We are using two products. One is Trend Mirco Deep Security, and the other is Apex One. We use Apex One for endpoint protection and Deep Security for server protection.
It scans for intrusion prevention and the forensics of any threats.
The Trend Micro Cloud and Data Center Security solution protects applications and data and prevents business disruptions, while helping meet regulatory compliance. Whether you are focused on securing physical virtual, cloud, or hybrid environments, Trend Micro provides the advanced server security you need with the Trend Micro™ Deep Security™ platform.
Trend Micro Deep Security is also known as Deep Security.
Download the Trend Micro Deep Security Buyer's Guide including reviews and more. Updated: November 2021
Rush University Medical Center, Guess? Inc., Mazda Motor Logistics Europe, MEDHOST, KSC Commercial Internet Co., Ricoh Company Ltd., Square Enix, SoftBank Telecom, Telecom Italia, United Way of Greater Atlanta, A&W Food Services of Canada
We are using two products. One is Trend Mirco Deep Security, and the other is Apex One. We use Apex One for endpoint protection and Deep Security for server protection.
It scans for intrusion prevention and the forensics of any threats.
On the product side, they have done multiple upgrades. When we started with Trend Micro they offered us the OfficeScan agent. It is a malware product. After that, it upgraded to Worry-Free. Then we moved to Apex One. So Trend Micro offered all the upgrades. Since we are in the manufacturing industry our focus is mainly on production and we don't consider IT much. In this regard, we are not upgrading our hardware much. We are using the same hardware for five, six, seven years.
However, Trend Micro does not support less than Windows 7. So that is a drawback for us. Otherwise, the functioning of the product is very good.
In terms of valuable features, I would say its intrusion prevention. Each and every IP connecting to the server gets scanned so we know everyone who is accessing our server and we can block whichever IPs do not belong to us at the firewall.
Another valuable feature is its lightweight nature. It is only 25 MB deployed in the server, yet it works smoothly, and everything is automated, including the updates and scans. We have scheduled scans that give us a weekly report.
As for what could be improved, I think it should come with an XDR facility without any extra cost. They're always releasing new features, but we need to pay extra for them. Our management is a little conservative about paying for new features. So if they're upgrading something or coming out with a new technology, they should provide it to the existing users. Recently, I attended a webinar that XDR gave about their new threat finding features and we have not received them yet. They are not giving it to existing customers. They are only offering it for purchase. It is for threat forensic reports.
I'm not asking for free, since we are already paying. Whenever they come out with a new thing, they should integrate it with the existing product. That is my opinion.
Additionally, we need a complete web reputation. We need to be able to do forensics for any incoming threat, to find details of the source of the threat, and to catch the '"enemy."
We have been using Trend Micro Deep Security for the last two years.
In terms of stability, it is very good at finding malware, threats, etc... There is no virus problem, no external threats, no data leak. It is good for now.
We have not experienced any bugs, or glitches, or crashes.
Before we started using Trend Micro were using McAfee. We switched because we got a ransomware attack back in 2016. It wasn't safe enough. It was one of the first attacks in India and our management said that McAfee was not ready for it. They had not upgraded their signature and it had multiple systems attacked. After that, management decided to switch to another product and that's when we started using Trend Micro. For the last four or five years we have not had any problems.
The initial setup and deployment are not complex. The infrastructure is very good to operate.
The deployment of the agent is very lightweight. It takes about 10 minutes to complete.
We deployed under the consultation of Trend Micro. But I can also manage it. When we run into any actual problem only then do we contact Trend Micro. Otherwise, it is running smoothly.
As a user, I am not finding any drawbacks or problems in this security product. But I do see in some forums comments about issues other customers are facing. I know there are multiple products in the market that are maybe better than Trend Micro. That is why I came to your site and researched other solutions. I have found that Palo Alto is better than Trend Micro. But we have not tested it yet, so I requested from Palo Alto Networks to show us some other products. They are coming next week to show us. If we find that they are better than Trend Micro we will switch. But overall, Trend Micro is working very well.
We had also evaluated Symantec in the past.
I am satisfied with the product. As I mentioned, sometimes we feel some other features should be included. For example, the complete system control and web reputation. Regarding web reputation, I am a little limited because although we are blocking some sites, they are able to access those sites from out of our network. In other words, the restriction should be permanent whether it is done on-premises or on the internet. That is a drawback.
I can recommend it because it is good product. I have experience with other products as well and they have failed in the security field. That why I'm working with Trend Micro now.
