We block DMARC for incoming mails and have threat detection enabled to block or identify any spam mail received in end-user mailboxes. We prevent spam mails and unknowns such as DKIM and DMARC unavailable mail. Additionally, we have country-based restrictions in our email gateway, which helps us prevent mail coming from unrecognized or unused countries. These are the ways we provide security to our end-user mailboxes.
Trellix Email Security
TrellixExternal reviews
36 reviews
from
External reviews are not included in the AWS star rating for the product.
Ease of deployment and cost-effectiveness boost operational efficiency
What is our primary use case?
What is most valuable?
We have cloud threat protection, which helps us identify any suspicious threats in emails.
Threat intelligence is adequate because they are using Microsoft GTI threat intelligence, but we need to increase protection against phishing and spam mails. It is already implemented, but we need to increase intelligence for cases where phishing links are received and need to be blocked. If users try to open links that have converted to phishing after some time, those need to be blocked. We are blocking some links, but we may miss others, so we need clarity on that protection, especially for older links.
What needs improvement?
I have recommendations for increasing dashboard customization. Currently, we are using custom dashboards, but they are not effectively customizable. If they provide better customization options, it would be easier to understand everything in a single dashboard instead of navigating through dropdown menus to see reports. Additionally, log retention is currently 30 days, but some customers request to extend it to 60 days. Having 60 days of log retention would be helpful for maintaining logs.
For how long have I used the solution?
I have been working with Trellix Email Security for the past one year.
What was my experience with deployment of the solution?
There are two deployment modes: API integration, which is very easy, and MX record change, which requires some downtime. For deployment with inline mode, it takes around four to six hours of downtime. For API-based integration, we do not need any downtime and can implement it directly in production.
What do I think about the stability of the solution?
The security rates at eight out of ten.
What do I think about the scalability of the solution?
I have not performed scalability adjustments because the user count has not increased. However, based on my understanding, we have the option to increase the count in the future. The scalability rates at nine out of ten.
How are customer service and support?
Technical support rates at eight out of ten. The overall service rates at eight.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I work with both Sophos and Trellix Email Security solutions. When compared with Sophos, Trellix Email Security is better, and when compared to other solutions, the price is more cost-effective.
How was the initial setup?
We deployed the solution for approximately 1,000 mailboxes.
What about the implementation team?
Three people were involved in the installation: one from the DNS side, one from Office 365, and another from my team.
What was our ROI?
The operational cost involves a one-time investment for purchasing and implementing the solution, which provides protection for one year. The operational cost is average. Compared to other email solutions such as Cisco, price-wise, we get this solution within 50 to 60% of the average. They provide good percentages for enterprise customers. It reduces costs by almost 40% or 45% compared to other security solutions.
What's my experience with pricing, setup cost, and licensing?
I am satisfied with the secure licensing cost because compared to other solutions, Trellix Email Security is cheaper and provides most features. I only know about the pricing from one year ago.
What other advice do I have?
I am not working with other Trellix products such as Trellix Move AntiVirus or Trellix Intrusion Prevention System. The solution is easy to deploy, and the operational cost is less compared to other solutions. The price rates at eight out of ten. We use inline mode for integration with existing security infrastructure. They recently added AI to the solution, but I need to check with the team regarding AI implementation for email specifically. My final rating for Trellix Email Security is nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Trellix Enterprise Security Manager helps us to detect the malwares and Threats and help mitigate
What do you like best about the product?
Trellix Enterprise Security Manager helps us to detect the malwares and threats and helps us to mitigate them promptly with mininal efforts
What do you dislike about the product?
Sometimes it responds very slow. Due to slowness, sometimes we stuck to responds to threats promptly
What problems is the product solving and how is that benefiting you?
Trellix Enterprise Security Manager detects threats based on the rule engine and alerts us for any kind of threats. It can help detect the ongoing threats and mitigate them.
One of the best endpoint protection in the Market!
What do you like best about the product?
The thing that I like best about MVISION ePO is how it helps me managed my McAfee Solutions in our organization. It helps me automate our organization workflows thus reducing the time and task that is needed for the investigation and triaging.
What do you dislike about the product?
The only downside that I dont like about mvision ePO is how complicated it is to configure especially if you don't have any necessary training with regards to this solution.
What problems is the product solving and how is that benefiting you?
