Trend Vision One Endpoint Security Reviews

Some customers require on-prem endpoint protection. When they need endpoint protection and DLP features with ransomware protection and firewall features, I use this product. And when they need multi-layer security, like application layers, network layers, IoT devices, and network switches, then I provide the XDR solution. 

As resellers, we benefit from the solution offering multiple events, seminars, and more, to gain knowledge and help clients. The solution offers a lot of updates and support to their partners. Solutions like Sophos don't have principals in our country (Pakistan) either. They are in the UAE. 

The core endpoint protection is the most valuable aspect. The DLP features are very good. The firewall security is also excellent. 

When a customer wants DLP features and endpoint protection, they can not get it from Sophos or Kaspersky. Only Trend Vision offers certain features.  

Trend Vision One Endpoint Security is great for defending endpoints against threats such as malware and malware and malicious scripts. Their AI feature is very attractive and very good as compared to the other malicious traffic detecting solutions. Trend Vision has excellent AI features and sensors are available when we use the XDR solution. 

They provide email sensors in the network devices. They provide the sensor in firewall traffic. The sensors are very good, and they're working well. 

Trend Vision offers virtual patching, which is a very good feature.

It has advanced protection capabilities that adapt to protect against unknown and known threats. They are connected with the global threat intelligence forum. They also have their own threat intelligence. They get data, use sensors, and have the capability to mitigate various attacks, including zero-day attacks. 

It detects ransomware with runtime machine-learning capabilities. Benchmark protection is necessary when customers have confidential data. They need the backup solution or they need two anti-ransomware detectors to make sure they are protected. That way, when attackers compromise any end users, they stay on the end user, and cannot spread. 

The product provides our customers with a single console for cross-layer detection, threat hunting, and investigation. They have a central dashboard for network administrators who can control everything from one window and analyze all of the end users and their activities. We can do single threat hunting from the console. Customers want the ability to see all events in their network and on their endpoints. It makes administration easy and more user-friendly. 

There's visibility into the entire IT security environment. This end-to-end visibility reduced our customer's response times by 30% to 40%.  

Trend Vision One Endpoint Security integrates with other security products. You can integrate with other Trend Vision products and third-party solutions like firewalls. The productivity with the integration goes from 70% to 80% up to 100% when you integrate with Trend Vision solutions. It's better to create a Trend Vision environment. 

Trend Vision One Endpoint Security deploys rapid updates to endpoints. Their sandbox is good. They have, as mentioned, very good threat intelligence. They're sharing details on global direct intelligence with Palo Alto, Kaspersky, and Sophos. They share all the events, and all the intelligence, and upgrade their sandbox accordingly. 

The updates to endpoints are very good and necessary to ensure protection from the latest threats. 

The learning curve is low. It's easy and user-friendly to learn. You need to be a bit technical to properly administer the product.

Trend Vision One Endpoint Security offers very good virtual patching. This is important for customer networks. The patching allows multiple authorities to double source patching of endpoints. This helps with audits, as it allows for regular patching to ensure endpoints are up to date and protected according to compliance requirements. 

We've seen reductions in viruses and malware since using the product. There are multiple levels of scanning, and AI helps to reduce threats and viruses. We've seen an overall reduction of 70% to 80%.

It's reduced administrative overhead overall thanks to its centralized dashboard and single network administrator. It reduced overhead by about 50%.

The main problem I faced with the solution was when customers were trying to buy the solution, they wanted a reasonable price, and when you compare this with Sophos or Kaspersky, Trend Vision is competitively more expensive. The price is the main concern of the clients. Otherwise, the solution is very good.

I'd like to see Trend Vision One Endpoint Security include role functionality and server protection. Users should have better email protection to ensure high results.

Customers would like DNS security improved in the product.

I've used the solution for three years or more. 

The solution is stable. 

Customers have been very happy with their ability to add endpoints. 

We manage the SLA for one- to three-year periods, and if any policies need changing, etc., we are there to help customers. There are people who monitor the network and offer on-call support. When customers need field support, my team can assist.

When we do need the assistance of support, we've been satisfied with their response. They are quick and effective.

Positive

I'm not a fully technical person, so I was not directly involved in the deployment. My pre-sales manager was largely involved in deploying and handling the dashboard as well as administering it to multiple end-users. If we run into any trouble, we can get help from Trend Vision sales. They can provide guidance. 

The solution is working okay. There is no maintenance needed. 

The solution is quite expensive.