The user interface in Trend Micro is very helpful. They have some study videos and some process videos included in the portal itself. So when we are in any system or get a warning or any critical error we can resolve it on the spot because we have the solution attached to the data error. That is something good thing they have done in the portal. With the instructions they have given we can see what we need to do so we can get it resolved by our self. We can learn the things on our own with no need to go to support.
On a scale of one to ten I would rate Trend Micro Deep Security an eight.
As a security competency company, we play a lot on this product. For us, it's one of the best for data center solutions. Deep Security is something that is a classic antivirus. However, it uses two-function device control. Everything is inside. We have virtual patching capabilities, which are very interesting in Deep Security. Virtual patching is just a host IPS solution which, if there is a delay in installing the patch, the patch is available by the editor.
It's a good product overall.
There is not a lot of bugs like you have in other antivirus solutions. It's quite stable.
The initial setup is pretty easy.
The solution is scalable.
The solution is quite secure.
The main drawback is that it's complicated. With Trend Micro solutions, everything is complicated. Deep Security has its own management console, and every product in Trend Micro has its own management console. Everything is siloed. Now, they are trying now to connect everything inside the main control management or reporting console, however, it's still not a central management console. It makes for a lot of work when applying policies and security solutions.
The product isn't very user-friendly.
It's a bit old-fashioned in its design and approach.
While, for example, McAfee might have a new version every two months, Trend Micro might not release a new version for two years. While it's very stable, it could be a bit too long in-between versions.
It would be ideal if the solution communicated better with other security solutions from other brands. This is an issue. They need to open up their API or give access, or exchange information with other security products so that everything can communicate together, learn from each other, and block malicious threats better.
We've been using the solution for a long time. It's been three or four years or so.
The stability is very good. There aren't a lot of bugs or glitches. In comparison, for example, Sophos has some bugs and McAfee has a lot of bugs. When they give you a new version, you know that you have to wait for the service pack, to be sure that it will be up and running in production.
This product doesn't crash or freeze. It's reliable.
The thing users need to understand about the solution is that Deep Security is not by default meant to manage 100,000 PCs. It's for data centers, and it's for less than 300 servers at the same time. That said, even a big company doesn't have a lot of servers available. In terms of scalability, we don't find a limit for the moment based on the customer base we have.
You can also scale via the cloud. It's very flexible and you can deploy on command, on a virtual server in the cloud.
We've dealt with technical support in the past. We only call them, from time to time, if we can't figure out the answer ourselves. While four or so years ago they weren't as fast, not we get a quick response. Over the past year, we've been quite pleased with the level of support.
We're familiar with older versions of McAfee. We are playing with Sophos for the UTM, the NG Firewall, and for the antivirus, Sophos Intercept X. I've also worked with Kaspersky.
Which is best depends on the client. While Kaspersky, for example, is good for smaller clients, Trend Micro is better for medium to larger ones. However, the solution isn't something you just set and forget. You have to take details, verify, validate, and be aware that a small change will not produce too many logs on the threat detection.
The implementation process is not very complex. If the initial setup is just replacing a competitor antivirus with Trend Micro, it's very easy. The only thing you have to be sure of is that you are setting up the right functionality. Trend Micro Deep Security, has a lot of functions. If you want a classic antivirus, there are very few functions to set up. However, if you want a specific functionality, there may be more steps. There will be more fine-tuning that is required to make sure you are well-protected.
When you have start Deep Security on something that was not equipped with an antivirus, or equipped with, let's say, Bitdefender or Windows Defender, you have very few protections. If you don't take care of covering all these safety functions, you'll be vulnerable. That said, you need to be careful of which functions you activate. You need to make sure it makes sense in terms of the rest of your setup.
It's been one of the four main antivirus solutions, deployed in an industrial way. We've been quite happy with it. You can deploy it on-premises or the cloud, and it's possible to use it with Windows and Linux.
I'd rate the solution at a nine out of ten. We've been very happy with it and found it to be quite secure.
Of course, next-generation solutions such as Crowd Strike or Carbon Black are game-changing.
Patch management is most valuable. The major selling point of Deep Security is that it is based on the cloud. Deep Security is for the servers and databases of data centers, and generally, for patch management, you have to shut down the machines, and then you have to restart them. So, they need shutdown time, which is a cost. Big enterprises don't want to shut down their database or their data center for any kind of patch. Deep Security creates a wall and downloads all patches. You install it on the cloud. So, it saves your server from any kind of intrusion or any kind of penetration, and whenever you get a chance or time, in six, eight, or nine months, you can physically download or install all those patches in one go. So, it saves you time. It also saves your shutdown time and keeps your data center safe.
Along with patching, they also provide antivirus protection on the servers.
It should have XDR and EDR integration. It would be nice if they can tie it up with an XDR or EDR.
