Head, Threat Intelligence & Incident Management at a financial services firm with 10,001+ employees
Real User
Top 5
Nov 27, 2025
From my perspective, predictive analysis is an area for improvement. The rules are very rigid. The way protection works for Trend Micro ServerProtect is that you have to specifically apply specific rules to achieve particular actions or use cases. We have had instances where a malware is dropped and that malware executes, it is detected, but because the malware has been altered a little bit, either in naming or slight behavior changes, the system is not able to stop it. This is unless you harden the rule to say block anything that appears out of place. My thinking as a security expert is that malware will typically behave outside of the normal operation of the organization. Instead of saying malware behavior based on malware behavior, I would say use analytics to identify anything that is outside the normal behavior of files and systems in the course of business operation, then flag it so it can go for further evaluation to identify if it is a malicious file execution or otherwise. Today, there are some instances where legitimate operations occur because of the static rule definition, the agent would flag a normal activity as malicious and then sometimes flag malicious activities as normal. They need to work on that area. There is a lot of competition today. When Trend Micro ServerProtect initially came out, they were premium, so there was not a lot of competition. Competition is dropping their price. Trend Micro ServerProtect should also come down on the pricing to meet competition. Though it is a great solution and an integrated solution, I think they should also meet the market competition. CrowdStrike is there, Palo Alto is there. There are many other competitors, but they need to also look at what is happening. They need to work on it. I would not say that they are overly priced, but I think they can be more competitive, especially with their new credit allocation process.
Technology Solutions Head at a tech services company with 51-200 employees
Real User
Top 5
Oct 28, 2025
I cannot tell much about how Trend Micro ServerProtect could be improved because my trust and confidence with the product are substantial. They continuously improve the product, and people on the ground actively promote it. It's more about awareness and maintaining competitive pricing because competition is growing. Previously, there was only Symantec, Kaspersky, and Trend Micro, but now there are numerous security products in the market.
IT Koordinator at a recreational facilities/services company with 11-50 employees
Real User
Top 10
Aug 15, 2025
I cannot specify areas of improvement for this solution as I am not a security specialist. The aspect of needing deeper information is something I have noticed.
Information Technology Security Engineer at a tech services company with 1-10 employees
Reseller
Top 20
May 26, 2025
Concerning improvements for Trend Micro ServerProtect, I think the main issue is deployment; configuring the console should be easy for both standard and bulk deployment. They need to improve in this area by providing more documentation and custom scripts for bulk enterprise deployments.
Head, Threat Intelligence & Incident Management at a financial services firm with 10,001+ employees
Real User
Top 5
May 22, 2023
There are a few areas of improvement. Despite its high performance, there are certain aspects related to the operating system that could be improved. Specifically, I find that the protection for certain actions requires more effort compared to other actions. It would be beneficial to streamline these processes. We mainly want them to continue enhancing the existing system. Overall, I am satisfied with its functionality. We also can consider pricing as an area for improvement. Maybe Trend Micro could have made it a bit cheaper.
Consultant at a computer software company with 51-200 employees
MSP
Mar 2, 2022
Integration with different platforms could be an area for improvement in Trend Micro ServerProtect, e.g. it needs more integration. It could also be more secure and more stable. In the next release, this solution should also include more EDR (endpoint detection and response) visibility, because a server is still an endpoint.
Sr.Customer Engineer- Projects at a tech services company with 201-500 employees
Real User
Sep 17, 2021
One thing I have been facing is that some fake threats have appeared that even Trend Micro was not able to clear up. It couldn't tell you why these threats are happening, where they are coming from and what cause it to occur.
Information Technology Security Assistant Manager at a comms service provider with 51-200 employees
Real User
Aug 7, 2021
I would like to see a Sandbox type of feature included. There are several features we don't use because they need some add-ons and some we'd like to see that are not included such as an intrusion prevention system. Having such a feature would mean that we wouldn't need to be dependent on the firewall.
