other solutions we sell. Vision One integrates well with our other security products.
What needs improvement?
Vision One could improve its area networking and email security.
For how long have I used the solution?
I have been using the solution for around three years.
What do I think about the stability of the solution?
Trend Vision One is stable.
How are customer service and support?
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We have not previously used a tool like Trend Vision One, but we have used individual tools for various functions, such as EDR and EPS. For example, we used Vicarius and Ivanti for virtual patching and other tools by Palo Alto, CrowdStrike, Sophos, and Kaspersky. Trend Micro consolidates all these features into one platform, so that's one advantage it offers.
How was the initial setup?
Setting up Vision One was straightforward.
What other advice do I have?
I rate Trend Vision One nine out of 10.
AI-driven visibility empowers risk management with faster detection
What is our primary use case?
As a security architect, I design solutions for our end customers. In previous projects, we've successfully implemented Trend Vision One for customers with cloud-based assets and email servers, enabling them to extend security coverage to their remote clients.
The current market trend in email security solutions focuses on mitigating threats like phishing attacks. These widespread attacks occur across various points in the cyber kill chain process. Whether initiated from the perimeter or targeting cloud-based assets, monitoring all north-south and east-west traffic is challenging. Trend Vision One helps by providing a comprehensive analysis of these email phishing attacks, identifying the attack origin, parameters, and information extracted from attack patterns.
How has it helped my organization?
Trend Vision One offers centralized visibility and management across all protection layers. This comprehensive view provides valuable information for CISO/CIO presentations, including attack patterns, threat actors, and areas for predictive analysis. Such insights are crucial for informing policy changes and other security enhancements. The visibility also helps with efficiency.
We can summarize any technical information we receive using widgets and then present it to executives in a dashboard format.
Our customers adapt the risk index feature to align with the specific needs and conditions of their individual environments.
We have used Trend Vision One in several projects where our customers consolidated security across hybrid environments. The consolidation effort, particularly utilizing Vision One's AI-driven features, streamlined investigative analytics. Furthermore, merging multiple solutions into Vision One provided comprehensive insights, which proved invaluable for policy development.
The ability to manage risk and maintain visibility has improved by approximately 20 to 30 percent, significantly simplifying our tasks. Operationally, this has led to a 20 percent reduction in effort.
Trend Vision One has helped reduce detection and response times by 30 and 40 percent, respectively.
Trend Vision One has saved more than a week's worth of effort in investigating false positives.
Trend Vision One's automation capabilities have helped us save between 60 and 100 hours monthly.
What is most valuable?
The most important features of Vision One include visibility, AI integration, attack pattern analysis, predictive analytics, and centralized visibility and management across protection layers. These features are very important to us.
What needs improvement?
There should be improvements in risk quantification, where the risk is displayed in a quantified manner, showing the dollar value loss. The integration with third-party OEM solutions also needs enhancement, particularly in UEBA integration with Trend. Sometimes, there are blind spot discoveries that are not completely successful. Improving automation to avoid manual triaging and providing more insights on dashboards is desirable.
While Trend Vision One's attack surface risk management helped identify some vulnerabilities in our environment, the feature needs improvement. Specifically, the blind spot discovery is unreliable; for example, a missed blind spot in one environment led to an attack and subsequent investigation.
Automation should be improved to eliminate the need for manual effort in initial L1 triaging. Additionally, dashboards should provide more insightful analysis, including various mappings to the MITRE ATT&CK framework and Tactics, Techniques, and Procedures.
For how long have I used the solution?
I have been working with Vision One for almost almost two years.
How are customer service and support?
The support in Trend Micro is good.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I have worked on Exchange servers, and we are using Palo Alto to a certain extent. These were not from the XDR or EDR point of view.
What was our ROI?
The analysis shows that Trend Vision One has improved our ROI by 30 percent.
What's my experience with pricing, setup cost, and licensing?
Competitors offer comparable solutions at slightly lower prices, so Vision One has room to reduce its pricing by 15 percent, given that Trend Vision One charges approximately $10 per endpoint.
Which other solutions did I evaluate?
We evaluated other options but not to the same extent as Trend Micro because I was more familiar with Trend Micro solutions.
