Trend Micro Deep Security Reviews

The primary use case of this solution is for anti-malware and virtual paths.

The most valuable feature of this solution is the virtual path function, which is the reason we chose to implement it.

I would like to see an EDR function for the servers, as that would be useful for us.

Detection and Response directly to the servers.

I have been using Trend Micro Deep Security since last year.

It's a stable product. We have not had issues.

We have a team of 40 to support and maintain this solution.

This is a scalable solution. We have 2,000 users and a total of 20,000 staff members in our organization. We have more than 40 hospitals in Thailand.

We are satisfied with the support that we have received.

We are also using CrowdStrike.

Also, we were using Kasperky for anti-malware for the servers.

The initial setup was not easy because when we deployed it, we had to restart our server, and needed permissions from our client.

It took approximately six months to deploy.

I recommend this solution to others who are interested in using it.

I would rate this solution a ten out of ten.

We are primarily using the product for IDS, IPS, and deep security.

It provides the type of data and availability that we need to have. We don't have to worry about intrusions.

• They delivered what they said that they would.
• The IDS and IPS features.

Trend Micro is not government certified or federal complaint. If they could become compliant/certified, this would make it easier for us to use it for our government projects.

I would give the product's stability a high rating. We trust the Trend Micro brand.

We are not that big in size, so we haven't had any scalability issues.

We are experiencing major technical support issues right now, and the technical support has been reasonable about fixing them.

The integration and configuration of Trend Micro in our AWS environment was easy. We haven't had any issues with this at all.

We did not purchase it through the AWS Marketplace because we have used Trend Micro in the past. We have not compared the pricing and licensing of buying it on the AWS Marketplace.

We also considered Pure Storage. In the end, we decided to only pursue Trend Micro because it is easier for us to install and use. The decision to use Trend Micro was based on cost, brand name, and ease of use.

I would recommend Trend Micro. We are happy with them. In the current world, you have to earn the business because it is like a subscription, and they keep us happy.

We don't have Trend Micro integrated with any other product except for our internal cloud solution. We just use the AWS version of the product.

It is lightweight and provides a multi-platform for the client. It combines host intrusion prevention and provides AV, file monitoring, log collection, etc. in a single agent.

There are a good signature set and a high rate of detection.

It is one of the best client protection available for cloud computing.

I have used this product for three years.

Installation and operations may have issues on some machines owing to their configuration of the network cards as the product is a DPI driver. The typical client-server issues exist as with any other product.

The setup is simple as the agent provides a feature called as the Recommendation Scan. This scans the profiles of the host computer and provides recommendations on the appropriate signature and the policies to apply.

The installation of the agents, subsequent patching of the agents, etc. can be automated, thereby reducing the management overhead.

We evaluated McAfee and Symantec.

If you are looking for an all-rounder for endpoint protection, then don't look any further than TM Deep Security.

It gives clients an additional view of what's happening in their data centers.

Deep Security is on-prem at this stage, but it has got cloud workload protection that has similar functionality in the cloud.

In addition to providing our clients a view of what's happening in their data centers, it also does virtual patching in the data center. It enhances the security in the data center big time.

What this product lacks at this stage is the ability to have automated workbooks to do the response. At this stage, the response is more manual, and it is not automated. If there is a response functionality in Deep Security, similar to what we have in EDR these days, to automatically respond to some of the threats, it would be cool. So, we'd like to have an automated response. There should be a response functionality.

We have been providing this solution for a few years.

It is stable.

It is scalable, but it is fairly expensive.

In terms of its usage, we're not using it internally. We have three clients at the moment. They are fairly big clients.

Their technical support is good.

It is a bit more difficult because it needs a bit of hardware, etc. Deep Security is more complex to set up than web security. Implementing Deep Security properly is usually about a week's worth of work because of the change control in the company. It is the change control that's an issue.

In terms of people required for its deployment, one engineer is usually enough.

Most of it is annual at this stage.

I would definitely recommend it for medium enterprises. 

I would rate it a seven out of ten.

The comprehensive agility is the most valuable feature. It's very agile and flexible, and performs multiple tasks simultaneously very effectively. We're able to do firewalls, IPS, and log inspections with it.

It's very difficult for an enterprise, especially one of our size, to patch effectively at all times. The IPS helped us with this. Oftentimes, there's a delay between discovery of malicious threats and production of patches. The IPS allows us to virtually protect against those threats before true patches can be applied to our inputs.

Deep Security is a fantastic product but there are certain little details that could be tweaked or improved to make it a ten.

VMware and Trend Micro are pursuing a strategy to develop a light version of NSX that will allow us to run it agentlessly.

They also need to offer support for Apple machines. Almost every vendor I've seen, they're all junk. For Trend Micro to take a step either with their office-end product or with Deep Security to actually protect Macs, that would be a huge game-changer for iOS.