Information Technology Security Assistant Manager at a comms service provider with 51-200 employees
Real User
May 28, 2020
I would like to see SMS notifications sent as alerts, in case we do not have access to our email. This way, we would know who is copying information outside of our data center. When malicious activity is detected, the packets should be removed from the traffic and saved on our server for analysis.
Cyber Security Engineer at a computer software company with 51-200 employees
Real User
May 5, 2020
I don't think there are really any large areas of concern for me right now although it would be helpful if the endpoint security had a vulnerability scanner for management solutions built into it. It would mean that if, for example, a system had different patches it would also be able to report that to you. I'd like to see more modules. The vulnerability management feature would be something I'd like to see in the next release so that most endpoint software had a patch management or a vulnerability management. It would mean that you would not have to rely on two different agents and workstations, one for patching and one for security. I believe Fortinet has this.
From a technical perspective, I think ServerProtect is one of the best security products on the market. It is a mature product that already has most features that any product of this type has. What can be improved is that the cost is very high. So I feel that the cost should be reduced, even if it is justified. One thing that I would like to see as an additional feature is just a custom sandbox within the solution itself. So instead of having to go and use an additional sandbox for testing, you could have a custom sandbox integrated directly into the solution.
Head of IT Infrastructure at a transportation company with 1,001-5,000 employees
Real User
Feb 18, 2020
The price of the product could be improved, other than that it's a perfect solution. I'd like to see an enhanced dashboard in the next release. Previously, when we used it as an on-prem solution they offered us the reporting server, which was amazing. We were able to get a weekly report that could be customized. When we moved to cloud this feature wasn't available so the dashboard needs to be enhanced a little bit. It's also lacking analytics and a machine learning technique.
Networking & Security Specialist at a transportation company with 51-200 employees
Real User
Dec 9, 2019
When we looked at Cylance, in comparison to Trend Micro, there are some features that seem to be better on Cylance than on Trend Micro. Cylance offers, for example, an easier management console and some functions are easier to implement. Trend Micro is a little bit complicated when it comes to setting up special policies. You need to look deeper for special features, as it's not as obvious as Cylance, for example, which allows you to find items with just one click.
Works at a hospitality company with 201-500 employees
Real User
Nov 28, 2018
I would like to see separate protections of my server and my client. There are other solutions out there that do this. We found that when we push Trend Micro from the console to our client's PCs, we need to manually restart the PC. I have 500 users and the manual input is time-consuming.
Trend Micro ServerProtect for Storage, powered by XGen security, leverages a blend of cross-generational threat protection techniques to safeguard a wide range of network attached storage systems by detecting and removing viruses and spyware in real time. This comprehensive storage security uses the industry-standard ICAP protocol to complement support for traditional RPC communication protocols. To simplify network protection for EMC, NetApp, and Hitachi Data Systems storage systems,...
From my perspective, predictive analysis is an area for improvement. The rules are very rigid. The way protection works for Trend Micro ServerProtect is that you have to specifically apply specific rules to achieve particular actions or use cases. We have had instances where a malware is dropped and that malware executes, it is detected, but because the malware has been altered a little bit, either in naming or slight behavior changes, the system is not able to stop it. This is unless you harden the rule to say block anything that appears out of place. My thinking as a security expert is that malware will typically behave outside of the normal operation of the organization. Instead of saying malware behavior based on malware behavior, I would say use analytics to identify anything that is outside the normal behavior of files and systems in the course of business operation, then flag it so it can go for further evaluation to identify if it is a malicious file execution or otherwise. Today, there are some instances where legitimate operations occur because of the static rule definition, the agent would flag a normal activity as malicious and then sometimes flag malicious activities as normal. They need to work on that area. There is a lot of competition today. When Trend Micro ServerProtect initially came out, they were premium, so there was not a lot of competition. Competition is dropping their price. Trend Micro ServerProtect should also come down on the pricing to meet competition. Though it is a great solution and an integrated solution, I think they should also meet the market competition. CrowdStrike is there, Palo Alto is there. There are many other competitors, but they need to also look at what is happening. They need to work on it. I would not say that they are overly priced, but I think they can be more competitive, especially with their new credit allocation process.
