Trellix Endpoint Security Platform Reviews

Our use case is pretty straightforward. We have the central ePO that's running, and clients connect to it. All the clients connect to the ePO for updates and the ePO is able to go out and get updates, so it's pretty much like a star topology where you have the ePO sitting at the middle and handling all the requests from the clients and the servers.

We really like the dashboard from Trellix and we've found that it's pretty informative. Also, the reporting is pretty much immediate, so if there's any activity on the network, you're able to get notifications immediately. That's something that we really like about this product.

The solution consumes a lot of end user memory and CPU, so you need to have a computer that has a lot of resources for you to properly run Trellix. The agent ends up using a lot of resources, either RAM or CPU, and at times that bogs down users. I don't know if it's possible to have a lighter version of the agent, but if the agent was lighter it wouldn't consume so many resources, which would be good.

It's a bit complex. It's very granular and you need to really, really know the ins and outs of configuration. If you are specifically configuring an XML against ransomware, some very special setup, it can end up being a bit technical. You wouldn't want to make any mistakes while doing your configuration. A single configuration can make you lose whatever you wanted to do.

The other thing is if the engine would also focus more on malware, sort of an anti-malware. Trellix doesn't really focus so much on the anti-malware side, but there are other better performing antivirus or endpoint products that have better engines or they have a higher detection rate compared to what Trellix is currently providing.

I have been working with this solution for about three years.

If you've given the solution the resources that it needs, it's pretty much stable and it's able to continuously run uninterrupted. I've never seen any down times, so I'd say it's pretty much stable and it's built well.

As far as scalability, I think the solution is able to handle quite a bit. We have around three admins who interact with the product. Then we have the rest of the organization who interface with it, which is around 300 to 500 employees.

The tech support was pretty responsive and I believe all my questions were answered within the stated timeline. I can't remember what my questions were about, but I spoke with the technical team and got the help that I deserved. I would rate the support as a five out of five.

From a technical side, it's not so complicated. Of course, you need to set up your server correctly, and then deploying it to the agent is pretty simple. The setup on the server is the one that is a bit technical. You can't have a default deployment, so once you do your deployment you need to set up rules that work within your environment to be able to safeguard it against suspect files or potentially unwanted programs. You need to know exactly what to do, and that's the point that may not be very friendly to admin, because they might not know all of the threats that are out there. You can't really foresee a threat that you don't know about, or rather you don't know if you'd block it or not. The initial setup is pretty much straightforward if you're an IT person, but the configuration side has a learning curve. It takes quite some bit of time to really know exactly what you're doing.

We handled implementation in-house because when we got the licensing, we also got training modules from Trellix. Trellix has KB articles, which are pretty much straightforward and really helped quite a bit. I'd say it took about four hours to deploy from the time we started with a clean machine to the time that we started pulling updates and deploying to client machines.

On a scale of one to five, I'd give the setup a four, because the product pretty much does what it says it does, but it's not perfect. If you're an IT person, you'll be able to deploy it, and sending the Agent file to clients is pretty much a no-brainer.

The maintenance bit is okay as well. There's not a high amount of maintenance because you can automate many activities. You just need to make sure that your server is able to pick up the updates that are necessary, and make sure the databases are running okay. It's nothing new if you're in the IT environment, just making sure everything is running properly. I've never landed on an update that broke the application.

I believe for organizations that are looking for what Trellix is offering right now, there is a definite return on investment.

I think Trellix is more on the higher side of the market, just on a general scale, but I also think it depends on what particular package you choose. Different packages have different rates. I would give the pricing a three out of five. It depends on your usage because if the product works for you, then you might say the price is right. At one point it worked for us, but we have shifted our goals.

We currently considering switching from Trellix to Bitdefender mainly because Trellix isn't really focused on malware, and right now most threats are coming from within the organization as malware. Malware is something that can stop business continuity, so that's one of our main areas of focus, and Trellix is not doing really well within that perspective.

I would recommend Trellix to someone as long as they know exactly what they're looking for within the organization. For instance, Trellix is very granular, so if you have a dedicated security department that can customize policies and XML documents at a very fine level and specifically work on this product, then I would say, go for it. The solution is going to serve them well, because what it does, it does really well. You're able to experience possibly what's among the best products in the market. I would recommend it as long as the people know exactly what they're getting into and they're ready to handle the challenge.

On a scale of one to ten, I would give Trellix an eight.

We primarily use this solution as cover for mobile devices. I'm the manager of pre-sales and we are resellers and users of this solution. We are low-level partners of McAfee.

The solution provides good mobile device protection and it's great that it's on the cloud. The product is compatible and works for all platforms.

I'd like McAfee to include device control on MVISION. The solution currently lacks mobile device management. The cost of the solution is comparatively high and I'd like to see that reduced. 

I've been using MVISION for one year and working with McAfee solutions for the past 10 years. 

The solution is stable for threat protection. 

The solution is scalable.

The technical support is very good. They are very knowledgeable and also happy to help out. 

Positive

The initial setup is easy and very straightforward. 

There's a USD$1,500 supported annual subscription fee that includes maintenance for anywhere between 51 and 100 users. It's USD$30 per users which I think is quite expensive. 

It's important to be clear about your use case and environment before purchasing this solution. 

I rate this solution eight out of 10. 

MVISION offers decent protection.

The email protection isn't efficient enough, and I'd like to see DLP features in the next release. 

I've been using MVISION for three years.

MVISION is stable.

MVISION is scalable. 

Setting up MVISION is easy.

We have an annual license and pay extra for support.

I rate McAfee MVISION Endpoint six out of 10. It's a good product, but not the best. I wouldn't recommend it to others because it's not secure enough. 