I'm a reseller. We sell the product to clients. Some of my customers want DLP and firewall options, and some require endpoint protection. Trend Vision One Endpoint Security is powerful when a customer requires protection and not detection. I'm also working with Trend Vision's XDR solutions.

I'd rate the solution nine out of ten.

I create real-life scenarios with products and work with products such as Trend Micro, CrowdStrike, SentinelOne, Palo Alto, etc. Trend Micro is not my focus item or brand. My focus is more on CrowdStrike, but I am using Trend Micro in my lab environments to check the real-life situation. I am not okay with what vendors share on their websites, so I give my customers and partners real-life scenarios.

I offer Trend Micro Apex One to our customers just because they want a secondary signature-based solution.

Apex One did not work as per my expectations. I am doing zero-day attacks by myself, and for fileless attacks, it does not work at all.

With the current architecture, Apex One does not have advanced protection capabilities that adapt to protect against unknown and stealthy new threats. It might have these capabilities in the future if they change the architecture. For instance, McAfee merged with FireEye and created a new brand Trellix. They changed the overall architecture. If Trend Micro considers shifting its architecture, it can get this kind of protection.

Apex One is okay for detecting ransomware with runtime machine-learning capabilities. It has some signature-based protection against ransomware, but it may miss the ransomware, which has been a huge threat at least for the last seven or eight years. It is the foundation of zero-day protection, and that is why I am looking for a more capable solution besides Trend Micro.

Apex One integrates with other security products. As part of this integration, when a threat is detected in the network sandbox, it deploys rapid updates to endpoints, which has huge importance because if you can respond to events in a short time, you get the least damage from attacks. It is of huge importance.

Apex One provides us with virtual patching to protect against vulnerabilities even before a patch is available for the source of the issue, but it is a problem in itself because it consumes too many resources on an endpoint. It is a good feature, but it is a problematic feature because it consumes lots of the system resources. If you use signature-less architecture, you do not have to deal with virtual patching because all attack types are already addressed with some framework, such as the MITRE ATT&CK framework. You do not have to deal with virtual patching at all.

There has been no reduction in viruses and malware since moving to Apex One because my customers are using it as a secondary solution. They have primary products, and there are not many things left for Apex One. My customers are using it as a secondary solution just because of their habits of using signature-based. Some of my customers could not understand the concept of signature-less protection. Antiviruses have been there for 40 years or so, and their habits are a little bit hard to change. That is the reason why I am offering this product.

I offer this solution only if a customer is looking for a signature-based protection solution. Its database is better than most of the endpoint protection solutions.

It is weak in terms of intelligence. By implementing Trend Micro Apex One, I wanted to see real-life scenarios. I deployed it on 50 clients to check if I could do lateral moments and zero-day exploits. I wanted to check how the zero-day protection works with Trend Micro. It fails with most of them because it is signature-based. They are not looking at the MITRE ATT&CK framework, so with zero-day attacks, it mostly fails. Instead of signature-based, Trend Micro may want to change the architecture to use more behavior analysis. Behavior analysis is included with Trend Micro, but it is not a complete set, so it needs enhancement.

Apex One does not provide a single console for cross-layer detection, threat hunting, and investigation. Managing it is a little bit hard. You have to use different consoles for Apex One, Deep Security, and Trend Micro endpoint protection, so managing it is a little bit tricky.

In terms of the learning curve, Apex One is easy for me, but regular users may have some issues. The management of Trend Micro products is a little bit tricky. Apex One does not include every protection in itself, so you have to use endpoint protection, and you have to use Deep Security. If three of them come together, at some point, it will be competitive with next-generation antiviruses or EPPs such as SentinelOne, Microsoft, CrowdStrike, etc.

Its implementation takes too much time. With CrowdStrike, I do not have to restart any operating system, but with Trend Micro, I have to.

Its administration is also a little bit tricky. It is easier when you have background knowledge.

I have been using this product for a year.

Its stability is quite good. I cannot complain about the stability.

It sometimes also depends on luck. The product can sometimes conflict with other products, but to this day, I never encountered any issue like that.

It is a little bit hard to scale as compared to CrowdStrike. I am using on-prem solutions most of the time. With on-prem solutions, it is a little bit hard to maintain, deploy, or scale a product, but cloud products are easier to scale.

I have a centralized customer, and I also have customers who have distributed locations all over Turkey, so I have both types of customers.

It takes a little bit of time, and it can be improved. Sometimes, I get a response in two days, and at other times, I get a response in two hours. It depends. More consistency would be great, but I have already gotten used to this kind of issue, so I cannot complain at all. I would rate them a seven out of ten.

