Sold by: Trend Micro
Deployed on AWS
Free Trial
Vendor Insights
AWS Free Tier
Stop threats before they strike with Trend Vision One™ - the AI-powered enterprise cybersecurity platform built to predict, prevent, and respond to threats across AWS, hybrid, and multi-cloud environments. Gain unified visibility, streamline cloud risk management, accelerate cloud investigations, and empower your security teams with proactive, layered protection that works at cloud speed. Proactive security starts here.
4.6
Overview
Trend Vision One™ gives enterprises and security leaders the power to see, secure, and control their entire multi-cloud and hybrid environments from a single, unified platform. Gain complete visibility with real-time risk scoring, threat exposure mapping, and centralized monitoring all from one intuitive dashboard.
Backed by AI, machine learning, and predictive analytics, Trend Vision One empowers proactive cloud security by automating threat detection, risk mitigation, and response. Streamline operations, reduce security complexity, and offload the pressure on your teams with modern CNAPP capabilities so you can stay ahead of every attack.
Trusted by industry leaders and recognized as a 2024 Gartner Peer Insights™ Customers' Choice for CNAPP, Trend Vision One is proven to reduce operational costs by up to 79% and accelerate detection and response times by 70%. It's also a Leader in the 2025 Gartner® Magic Quadrant for Endpoint Protection Platforms, delivered a 100% detection rate in MITRE evaluations, and was named a Leader in the IDC MarketScape for Cloud-Native Application Protection Platforms 2025, solidifying its position as the most trusted platform for securing the cloud.
Confidently secure your cloud transformation with a platform built for the modern enterprise. From hybrid to multi-cloud, Trend Vision One delivers unmatched protection, visibility, and control - wherever your workloads live.
Trend provides custom pricing via Private Offer. Please contact us if you're interested in personalized pricing options.
Highlights
- Identify and eliminate hidden cloud risks with unified Cyber Risk Exposure Management - discover assets, prioritize vulnerabilities, and manage posture and attack surface all from one place.
- Stay steps ahead of threats with XDR for Cloud, which extends visibility into cloud environments and streamlines SOC investigations through powerful correlation and alerting.
- Secure every application and workflow - from containers and code to S3 files and cloud workloads - with holistic protection via the integrated stack: Container Security, File Security, Workload Security, and Code Security.
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(4)
ISO27001
SOC2
GDPR
HIPAA
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor, and additional usage. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. Usage-based pricing is in effect for overages or additional usage not covered in the contract. These charges are applied on top of the contract price. If you choose not to renew or replace your contract before the contract end date, access to your entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
TrendAI™ Flex (credits) | A credit-based licensing model that offers flexibility, simplifying purchasing, deployment, and management of Trend Vision One solutions. | $1.00 |
Dimension | Description | Cost/unit |
|---|---|---|
Cyber Risk Exposure Management - Cloud Risk Management | Per 500 resources per cloud account per hour | $0.12 |
Container Security | Per Amazon ECS instance or Kubernetes node per hour | $0.168 |
Container Security | Per serverless container pod or task per hour | $0.017 |
File Security SDK | Per file scan | $0.013 |
File Security Storage | Per cloud storage per hour | $1.155 |
Endpoint Security - Essentials | Per workload (Anti-Malware, Web Reputation, and XDR only) per hour | $0.007 |
Endpoint Security - Small | Per EC2 instance (micro to medium), WorkSpace, or other cloud (1 vCPU) per hour | $0.011 |
Endpoint Security - Medium | Per EC2 instance (large), WorkSpace, or other cloud (2 vCPU) per hour | $0.032 |
Endpoint Security - Large | Per EC2 instance (XL), WorkSpace, or other cloud (4 vCPU) per hour | $0.047 |
Endpoint Security - Non-Cloud | Per data center or non-cloud instance per hour | $0.047 |
Dimensions summary
Trend Vision One's pricing dimensions on AWS Marketplace are structured across multiple security capabilities. The core offering includes Endpoint Security with tiered pricing based on instance sizes (from Essentials to Large) and deployment type (cloud vs. non-cloud). Additional components include Container Security priced per node/task, File Security charged per scan and storage hour, Cyber Risk Management billed per cloud resources, and XDR for Cloud billed by data ingestion volume. All services can be accessed through Trend Vision One credits under a 12-month contract model with additional usage options. Credits are for customers interested in annual comitments while the additional usage costs offers PAYG. Credits and PAYG can be combined to best fit the needs of the customer.
Top-of-mind questions for buyers like you
How do Trend Vision One credits work in the 12-month contract model?
Trend Vision One credits are the primary currency for purchasing and consuming Trend Vision One services under a 12-month commitment with additional usage options. Credits can be flexibly allocated across different security services including endpoint security, container security, and file security, allowing customers to adjust their security coverage based on changing needs throughout the contract period.
