Trend Micro Deep Security and CrowdStrike Falcon compete in the cybersecurity protection category. While both have strong offerings, CrowdStrike Falcon seems to have the upper hand in advanced threat detection and AI features as per the data comparisons in each section.
Features: Trend Micro Deep Security offers multi-layer protection that includes anti-malware, intrusion prevention, integrity monitoring, firewall, and virtual patching. It also supports cloud integration with AWS, vCloud, and Azure. CrowdStrike Falcon is notable for its advanced endpoint detection and response capabilities, offering threat intelligence, behavior-based detection, and real-time response. It is appreciated for its ease of use and advanced AI features.
Room for Improvement: Trend Micro Deep Security could benefit from improved agent distribution, more intuitive error messaging, and enhanced Mac support. Users also suggest better global visibility, integrations, and a more user-friendly interface. CrowdStrike Falcon faces challenges with seamless integrations, enhanced forensic capabilities, and a need to reduce false positives. Users have noted the requirement for more comprehensive reporting, improved dashboard navigation, and support for legacy systems.
Ease of Deployment and Customer Service: Trend Micro Deep Security is versatile, supporting both on-premises and cloud environments, with strong local support but mixed impressions on deployment and technical assistance. CrowdStrike Falcon is praised for seamless cloud deployment and proactive support, especially for distributed environments. However, the setup can be challenging, and the quality of technical support varies.
Pricing and ROI: Trend Micro Deep Security is perceived as expensive but justified by its comprehensive feature set and strong ROI, particularly in threat mitigation and server protection. CrowdStrike Falcon has a higher price point, justified by its advanced features and EDR capabilities. À la carte pricing offers customization but may increase costs. Users report positive ROI due to enhanced security and operational efficiencies.
They appreciate the rich telemetry data from the solution, as it provides in-depth threat identification.
Cortex XDR by Palo Alto Networks helps to reduce my total cost of ownership significantly.
I have seen a return on investment with Cortex XDR by Palo Alto Networks, as this product is offered at a minimal cost, and we can find a good ROI from it.
CrowdStrike Falcon saves time and offers good value for money, especially for enterprise companies, because it can stop breaches.
It's very easy to deploy without many IT admins, saving time.
The management console is very useful and easy to operate, allowing policy deployment in a minimal amount of time.
It adds value by providing centralized control over servers and endpoints.
If the customer is interested in technical capabilities, we demonstrate the tools, setup, implementation, and their working.
The technical support from Palo Alto deserves a mark of ten because they reach out within an hour whenever assistance is needed.
There is no back and forth, and they know what we are asking for and come up with the best resolution for a solution.
If any of these services are missed, it becomes a problem in terms of support tickets, follow-up, or special configuration that needs to be done in the system.
On a scale of one to ten, I would rate the technical support as a 10 because they resolve many issues for us.
The CrowdStrike team is very efficient; I would rate them ten out of ten.
They could improve by initiating calls for high-priority cases instead of just opening tickets.
Whenever I raise a ticket, whether critical or high priority, their team responds immediately, often over calls, and works towards closing the request with the highest priority.
They have very professional engineers, and they often respond effectively.
A dedicated support engineer will come in within three hours.
Cortex XDR by Palo Alto Networks can be expanded anytime by purchasing another license without any issues related to scalability.
I think scalability for Cortex XDR by Palo Alto Networks is good.
It has adequate coverage and is easy to deploy.
In terms of scalability, I find CrowdStrike to be stable, and I have not encountered any limitations with it.
There's no scalability limitation from CrowdStrike itself, as it just requires agent deployment.
Trend Micro also offers multiple solutions, now introducing Vision One and XDR, which allows integration with Deep Security for greater visibility from a security standpoint.
Trend Micro Deep Security is highly scalable.
In most organizations, they are using a mix of these security solutions.
Cortex remains fast and responsive, even with increasing data and alerts.
The thresholds we've seen on our firewall boxes at some instances reached 80% to 85%, but even at that level of utilization, we don't observe any latency or any issues reported with respect to accessing the application.
Cortex XDR is stable, offering high quality and reliable performance.
I have never seen instability in the CrowdStrike tool.
We are following N-1 versions across our environment, which is stable.
The biggest issue occurred when every computer worldwide experienced a blue screen.
It has been extremely stable throughout our usage, with no major disturbances.
Trend Micro Deep Security is very stable and provides protection at all times without issues.
We believe that software works fine until it is patched, managed, or monitored by the IT teams.
Improving reporting and dashboard customization, along with the addition of real-time and exportable reports, would help SOC teams greatly.
The inclusion of this feature would allow the application of DLP policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products.
If the per GB data could be provided at a certain level free of cost or at the same cost which the customer is taking for the entire bundle, that would be better.
Simplifying the querying process, such as using double quote queries or directly obtaining logs based on IP addresses or usernames, would be beneficial.
Another concern is CrowdStrike's GUI. It changes annually, making it hard to work and find options.
Threat prevention should be their first priority.
User experience improvement is most crucial, along with enhancements in policy management and the accuracy of the IPS, IDS features for real-time protection.