Neutral

I am using other server protections and intelligence products. I still have CrowdStrike in my portfolio. I have clients for that, and I am okay with CrowdStrike.

Its deployment takes time. If I have to deploy it in a huge company with over 10,000 clients, it takes a little bit of time. If I am using CrowdStrike, it would take only two or three days, whereas Trend Micro takes more time. I have not measured the exact time difference, but it takes more time compared to other solutions or the next-gen antiviruses. It also depends on the environment because organizational units are not available all the time.

I deployed it on the cloud and on-premises. It depends on the end-user scenarios and topology. In Turkey, customers mostly prefer on-prem solutions, but this is changing day by day. Customers in Turkey tend to have their information on-premises. If a customer wants an on-prem solution, then I offer them the Trend Micro product or Trellix product. It also depends on their budget.

Its deployment is not too complex in my experience, but from the customer perspective, it is a little bit tricky. It takes a little bit of time. They have to have a little bit of background knowledge.

The implementation strategy varies. Sometimes, I use third-party solutions, and sometimes, I am just pushing from the central management console. It depends on the customer's topology.

In terms of maintenance, it does require maintenance. It depends on the company budget because some of my customers have a few locations in Turkey, and sometimes, they have only one IT specialist. They send that one person everywhere in Turkey or to multiple locations. If they have more than one IT guy and if they are also distributed, they do not have to send those guys to other places. It depends on the customer's budget.

If I deploy the product, then one person is enough, but if I have to leave it to my customers, they need two or three people. They are usually IT specialists, but they are not so knowledgeable.

It takes time, but it is better than some of the other products such as Symantec. Symantec takes more time compared to Trend Micro.

It is okay. Compared to Sophos, it is a little bit expensive, but it is a good product and it is better than Sophos, for instance. It is equivalent to Trellix.

Its cost depends on the country. I am in Turkey, and Trend Micro is not so affordable in Turkey. SMB companies are looking for cheaper products. In Turkey, enterprise customers tend to use Trend Micro, and if they have more money, then they use next-generation antivirus or EPP products such as SentinelOne, CrowdStrike, or Microsoft E5 package.

I evaluate most of the popular brands such as Trellix, Sophos, and Kaspersky.

Trend Micro Apex One has some good benefits, and CrowdStrike also has some benefits. I would recommend Apex One depending on the scenario. I have to check it with my customer first. I have to identify their basic needs and what they want to do. Sometimes, it just matches the requirements, and sometimes, it does not, so it depends.

If you are looking for the productivity of employees, go for a signatureless solution.

For an SMB, I would rate it an eight out of ten.

We use Trend Vision One Endpoint Security for device control and behavior monitoring. I investigate scenarios by the number of Trend Vision One Endpoint Security logs and show the root cause of the issues.

I use Trend Vision One Endpoint Security for work control, application control, firewall, whitelist and blocklist filtration, analysis, monitoring, deep security for the servers, major monitoring, and IPS modules. Although I use Alteryx for encryption, Trend Vision One Endpoint Security is stronger than Alteryx when it comes to communication.

Trend Vision One Endpoint Security should have a DLP module.

I have been working with Trend Vision One Endpoint Security for three years.

Trend Vision One Endpoint Security is a very stable solution, and I haven't faced any issues.

Trend Vision One Endpoint Security is a scalable solution, and we can increase its license for a lot of users.

The pricing is good.

I would recommend Trend Vision One Endpoint Security to other users for stronger security, documentation, and support.

I'm working for a company that is a partner for Trend Vision. We act as an intermediary between the vendor and the customer.

Trend Vision One Endpoint Security is more comfortable for administration, and its customer support is good.

If I want to make a ticket for Trend Vision, I can make it via Trend Vision support or contact its partner.

The capability to defend endpoints against threats is very strong because it uses a signature-based outlet. I can investigate threats using vendors like Trellix and Carbon Black, but Trend Vision is the first to detect malware, ransomware, and malicious scripts.

Trend Vision One Endpoint Security has advanced protection capabilities that adapt to protect against unknown and stealthy new threats. It's very important as the algorithms of Trend Vision communicate with the One Endpoint Security appliance and provide feedback with all of the updated signatures.

Trend Vision One Endpoint Security detects ransomware with runtime machine learning capabilities because it has a malware protection module, and it's very important to us.

Trend Vision One Endpoint Security can integrate with Trend Vision Ericsson solution and take logs from it. We can integrate Trend Vision One Endpoint Security and Trend Vision DDAN.

