Trend Enterprise Security Solutions

A few use cases for Trend Vision One  include end user installation by my company distributor company. We sell Trend Micro products, focusing on dealers rather than end user sales. My role is in technical engineering, particularly in Turkey, where I handle all Trend Micro product installation and training.

Trend Vision One  allows us to monitor attacks in real time, which is a significant benefit. We can quickly see where the attack is coming from. Trend Vision One enables us to use different products with a flexible license. For example, if a customer is using endpoint security and wants to switch to another solution, they can instantly use a different Trend Micro product, such as email.

Trend Vision One has helped to reduce the time to detect and respond to different threats, as it can respond to attacks very quickly. With playbook templates, in cases of recurring attacks, responses can be made quickly using predefined playbooks.

Trend Vision One has helped to reduce noise from false positives. There have been false positives before, but it was due to the customer not telling us which app they were using. Best practice configurations must be applied properly to avoid such issues.

Trend Vision One helps customers consolidate the use of security vendors and reduce silos by offering one platform for all product management.

In comparison to Trellix, one disadvantage of Trend Micro is the DLP  feature. Trend Micro has a light DLP , while Trellix offers a perfect DLP. Trend Micro's DLP is busy and does not use OCR.

In the future, I would like to see Trend Vision One improved by making it easier if the endpoint had a single agent. Currently, there are two agents for different antivirus and EDR solutions, making it seem advantageous to have just one.

DLP can be developed further, and the platform could benefit from additional IPS products.

I have been working with Trend Vision One for three years.

Trend Vision One is stable, and there has been a problem once so far, which was quickly resolved with very fast problem-solving capabilities.

When needing to scale Trend Vision One, I find it very easy to do so.

Local support for Trend Micro is available in Turkey, including both local and global support teams.

I would rate the technical support of Trend Micro as an eight on a scale of one to ten.

Before Trend Micro, I worked with other solutions such as Trellix and McAfee. Trellix had performance problems, but with Trend Micro, there are no issues, and it offers the best performance compared to other products such as Trellix's EDR and proxy.

Setting up Trend Vision One is straightforward, but someone with IT knowledge should handle it since it requires technical know-how.

Switching to Trend Vision One reduced our risk by 90 percent.

Trend Vision One is a price performance product compared to competitors. On-premises solutions are more expensive than local solutions, and it is more affordable than leading competitors.

Sensor coverage is critical for my customers' networks because we can see instant attacks on the network and computers.

It is very important that Trend Vision One has AI built into its platform as we currently use it, and it provides great convenience in understanding events.

My organization uses Trend Vision One for consolidated security across hybrid environments, as a single screen simplifies management, making it very easy to understand with one platform for all products.

For other organizations considering Trend Vision One, I suggest that using NDR for visibility is nice and easy.

I would rate this review a nine out of ten.

Trend Vision One  is deployed for endpoint security on both clients and servers. Integration with Microsoft Azure , local Active Directory, Email Security , and Cloud Collaboration has been implemented, with efforts to integrate as many modules and interfaces as possible into the platform.

Centralized collection and evaluation of security-related information at a single point is essential for the company's network. Operating in the construction planning industry with clients that are mostly public authorities, the constant exchange of files and collaboration with other companies across various platforms presents significant challenges. Communication occurs via email and Teams, making endpoint protection critical. Trend Vision One  ensures endpoints and users are well-protected, detects threats quickly, and provides strong security assurance.

Attack Surface Risk Management  features are utilized, and its ability to identify blind spots is highly valued. The platform categorizes the biggest risks with a score, allowing specific risk management.

Trend Vision One has consolidated the use of security vendors and reduced multiple vendors. The solution offers far more than initially used, with usage expanding gradually. The Managed Detect and Response Service is utilized, where Trend Micro checks critical cases, providing confidence that data is protected.

Centralizing everything in one cloud platform has improved the company significantly. Integration with third-party products provides additional security and helps the IT team remain calm and confident during incidents. Incidents can be reviewed quickly with clear traceability of events, which reduces stress across the company.

Risk management has been positively affected by the ability to generate reports and gain detailed insight into access attempts, helping reassess risks and identify patterns.

Threat detection and response time has been reduced by 70–90%. Risks are now identified within minutes instead of half an hour. False positives have decreased significantly because alerts can be quickly validated, especially with the new app. Overall cyber risk has been reduced substantially, and the company now feels very secure.

