Try our new research platform with insights from 80,000+ expert users
Trellix Network Detection and Response Logo

Trellix Network Detection and Response pros and cons

Vendor: Trellix
4.2 out of 5
Leave a review

Pros & Cons summary

Trellix Network Detection and Response strengthens systems with robust malware protection and zero-day threat defense, effectively managing APTs with the MVX Engine. It automatically addresses incidents missed by firewalls and scales reliably in high bandwidth environments. Despite its benefits, improvements are needed in reporting, policy management, vendor integration, documentation, and customer support. Concerns exist about cost-effectiveness and detection capabilities. Integration with security tools like Fortinet and Palo Alto is beneficial.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Trellix Network Detection and Response significantly enhances malware protection, defense against zero-day threats, and improves network security.
MVX Engine is highly effective against threats, particularly in handling APTs.
Trellix provides valuable features such as MIR for inbound security checks and application filtering.
Trellix's sandboxing feature offers protection from signature-based and signature-less attacks, ensuring comprehensive network security.
Trellix aids in automatic incident response, seamlessly integrating with security tools like Palo Alto for enhanced organizational benefit.

CONS

There is significant room for improvement in pricing, detection capabilities, and reporting and policy management.
FireEye lacks proper integration with cloud services and advanced machine learning capabilities.
Documentation is limited for customers and needs significant improvement and accessibility.
Trellix Network Detection and Response faces challenges with technical support and integration capabilities with other vendor products.
There is a need for enhanced decryption capabilities and better technical packaging for network threats.
 

Trellix Network Detection and Response Pros review quotes

it_user229392 - PeerSpot reviewer
it_user229392
Senior Network Security Analyst at a manufacturing company with 5,001-10,000 employees
Apr 27, 2015
It has provided us with better malware, intrusion and incident detection.
Read full review
it_user298434 - PeerSpot reviewer
it_user298434
NetworkEngineer informaton security at a tech services company with 51-200 employees
Aug 26, 2015
It is a good product to implement, especially where the existing technology fails to detect zero day attacks.
Read full review
it_user494931 - PeerSpot reviewer
it_user494931
Master Consultant (Network Security) at a tech services company with 1,001-5,000 employees
Jul 11, 2016
For our customers, it added a layer of inspection that might be missed by traditional IPS or antivirus products, and that is the capability of catching new malware that might not have been identified or seen in the wild before.
Read full review
Buyer's Guide
Trellix Network Detection and Response
February 2026
Free Report: Trellix Network Detection and Response Reviews and More
Learn what your peers think about Trellix Network Detection and Response. Get advice and tips from experienced pros sharing their opinions. Updated: February 2026.
DOWNLOAD NOW
884,933 professionals have used our research since 2012.
SeniorNe6c94 - PeerSpot reviewer
SeniorNe6c94
Security Engineer at Tenece Professional services
Dec 18, 2017
The simplified Alert Dashboard is straightforward to navigate.
Read full review
it_user792615 - PeerSpot reviewer
it_user792615
Security Consultant at a tech services company with 51-200 employees
Dec 21, 2017
Improved our systems and our customers' by providing better malware protection, defense against zero-day threats, and improved network security.
Read full review
AK
Ala Khalil
PreSales Director at a marketing services firm with 51-200 employees
Nov 11, 2018
The features that I find most valuable are the MIR (Mandiant Incident Response) for checks on our inbound security.
Read full review
SA
Sandip Arote
Technical lead at a tech services company with 51-200 employees
Feb 10, 2019
Before FireEye, most of the times that an incident would happen nobody would be able to find out where or why the incident occurred and that the system is compromised. FireEye is a better product because if the incident already happened I know that the breach is there and that the system is compromised so we can take appropriate action to prevent anything from happening.
Read full review
AE
Antonio El Khoury
System Engineer at IRIS
Feb 21, 2019
Application categorization is the most valuable feature for us. Application filtering is very interesting because other products don't give you full application filtering capabilities.
Read full review
Sysengine0946 - PeerSpot reviewer
Sysengine0946
System Engineer at a tech services company with 1,001-5,000 employees
Feb 25, 2019
Its ability to find zero-day threats, malware and anything malicious has greatly improved my customer's organization, especially for protecting the users' browser.
Read full review
DepAssist9876 - PeerSpot reviewer
DepAssist9876
Deputy Assistant Secretary with 201-500 employees
Feb 25, 2019
We see ROI in the sense that we don't have to react because it stops anything from hurting the network. We can stop it before we have a bigger mess to clean up.
Read full review
Show 10 more reviews (out of 29)
 