It is very easy to learn Trend Vision One Endpoint Security.

It is easy to administer Trend Vision One Endpoint Security.

It took just one day for us to realize the benefits of Trend Vision One Endpoint Security from the time of deployment.

Since moving to Trend Vision One Endpoint Security, we have seen an 80% reduction in viruses and malware.

Trend Vision One Endpoint Security has reduced administrative overhead for us by 100%.

Overall, I rate Trend Vision One End point Securityten out of ten.

It serves as a comprehensive solution for antivirus scanning across all endpoints. It facilitates the deployment of the application portal within the access center, ensuring device control for vulnerability protection which enables the implementation of device-blocking measures to enhance security.

It safeguards endpoints by detecting threats like malware or malicious scripts, employing features such as behavior monitoring and machine learning. This includes detecting zero-day attacks and analyzing application behaviors for enhanced security. It delivers excellent products for effectively safeguarding endpoints, utilizing advanced features that enhance protection and mitigate various threats. It is equipped with advanced ransomware detection capabilities through real-time machine learning. 

This detection is not solely reliant on signatures; instead, it incorporates built-in features for proactive identification of ransomware threats, offering an advanced and pre-emptive approach to detection. A single console facilitates cross-layer detection, and access to the central console is necessary for on-premises solutions. In the SaaS-based model, the EDR console serves as the unified interface. 

This single console allows for threat hunting, investigations, incident management, playbook creation, and incident response. It is essential as it provides end-to-end visibility into the entire IT security environment, especially in EDR. However, challenges may arise when dealing with endpoints that contain files lacking signatures or behavior detection capabilities. To address this, a sandboxing solution becomes crucial to analyze and understand the behavior of such files. 

It offers the capability to swiftly deploy updates to endpoints, allowing for the immediate deployment of patches or signature files in response to incidents or attacks. In scenarios with no existing signatures, the support team from the OEM can provide the necessary signatures, and these can be promptly pushed to the Apex One Center. 

Timely updates are crucial for us as they help us maintain security. 

Since transitioning to Apex One, we have observed a notable decrease in viruses and malware. 

Our product now detects threats much faster, leading people to express confidence in the effectiveness of our custom machine-learning capabilities, evident in the significant reduction in detection times. Utilizing an independent cloud has significantly reduced the workload for our staff by eliminating the need to manage hardware, operating systems, and applications. 

Daily tasks such as console endpoint restarts, application protection, and agent communications compliance become more straightforward. The ease of managing these aspects is a notable advantage. 

Moreover, the SaaS solution proves particularly beneficial when customers are unable to provide on-premises infrastructure for applications. Users can effortlessly log in, deploy agents, and manage tasks without the complexities associated with on-premises solutions, which depend on factors like hardware, databases, operating systems, networks, proxies, and other variables.

The standout and highly valuable feature of Apex One is its XDR capability. 

Featuring advanced protection capabilities that dynamically adapt to defend against evolving and emerging threats, Apex One stands out. Detecting ransomware and utilizing machine learning capabilities are crucial features, especially for safeguarding customer environments. 

It stands out as a pioneer in incorporating these features within its antivirus solution. Trend Micro was the first to integrate behavior-based analysis, signatures, and reputation-based detection to enhance protection against ransomware and other threats. 

The learning curve for Apex One is minimal, as it is a straightforward and user-friendly product. The graphical user interface is simple, making it easy to navigate without the need for additional training or complex documentation. 

The terminology and features are presented in a common and basic language, ensuring that anyone can comprehend and work with the product easily. 

Administering it is also a straightforward process. It offers virtual patching capabilities to safeguard against significant vulnerabilities. This involves an active signature-based approach to virtual patching. 

The added value that managed XDR brings to our Apex One deployment is significant.

There is room for improvement in the reporting aspect. Custom-level reporting is crucial for in-depth analysis and its significance is evident in the effectiveness of managing and prospecting products.

I have been working with it for fifteen years.

In terms of stability, Apex has proven to be a reliable product with no reported downtime requirements. In my experience, I haven't encountered any significant challenges. The only instances of the console being down were typically related to database issues, such as log saturation or routine database maintenance.

It's a scalable solution with good performance.

The support has been challenging, particularly when utilizing bots during customer calls, as it often results in ineffective solutions. The primary issue revolves around prolonged resolution times. Even with ongoing follow-ups, cases remain unresolved within the anticipated timeline. The consistent request for logs implies that multiple submissions may be necessary for a potential solution or resolution. Enhancements in specific areas are required to improve the overall support process. I would rate it seven out of ten.