By seeing the dashboards, executives should understand whether our servers are secure or if there are vulnerabilities, which should be showcased immediately, indicating reasons for risk.
Additionally, the product is overpriced, which makes it difficult to sell to many customers.
The pricing on SentinelOne is far more reasonable and cheaper than Cortex XDR by Palo Alto Networks.
I would say it is definitely not a cheap product, considering how mature it is and how scalable all Palo Alto products are together.
Cortex XDR is perceived as expensive by some customers, yet offers dynamic pricing.
It is expensive compared to SentinelOne, but as the market leader, it is worth it.
The licensing cost and setup costs are affordable.
The solution is a bit expensive.
We give a fair comparison of all the products, and give them clear insights of the products, which makes it helpful for the customer to make a final decision to purchase the license or product.
Trend Micro Deep Security is considered overpriced, which poses a challenge in selling it to many customers.
The pricing is moderate, not expensive or very cheap.
It incorporates AI for normal behavior detection, distinguishing unusual operations.
The product provides automation responses in case of a threat attack, severity assessments, centralized manageability, and comprehensive compliance features, resulting in reduced costs.
It includes machine learning to easily analyze data and detect complex threats across endpoints, networks, or clouds.
I can investigate by accessing the customer's host based on the RTR environment and utilize host search to know details for the past seven days, including logins, processes, file installations, malicious processes, and network connections.
The real-time analytics aspect of CrowdStrike performs well because we get all logs in real-time, with no delay, allowing us to take action immediately.
Being an EDR solution, it helps us identify attacks in real-time.
It has multiple security layers, including anti-malware, intrusion prevention, integrity monitoring, web reputation, application control, firewall, and log inspection.
Patching allows us to virtually patch servers without downtime, which is critical given our limited patching windows, and helps prevent servers from being exploited.
The IPS module offers virtual patches to resolve issues immediately, making it an excellent product that I recommend for anyone with servers.
| Product | Market Share (%) |
|---|---|
| CrowdStrike Falcon | 10.1% |
| Wazuh | 7.2% |
| SentinelOne Singularity Complete | 5.8% |
| Other | 76.9% |
| Product | Market Share (%) |
|---|---|
| Trend Micro Deep Security | 38.5% |
| Juniper vSRX | 19.1% |
| Sophos Virtualization Security | 18.9% |
| Other | 23.5% |
| Company Size | Count |
|---|---|
| Small Business | 42 |
| Midsize Enterprise | 21 |
| Large Enterprise | 47 |
| Company Size | Count |
|---|---|
| Small Business | 46 |
| Midsize Enterprise | 34 |
| Large Enterprise | 62 |
| Company Size | Count |
|---|---|
| Small Business | 37 |
| Midsize Enterprise | 24 |
| Large Enterprise | 47 |
Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.
Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.
What are the key features of Cortex XDR?Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.
CrowdStrike Falcon provides cutting-edge endpoint detection with automatic alerts, real-time monitoring, and seamless integration capabilities. Cloud-native architecture and AI-driven processes ensure scalable protection and efficient threat remediation.
CrowdStrike Falcon is recognized for its robust EDR and threat intelligence features that enhance security and streamline operations. Its lightweight agent minimizes system impact while offering real-time monitoring and detailed reporting. This platform uses cloud-native architecture for scalable, consistent protection, significantly reducing administrative demands. AI and machine learning empower precise threat hunting and behavioral analysis, which mitigates false positives and boosts cybersecurity efficiency. Users seek improvements in integration with other systems, reporting functions, and compatibility with specific operating systems. While the solution handles malware mitigation and threat response efficiently, suggestions for on-demand scanning, enhanced visibility, and better dashboard features are noted.
What are the key features of CrowdStrike Falcon?In technology sectors, CrowdStrike Falcon commonly supports endpoint protection and threat response initiatives, allowing companies to replace traditional antivirus systems with more advanced solutions. In finance, it secures sensitive data across multiple platforms, ensuring compliance. In healthcare, real-time security analysis protects patient data on critical devices like servers and laptops, utilizing AI to enhance cybersecurity defenses.
TrendAI Deep Security offers advanced protection with anti-malware, virtual patching, and intrusion prevention. It supports hybrid and cloud environments, providing comprehensive security solutions for large organizations.
TrendAI Deep Security provides a robust suite of features tailored for defending systems against evolving threats. With centralized management, it seamlessly integrates with hybrid and cloud environments. Notable is its virtual patching, which reduces zero-day vulnerability risks and downtime, making it an optimal choice for large corporations seeking extensive protection. Despite challenges like less intuitive dashboards, compatibility, and performance issues during scanning, it excels in server and endpoint protection, intrusion detection, and application control. It's particularly effective in financial sectors and integrates with cloud platforms to automate security policy deployment.
What are TrendAI Deep Security's most significant features?Organizations in sectors like finance deploy TrendAI Deep Security for its virtual patching and hybrid environment support. The solution's adaptability across cloud platforms ensures secure workloads, making it essential for environments requiring robust threat detection and monitoring.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
