We are selling Trellix XDR products including DLP and EPP solutions. We sell Trellix XDR for endpoint protection. We are selling endpoint security with Trellix XDR by correlating the telemetries with the EPP solution for a more enhanced security solution to analyze multiple types of threats such as lateral movement and malware threats. We analyze the severity and create playbooks accordingly. The biggest advantage of selling Trellix XDR is that we are able to integrate multiple security solutions with Trellix XDR, including network, firewall, Microsoft Entra, and cloud solutions. We are able to automate threat detection with Trellix XDR by creating playbooks. We are able to do group-wise security creations of threat investigation and threat prevention, and we are able to do one-by-one endpoint policy creation, on-demand scans, and multiple types of security controls such as device control, USB blocking, web control, and Advanced Threat Prevention. There is threat intelligence in Trellix XDR, but we are not drilling down into the threat intelligence in the solution. Getting the telemetry data from the endpoint with Trellix XDR helps us detect the severity based on malware types, techniques, and tactics with MITRE mapping. It shows us with a single click if multiple endpoints are affected by the same threat vectors. We are able to see correlations of the threat vectors and determine which threat vector occurred first through the Root Cause Analysis provided by Trellix XDR.
I am working with EDR and XDR, focusing on migrating on-premises solutions to cloud-based solutions. We are utilizing XDR for cyber threat detection and response.
We utilize the platform for airborne protection and redirection to enhance the environment's environment and that of our clients. Our primary focus is on this solution, and I am looking for more coverage for our security framework, particularly for our CGP program. Currently, HSA only covers host information, leaving us with limited visibility of system and network activity. Therefore, we need another SIEM solution to understand our system and network activities comprehensively.
Find out what your peers are saying about Trellix, CrowdStrike, SentinelOne and others in Extended Detection and Response (XDR). Updated: February 2026.
Extended Detection and Response (XDR) is an advanced security solution offering more comprehensive threat detection and response by integrating multiple security tools into a unified platform.
XDR addresses the complexities of today’s security landscape by providing greater visibility across networks, endpoints, and cloud environments. Utilizing machine learning and automation, it enables security teams to detect, investigate, and respond to threats faster and more efficiently
What...
We are selling Trellix XDR products including DLP and EPP solutions. We sell Trellix XDR for endpoint protection. We are selling endpoint security with Trellix XDR by correlating the telemetries with the EPP solution for a more enhanced security solution to analyze multiple types of threats such as lateral movement and malware threats. We analyze the severity and create playbooks accordingly. The biggest advantage of selling Trellix XDR is that we are able to integrate multiple security solutions with Trellix XDR, including network, firewall, Microsoft Entra, and cloud solutions. We are able to automate threat detection with Trellix XDR by creating playbooks. We are able to do group-wise security creations of threat investigation and threat prevention, and we are able to do one-by-one endpoint policy creation, on-demand scans, and multiple types of security controls such as device control, USB blocking, web control, and Advanced Threat Prevention. There is threat intelligence in Trellix XDR, but we are not drilling down into the threat intelligence in the solution. Getting the telemetry data from the endpoint with Trellix XDR helps us detect the severity based on malware types, techniques, and tactics with MITRE mapping. It shows us with a single click if multiple endpoints are affected by the same threat vectors. We are able to see correlations of the threat vectors and determine which threat vector occurred first through the Root Cause Analysis provided by Trellix XDR.
I am working with EDR and XDR, focusing on migrating on-premises solutions to cloud-based solutions. We are utilizing XDR for cyber threat detection and response.
We utilize the platform for airborne protection and redirection to enhance the environment's environment and that of our clients. Our primary focus is on this solution, and I am looking for more coverage for our security framework, particularly for our CGP program. Currently, HSA only covers host information, leaving us with limited visibility of system and network activity. Therefore, we need another SIEM solution to understand our system and network activities comprehensively.