Its price is also quite high. It is more expensive than other products for patching. So, it would be nice if they lower its price.
We have been providing this solution for about two to three years.
It is very stable. That's why it is doing so well. They have already captured 90% of the financial market in our country.
I won't say that it is scalable. It is the final product, but it has a few add-ons. You can add other products of Trend Micro, for example, XDR or EDR, along with DDI, but you can't scale Deep Security to another level. It is the final product.
It is a very expensive solution, so it has mostly been used at an enterprise level. Around 90% of the customers belong to the financial sector, and around 95% of banks in Pakistan are using it.
They have a pretty good support system. The best part is that they have their support team on the ground in Pakistan. They also have a support team back at their headquarters. Along with that, they have built a support team at the distributor level. They have also trained the partners. So, support is quite good and efficient.
Its installation is pretty easy. You can do the installation remotely because it is on the cloud, so you have access from anywhere.
Installation duration depends on how many servers you have, but it normally takes about four to five days. It is not just the installation. After installing it, you also have to do testing and other stuff.
You do need certified engineers for it.
It is a very expensive solution. It would be nice if they lower its price.
Its license is based on the machines.
I recommend Deep Security to almost all of my customers. It is a very good product. I would rate Deep Security a nine out of 10.
Deep Security is a server protection product. We use it for virtual patching and file integration. You can use this with your cloud or an NX environment, virtual services, VMware, etc.
Deep Security is a good product for managing a few servers.
I've been using Deep Security for more than five years.
Performance is fine. You need to keep an eye on the new files getting detected, or so you have to keep on applying those file folders. So you have to keep monitoring, or else it is not going to help. So especially for the file integrity model and all.
I don't know about the scalability, but it's good for few servers where you can manage.
There is a local Trend Micro team in Mumbai that we call for support or to log a ticket.
Deployment and post-deployment implementation are a little complicated. We can't touch servers, and we can't modify the settings. It should be automated, and Trend Micro should make the process more intelligent. The scope is broad, and you have to manually monitor the file scans and respond whenever there is a detection.
The deployment itself is not that difficult because it's client based. So you want to install clients on each of those servers, and then you have to keep monitoring and adding features. You check the server's performance, and if everything is fine, you can keep adding servers. But post-implementation is time-consuming. You have to do monitoring, and that takes time. After you set up everything, it's not a full-fledged implementation. You have to keep on monitoring and configuring.
And there are times when the malware protection or some other virtual patching is working fine, but you need a technician to get all the more advanced features to work. It takes around two or three technicians to implement. Our team is responsible for security while a different team handles server management. Then there are one or two people who manage the security console. And then, there are OEM support and SI support.
We have a subscription. It's not a surface subscription. It's only the AMC part.
I rate Trend Micro Deep Security six out of 10. I would recommend it. It depends on the other security controls you have in place. If you're using the entire Trend Micro suite, then you have a PT web gateway. So if you have the whole suite, you have tight integration with your APT and firewall story. In that case, Trend Micro Control Manager is there. So you have everything tied to a single console, so security and everything play as a complete story.
We are service providers for our customers. We are using Trend Micro Deep Security as an anti-malware and as an complete endpoint protection solution for server. The primary use case is data center security.
Our cloud hosting proposal has grown up with Trend Micro endpoint products fron officescan on to Deep Security. We propose it also on premise for our customers. The antimalware engine is really effective.
This product has many features and it works with every operating system and any kind of endpoint. It's widespread.
Monitoring is good, and they also can protect DevOps/Docker enviroment.
It integrates well with the cloud; for example, AWS, and mow Google Cloud Platform.
One problem with this kind of products is scaling. If you go on large sites you have to have an external database, which would increase the overall solution cost.
The solution offers many features aside from antimalware, lile Host FE and IDS/IPS, File integrity monitoring and so on, but if you use it to protect deliering agents on hosts you'd better verify the amount of host resources (ram) utilized by DS agent itself.
We have been working with this solution for more than five years. We also delivered Deep Discovery suite products ad advanced ATP solution.
At one time we had some issues, but not anymore. It's quite a stable solution.
It's on of the best scalable antimalware solution as the amount of protected endpoints grows.
We have support here in Italy and we contact them directly. We have a good relationship with our local support.
Overall, we are quite satisfied with technical support.
The initial setup is complex.
The time for deployment depends on the size. You have different installations for different sizes.
we integrated it with vendor engineering assistance. The level of their assistance team is high, they have skilled and expert people
It's more expensive than other endpoint protection solution. It's not the cheapest.
for our customers i also evaluated: Symantec, Kaspersky, Sophos. Bitdefender
I would recommend Trend Micro Deep Security.