What other advice do I have?
I would rate Trend Vision One nine out of ten.
Centralized visibility enhances security posture with robust features
What is our primary use case?
Our infrastructure utilizes Trend Vision One for endpoint and cloud-based security. While all our endpoints are cloud-based, allowing us to deploy Trend Vision One in the cloud, we also maintain endpoint-specific protection. Currently, our network infrastructure is not fully integrated with Trend Vision One. The platform primarily monitors our backend infrastructure and provides initial response capabilities.
I implemented Trend Vision One to consolidate log inspection, integrity monitoring, intrusion prevention, and application control into a single platform, eliminating the need to switch between multiple applications.
How has it helped my organization?
Trend Vision One provides centralized visibility and management across protection layers, which is crucial for compliance. It allows us to show audits of what’s going on and keep all evidence in one place. This centralized visibility has improved our efficiency, as it means just one login is needed to complete all necessary tasks, maintaining focus and reducing distractions resulting from multiple sources.
The Vision One executive dashboards effectively communicate our company's overall security posture by providing a clear risk overview. Executives appreciate the simple visual cues, with green indicating low risk and yellow signaling high risk, allowing for quick and easy understanding of our current security status.
I immediately recognized the benefits of Trend Vision One because, unlike our other security applications, it provides comprehensive visibility.
I utilize Vision One's risk index feature to assess our organization's risk level and benchmark it against our peers. This comprehensive evaluation allows us to understand our current risk profile, identify areas for mitigation, and determine acceptable risk thresholds. The risk index feature is essential to our business operations.
Attack surface risk management helped us identify blind spots in our environment and provided detailed remediation strategies. This works as a second pair of eyes that helps look for vulnerabilities, which in turn improves our security posture.
Trend Vision One improves our detection and response times by identifying vulnerabilities and summarizing mitigation strategies.
Trend Vision One helps reduce the amount of time we spend investigating false positive alerts by 80 percent.
What is most valuable?
I love Trend Vision One for its robustness, allowing us to deep dive into a lot of information. The Trend hunting feature is beneficial, providing the opportunity to investigate and see what's happening, using frameworks such as MITRE ATT&CK to analyze logs. Its risk index feature allows us to see risk status quickly and provides valuable insights into our security posture.
What needs improvement?
The only issue I have with Trend Vision One is the credit structure, which is confusing. An easier way to understand the credit structure would be helpful.
For how long have I used the solution?
I have been using Trend Vision One for over five years.
What do I think about the stability of the solution?
Trend Vision One is stable and does not crash. In my experience, it has not shown any instability issues.
What do I think about the scalability of the solution?
Trend Vision One is scalable. We can increase or decrease according to needs, although pricing changes when scaling.
How are customer service and support?
Trend Micro's support response time can be slow. The quality of assistance varies depending on the issue. However, reaching qualified technical engineers can be challenging due to lengthy escalation processes.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I've used many alternatives before, like Avast, SonicWall, and Mimecast. These alternatives don't have all the integrated features of Trend Vision One, particularly the server and workload capabilities.
How was the initial setup?
The initial setup required deep diving and using resources such as help centers. Despite not being straightforward, it was manageable.
The deployment took three days.
What about the implementation team?
I implemented Trend Vision One in-house with the support of team members, using resources like software guides and videos.
What's my experience with pricing, setup cost, and licensing?
Trend Vision One is an expensive product.
What other advice do I have?
I would rate Trend Vision One eight out of ten.
The most significant security challenge we face is zero-day attacks, which exploit vulnerabilities unknown to us. While Trend Vision One provides some protection, it cannot catch all zero-day threats, leaving us potentially exposed. This inherent vulnerability in our security poses the greatest risk.
Trend Micro handles most maintenance, but we are responsible for installing agent patches on our servers.
New users should understand that Trend Vision One is different from other solutions they might have used. Reading and fact-finding are crucial. They must ask the right questions.
Improved firewall management and centralized visibility
What is our primary use case?
The primary use of Trend Vision One is for its Endpoint Detection and Response and Extended Detection and Response solutions.
To address challenges with our attack surface management, we implemented Trend Vision One.
What is most valuable?