How do the additional usage costs differ from credits?
Additional usage costs offer flexible, monthly pay-as-you-go (PAYG) billing, while credits are for customers with annual commitments. Both can be used across services—for example, credits for File Security and PAYG for Endpoint Security. Monthly billing requires purchasing one credit for account registration, after which services can be enabled in the Credits & Billing app.
How is Endpoint Security pricing structured in Trend Vision One?
Endpoint Security follows a tiered pricing model based on the size and type of instances being protected. The tiers range from Essentials (basic anti-malware and XDR) to Large (XL instances with 4+ vCPUs), with separate pricing for non-cloud instances, ensuring customers only pay for the level of protection needed for each endpoint.
What determines the cost for Container and File Security services?
Container Security is priced per instance/node for Amazon ECS or Kubernetes, or per pod/task for serverless deployments. File Security combines two pricing components: a per-scan fee for the SDK and Virtual Appliance usage, and an hourly rate for cloud storage protection, making it scalable based on actual usage patterns.
Vendor refund policy
No refunds
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
Your purchase also includes 24x7 support from Trend Micro. You can log a support ticket for any issues directly from your Trend Vision One console. If you experience any issues or have questions, please contact our AWS Security experts by email at aws.marketplace@trendmicro.com .
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Trend Micro
By Rapid7
Top
25
In Security
Top
10
In Vulnerability and Patch Management, Data Governance
Top
25
In Observability, Software Development
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Cloud Risk Management
Unified cyber risk exposure management with asset discovery, vulnerability prioritization, and attack surface management
Extended Detection and Response
Cross-cloud XDR capabilities with enhanced visibility, threat correlation, and streamlined security operations center investigations
Multi-Cloud Security Coverage
Comprehensive protection across containers, code, files, S3 storage, and cloud workloads through integrated security stack
Predictive Threat Intelligence
AI-powered and machine learning-driven threat detection, prevention, and response mechanisms
Real-Time Risk Monitoring
Centralized dashboard with real-time risk scoring, threat exposure mapping, and comprehensive environment monitoring
Attack Surface Management
Aggregates comprehensive attack surface visibility across hybrid environments with external attack surface scans to build a dynamic, 360-degree view
Cloud Security
Provides code-to-cloud protection for cloud-native applications with seamless CI/CD pipeline integration and real-time, agentless risk assessment
Threat Intelligence
Delivers high-fidelity, actionable threat intelligence sourced from proprietary threat and vulnerability research with community-driven tools
Vulnerability Management
Offers complete visibility across on-premise and remote endpoints to identify, communicate, and remediate vulnerabilities and misconfigurations
Security Automation
Enables acceleration and streamlining of time-intensive processes through customizable workflows and plugins without requiring coding expertise
Cloud Security Posture Management
Continuous monitoring and management of cloud configurations to prevent public exposure and ensure compliance
Infrastructure as Code Scanning
Automated scanning and securing of infrastructure templates and images for secrets and vulnerabilities before deployment
Threat Detection Mechanism
AI-powered real-time detection and automated stopping of runtime threats including ransomware, zero-days, and fileless attacks
Cloud Workload Protection
Comprehensive security platform for servers, virtual machines, and containers across public and private cloud environments
Cloud Object Storage Security
Real-time malware detection and automated threat response for cloud storage services with millisecond scanning capabilities
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
-
-
No security profile
No security profile
Standard contract
No
No
No
Customer reviews
Soufiane Hammoutou
Centralized protection has improved threat response and simplified endpoint security management
Reviewed on Jan 14, 2026
Review provided by PeerSpot
What is our primary use case?
My use case for Trend Vision One is deploying it for an entity within a company. I deployed Trend Vision One to protect all kinds of endpoints, including mobiles, machines, mailboxes, and servers.
What is most valuable?
The best features of Trend Vision One that I appreciate include its centralized nature, the Copilot AI agent, its simplicity of use, and the quality of their API.
Trend Vision One has helped reduce my time to detect and time to respond to threats by approximately 10%.
What needs improvement?
To improve Trend Vision One to a perfect score, I believe better pricing and more support would be ideal.
For how long have I used the solution?
I have been using Trend Vision One for one year.
What do I think about the stability of the solution?
I would rate the stability of Trend Vision One highly, as there were no bugs. I would give it a 10.
What do I think about the scalability of the solution?
Regarding scalability, Trend Vision One is scalable. I would give it an eight.
How are customer service and support?
I rate the technical support an eight.