Trellix Network Detection and Response Cons review quotes

it_user229392 - PeerSpot reviewer
it_user229392
Senior Network Security Analyst at a manufacturing company with 5,001-10,000 employees
Apr 27, 2015
A lot of false positives.
Read full review
it_user298434 - PeerSpot reviewer
it_user298434
NetworkEngineer informaton security at a tech services company with 51-200 employees
Aug 26, 2015
Cluster option is not available in NX, and for false positives we need some customization configuration available, such as a whitelist.
Read full review
it_user494931 - PeerSpot reviewer
it_user494931
Master Consultant (Network Security) at a tech services company with 1,001-5,000 employees
Jul 11, 2016
FireEye’s main feature is its sandboxing or threat emulation capabilities to detect malware with extra add-ons such as signature-based IPS or endpoint protection, but these features are lacking compared to most IPS or endpoint vendors.
Read full review
Buyer's Guide
Trellix Network Detection and Response
February 2026
Free Report: Trellix Network Detection and Response Reviews and More
Learn what your peers think about Trellix Network Detection and Response. Get advice and tips from experienced pros sharing their opinions. Updated: February 2026.
DOWNLOAD NOW
884,933 professionals have used our research since 2012.
SeniorNe6c94 - PeerSpot reviewer
SeniorNe6c94
Security Engineer at Tenece Professional services
Dec 18, 2017
There is a lot of room for Improvement in the offering, from cost to functionality. It is pretty straightforward to implement which is an advantage. However, it falls short in pricing, detection capabilities, and, most importantly, reporting and policy management.
Read full review
it_user792615 - PeerSpot reviewer
it_user792615
Security Consultant at a tech services company with 51-200 employees
Dec 21, 2017
Management of the appliance could be greatly improved.
Read full review
AK
Ala Khalil
PreSales Director at a marketing services firm with 51-200 employees
Nov 11, 2018
The world is currently shifting to AI, but FIreEye is not following suit.
Read full review
SA
Sandip Arote
Technical lead at a tech services company with 51-200 employees
Feb 10, 2019
It doesn't connect with the cloud, advanced machine learning is not there. A known threat can be coming into the network and we would want the cloud to look up the problem. I would also like to see them develop more file replication and machine learning.
Read full review
AE
Antonio El Khoury
System Engineer at IRIS
Feb 21, 2019
Based on what we deployed, they should emphasize the application filtering and the web center. We need to look deeper into the SSM inspection. If we get the full solution with that module, we don't need to get the SSM database from another supplier.
Read full review
Sysengine0946 - PeerSpot reviewer
Sysengine0946
System Engineer at a tech services company with 1,001-5,000 employees
Feb 25, 2019
The problem with FireEye is that they don't allow VM or sandbox customization. The user doesn't have control of the VMs that are inside the box. It comes from the vendor as-is. Some users like to have control of it. Like what type of Windows and what type of applications and they have zero control over this.
Read full review
DepAssist9876 - PeerSpot reviewer
DepAssist9876
Deputy Assistant Secretary with 201-500 employees
Feb 25, 2019
Cybersecurity posture has room for improvement.
Read full review
Show 10 more reviews (out of 29)

Product Categories

Product Categories
Advanced Threat Protection (ATP)
Network Detection and Response (NDR)