AI integration is very important for the organization. Trend Micro's AI is well-developed and continues to improve, providing faster recognition of threats and specific security support.

The sensors and their visual representation provide a quick and clear overview of the situation and are the most valuable features. The mobile app is highly useful, allowing immediate isolation of a client and instant assessment of alarms without logging into the system. This evolution makes the platform more powerful with every update.

Centralized visibility and management across all protection layers are excellent. Trend Vision One helps identify sources of problems quickly and offers great support contact with Trend Micro. The centralization of data collection and evaluation gives significant control over the security landscape.

AI integration within Trend Vision One enhances detection and analysis, enabling quick recognition of security issues and strengthening trust in the platform. The Managed Detect and Response service further adds value by providing expert monitoring of critical cases.

Integration capabilities and automation, particularly compatibility with local and cloud systems, have significantly improved operational efficiency and reduced manual workload.

The platform's development is satisfactory. There are no specific missing features at the moment, though improvement is always possible in making things more intuitive and easier to use. Trend Vision One continues evolving in the right direction and has become very stable recently.

Trend Vision One has been used since November 2023.

Trend Vision One is very stable, and no issues have been experienced with the solution. Microsoft systems cause more concern than Vision One. The platform runs smoothly and reliably.

Trend Vision One's scalability is good. The goal is to integrate as much as possible and collect all security-relevant information. The platform's scalability supports expansion and additional integrations with AI-driven analysis.

Service and technical support are excellent. Direct contact is available with Trend Micro employees, including local representatives from Switzerland. When MDR tickets are opened, the service team responds quickly with clear instructions. The overall experience is very positive, and customer service and technical support are rated at the highest level.

Before using Trend Vision One, a local Trend Micro solution was used. The move to Vision One occurred when a setup renewal was needed and more security and centralized management options were sought. Trend Micro was recommended and proved to be the right choice.

The initial setup was very simple due to the existing Trend Micro solution. Migration was smooth and supported by a partner, allowing devices to be moved seamlessly to the new platform. The onboarding process was completed within one week, with optimization occurring gradually afterward.

The implementation was handled by the in-house IT team and UniQconsulting, a long-time partner. Only two people were needed for deployment. Approximately one week was required, with a half-day workshop for introduction and several nights spent migrating and optimizing devices. Support from UniQconsulting and Trend Micro ensured a smooth process.

ROI was achieved primarily through reduced IT workload and cost savings from avoiding external managed security providers. The Managed Detect and Response Service allows security to be maintained internally without outsourcing, which significantly reduces expenses.

Some time was required to realize the benefits after implementation. As a small team, the endpoint migration began slowly. By the end of the first year, everything desired had been integrated, including the local Active Directory and firewall. The platform's evolution and AI chatbot have made usage easier over time.

A credits-based licensing model is used. Each function costs credits per device or user. Credits can be reallocated flexibly, and even minor negative balances are tolerated. The model is fair and adaptable to organizational needs. Overall costs are reasonable for the value provided

Foreign Language: (German)

Was ist unser primärer Anwendungsfall?

Trend Vision One wird eingesetzt, um Endpunkte sowohl in Client- als auch in Serverumgebungen abzusichern. Die Lösung integriert sich nahtlos mit Microsoft Azure , dem lokalen Active Directory, der E-Mail-Sicherheit und der Cloud Collaboration, wobei fortlaufend daran gearbeitet wird, so viele Module und Oberflächen wie möglich innerhalb der Plattform zu vereinheitlichen.

Die zentrale Sammlung und Auswertung sicherheitsrelevanter Informationen an einem einzigen Punkt ist für das Unternehmensnetzwerk unerlässlich. Als Unternehmen in der Bauplanungsbranche, in der man hauptsächlich mit öffentlichen Auftraggebern arbeitet, steht die Organisation vor erheblichen Herausforderungen durch den ständigen Dateiaustausch und die Zusammenarbeit mit vielen Firmen über unterschiedliche Plattformen hinweg. Die Kommunikation erfolgt hauptsächlich per E-Mail und Teams, weshalb Endpointschutz von entscheidender Bedeutung ist. Trend Vision One sorgt dafür, dass Endpunkte und Benutzer gut geschützt sind, Bedrohungen schnell erkannt werden und ein hohes Maß an Sicherheit gewährleistet wird.

