Trellix Network Detection and Response and Check Point SandBlast Network are competing solutions in the network detection and response category. Trellix has an edge due to advanced threat detection features and strong incident response capabilities, while Check Point is noted for its versatile threat handling and AI/ML integration.
Features: Trellix NDR offers advanced malware detection, zero-day threat capabilities, MVX for virtualized execution, and sandboxing technologies. Incident response and deep threat insights are notable. Check Point SandBlast excels in handling various file types, combining signature-based and zero-day threat prevention with robust Threat Extraction and Emulation features.
Room for Improvement: Trellix could improve integration, reporting options, and reduce false positives. Enhanced user customization and cloud integration are needed. Check Point SandBlast requires better support responsiveness, pricing clarity, and more intuitive configuration. Both products need adaptation to changing cyber environments and improved interoperability.
Ease of Deployment and Customer Service: Trellix NDR is primarily on-premises with high customer service ratings for responsiveness. Check Point SandBlast offers hybrid and cloud options with slightly lower service ratings due to support delays and deployment complexity.
Pricing and ROI: Trellix NDR is seen as expensive but justifies cost with effective breach prevention and substantial ROI. Check Point SandBlast, also with a higher cost for advanced features, is competitively priced, offering favorable ROI through comprehensive threat management.
Protecting around 2,000 users from cyber threats, including ransomware, has positively impacted the organization's growth by reducing disruptions and business loss.
I have seen both money and time saved as a return on investment.
Technical support needs improvement as sometimes engineers are not available promptly, especially during high-severity incidents.
The scalability of Check Point SandBlast Network meets our organization's needs as we grow.
Simplification of granular tuning for false positive reduction and bypassing benign files would benefit non-expert users.
Check Point SandBlast Network can be improved by adding more integration capabilities, such as integration with third-party firewalls, third-party EDR solutions, and SIEM.
There should be improvements in AI intelligence, faster decision-making, and a more responsive technical support team.
Pricing is a bit costly, but considering the features and security offered by Check Point SandBlast Network, it is reasonable.
The key features of Check Point SandBlast Network include its ability to detect zero-day attacks, provide sandboxing capabilities, and offer real-time protection with threat extraction.
It's effective in meeting the specific needs of customers through deployment and integration.
Trellix NDR provides an essential defense by automatically responding to network incidents that firewalls may not catch.
Check Point’s evasion-resistant technology maximizes zero-day protection without compromising business productivity. For the first time, businesses can reduce the risk of unknown attacks by implementing a prevent-first approach. Learn More about Check Point Sandblast
Detect the undetectable and stop evasive attacks. Trellix Network Detection and Response (NDR) helps your team focus on real attacks, contain intrusions with speed and intelligence, and eliminate your cybersecurity weak points.
We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