Popular Comparisons

Popular Comparisons
Microsoft Defender for Endpoint vs Trellix Network Detection and Response Logo
Microsoft Defender for Endpoint vs Trellix Network Detection and Response
Darktrace vs Trellix Network Detection and Response Logo
Darktrace vs Trellix Network Detection and Response
Microsoft Defender for Office 365 vs Trellix Network Detection and Response Logo
Microsoft Defender for Office 365 vs Trellix Network Detection and Response
Proofpoint Email Protection vs Trellix Network Detection and Response Logo
Proofpoint Email Protection vs Trellix Network Detection and Response
Vectra AI vs Trellix Network Detection and Response Logo
Vectra AI vs Trellix Network Detection and Response
Palo Alto Networks WildFire vs Trellix Network Detection and Response Logo
Palo Alto Networks WildFire vs Trellix Network Detection and Response
Cisco Secure Network Analytics vs Trellix Network Detection and Response Logo
Cisco Secure Network Analytics vs Trellix Network Detection and Response
Microsoft Defender for Cloud Apps vs Trellix Network Detection and Response Logo
Microsoft Defender for Cloud Apps vs Trellix Network Detection and Response
Gigamon Deep Observability Pipeline vs Trellix Network Detection and Response Logo
Gigamon Deep Observability Pipeline vs Trellix Network Detection and Response
Anomali vs Trellix Network Detection and Response Logo
Anomali vs Trellix Network Detection and Response
Palo Alto Networks VM-Series vs Trellix Network Detection and Response Logo
Palo Alto Networks VM-Series vs Trellix Network Detection and Response
Microsoft Defender Vulnerability Management vs Trellix Network Detection and Response Logo
Microsoft Defender Vulnerability Management vs Trellix Network Detection and Response
ThreatLocker Zero Trust Platform vs Trellix Network Detection and Response Logo
ThreatLocker Zero Trust Platform vs Trellix Network Detection and Response
Red Canary vs Trellix Network Detection and Response Logo
Red Canary vs Trellix Network Detection and Response
NetWitness NDR vs Trellix Network Detection and Response Logo
NetWitness NDR vs Trellix Network Detection and Response
See all alternatives

Product Categories

Product Categories
Advanced Threat Protection (ATP)
Network Detection and Response (NDR)

Popular Comparisons

Popular Comparisons
Microsoft Defender for Endpoint vs Trellix Network Detection and Response Logo
Microsoft Defender for Endpoint vs Trellix Network Detection and Response
Darktrace vs Trellix Network Detection and Response Logo
Darktrace vs Trellix Network Detection and Response
Microsoft Defender for Office 365 vs Trellix Network Detection and Response Logo
Microsoft Defender for Office 365 vs Trellix Network Detection and Response
Proofpoint Email Protection vs Trellix Network Detection and Response Logo
Proofpoint Email Protection vs Trellix Network Detection and Response
Vectra AI vs Trellix Network Detection and Response Logo
Vectra AI vs Trellix Network Detection and Response
Palo Alto Networks WildFire vs Trellix Network Detection and Response Logo
Palo Alto Networks WildFire vs Trellix Network Detection and Response
Cisco Secure Network Analytics vs Trellix Network Detection and Response Logo
Cisco Secure Network Analytics vs Trellix Network Detection and Response
Microsoft Defender for Cloud Apps vs Trellix Network Detection and Response Logo
Microsoft Defender for Cloud Apps vs Trellix Network Detection and Response
Gigamon Deep Observability Pipeline vs Trellix Network Detection and Response Logo
Gigamon Deep Observability Pipeline vs Trellix Network Detection and Response
Anomali vs Trellix Network Detection and Response Logo
Anomali vs Trellix Network Detection and Response
Palo Alto Networks VM-Series vs Trellix Network Detection and Response Logo
Palo Alto Networks VM-Series vs Trellix Network Detection and Response
Microsoft Defender Vulnerability Management vs Trellix Network Detection and Response Logo
Microsoft Defender Vulnerability Management vs Trellix Network Detection and Response
ThreatLocker Zero Trust Platform vs Trellix Network Detection and Response Logo
ThreatLocker Zero Trust Platform vs Trellix Network Detection and Response
Red Canary vs Trellix Network Detection and Response Logo
Red Canary vs Trellix Network Detection and Response
NetWitness NDR vs Trellix Network Detection and Response Logo
NetWitness NDR vs Trellix Network Detection and Response
See all alternatives
Related questions
  • 46
How much do independent test results affect your security purchases?
  • 19
Holding Security Vendors Accountable
  • 20
What can businesses do to improve their security posture?
  • 21
When evaluating Advanced Threat Protection, what aspect do you think is the most important to look for?
  • 150
What is your recommended cost-effective solution to detect and prevent APT attacks?
  • 69
Compromise Assessment vs Threat Hunting
  • 36
What are the main evaluation criteria for you when choosing the right vendor for brand protection services?
  • 161
Why is ATP (Advanced Threat Protection) important for companies?