Trend Micro Deep Security Reviews

We use Trend Micro Deep Security for security protection.

The performance is good. It is better than FireEye Email Security.

I would like to see a retroactive alert. If it had the capability of generating retroactive alerts it would be helpful.

While it is stable, it has room to improve.

I have been working with Trend Micro Deep Security for six months.

Trend Micro Deep Security is a stable solution.

Trend Micro Deep Security is scalable.

In our company, we have approximately 1,000 users.

I am satisfied with the technical support that we have.

We are also working with FireEye Email Security.

I was not a part of the installation. It was installed by our technical team.

This solution is maintained and deployed by a team of ten managers and engineers.

We don't pay any licensing fees.

I would recommend this solution to others who are considering using it.

I would rate Trend Micro Deep Security a nine out of ten.

Deep Security is a server protection product. We use it for virtual patching and file integration. You can use this with your cloud or an NX environment, virtual services, VMware, etc. 

Deep Security is a good product for managing a few servers.

I've been using Deep Security for more than five years.

Performance is fine. You need to keep an eye on the new files getting detected, or so you have to keep on applying those file folders. So you have to keep monitoring, or else it is not going to help. So especially for the file integrity model and all. 

I don't know about the scalability, but it's good for few servers where you can manage. 

There is a local Trend Micro team in Mumbai that we call for support or to log a ticket.

Deployment and post-deployment implementation are a little complicated. We can't touch servers, and we can't modify the settings. It should be automated, and Trend Micro should make the process more intelligent. The scope is broad, and you have to manually monitor the file scans and respond whenever there is a detection. 

The deployment itself is not that difficult because it's client based. So you want to install clients on each of those servers, and then you have to keep monitoring and adding features. You check the server's performance, and if everything is fine, you can keep adding servers. But post-implementation is time-consuming. You have to do monitoring, and that takes time. After you set up everything, it's not a full-fledged implementation. You have to keep on monitoring and configuring. 

And there are times when the malware protection or some other virtual patching is working fine, but you need a technician to get all the more advanced features to work. It takes around two or three technicians to implement. Our team is responsible for security while a different team handles server management. Then there are one or two people who manage the security console. And then, there are OEM support and SI support.

We have a subscription. It's not a surface subscription. It's only the AMC part.

I rate Trend Micro Deep Security six out of 10. I would recommend it. It depends on the other security controls you have in place. If you're using the entire Trend Micro suite, then you have a PT web gateway. So if you have the whole suite, you have tight integration with your APT and firewall story. In that case, Trend Micro Control Manager is there. So you have everything tied to a single console, so security and everything play as a complete story.

I used it in my previous company, and it was basically used for security levels. My company was into the implementation of projects, and we used to implement security solutions. Along with Trend Micro, we used to implement these devices. We had several customers of this solution.

The traceback feature in XDR is amazing. You can trace back an attack. You can playback where an attack actually occurred and see how the attacker moved. We can easily show this to management, and it makes it easy to make them understand and convince them, which is the best thing.

There should be more tools to trace back. Some sort of module needs to be included to attach all the things. 

It should be more stable, and the traceback feature should be improved. There were cases when we got virtual analyzer or CMC errors. We got false-positive malware notifications, but we couldn't trace them. I raised a case with Trend Micro two or three times, but they couldn't resolve it. Their support should be improved in terms of technical abilities to troubleshoot complex issues. They should be more knowledgeable.

I have been using this solution for the past three years.

It is stable in a way, but you get false-positive malware notifications.

Their support can be improved. For our case related to the virtual analyzer or CMC error, they couldn't trace back the issue. We were frequently getting notifications on that server, which were false-positive. They couldn't say why this is happening, and what is making this client trigger these errors. They couldn't advise on that. They should be more knowledgeable.

Its initial setup is straightforward. Deployment duration depends on the environment. Sometimes, we needed to deploy two or three devices, and we had to consult Trend Micro. Their best practices are also there.

We had a technical team of four engineers, including me.

I would recommend this solution, but it has scope for improvement. 

I would rate Trend Micro Deep Security an eight out of ten.

The primary use case of this solution is for deep security protection when accessing the internet and when performing online accounting.

An additional feature that should be included in the next release is the ability to scan more document types.

I have been using this solution for five months.

The solution is stable.

The customer service/technical support for this solution is very fast.

The setup is fairly complex. The deployment took around two months.

The solution is considerably cheaper than other similar solutions.

The primary use case of this solution is for anti-malware and virtual paths.

The most valuable feature of this solution is the virtual path function, which is the reason we chose to implement it.

I would like to see an EDR function for the servers, as that would be useful for us.

Detection and Response directly to the servers.

I have been using Trend Micro Deep Security since last year.

It's a stable product. We have not had issues.

We have a team of 40 to support and maintain this solution.

This is a scalable solution. We have 2,000 users and a total of 20,000 staff members in our organization. We have more than 40 hospitals in Thailand.

We are satisfied with the support that we have received.

We are also using CrowdStrike.