Trend Vision One's most valuable feature is its endpoint firewall rules.
The centralized visibility and management have been very important to us, as it allows for an effective EDR or XDR solution with central management. Without such solutions, I cannot imagine dealing with problems efficiently. The executive dashboards are used for main reporting and central management, improving readability.
Trend Vision One's attack surface management capabilities are a critical feature that we utilize.
What needs improvement?
Integration with other tools and deploying in hybrid environments need improvement. The deployment can be complex, and we'd like an easier process, especially when integrating with on-prem and cloud environments.
The high number of false positives in Trend Vision One presents a challenge. Reducing these requires extensive exclusion and allow lists, which are difficult to manage effectively.
For how long have I used the solution?
I have been using Trend Micro Vision One for one year.
What do I think about the scalability of the solution?
Trend Vision One is scalable.
How are customer service and support?
The technical support is not good. We have to purchase support separately and the engineers are not readily available.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
We previously used Sophos and Microsoft Defender. For hybrid, we switched to Microsoft Defender due to easier integration with on-prem and cloud. I would recommend Trend Micro for Linux and mixed environments.
How was the initial setup?
The standard deployment of Trend Vision One was straightforward and took approximately 24 hours to complete with two people involved.
What's my experience with pricing, setup cost, and licensing?
Trend Vision One offers a competitive price-to-value ratio.
Which other solutions did I evaluate?
We evaluated Microsoft Defender and Sophos before switching. Microsoft offers more options for attack surface reduction rules compared to Trend Vision One.
What other advice do I have?
I would rate Trend Vision One eight out of ten.
We have 400 users of Trend Vision One in our organization.
Two administrators are required to manage Vision One.
Centralized management enhances threat response with automation and comprehensive insights
What is our primary use case?
As a cybersecurity analyst at a managed security service provider, I use Trend Vision One for two of my clients. My primary use cases involve standard XDR functions, such as anomaly monitoring, alert analysis, and incident response. To streamline these processes, I've configured automated response playbooks within Trend Vision One. The insights provided by the platform, mainly through the Workbench and Observe Auto module, are invaluable for understanding my clients' environments and identifying vulnerabilities that need to be addressed.
I work with clients across various industries, including education and power. My education client utilizes Trend Vision One for specific security needs, while my power industry client, an electricity board, has a comprehensive Trend Micro solution in place, including Vision One, Apex One, and Deep Security Manager. With Vision One, I've successfully detected and addressed numerous web attacks, malware attacks, and unauthorized access attempts on production servers in the education sector. For the power client, the solution has effectively detected and blocked multiple ransomware attacks. These are common occurrences and demonstrate the value of Trend Micro's security solutions.
We use Trend Vision One on all endpoints in two scenarios. For one client with on-premises servers and endpoints, we use Trend Vision One as a comprehensive solution. For another client in the education sector, we use Trend Micro Deep Security Management alongside the Vision One XDR platform on their cloud-based Linux servers.
How has it helped my organization?
Trend Vision One provides centralized visibility and management across all protection layers. This is crucial for efficiently sharing data with management, both internally and client-side. The platform avoids technical jargon, offering executive summary dashboards and summarized incident reports that clearly communicate security status. This allows for concise and effective communication with non-technical stakeholders, assuring them of their security posture. Trend Vision One's automated dashboards streamline reporting, eliminating the need for extensive manual documentation, which is especially valuable for technical users.
I use executive dashboards to build on threat detection, check for vulnerabilities, and create appropriate responses for individuals or groups of endpoints.
We use the risk index to assess and enroll our risk score. We maintain a low-risk index, which helps both management and me understand our score in relation to global risk factors.
Although I inherited Vision One as a service provider from another team, I eventually began utilizing its full potential and reaping its benefits.
Trend Vision One offers a phishing simulation feature in its cyber risk assessment. I frequently use this tool with my clients to evaluate employee email awareness. It generates comprehensive reports and provides functionalities for easy management.
Attack surface risk management helps identify vulnerabilities and high-risk threats in an environment, but it may also generate some false positives.