MVISION ePO's ability to address these cybersecurity challenges helps enhance our organization's security posture, minimize risks, and safeguard sensitive data and assets, ultimately contributing to our business continuity and reputation.
Value for money for Mid-market segment
What do you like best about the product?
This tool is good value for money for the mid-market segment. It is not as mature and doesn't have third-party OEM information on processing the logs or making some information out of Logs like its competitors such as Splunk, Datadog etc but still for the miod market segment whose aim is point products. The requirement is quite simple, is it reliable able to provide a response to query and store/collect the logs reliably - that is can do with 99.9999% availability which is good enough for them.
What do you dislike about the product?
They have kept this product in a cvery close loop instead of partnering with other third-party vendors who ghenerate these logs. If they have solid relationship or have a way to process the information better, avoiding false positives then the tool could have better market share.
What problems is the product solving and how is that benefiting you?
There are loads of data that my organisation is producing and we don't know where the problem is, especially when we are talking about intermittent issues. For such issues, McAfee Enterprise Log Search has been of great help.
Powerful and robust SIEM solution
What do you like best about the product?
- Very efficient for threat prevention and identifying them on the network, providing real-time visibility.
- It has a lightweight and intuitive interface.
- Allows integrations with other McAfee products and third-party products.
- It has a lightweight and intuitive interface.
- Allows integrations with other McAfee products and third-party products.
What do you dislike about the product?
- Improve the appearance to make administration simpler; despite having a simple interface for end users, the administration is quite cumbersome.
- The brand's support has many opportunities to improve in knowledge and response times; escalations also tend to be quite painful.
- The brand's support has many opportunities to improve in knowledge and response times; escalations also tend to be quite painful.
What problems is the product solving and how is that benefiting you?
- Centralization of event logs for analysis and control.
- Real-time management for the IT Monitoring and Security area.
- Compliance with corporate security policies.
- Real-time management for the IT Monitoring and Security area.
- Compliance with corporate security policies.
Great visibility of devices and ability to push out products to client machines
What do you like best about the product?
Love that you can view all managed and unmanaged devices and have the ability to push out products to both types of devices.
What do you dislike about the product?
Times where certain products start to malfunction and removing it from a particular computer may become tricky to do
What problems is the product solving and how is that benefiting you?
providing security and vulnerability protection for all of our end-user devices
McAfee Enterprise Log Manager allows to store & manage logs intelligently & efficiently for search
What do you like best about the product?
McAfee Enterprise Log Manager stores all the logs universally & can be accessed easily. It is a hybrid system & easy to integrate with any device. It supports log analysis & search.
What do you dislike about the product?
McAfee Enterprise Log Manager can improve its UI. Their cost can be made more low for all enterprise
What problems is the product solving and how is that benefiting you?
McAfee Enterprise Log Manager Collects, Compresses & stores all the log data. It provides data with details of IP Source & Destination, Identity context, topological network information, Policy & privacy information. It supports flexible storage pools. It is intelligent log management
Best Saas based security management tool
What do you like best about the product?
It is a cloud based console that manages the various security devices, platform and network all from a single console. Compare to other products it is easy to understand.
What do you dislike about the product?
The console will lag sometimes when we have to detect. There will be frequent updates for the products. The drive encryption is lacking in cloud platform compare to on-prem.
What problems is the product solving and how is that benefiting you?
It is the best device control and antivirus solution. We can block each and every product from connecting the endpoint. The detecting virus and malware is great.
Recommendations to others considering the product:
It is the best Saas product for security. It will detect the malware and phishing without any fail. It has good features that We can see out there.
McAfee SIEM Review
What do you like best about the product?
The ESM console is the best tool. The level of customization available in McAfee SIEM makes it unique
What do you dislike about the product?
The GUI can be improved as the competitor products look better in feel. Apart from that, there are no issues.
What problems is the product solving and how is that benefiting you?
Its one of the industry-leading SIEM solutions. it provides the NOC/SOC engineers to drill down to the logs with its advanced feature sets.
Centralized dashboard for having a control over all the threats and its entry points, awesome..!!!
What do you like best about the product?
One person can have a look on the entire status of the security from one dashboard.
What do you dislike about the product?
Some features are good but a little hard to understand and implement.
What problems is the product solving and how is that benefiting you?
Syncing of all the security products.
showing 1 - 10