I cannot tell much about how Trend Micro ServerProtect could be improved because my trust and confidence with the product are substantial. They continuously improve the product, and people on the ground actively promote it. It's more about awareness and maintaining competitive pricing because competition is growing. Previously, there was only Symantec, Kaspersky, and Trend Micro, but now there are numerous security products in the market.
I cannot specify areas of improvement for this solution as I am not a security specialist. The aspect of needing deeper information is something I have noticed.
Concerning improvements for Trend Micro ServerProtect, I think the main issue is deployment; configuring the console should be easy for both standard and bulk deployment. They need to improve in this area by providing more documentation and custom scripts for bulk enterprise deployments.
The solution should provide features to block devices, specific IPs or URLs.
Probably more notification options. Notifications are not very good with Trend Micro. So, a bit more notification functionality needs improvement.
There are a few areas of improvement. Despite its high performance, there are certain aspects related to the operating system that could be improved. Specifically, I find that the protection for certain actions requires more effort compared to other actions. It would be beneficial to streamline these processes. We mainly want them to continue enhancing the existing system. Overall, I am satisfied with its functionality. We also can consider pricing as an area for improvement. Maybe Trend Micro could have made it a bit cheaper.
The endpoint protection could always be stronger.
Integration with different platforms could be an area for improvement in Trend Micro ServerProtect, e.g. it needs more integration. It could also be more secure and more stable. In the next release, this solution should also include more EDR (endpoint detection and response) visibility, because a server is still an endpoint.
One thing I have been facing is that some fake threats have appeared that even Trend Micro was not able to clear up. It couldn't tell you why these threats are happening, where they are coming from and what cause it to occur.
I would like to see a Sandbox type of feature included. There are several features we don't use because they need some add-ons and some we'd like to see that are not included such as an intrusion prevention system. Having such a feature would mean that we wouldn't need to be dependent on the firewall.
I would like to see SMS notifications sent as alerts, in case we do not have access to our email. This way, we would know who is copying information outside of our data center. When malicious activity is detected, the packets should be removed from the traffic and saved on our server for analysis.
I don't think there are really any large areas of concern for me right now although it would be helpful if the endpoint security had a vulnerability scanner for management solutions built into it. It would mean that if, for example, a system had different patches it would also be able to report that to you. I'd like to see more modules. The vulnerability management feature would be something I'd like to see in the next release so that most endpoint software had a patch management or a vulnerability management. It would mean that you would not have to rely on two different agents and workstations, one for patching and one for security. I believe Fortinet has this.
From a technical perspective, I think ServerProtect is one of the best security products on the market. It is a mature product that already has most features that any product of this type has. What can be improved is that the cost is very high. So I feel that the cost should be reduced, even if it is justified. One thing that I would like to see as an additional feature is just a custom sandbox within the solution itself. So instead of having to go and use an additional sandbox for testing, you could have a custom sandbox integrated directly into the solution.
The price of the product could be improved, other than that it's a perfect solution. I'd like to see an enhanced dashboard in the next release. Previously, when we used it as an on-prem solution they offered us the reporting server, which was amazing. We were able to get a weekly report that could be customized. When we moved to cloud this feature wasn't available so the dashboard needs to be enhanced a little bit. It's also lacking analytics and a machine learning technique.
When we looked at Cylance, in comparison to Trend Micro, there are some features that seem to be better on Cylance than on Trend Micro. Cylance offers, for example, an easier management console and some functions are easier to implement. Trend Micro is a little bit complicated when it comes to setting up special policies. You need to look deeper for special features, as it's not as obvious as Cylance, for example, which allows you to find items with just one click.
I would like to see separate protections of my server and my client. There are other solutions out there that do this. We found that when we push Trend Micro from the console to our client's PCs, we need to manually restart the PC. I have 500 users and the manual input is time-consuming.