Trend Vision One significantly reduces MTTD and MTTR by approximately 50 percent. Its automated playbooks enable an immediate response to detected threats, providing near-instantaneous protection. While manual analysis and reporting of critical errors typically take an analyst up to 15 minutes, Trend Vision One's configured playbooks can automatically complete the same task within two minutes.
I have configured some playbooks to take automated actions on Trend Vision One while detecting some specific alerts or while detecting some specific playbook alerts.
What is most valuable?
Trend Vision One offers several features that I appreciate. The workbench alerts provide valuable insights into attack chains and relevant information, while Observer techniques give a comprehensive overview of ongoing activities. The platform's automated playbooks streamline incident response, significantly reducing MTTD and MTTR. Additionally, the ability to integrate with various firewalls and data sources, including Trend Micro's suspicious object management, centralizes threat management and simplifies daily security operations and incident response tasks.
What needs improvement?
Trend Vision One requires several enhancements for optimal performance. The platform should allow users to create custom phishing templates directly within the console and improve logging capabilities to facilitate seamless integration with SIEM solutions. Additionally, it should provide a mechanism for configuring Office 365 Advanced Threat Protection alerts to be displayed within the Workbench for streamlined threat management.
For how long have I used the solution?
I have been using Trend Vision One for about a year and a half.
What do I think about the stability of the solution?
Trend Vision One is a stable platform with no significant issues like lagging or crashing.
What do I think about the scalability of the solution?
Trend Vision One is easy to scale up by adding new agents, although the credit system for feature usage is confusing and could be simplified.
Which solution did I use previously and why did I switch?
I have experience with solutions like Sophos Central XDR and Wazuh, and while they have their strengths, I find Trend Vision One to be a competitive option with a comprehensive range of capabilities.
What other advice do I have?
I would rate Trend Vision One nine out of ten.
The on-premises Trend Micro solutions may require updates.
After deploying Trend Vision One on pilot devices, I recommend exploring the entire portal to familiarize yourself with its features and capabilities.
Improves our security posture because we can patch any vulnerable machines that are prone to risks and attacks
What is our primary use case?
I use the solution primarily for EDR. The top challenges in our industry are the accuracy of the detections and the visibility of alerts and events.
We are accessing it via the cloud, and we are monitoring the endpoints and cloud servers.
How has it helped my organization?
Vision One provides centralized visibility and management across protection layers, which is critical for tracking threats, viewing vulnerable assets, and understanding the overall security posture of the organization.
Vision One helps me a lot when it comes to reporting. The reports are very detailed and informative. There are recommendations and analyses of how to mitigate threats. We have comprehensive visibility.
The executive dashboards are very helpful for us in assessing our security posture. We can see what needs to be prioritized and mitigated first.
The risk index feature helps us make security improvements and implement security policies. It helps to have robust security.
Vision One helps to harden security controls and policy implementations.
Vision One improves our organization's security posture by allowing us to apply more robust security controls, implement security policies, and improve the security culture. The centralized visibility enables more efficient security operations.
Vision One makes it convenient to assess and mitigate or block threats across the organization. The XDR is collecting data from more than one client or company and correlating it. The XDR detects the loopholes or vulnerabilities of the system. It uses MITRE ATT&CK techniques to identify and respond to cyber threats or vulnerabilities.
Vision One improves our security posture because we can patch any vulnerable machines that are prone to risks and attacks.
Vision One has decreased our time to detect and respond to threats by 50%.
We use automation capabilities, especially when there is a breach or a risk activity with the user or the endpoint. It helps us by isolating devices automatically. This automation saves us about 20% of the time.
What is most valuable?
I love everything about the solution, especially the XDR features, the attack surface management, and the workbench alerts. It oversees vulnerabilities among the system and devices, prioritizing areas that need patching.
When I started working with it, I knew nothing about this solution. I found it very user-friendly and easy to understand.
What needs improvement?
There are limitations in terms of threat response actions.
For how long have I used the solution?
I have been using Vision One since December 2022. It has been about two years.
What do I think about the stability of the solution?
There are some errors with the solution. I would rate the stability a seven out of ten.
What do I think about the scalability of the solution?
It is scalable. I would rate the scalability of the solution as eight out of ten.
We have clients of various sizes. Our clients are small, medium, and large organizations.
How are customer service and support?