If you need a versatile solution that covers many different needs or requirements, Trend Micro Deep Security is very good. It's a broad-spectrum product.
I would rate this solution a nine out of ten.
Our primary use case is for endpoint protection and email as well as web protection. We are stacking our servers once a month and vulnerabilities are checked every day. I'm a senior director in the company and we're a customer of Trend.
Automated virtual patching would be the most valuable feature. Deep Security has an option called recommendation scans. Once that feature is enabled, it scans the endpoints for these vulnerability questions and the tool can implement the rules to prevent the vulnerability found in this batch.
This is a very good tool but I don't find it to be a particularly user friendly solution, a lot of trouble shooting is required. I believe it needs simplification, without that they will run into continual problems. For now the solution requires spending a lot of time on module issues and anti-malware modules. We also have issues with scaling and this area could be improved. Adding one additional end point means you need to re-input all the other end points. If you have 1,000 users, that is not possible in real time. Each time we deploy new managers we need to connect with all endpoints and they need to be re-entered.
I've been using this solution for three years.
This solution is stable.
The scalability is very good and as we grow we are expanding our tool networks.
The setup is straightforward. We initially procured the tool for 50 people and we've now implemented it for 200. There are many new customers coming in so we're looking to scale it to 1000 plus endpoints.
I am completely satisfied with this tool but we still plan to implement with the Symantec Endpoint Protection for the upgrade segment. We want to use a different tool for endpoint security because if there are any bugs in Trend Micro or any other tool we use then we're in trouble so we've decided not to have multiple tools from the same vendor.
I would rate this solution an eight out of 10.
I used it in my previous company, and it was basically used for security levels. My company was into the implementation of projects, and we used to implement security solutions. Along with Trend Micro, we used to implement these devices. We had several customers of this solution.
The traceback feature in XDR is amazing. You can trace back an attack. You can playback where an attack actually occurred and see how the attacker moved. We can easily show this to management, and it makes it easy to make them understand and convince them, which is the best thing.
There should be more tools to trace back. Some sort of module needs to be included to attach all the things.
It should be more stable, and the traceback feature should be improved. There were cases when we got virtual analyzer or CMC errors. We got false-positive malware notifications, but we couldn't trace them. I raised a case with Trend Micro two or three times, but they couldn't resolve it. Their support should be improved in terms of technical abilities to troubleshoot complex issues. They should be more knowledgeable.
I have been using this solution for the past three years.
It is stable in a way, but you get false-positive malware notifications.
Their support can be improved. For our case related to the virtual analyzer or CMC error, they couldn't trace back the issue. We were frequently getting notifications on that server, which were false-positive. They couldn't say why this is happening, and what is making this client trigger these errors. They couldn't advise on that. They should be more knowledgeable.
Its initial setup is straightforward. Deployment duration depends on the environment. Sometimes, we needed to deploy two or three devices, and we had to consult Trend Micro. Their best practices are also there.
We had a technical team of four engineers, including me.
I would recommend this solution, but it has scope for improvement.
I would rate Trend Micro Deep Security an eight out of ten.
Deep Security's most valuable features are antivirus and host intrusion detection.
Deep Security's biggest shortcoming is its reporting.
I've been using Deep Security for about two or three years.
Deep Security is pretty solid.
Deployment took a week or two because we didn't know what we were doing. But once we got it up, it's not like I had to install it multiple times. But if I did, it wouldn't be that bad. Deep Security is pretty low maintenance. It patches itself then downloads all the new buyer signatures, the common vulnerabilities, and everything like that. So it pretty much takes care of itself. However, when we're patching everything else, it could knock one of the agents offline. So we have to deal with that aspect a little bit.
I'm not sure about the exact price, but it's reasonable and competitive. Compared to its competitors, you get a lot of bang for your buck. This was the way to go. There aren't any hidden costs. Everything was straight-up. However, it has a built-in malware detector that sends you alerts, but you need someone to monitor and respond to that. You need an incident response team, and Trend Micro Has a service for that called XDR. So if you want that monitoring service, you have to pay extra.
I would rate Trend Micro Deep Security nine out of 10. It met all our requirements, and Trend Micro provided us with a lot of help getting it set up. I would almost give it a 10, to be honest, but there is some room for improvement with the reporting. For someone implementing Deep Security, I would advise them to pay attention to their kernel numbers. But then again, if we were using Red Hat Linux, Deep Security would be so seamless. Sometimes the kernel versions get out of sync, but as long as you stick to the standards, it's seamless. Once you deviate, the mileage may vary.