Senior Manager Operational Technology and Cyber Security at Eskom Ltd
Real User
Top 20
2025-02-24T14:17:23Z
Feb 24, 2025
The only area for improvement is regarding operational technology devices, specifically the engineering automation systems. We would like Trellix to optimize the technology for these systems similarly to how it is deployed for normal endpoints.
IT Security Manager at Telecommunications Services of Trinidad & Tobago Limited (TSTT)
Real User
2022-04-11T22:34:11Z
Apr 11, 2022
I expected Active Response's user interface to be much more analytical. I still haven't evaluated the ransomware features because everybody implements anti-ransomware differently. You need to see these features in action because everyone seems to have their way of doing it. That's something I still would like to evaluate.
IT Security Manager at Telecommunications Services of Trinidad & Tobago Limited (TSTT)
Real User
2021-02-19T08:42:19Z
Feb 19, 2021
It's still not lightweight enough and not as light as they claim to be with the McAfee area of a next-gen AV. They can do some improvements along that line. There needs to be some improvement around the white-listing or black-listing. The product could improve aspects around the removal of blacklisted applications, et cetera. This was an exercise to centralize the AV cell, and that's how we ended up upgrading. The truth, however, is that I was really looking for something much more advanced with user behavior analytics and some AI features that the other competitor's next-gen AV does offer. It is okay for what it's doing now, however, it's not the ultimate software. There are some components on the cloud that should also reside in the on-prem deployment models but don't. They should ensure they are doing parallel development for cloud and on-prem when they are doing R&D.
Endpoint Detection and Response (EDR) is a cybersecurity solution that focuses on detecting, investigating, and mitigating advanced cyber threats at the endpoint level. Organizations use EDR solutions to enhance their threat detection capabilities and respond effectively to security incidents.
EDR solutions combine real-time continuous monitoring and collection of endpoint data with rule-based automated response and analysis capabilities. This enables organizations to rapidly identify and...
The only area for improvement is regarding operational technology devices, specifically the engineering automation systems. We would like Trellix to optimize the technology for these systems similarly to how it is deployed for normal endpoints.
I expected Active Response's user interface to be much more analytical. I still haven't evaluated the ransomware features because everybody implements anti-ransomware differently. You need to see these features in action because everyone seems to have their way of doing it. That's something I still would like to evaluate.
It's still not lightweight enough and not as light as they claim to be with the McAfee area of a next-gen AV. They can do some improvements along that line. There needs to be some improvement around the white-listing or black-listing. The product could improve aspects around the removal of blacklisted applications, et cetera. This was an exercise to centralize the AV cell, and that's how we ended up upgrading. The truth, however, is that I was really looking for something much more advanced with user behavior analytics and some AI features that the other competitor's next-gen AV does offer. It is okay for what it's doing now, however, it's not the ultimate software. There are some components on the cloud that should also reside in the on-prem deployment models but don't. They should ensure they are doing parallel development for cloud and on-prem when they are doing R&D.