We use Vision One together with the other products in the Trend Micro security stack, such as XDR, Site Management, and Apex One.
Trend Vision One
Trend MicroExternal reviews
260 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Resolving siloed management and visibility.
What do you like best about the product?
It helps us on the proactive approach of checking on early indicators of attack as well as a hollistic view of a certain suspicious activity
What do you dislike about the product?
In terms of the interface, it uses a dark theme. Also, some menus are confusing.
What problems is the product solving and how is that benefiting you?
it solves our challenge on siloed management as well as having a detailed information of a certain attack.
XDR provides detection and improved investigation via security analysis.
What do you like best about the product?
The ASR (Attack Surface Risk Management).
What do you dislike about the product?
Detecting local certificate chain status.
What problems is the product solving and how is that benefiting you?
Checking detection in malware scanning in regard with the Server.
Smart dashboards with hands-on advice
What do you like best about the product?
With Trend Micro Vision One you get a very nice and complete overview of all aspects of your security posture. You can go as detailed as you want and tackle the risks and threats with hands-on advice on how to accomplish. The graphs and lists make it easy to understand and use. Connecting other sources (Entra ID, Microsoft365,...) is straightforward and easy to implement. The platform should be used on a daily basis or even monitored semi-live, depending on the size of your IT team. Customer support is friendly and can get you going, should you get stuck.
What do you dislike about the product?
The transition from the old license model to the credits system was a bit tricky to follow and understand, but after all, the new system has more fairness in it.
What problems is the product solving and how is that benefiting you?
Only one platform needed to view all threats, risks, devices, users and how they correlate with eachother. No longer a need for a handful of platforms to gather all the info.
Robust, wide-coverage tool
What do you like best about the product?
risk view, attack surface and workbench correlation
What do you dislike about the product?
not having a single agent for servers and workstations
What problems is the product solving and how is that benefiting you?
With it we are able to focus our efforts on the most crucial point of the organization.
Has made our detection and response time much faster
What is our primary use case?
How has it helped my organization?
Vision One has made our detection and response time much faster. We have 30-plus integrations, helping us to identify the most critical threats. The more connections, the better. We can also identify and resolve false positives faster.
What is most valuable?
I like Vision One's workbench. It provides helpful logs that I can search, and the telemetry is excellent because I can see what's happening during an attack or potential attack.
Another one of my favorite features is attack surface risk management. It shows me faults and blind spots in my security. I also like the attack phase management. The model shows the risks in the corporation and provides considerable information about what is happening on the platform and the network, offering more visibility. There's also a risk index that shows me where I can improve my security.
Vision One provides centralized visibility and management across multiple layers. This is critical because I need to see what's happening. It also allows me to set separate rules and policies for some security areas.
What needs improvement?
Vision One's search could be improved. While the platform is very user-friendly, the search feature uses terms that aren't as intuitive. The automation is excellent, but I wish there were more templates to help me optimize more things.
For how long have I used the solution?
I have used Vision One for nearly a year.
What do I think about the stability of the solution?
I rate Vision One nine out of 10 for stability. It has only crashed once.
How are customer service and support?
I rate Trend Micro support six out of 10. They respond quickly but the answers aren't clear sometimes. They don't always understand the issue, so I need to explain a lot.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I previously used the Microsoft 365 security stack, but I found Microsoft's XDR lacking. We also used Microsoft CASB and Defender for Endpoint. Vision One's threat intelligence and modeling are better. It has all the features like attack surface and risk management as well as the workbench. I also find Vision One easier to navigate.
How was the initial setup?
Vision One is easy to deploy. It's mostly automatic, but we needed to deploy some of the agents manually. If you can deploy all of the agents to the endpoints automatically, it takes only about five minutes.
What's my experience with pricing, setup cost, and licensing?
Vision One is expensive, but I think it's a typical market price.
What other advice do I have?
I rate Visione One nine out of 10. I recommend fully exploring Vision One's features. It has many features that you don't need to pay extra for. There are so many things to explore. For example, they have free playbooks for third-party integration.
TrendMicro XDR as Lake of Logs and details
What do you like best about the product?
It shows comprehensive logs and detection details
What do you dislike about the product?
Expensive due to ASRM separate module and its modular approach
What problems is the product solving and how is that benefiting you?
Daily detection of account compromise and threat detection correlation on logs from apex one and other system Trend offers
Excellent Service
What do you like best about the product?
It seems very functional to me. The best thing about the suite is that it allows the integration of many of the security tools that the organization uses.
What do you dislike about the product?
There are some activities that could be deployed automatically for example the detection model selection in automated playbook, always we have to select it manually.