Neutral

Deploying the on-premises solution is a seamless process, especially when dealing with the application components. Apex One or Apex Central is the management console, with Apex One managing antivirus consoles, groups, and parts. Policies can be efficiently pushed through Apex Central. The agent itself is equipped with XDR capabilities for on-premises solutions. Conversely, an additional service installation on endpoints is necessary for cloud-based implementations. The deployment process is relatively quick, typically taking around half an hour

Opting for cloud solutions can provide a more cost-effective and efficient alternative, with fewer dependencies on physical setups and unexpected costs associated with on-premises tasks.

Integration capabilities exist for Trend Micro with its own suite of security products, allowing seamless collaboration. However, integration with Apex One may not be supported regarding other security products from different vendors or OEMs, such as Central One, CrowdStrike, or Palo Alto. Overall, I rate it nine out of ten.

I work with Trend Micro Apex One and Vision One. The solutions are also integrated with ServiceNow ITSM. When we detect issues with Apex One, we can open up tickets in ServiceNow to address them. We customize the solution for our clients. The types of policies we implement in ApexOne depend on the customer's situation. 

Apex One has helped us mitigate a lot of threats like phishing and malware. We've seen a reduction of about 30 percent. 

I like Apex One's USB port blocking. We implement different policies for each client. For example, a client might ask us to block certain USB devices or require us to restart a desktop on the network. We can track threats across the network and delete viruses on the endpoint level from a desktop or a laptop. Apex One offers cloud security for large companies that need to monitor and mitigate external threats. It's crucial to have end-to-end visibility from a central console. 

Apex One's account security could be improved. 

I have used Trend Micro Apex One for about six months.

Apex One is stable. 

Apex One is scalable. 

I rate Trend Micro support eight out of 10. I have had no problems with Trend Micro support. 

Positive

We previously used McAfee EDR. I like Apex One much better. 

Apex One isn't complex to set up. The deployment time depends on the size of the company. It could take a few weeks in some cases. A five-person team deployed the solution. 

Apex One is relatively inexpensive. 

I rate Trend Micro Apex One eight out of 10. It's an excellent solution that helps companies mitigate attacks from the internet.

I am supporting many clients with this solution. Each of my clients is using a different version based on their requirements.

Trend Micro Apex One is used for security for our endpoints, such as Microsoft Windows and mobile devices.

The most valuable feature of Trend Micro Apex One is the response time and detection module.

The solution could improve the Linux XDR functionality. It is not mature. There could be some improvement in the area of the use cases. For example, improvement is needed in OTN. 

There are times when the solution reboots during the installation that could be minimized or improved.

I have been using Trend Micro Apex One for approximately four years.

The solution can be unstable depending on what version is being used.

I rate the stability of Trend Micro Apex One a seven out of ten.

We have over 25,000 users using this solution and approximately four clients.

The solution is scalable.

I rate the scalability of Trend Micro Apex One an eight out of ten.

The support from Trend Micro Apex One is helpful. However, they only provide documents for XDR multiple integrations that could be improved. We had to search for more information ourselves.

I rate the support of Trend Micro Apex One an eight out of ten.

Positive

The initial setup of Trend Micro Apex One is simple if it is a fresh installation and can take only minutes. However, if there are other solutions set up prior it will take more time.

There are use cases that require assistance to implement the solution.

I have approximately five people for the maintenance of the solution.

I rate Trend Micro Apex One an eight out of ten.

We use Trend Micro to build our entire, CI/CD pipeline. In short, I check out the code from my VCS (Version Control System), then I run a static code analysis as the first job in the pipeline.

From that point onward, I can do multiple scans in multiple environments. For example, I can have the code checkout from my Dev environment, run the static code analysis, then I can do a folder scan. I perform the scan in my Dev environment, in the integration environment, and in the UAP environment. These are the multiple scans that you can run and enter on your application.

All the static code analysis is on the application-side, and the rest of the workflows can be triggered in several places throughout the pipeline and on the infrastructure side as well. I can use it to do VAPT (vulnerability assessment and penetration testing) throughout the entire pipeline.

Broadly speaking, it means adopting the DevOps culture of Trend Micro. DevOps culture is well adopted in Trend Micro. It's very comparable to Prisma Cloud. Palo Alto has recently informed me about their Prisma Cloud offering regarding CI/CD deployment.