Die Cyber Risk Exposure Management  (CREM) Funktionen werden sehr geschätzt, unter anderem, weil sie Blind Spots identifizieren. Die Plattform priorisiert die größten Risiken anhand eines Scores, was ein gezieltes Risikomanagement ermöglicht.

Wie hat die Lösung unserem Unternehmen geholfen?

Trend Vision One hat die Sicherheitsabläufe optimiert, indem mehrere Anbieter auf einer einzigen Plattform konsolidiert wurden. Das Deployment wurde schrittweise erweitert, wodurch weit mehr Funktionen als ursprünglich geplant war freigeschaltet wurden. Der Managed Detection and Response  (MDR)-Service sorgt für zusätzliche Sicherheit, da Trend Micro kritische Fälle überwacht und so den Schutz der Daten gewährleistet.

Die Zentralisierung aller Systeme auf einer Cloud-Plattform hat die Leistungsfähigkeit des Unternehmens erheblich gesteigert. Die Integration mit Drittanbieterprodukten bietet zusätzliche Sicherheit und hilft dem IT-Team, bei Vorfällen ruhig und selbstbewusst zu bleiben. Durch die klare Nachvollziehbarkeit können Incidents schnell überprüft werden, was den Stress für die gesamten Organisation reduziert.

Durch die Möglichkeit, Berichte zu erstellen und detaillierte Einblicke in Zugriffsversuche zu erhalten, hat sich das Risikomanagement deutlich verbessert. So können Risiken neu bewertet und Muster erkannt werden.

Die Erkennungs- und Reaktionszeit auf Bedrohungen wurde um 70–90 % reduziert. Risiken werden nun innerhalb von Minuten statt in einer halben Stunde erkannt. False positives sind deutlich zurückgegangen, da Warnungen – insbesondere mit Hilfe der neuen App – schnell überprüft werden können. Das allgemeine Cyberrisiko wurde erheblich reduziert, und das Unternehmen fühlt sich nun viel sicherer.

Die Integration von KI ist ein weiterer entscheidender Vorteil. Die KI von Trend Micro wird kontinuierlich weiterentwickelt und ermöglicht eine schnellere Erkennung von Bedrohungen sowie gezielte Sicherheitsunterstützung.

Was ist am wertvollsten?

Die Sensoren und ihre visuelle Darstellung bieten einen schnellen und klaren Überblick über die Situation und gehören zu den wertvollsten Funktionen. Die mobile App ist äußerst hilfreich, da sie die sofortige Isolierung eines Clients und die schnelle Bewertung von Alarmen ermöglicht, ohne sich ins System einloggen zu müssen. Jedes Update stärkt die Plattform und macht sie mit der Zeit noch leistungsfähiger. Die zentrale Sichtbarkeit und Verwaltung über alle Schutzebenen hinweg sind ausgezeichnet. Trend Vision One hilft, Problemquellen schnell zu identifizieren, und bietet hervorragenden Support durch den direkten Kontakt zu Trend Micro. Die Zentralisierung der Datensammlung und -auswertung ermöglicht eine signifikante Kontrolle über die Sicherheitslandschaft.

Die KI-Integration in Trend Vision One verbessert die Erkennung und Analyse, ermöglicht eine schnelle Identifizierung von Sicherheitsproblemen und stärkt das Vertrauen in die Plattform. Der Managed Detect and Response Service bietet zusätzlichen Mehrwert durch die professionelle Überwachung kritischer Fälle.

Die Integrationsfähigkeit und Automatisierung, insbesondere die Kompatibilität mit lokalen und Cloud-Systemen, haben die betriebliche Effizienz erheblich verbessert und die manuelle Arbeitsbelastung reduziert.

Was könnte verbessert werden?

Insgesamt ist die Entwicklung der Plattform zufriedenstellend. Derzeit fehlen keine bestimmten Funktionen, allerdings wären Verbesserungen hinsichtlich Benutzerfreundlichkeit wünschenswert. Trend Vision One entwickelt sich weiterhin in die richtige Richtung und ist in letzter Zeit sehr stabil geworden.

Wie lange wird die Lösung bereits verwendet?

Trend Vision One wird seit November 2023 eingesetzt.

Wie beurteile ich die Stabilität der Lösung?