What problems is the product solving and how is that benefiting you?
It helps us to admin correctly our security policies and internal govenance.
Vision one with safety
What do you like best about the product?
Vision one is awesome tool for the organisation cyber security team vision 1 work on organisations levels and also this is a capturing the data of the deep discoveries inspector this is awesome detection from network.
What do you dislike about the product?
When the any one ability out of the market that time is very slow update.
What problems is the product solving and how is that benefiting you?
This tools solving many problem like all detection ditails detection and also how to start attack and endpoint was work that all types of attck and ditails proparly in organization.
The Perfect Tool to monitor and Optimize Risk around the organization
What do you like best about the product?
The Things I like the most is features like runnig a remote script which makes it easy to patch and implement
Apart of that its integration with firewall and other data sources for various tasks is very easy to implenet and use
being the tip of the iceberg trendmicro also proivdes automated response playbook which makes it a easy daily respond to alerts
Apart of that its integration with firewall and other data sources for various tasks is very easy to implenet and use
being the tip of the iceberg trendmicro also proivdes automated response playbook which makes it a easy daily respond to alerts
What do you dislike about the product?
Althogh I like many features there is this credit usage system, it is a bit confusing
What problems is the product solving and how is that benefiting you?
As a SOC Analyst it provides me a solution to monitor security posture of my enviroment checkking alerts creating automated playbooks taking shell remotely also at some pooint patch management
Helps save investigation time, reduces false positives, and provides real-time analysis
What is our primary use case?
We use Trend Vision One for real-time analysis and monitoring to identify the root cause of security incidents. This includes finding details like how the attack unfolded, user names involved, IP addresses associated with the attack, and the affected systems and devices. By analyzing this information, we can map out the entire attack flow chart.
How has it helped my organization?
The network coverage provided by Trend Vision One is important.
Trend Vision One is an XDR tool so it is important for us that it provides centralized visibility and management across protection layers.
Centralized visibility and management across protection layers enable real-time monitoring, which improves our efficiency.
While the Trend Micro Vision One executive dashboard provides a valuable overview, the ability to drill down from that level into the XDR detections is crucial. During a real-time attack, this drill-down functionality is essential for identifying the root cause, prioritizing the threat type, and ultimately finding an effective solution.
Trend Micro Vision One's greatest strength lies in its real-time monitoring and analysis capabilities. This allows for the seamless blocking of malicious URLs and attacks.
The managed XDR has saved us time allowing us to focus on other tasks.
The managed XDR helps us detect and respond to threats in under five minutes. It will display all the details in a single, unified view, including any alerts, trends, usernames, and everything else relevant. By simply looking at the tag data, we can get a complete analysis. This eliminates the need to switch between different screens and saves us significant time. For example, if we see a flag, we can immediately understand its meaning and the associated location without having to search for it elsewhere. Having all this information on a single page is a huge time saver.
Trend Vision One helps reduce the time we spend investigating false positives. The more we familiarize ourselves with the tool the easier it becomes identifying false positives. The time saved by identifying false positives depends on the type of alert. In some cases, we only deal with simple attacks, such as brute-force password attempts, followed by alerts for unusual login failures. These are common attack methods. We can then determine if the user was trying a different password, mistyped their password, or there's a mismatch. In such cases, identifying a false positive can be relatively quick, taking only one to two minutes.
What is most valuable?
I appreciate the value of real-time activity monitoring. It provides accurate data, giving us a clear picture of what's happening, including who attempted an attack, their location, and any other details we need to mitigate the threat.
What needs improvement?
While blocking an IP address restricts access for 30 days, it eventually becomes accessible again. For true permanence, blocked IPs need to be transferred to a dedicated storage solution. However, this storage has limited capacity. To accommodate new blocked IPs, we must remove existing ones, creating a disadvantage that has room for improvement.
For how long have I used the solution?
I have been using Trend Vision One for over 1 year.
What do I think about the stability of the solution?
Trend Vision One is stable.
What do I think about the scalability of the solution?
Trend Vision One is scalable.
Which solution did I use previously and why did I switch?
We previously used Palo Alto's Cortex XDR. However, we switched to Trend Micro Vision One because it's more user-friendly. Trend Micro's interface allows us to better understand the features and processes, enabling us to achieve the desired results more easily. Cortex XDR, on the other hand, was more complex to navigate.
What was our ROI?
The solution has delivered a return on investment through time savings.
What other advice do I have?
I would rate Trend Vision One 9 out of 10.
Maintenance is required but it is easy to do.
I would recommend Trend Vision One to others. I suggest completing training before using the solution.
showing 71 - 80