We develop and deploy the CI/CD pipeline in the free workflow, using various tools like GitLab.

Palo Alto is a big competitor of Trend Micro.

Within our organization, there are roughly 1,000 plus users, using Trend Micro.

We definitely plan on using Trend Micro in the future. They are one of our preferred vendors, along with Forescout.

Forescout handles the initial stages of threat discovery and it integrates with SIEM.

If we are going to continue with Trend Micro as our endpoint security solution, then we need to have a SIEM solution, like IBM QRadar, ArcSight, Forescout, Micro Focus ArcSight.

Trend Micro does region-based scanning — the threats are shown in different regions.

I did some workshops based on tracking zero-day vulnerabilities, etc.

Trend Micro's coverage and scans can be broadened to encompass different types of classified threats based on different parameters.

For example, say I want to filter out all of the threats in The United States. In this case, I will see the US region and I will see the number of threats that are present on my infrastructure. This is referred to as threat intelligence.

When I was in this workshop, the filters always recommend that we start with the region as a first parameter. Once you get into the region (the US region), you might look at the different data centers within the US, then within the different data centers, you can drill down on the folder — on the number of hosts.

The host can then be extracted from the region and the region can be marked red. Red means there are a lot of vulnerabilities in a particular region. If Multiple hosts have multiple vulnerabilities, then the entire region will be marked red. Trend Micro somewhat shows this on their dashboard. In other words, the parameters should be improved, including zero-day filtering.

They should include easy-to-use connectors to make it easier to connect to SIEM. The integration environment has to be available so it can easily connect to SIEM. 

Also, you should be able to perform more scans.

I have been using Trend Micro for two years.

Trend Micro is both scalable and stable.

We are satisfied with the technical support. They are available 24/7.

The initial setup was very straightforward. I did the installation by myself.

Regarding deployment topologies, whether it's on-premises, a hybrid cloud, or a public or private cloud, installation is quite easy. It will be up and running within a couple of hours.

Once we deployed it, we had to connect the console to the dashboard. Once the dashboard was up and running, we could filter out threats by connecting to the Trend Micro Data Security Operations Center, which has a threat intelligence ability that highlights all of the threats. The data comes from the CMDB database and It shows us the CVS4 of each threat.

If you buy Trend Micro, you will also need to purchase a SIEM solution which is often quite expensive.

I would definitely recommend Trend Micro to other potential users.

On a scale from one to ten, I would give Trend Micro a rating of eight.

We primarily use the solution for our endpoints. We do occasionally use it for some servers as well.

The general anti-virus on offer is the solution's most valuable aspect.

We're actually looking to upgrade to more sophisticated ADL products. We need a more sophisticated endpoint. We need to have the ability to automate those instant response processes.

I've been using the solution for about a decade. It's been about ten years at least.

The solution is very stable. It doesn't crash or freeze. There aren't bugs or glitches. We find it to be very reliable at all times.

We have between one and 2,000 users on the solution at any given time.

We haven't needed to scale up in the past few years, so I can't speak to its ability to do so.

We have a separate team in-house that handles tickets, therefore, I've never been directly in touch with technical support myself. I can't speak to the level of service they provide.

Since I have been working at the organization, the company has always used Trend Micro. I don't know if they used anything else prior to that. That said, we use a number of other services as security in depth. We have other gateways and firewalls and a bunch of other items that we use.

I wasn't part of the team that implemented the solution. I wouldn't be able to say if it was complex or straightforward.

It's pretty low-maintenance. We do continuous updates and we also update the backend security appliance that goes with it, which probably happens three or four times a year.

The costs of the service fluctuate for us; I can't really say how much it costs our organization in general. I do know that it's not expensive. cost-wise, it's on the lower end of the spectrum. The licensing we have is all-inclusive; there aren't any extra costs involved. If we decide to stay with Trend Micro and upgrade to a better service, we'll be paying a higher price.

We're currently looking for another solution that may be a bit more sophisticated than Trend Micro, so we are currently evaluating other options. We're down to two or three other vendors. Those we've looked at include an upgraded Trend product, Microsoft Defender ATP, XDR, Crowdstrike and MacAfee.

Some of the other products give the capability of virtual sandboxing, endpoint threat detection, automated response, that kind of service.

We're just a customer. We don't have a business relationship with Trend Micro. We're using the latest version of the solution.

OfficeScan offers basic anti-virus security, but if you're looking for more advanced security features, you really need to look at more sophisticated and modern services.

I'd rate the solution five out of ten.