The coverage for my organization's network is critical. When we have questions, we return to them. When we need something, we return to them, and they were always available.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
The risk reduced by switching to Trend Vision One is similar to other EDR or XDR solutions. It can detect malicious operations and threats, but the exact percentage is difficult to quantify. For the company I was deploying it for, we detected many threats. I would rate the risk reduction as a 10 because the company in question did not have an XDR or EDR solution in place before.
How was the initial setup?
The deployment of Trend Vision One is easy; it is just an executable.
It takes almost one day for Trend Vision One to appear in the console.
What about the implementation team?
In my organization, we had four specialists working with Trend Vision One: myself and three security engineers. I was the project manager.
What was our ROI?
I can estimate the ROI seen from Trend Vision One to be approximately 15%.
What's my experience with pricing, setup cost, and licensing?
When it comes to pricing, I find Trend Vision One not expensive compared to other products.
Which other solutions did I evaluate?
I compare Trend Vision One with other solutions and vendors on the market, and we can see that it is well-placed in Gartner, so it is one of the best products.
What other advice do I have?
Trend Vision One helps with centralized visibility and protection across multiple layers.
The visibility and protection provided by Trend Vision One allow us to see all the assets in one console, which is beneficial. We can also see all the features in one console, which is equally advantageous.
I did not use the cyber risk exposure management capabilities with Trend Vision One, nor did my clients use that for identifying blind spots.
The top security challenges in the industry include handling the decommissioning of old products, specifically a Microsoft product. Additionally, not all features are centralized in one console, which is not ideal for the correlation of investigations.
Trend Vision One is deployed as a cloud solution and a SaaS solution.
I used Trend Vision One sensors.
I would recommend Trend Vision One to other users because it is easy to use and easy to deploy, as these are the most important factors. The importance of having AI built into Trend Vision One is significant; I use the AI aspects. When I want to look for a feature, I go to AI. When I want to create, for example, an IOC, I go to AI, and it assists with this.
Samapta Kumar P.
Robust Security Tool with Centralized Management, Needs Improved License Control
Reviewed on Jan 10, 2026
Review provided by G2
What do you like best about the product?
I really like Trend Vision One because of its centralized login feature, which is excellent for managing everything. It's easy to manage every end user and provide them with role-based access. This way, they can see what's wrong in their logins and how many threats are detected. I can also pull reports and take necessary actions, making it easy to manage through the console.
What do you dislike about the product?
Currently, there is no option for control license deployments, which makes it not easy to manage the license part. They need to improve more on that part where we can centralized push the license to whichever user needs it.
What problems is the product solving and how is that benefiting you?
I use Trend Vision One as an antivirus tool to protect our system, neutralize network threats, and provide a secure environment for users.
Chandan N.
Unified Security Dashboard and Effortless Integration
Reviewed on Jan 09, 2026
Review provided by G2
What do you like best about the product?
Dear Trend Micro Team,
I've been using Trend Vision One for [1-2 Years] in our company, Amagi Media Labs Ltd, and wanted to share what I like best.
1. Unified Dashboard - The single pane of glass for threat detection across endpoints and cloud workloads. Real-time correlation of alerts reduces noise and speeds up investigation.
2. Easy Deployment & Integration - Third-party integrations and flexible licensing make onboarding simple, even for smaller teams.
3. Advanced Detection - Signatureless anomaly detection, user behavior analysis, and proactive risk assessment catch threats.
4. Reliable Performance - Minimal resource impact and strong endpoint protection provide peace of mind for our infrastructure.
I've been using Trend Vision One for [1-2 Years] in our company, Amagi Media Labs Ltd, and wanted to share what I like best.
1. Unified Dashboard - The single pane of glass for threat detection across endpoints and cloud workloads. Real-time correlation of alerts reduces noise and speeds up investigation.
2. Easy Deployment & Integration - Third-party integrations and flexible licensing make onboarding simple, even for smaller teams.
3. Advanced Detection - Signatureless anomaly detection, user behavior analysis, and proactive risk assessment catch threats.
4. Reliable Performance - Minimal resource impact and strong endpoint protection provide peace of mind for our infrastructure.
What do you dislike about the product?
Dear Trend Mcro team,
I've been using Trend Vision One for [1-2 Years] in our company, Amagi Media Labs Ltd, and appreciate its unified detection capabilities. Here's the honest feedback on pain points to help prioritize roadmap items.
1. Frequent UI changes/UI Navigation - The interface is feature-rich but sometimes overwhelming - streamlined workflows for common tasks would improve usability. Navigation feels unstable and disrupts workflows.
2. False Positives and Alert Noise - low-quality alerts require excessive investigation time.
3. Support response times - Tier 1 support is slow to escalate
I've been using Trend Vision One for [1-2 Years] in our company, Amagi Media Labs Ltd, and appreciate its unified detection capabilities. Here's the honest feedback on pain points to help prioritize roadmap items.