The customer service or technology is responsive, but they take a minimum of one day, and up to three days, which is too long.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I previously used Azure Sentinel. Vision One is an advanced solution compared to Azure Sentinel. I prefer Vision One because of the convenience and easy correlation.
How was the initial setup?
The initial setup is complex due to the various cloud resources that we have. We have workstations, servers, etc. Its implementation can be simplified.
It did not take us very long. We migrated from Apex One to Vision One. It did not take long.
What was our ROI?
It provides returns on investment by saving about 50% of time, money, and resources.
What's my experience with pricing, setup cost, and licensing?
I find it to be a cost-efficient platform.
What other advice do I have?
I would recommend this solution. It helps a lot when it comes to security. It covers endpoint security, email security, web security, and data leak prevention. It has everything.
I would rate Vision One a nine out of ten.
Enables efficient threat detection and investigation through seamless cross-border capabilities
What is our primary use case?
Vision One access supports multiple modules, including endpoint protection, the XDR module, and the Cloud One module, which are the ones that particularly caught our interest.
We have been doing a proof of concept for Trend Vision One to assess its capabilities as a cybersecurity solution. Vodafone is partnering with Trend Micro to offer security services and products to our customers to secure their environments, similar to a SaaS solution. We are exploring it as a partnership opportunity to provide enhanced security solutions to our customers.
How has it helped my organization?
We conducted a POC and tested multiple use cases by downloading malicious files and observing their behavior. Trend Vision One successfully detected and blocked all threats, including malicious files, scripts, and even dormant scripts that later became active. All these threats were stopped at the endpoint level, demonstrating that Trend Vision One effectively defends against malware, ransomware, and malicious scripts.
Trend Vision One incorporates a machine learning agent designed to defend against advanced threats, such as zero-day attacks. This agent monitors endpoints for malicious activity and, if detected, automatically quarantines the affected machine to conduct further analysis.
It employs machine learning to quarantine devices during ransomware attacks, however, this functionality has not yet been tested.
Trend Vision One provides a single console with a unified dashboard that consolidates information from our entire environment.
The single console provides end-to-end visibility into our IT security environment. We tested the endpoint security, and the SDR performed exceptionally well, providing a clear topology and metrics of our environment. This allows us to monitor the status of each node within our network.
The Trend Vision One platform was integrated with a Linux-based Service Engine to facilitate integration with third-party IT security solutions.
Learning to use Trend Vision One was straightforward, thanks to the helpful courses available on their portal and the excellent support provided during product introduction.
Administering Vision One endpoint security is easy through the single console.
We successfully tested Trend Vision One in a hybrid environment, with components deployed both on-premises and in the cloud.
Trend Vision One offers virtual patching to protect against vulnerabilities while vendors develop permanent patches. This is crucial because vendor patches can be delayed, leaving systems exposed. Virtual patching provides immediate protection, acting as a temporary shield until the official fix is released.
Since we are still in the testing phase, we have not yet seen a reduction in viruses or malware. However, we anticipate potential improvements in security operations across hybrid environments if implemented fully.
What is most valuable?
Trend Vision One's greatest assets are its cloud-based platform and credit-based purchasing system, which eliminate the need for traditional licensing and procurement processes, enabling quick product acquisition within one or two days. Trend Micro's strong reputation and excellent threat intelligence further enhance the platform's value. The analytics are also good, particularly the XDR and cloud assessment tools, which correlate logs and information to consolidate alerts for the SOC team.
What needs improvement?
One area that requires improvement is the installation process of the agents, as it is not seamless. The installation sometimes requires multiple troubleshooting steps and is not straightforward.
For how long have I used the solution?
We have been conducting the POC of Trend Vision One for approximately three to four months.
What do I think about the stability of the solution?
There were no major issues with stability, no bugs, glitches, or errors, except for the challenges faced with agent installation. I rate the stability of Trend Vision One eight out of ten.
What do I think about the scalability of the solution?
I rate the scalability of Trend Vision One ten out of ten.
How are customer service and support?
We did not engage with customer support during the POC phase, so we cannot provide feedback on that aspect at this time.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
For endpoint protection, we have used Microsoft Defender and Cortex XDR. We encountered issues with those solutions, but Trend Vision One seemed to address these concerns effectively.