Also, we were using Kasperky for anti-malware for the servers.

The initial setup was not easy because when we deployed it, we had to restart our server, and needed permissions from our client.

It took approximately six months to deploy.

I recommend this solution to others who are interested in using it.

I would rate this solution a ten out of ten.

Trend Micro makes up part of our overall security solution.

This product offers good protection against many types of malware.

The most valuable feature is the virtual patching. It means that you don't have to patch applications manually, such as the monthly updates that are released from Microsoft.

Application integration is good. For example, there is a specific module for SAP.

They need to build in a central console because central integration is not very good right now. I have four locations and I need to log in to each location's portal to look at it. That is a very big job and I would like to have a consolidated report for all of them.

We would like to see the advanced threat protection (ATP) built-in, without having to use another product.

I have been working with Trend Micro Deep Security for three years.

I have never had an issue with stability. Some of my colleagues have had problems but technical support dealt with them quickly.

My colleagues were able to receive support for issues quickly. I would rate the support a nine out of ten.

I also have experience with McAfee and one of the nice features it has is a central portal, where different locations are integrated and I can do everything from one place.

The initial setup is not at all complex. Anybody can do the implementation. The length of time required for deployment depends on how many systems are being integrated.

This is a product that I definitely recommend.

I would rate this solution a nine out of ten.

We recommend the use of this solution to our clients, both with virtual and traditional servers.

This has helped our customers keep up to date with security patches. Many customers do not patch their software after a new purchase has been released because there are a lot of other technologies and considerations to be carried out. It takes time to go through all of these, and some customers have not been patched for many years. Especially for those customers, this solution will protect them against those vulnerabilities.

The most valuable feature is the virtual patching. This offers protection of the application before it can be patched by the actual vendor.

Some areas for improvement are:

• There are new additions to the standard product that should be included with the Deep Security version.
• When implementing this solution, sometimes we have challenges with SQL migration.
• Some of our customers complain about the cost of this solution.
• I would like to see an AI component added to the next release of this solution.
• The agent-based version has performance issues and they have to make it more lightweight.
• The forensic analysis capability needs to be improved.

This is a stable and well-known solution in the market. It is especially well-known for use in virtualized server networks. 

We have not faced scalability issues whatsoever. This solution is commonly used for servers, and not in workstations. We only recommend it for the customer's servers.

There are different service levels available for technical support.

When a problem occurs then we collect the logs and submit them. There is some time lost here because we do not always immediately deal with somebody who has sufficient expertise with the solution. This is something that we would like to see change. 

Generally, reaching technical support is fine, but in terms of having problems resolved, it varies. Sometimes it can take three days, while other problems can take three months.

The complexity of the initial setup depends on the customer's environment. There are different methods of deployment. If it is an agentless deployment then there are prerequisites for that. The agent-based version is a bit easier to set up than the agentless version.

They have to go through setting up policies, which will take time to implement and fine tune. They have to make sure that the solution is communicating with the management server, and that there are no conflicts with other applications that are running. If there is anything that is broken or should not be running, then that is fixed. Once the initial application is perfectly up and running without any issues, and the policies have been fine-tuned, there should not be an issue.

Depending on the customer's environment, the deployment time varies. We have deployed some solutions in one day, while others have taken months to complete the fine-tuning. 

Generally, for any implementation, we will not use more than two staff. For cases with more than one hundred machines, this can be a challenge during deployment. 

We do the complete deployment and implementation of this solution for our clients.

We resell a variety of products, some of which are similar to the Trend Micro solution, but our recommendation depends on our customer's requirements. Some customers will demand a particular vendor, such as Trend Micro, while others will specify that they do not want to use solutions by a specific vendor. In these cases, we work on alternative solutions for our clients.

Some of the other options our clients consider are solutions by McAfee, Kaspersky, and Symantec. 

It is important to implement this kind of solution because many people do not have security on their servers. This includes the vulnerability patching that should be done.

This solution has improved over time. They have been introducing third-party plug-ins and integration, and there is a cloud version available as well. 

I would rate this solution a seven out of ten.

The HIPS feature, as well as the monitoring around the file integrity, are very valuable aspects of the solution. 

The vulnerability scanning reduces false positives by quite a bit.

The client can show as offline sometimes, and that becomes a bit difficult for troubleshooting. We end up basically redeploying the client. This is something that could be improved in the future.

It would be helpful if they added more machine learning into the solution in the future.

The solution is largely stable, except for the fact that when the client communication breaks, you end up troubleshooting and you sometimes have to redeploy to get the client to establish the connection again.

The solution is good from a scalability perspective. It doesn't take much effort.

Technical support is okay. I would rate them 7.5 out of ten. My experience with Trend Micro has been that if there are issues with respect to databases, it takes time for them to resolve the problem.

The initial setup is straightforward. From a deployment perspective, I would say all vendors are quite similar.

We largely work with enterprise-level organizations.

I advise others to make sure that any recommendations in terms of system requirements that have been given to them are followed properly. 

I would rate the solution 8.5 out of ten.