McAfee MVISION Endpoint is used for endpoint protection. Protects the files and network against viruses and malware.

The price of McAfee MVISION Endpoint could improve.

I have been using McAfee MVISION Endpoint for approximately one year.

McAfee MVISION Endpoint is stable.

I have previously used Check Point and Microsoft Defender. I would recommend Microsoft Defender over the other solutions I have used.

The installation of the McAfee MVISION Endpoint was simple. We are able to do it remotely from a central location.

I have had a return on investment by using McAfee MVISION Endpoint.

We are on an annual subscription for McAfee MVISION Endpoint. The cost for the license could be less expensive.

I rate McAfee MVISION Endpoint a six out of ten.

The solution enables me to monitor all my endpoints and ensure that our agents are reporting to the FireEye management server. That is key for allowing us to see any suspicious traffic coming in. I'm the delivery manager and we are customers of FireEye. 

I like the console and the GUI is user-friendly. One of the most important and critical features is containment. Suppose something gets infected and there's the possibility of it spreading laterally and causing a problem or compromising a network. FireEye has a feature that enables it to disconnect from a system network so that the infection doesn't spread. 

Even if an incident occurs at night when support teams are not available, the feature can contain the infection so that when the support teams get to work, they can carry out the remediation part and bring the system back to production.

I'd like to see the searches enhanced because when I hand over the product to someone without experience, it should be user-friendly to them as well. If the feature was enhanced, and the amount of data that comes in reduced, it would simplify the process for anyone. 

I've been using this solution for two years. 

The solution is stable.

I haven't had any issues with scalability. 

The support is pretty good, we haven't had any problems. 

Neutral

We had a separate team implementing FireEye and there didn't seem to be any issues so I think deployment was relatively straightforward. 

I prefer FireEye to solutions like CrowdStrike, Carbon Black, and Trend Micro which are not as user-friendly. FireEye is also easier to integrate with the SIEM, so all the logs get pushed and there are no issues getting the device integrated with SIEM. 

I rate this solution nine out of 10. 

The features we have found most valuable have been containment as well as the ability to triage agent activities.

The way that signatures work when using this solution could be improved. They could be more user friendly. We would like the ability to select a client's signature from a menu or file share to save time. 

FireEye allows three releases per day which are automated. If the automation fails for some reason, the release fails. FireEye does not allow manual releases. This is why we are moving away from using this solution. 

This is a stable solution.

This is a scalable solution. 

The customer service is good. 

Neutral

I have previously used Symantec at a different company. I think Symantec is the best solution overall. 

The initial setup was quite complex. It took three months for us to roll out the solution. 

The suitability of FireEye for a business depends on the business itself. 
I would rate this solution a seven out of ten. 

McAfee is a security-based company. All of their products are related to the security of networking. We have approximately 15 to 20 customers working with McAfee Endpoint Security.

McAfee Endpoint Security does not hang the machines. They are also not very heavy on the end-users.

Along with improving scalability, I would like DLP features to be added in to the endpoint security. 

I have been using McAfee Endpoint Security for almost 12 years.

The solution is quite stable.

I would give McAfee a 7 out of 10 for scalability, there is room to improve.

The initial installation is not complex. It does depend on how big your network is, but normally it's one day's work.

I believe their prices are very good. Our customers pay an annual license fee.

All of the endpoint security solutions have more or less the same kind of features. There is nothing exceptional about one product versus the other. McAfee is not as strong as other solutions like Kaspersky, Trend Micro, or Carbon Black.

I would not discourage anyone from using McAfee Endpoint Security as it is quite a strong solution. I would rate the solution a 7 out of 10.

The solution is specifically used at the endpoints. We do a lot of integrations with various clients. 

A single agent can cover multiple units.

The installation is pretty straightforward. 

The solution can integrate into other products.

The solution is not really stable. 

Every time we open a ticket with McAfee, their response differs and they are not consistent. For example, they might say the issue will be addressed in the next release. Then, the release comes, and it is not available. Basically, we don't get a resolution from support.

This version is not very effective in our region.

The functionality of the product needs to improve the way it addresses zero-day threat levels.

We've been using the solution since 2003.

The stability isn't so great. We've had issues with it in general and have reached out to technical support for help. 

We have three to five people that use the product right now. In Pakistan, we have three offices in all three major cities and set up the solution for clients. We also use it in the offices.

Technical support is ineffective. Instead of dealing with the issue head-on, they tell us that the problem at hand will be fixed in the next release. They do not help at all.

However, our organization also offers technical support to our clients and we have a good experience - almost 20 years with McAfee and other solutions. We're good at troubleshooting.

We started using Symantec, then we adopted different technologies including McAfee and SSP, which includes Microsoft Defender. We keep changing based on the price structure in the market.

The initial setup is not overly complex or difficult. It's pretty simple and rather straightforward. 

That said, I didn't handle the installation myself. We had a team that did it.

We did the installation with the main product that integrated with McAfee Endpoint Security. Between the two, the installation took a whole day, however, just the McAfee section takes about two or so hours. 

You do need to pay for a license. It's not a good idea to try and get a pirated copy.

We've looked into and worked with McAfee, Trend Micro, Kaspersky, and Symantec.

We, at one time, were the official service partner for Symantec. We still provide support to the Pakistan market on behalf of Symantec.

While the solutions we use are on-premises, the latest upgraded services that we use are moving into the cloud, and the endpoints are on-premises. Now it's sort of a hybrid solution.

I'd rate the solution at a six out of ten.

I'd choose McAfee as maybe the third-best option, based on the experience I've had with it and the issues we've faced.