We've been using it for three years.

We've had no issues with deployment.

Overall, I'd say the product is very stable, both agentless and agent-based. Agentless is less stable due to the nature of how many moving parts have to be working and in place for the whole system to work effectively. However, moving forward with the relationship with VMware, agentless protection is not going to be possible without VMware NSX setup with the environment.

Our organization has 1,500 servers and 18,000 endpoints -- and it's growing.

Trend Micro has excellent technical support.

Starting off with agentless, it was complex. With agentless, you have a lot of moving parts and they all have to be in-sync and working together for the whole system to work. It adds a level of complexity with vShield, the DSVA's, and all the different moving parts.

Come up with a solid working plan before you even think about actually implementing anything. The foundation is all in the preparation, the education and the project management.

No product is perfect. Deep Security is a fantastic product but there are certain little details, I think, that could be tweaked or improved. Do your homework, engage Trend Micro, get trained, get all the knowledge you can and come up with a solid working plan before you even think about actually implementing anything.

Deep Security is a server protection product. We use it for virtual patching and file integration. You can use this with your cloud or an NX environment, virtual services, VMware, etc. 

Deep Security is a good product for managing a few servers.

I've been using Deep Security for more than five years.

Performance is fine. You need to keep an eye on the new files getting detected, or so you have to keep on applying those file folders. So you have to keep monitoring, or else it is not going to help. So especially for the file integrity model and all. 

I don't know about the scalability, but it's good for few servers where you can manage. 

There is a local Trend Micro team in Mumbai that we call for support or to log a ticket.

Deployment and post-deployment implementation are a little complicated. We can't touch servers, and we can't modify the settings. It should be automated, and Trend Micro should make the process more intelligent. The scope is broad, and you have to manually monitor the file scans and respond whenever there is a detection. 

The deployment itself is not that difficult because it's client based. So you want to install clients on each of those servers, and then you have to keep monitoring and adding features. You check the server's performance, and if everything is fine, you can keep adding servers. But post-implementation is time-consuming. You have to do monitoring, and that takes time. After you set up everything, it's not a full-fledged implementation. You have to keep on monitoring and configuring. 

And there are times when the malware protection or some other virtual patching is working fine, but you need a technician to get all the more advanced features to work. It takes around two or three technicians to implement. Our team is responsible for security while a different team handles server management. Then there are one or two people who manage the security console. And then, there are OEM support and SI support.

We have a subscription. It's not a surface subscription. It's only the AMC part.

I rate Trend Micro Deep Security six out of 10. I would recommend it. It depends on the other security controls you have in place. If you're using the entire Trend Micro suite, then you have a PT web gateway. So if you have the whole suite, you have tight integration with your APT and firewall story. In that case, Trend Micro Control Manager is there. So you have everything tied to a single console, so security and everything play as a complete story.

Trend Micro makes up part of our overall security solution.

This product offers good protection against many types of malware.

The most valuable feature is the virtual patching. It means that you don't have to patch applications manually, such as the monthly updates that are released from Microsoft.

Application integration is good. For example, there is a specific module for SAP.

They need to build in a central console because central integration is not very good right now. I have four locations and I need to log in to each location's portal to look at it. That is a very big job and I would like to have a consolidated report for all of them.

We would like to see the advanced threat protection (ATP) built-in, without having to use another product.

I have been working with Trend Micro Deep Security for three years.

I have never had an issue with stability. Some of my colleagues have had problems but technical support dealt with them quickly.

My colleagues were able to receive support for issues quickly. I would rate the support a nine out of ten.

I also have experience with McAfee and one of the nice features it has is a central portal, where different locations are integrated and I can do everything from one place.

The initial setup is not at all complex. Anybody can do the implementation. The length of time required for deployment depends on how many systems are being integrated.

This is a product that I definitely recommend.

I would rate this solution a nine out of ten.

The HIPS feature, as well as the monitoring around the file integrity, are very valuable aspects of the solution. 

The vulnerability scanning reduces false positives by quite a bit.

The client can show as offline sometimes, and that becomes a bit difficult for troubleshooting. We end up basically redeploying the client. This is something that could be improved in the future.

It would be helpful if they added more machine learning into the solution in the future.

The solution is largely stable, except for the fact that when the client communication breaks, you end up troubleshooting and you sometimes have to redeploy to get the client to establish the connection again.

The solution is good from a scalability perspective. It doesn't take much effort.

Technical support is okay. I would rate them 7.5 out of ten. My experience with Trend Micro has been that if there are issues with respect to databases, it takes time for them to resolve the problem.

The initial setup is straightforward. From a deployment perspective, I would say all vendors are quite similar.

We largely work with enterprise-level organizations.

I advise others to make sure that any recommendations in terms of system requirements that have been given to them are followed properly. 

I would rate the solution 8.5 out of ten.