How was the initial setup?
The initial setup was not complex. The prerequisites were set first, allowing integration to be completed in about a week.
What's my experience with pricing, setup cost, and licensing?
The pricing is mid-range, neither cheap nor overly expensive. The cost is considered fairly priced.
What other advice do I have?
I would rate Trend Vision One nine out of ten.
Our team from our organization includes three members involved in the POC testing.
I recommend Trend Vision One to other users based on our experience during the POC phase.
Centralized visibility and automation capabilities save time
What is our primary use case?
Trend Vision One has advanced sensors that collect telemetry from various sources like endpoints, email, and network. Workbench then correlates data to provide visibility across the entire environment. If there is any virus in the environment, it correlates the information, shows where it started, who the user is, and how it traveled through the environment, thus providing complete visibility and infrastructure correlation.
How has it helped my organization?
Trend Vision One consolidates security and saves time.
Trend Vision One is a cybersecurity platform in which Trend Micro has integrated every kind of solution. You have an MDR solution. You have an email security solution. You have endpoint protection. You have server protection. You have EDR. You get everything in one console, whereas vendors like Kaspersky and CrowdStrike do not have only one console. With Trend Vision One, you get all the solutions in one web console or platform.
It helps with faster response. You have telemetry from different sources, which makes it easy to do analysis and respond. Its automation capabilities help to isolate endpoints and respond. You can respond in multiple ways. You can revoke permissions or terminate any process. You can isolate an endpoint. You can run a script. You can automate in different ways and integrate scripts, playbooks, etc. It saves time.
What is most valuable?
Centralized visibility is valuable. We can view what kind of virus or threat exists, where it has traveled, and how it started. A security analyst can use just this one console to view all the information.
Another valuable feature is its automation capabilities, which help in responding to any kind of alert swiftly.
What needs improvement?
Currently, there is nothing specific that needs improvement. Their support is very cooperative, and they provide an educational portal for learning the solution. However, deployment could improve by considering customer environments that are not fully updated.
For how long have I used the solution?
I have been working with Trend Vision One for the last six months.
How are customer service and support?
When I contacted Trend Micro support, they were very cooperative and quick in resolving and remediating any issues. I would rate their support a nine out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I have worked with Kaspersky, which offered only a single solution and not a fully integrated console. Kaspersky had multiple options but did not provide the same level of centralized visibility as Trend Micro. Kaspersky has graphs for visibility whereas Trend Vision One has both graphs and Workbench. Workbench provides a wider overview, whereas, with Kaspersky, you can only see a sketch of where a virus started or where it ended. Trend Vision One tells you how and through which user a virus came into your environment and how it traveled through your infrastructure.
There is a big difference in the price. Trend Micro solutions are more expensive than others.
How was the initial setup?
It can be a bit complex. Trend Micro has a requirement that endpoints should be fully updated. In customer environments that are not connected to the Internet, that can be an issue. Trend Vision One is a cloud platform. If the endpoints are not updated, you can have multiple errors when you deploy the agents. We find such issues in customer environments.
The initial deployment time depends on the infrastructure. It took us about a month to cover 1,000 endpoints and 200 servers.
What's my experience with pricing, setup cost, and licensing?
Trend Micro solutions are very expensive compared to other solutions. Even though everything is in one console, each feature requires a separate license.
What other advice do I have?
If you do not have any compliance regulations preventing you from using a single vendor, I recommend adopting Trend Micro's cybersecurity platform for full security coverage and reduced management time.
The Risk Index feature helps with the attack surface and risk management. It detects vulnerabilities in your environment and calculates the risk in your environment, but I have not yet used this feature.
When you deploy such a solution in your environment, there is always a huge amount of false positives. The false positive rate depends on how your security engineer has done the configuration. After some time, the false positive rate reduces. The reduction in the false positive rate depends on your infrastructure. If you have a huge infrastructure, it would take some time. It also depends on your security resources who work on this solution. If you have only one person, it can take about six months, but if you have a team of five security people, it would take about a month.
I would rate Trend Vision One a nine out of ten.
showing 31 - 40