1. Frequent UI changes/UI Navigation - The interface is feature-rich but sometimes overwhelming - streamlined workflows for common tasks would improve usability. Navigation feels unstable and disrupts workflows.
2. False Positives and Alert Noise - low-quality alerts require excessive investigation time.
3. Support response times - Tier 1 support is slow to escalate
What problems is the product solving and how is that benefiting you?
I've been using Trend Vision One for [1-2 Years] in our company, Amagi Media Labs Ltd environment has delivered clear value. Here are the problems it solved and how it benefits us.
Problems solved:
Complex Threat Hunting - Manual investigations took hours/days. XDR now provides attack path visualization, MITRE ATT&CK mapping, and automated playbooks for rapid response.
Scaling Security Operations: Growing threats overwhelmed our small team. Unified console and automation handles multi‑cloud, OT, and hybrid environments efficiently.
Vision One correlates events across layers with AI, reducing noise by 99.6% and dwell time by 65%.
Benefits:
Proactive Defense: AI‑powered anomaly detection catches zero‑days and advanced persistent threats (APTs) early.
Team Efficiency: 92% cyber risk reduction lets our SOC focus on high‑value tasks instead of false positives.
Vision One has transformed our security posture from reactive to proactive. It’s now our central platform for endpoint, cloud, and email protection.
Problems solved:
Complex Threat Hunting - Manual investigations took hours/days. XDR now provides attack path visualization, MITRE ATT&CK mapping, and automated playbooks for rapid response.
Scaling Security Operations: Growing threats overwhelmed our small team. Unified console and automation handles multi‑cloud, OT, and hybrid environments efficiently.
Vision One correlates events across layers with AI, reducing noise by 99.6% and dwell time by 65%.
Benefits:
Proactive Defense: AI‑powered anomaly detection catches zero‑days and advanced persistent threats (APTs) early.
Team Efficiency: 92% cyber risk reduction lets our SOC focus on high‑value tasks instead of false positives.
Vision One has transformed our security posture from reactive to proactive. It’s now our central platform for endpoint, cloud, and email protection.
Ananda V.
Maximized Efficiency and Cost Savings for SOC Teams
Reviewed on Jan 09, 2026
Review provided by G2
What do you like best about the product?
Organizations often highlight the platform's ability to "do more with less":
Alert Fatigue Reduction: Advanced filtering and correlation can reduce daily alert noise by over 90%, allowing SOC teams to focus on real threats.
Cost Efficiency: By consolidating multiple tools (SIEM, SOAR, EDR) into one platform, many companies report up to a 70% reduction in overall cybersecurity costs
Alert Fatigue Reduction: Advanced filtering and correlation can reduce daily alert noise by over 90%, allowing SOC teams to focus on real threats.
Cost Efficiency: By consolidating multiple tools (SIEM, SOAR, EDR) into one platform, many companies report up to a 70% reduction in overall cybersecurity costs
What do you dislike about the product?
Would you like me to find a workaround for one of these specific issues, such as how to optimize the agent for better performance on your servers?
What problems is the product solving and how is that benefiting you?
The Problem: Attackers often hide in the "gaps" between your email, your cloud, and your employees' laptops. Traditional security only sees one piece at a time.
The Solution: It provides Unified Visibility across all layers (Endpoint, Email, Network, Cloud, and Identity). It even detects "unmanaged" devices that aren't officially on your network.
+1
The Benefit to You: It reduces "Dwell Time"—the time an attacker spends in your system before being caught—by an average of 65%. You see the attack the moment it moves from an email to a server
The Solution: It provides Unified Visibility across all layers (Endpoint, Email, Network, Cloud, and Identity). It even detects "unmanaged" devices that aren't officially on your network.
+1
The Benefit to You: It reduces "Dwell Time"—the time an attacker spends in your system before being caught—by an average of 65%. You see the attack the moment it moves from an email to a server
Karunagaran G.
Comprehensive Threat Protection, Seamless Integration
Reviewed on Jan 08, 2026
Review provided by G2
What do you like best about the product?
I like Trend Vision One's single unified console and XR capability, which provide real-time risk availability. It helps with quick response and strong protection against threats. I appreciate how it manages endpoint and email cloud servers, and enhances network security from the dashboard. I also value its capability to correct alerts across multiple security layers swiftly.
What do you dislike about the product?
rend Vision One is a cloud-native, extended detection and response (XDR) platform that provides unified threat detection, risk visibility, and coordinated response across endpoints, networks, cloud workloads, and email systems.
What problems is the product solving and how is that benefiting you?
I use Trend Vision One to detect and block malware and ransomware, respond to unknown threats, and identify multistage attacks. It compresses endpoints and secures high-risk laptops, providing real-time risk availability and strong protection across multiple security layers.