Trend Vision One ist sehr stabil, und es sind bisher keine Probleme aufgetreten. Die Plattform läuft reibungslos und zuverlässig. Tatsächlich geben Microsoft-Systeme mehr Anlass zur Sorge als Trend Vision One.

Wie beurteile ich die Skalierbarkeit der Lösung?

Trend Vision One bietet eine hohe Skalierbarkeit. Ziel ist es, so viele sicherheitsrelevante Informationen wie möglich zu integrieren und zu konsolidieren. Die Skalierbarkeit der Plattform unterstützt die Erweiterungen und zusätzliche Integrationen mit KI-gestützten Analysen.

Wie sind Kundenservice und Support?

Service und technischer Support sind ausgezeichnet. Es besteht ein direkter Kontakt zu Mitarbeitern von Trend Micro, einschließlich lokaler Vertreter aus der Schweiz. Bei geöffneten MDR-Tickets reagiert das Serviceteam schnell mit klaren Anweisungen. Die Gesamterfahrung ist sehr positiv, und Kundenservice sowie technischer Support werden auf höchstem Niveau bewertet.

Wie würde ich den Kundenservice und Support bewerten?

Negativ doesn’t make sense when you read what they said about the Customer service and Support in the question before

Welche Lösung wurde zuvor verwendet und warum wurde gewechselt?

Vor der Einführung von Trend Vision One wurde eine lokale Lösung von Trend Micro verwendet. Der Wechsel erfolgte, weil eine Erneuerung der Infrastruktur anstand und mehr Sicherheit sowie zentralisiertes Management gesucht wurden. Trend Micro wurde empfohlen

Wie verlief die Ersteinrichtung?

Die Ersteinrichtung war aufgrund der bestehenden Trend Micro-Lösung sehr einfach. Die Migration verlief reibungslos und wurde von einem Partner unterstützt, wodurch Geräte problemlos auf die neue Plattform transferiert werden konnten. Der Onboarding-Prozess war innerhalb einer Woche abgeschlossen, die Optimierung erfolgte anschließend schrittweise.

Wie war das Implementierungsteam aufgestellt?

Die Implementierung wurde vom internen IT-Team und Uni Consulting, einem langjährigen Partner, durchgeführt. Für das Deployment waren nur zwei Personen erforderlich. Der Prozess dauerte etwa eine Woche, einschließlich eines halbtägigen Einführungsworkshops und mehrerer Nächte für die Migration und Optimierung der Geräte. Die Unterstützung durch Uni Consulting und Trend Micro sorgte für einen reibungslosen Ablauf.

Wie sieht unser ROI aus?

Der ROI wurde hauptsächlich durch die Reduzierung der IT-Arbeitsbelastung und Kosteneinsparungen, da man auf externe Managed Security  Provider verzichten konnte. Der Managed Detection and Response  Service ermöglicht es, die Sicherheit intern aufrechtzuerhalten, ohne auszulagern, was die Kosten erheblich reduziert.

Es dauerte einige Zeit, bis die Vorteile nach der Implementierung vollständig sichtbar wurden. Als kleines Team begann die Migration der Endpunkte langsam. Am Ende des ersten Jahres waren alle gewünschten Integrationen abgeschlossen, einschließlich des lokalen Active Directory und der Firewall. Die Weiterentwicklung der Plattform und der KI-Chatbot haben die Nutzung im Laufe der Zeit weiter vereinfacht.

Wie sind meine Erfahrungen mit Preisgestaltung, Setup-Kosten und Lizenzierung?

Es wird ein kreditbasiertes Lizenzmodell verwendet, bei dem jede Funktion Credits pro Gerät oder Benutzer kostet. Die Credits können flexibel umverteilt werden, und kleine negative Salden werden toleriert. Das Modell ist fair und an die Bedürfnisse der Organisation anpassbar. Die Gesamtkosten sind im Verhältnis zum gebotenen Wert angemessen.

Welches Bereitstellungsmodell wird für diese Lösung verwendet?

Hybrid Cloud

Wenn Public Cloud, Private Cloud oder Hybrid Cloud – welcher Cloud-Anbieter wird genutzt?

Microsoft Azure

Trend Vision One  sensors are used at the endpoint to gather information from endpoints, which has proven to be very useful. The coverage provided by Trend Vision One  is critical for our organization's network because it's a comprehensive way to get all the relevant data from the endpoints regarding antivirus security and similar security settings.

Some basic features of the Cyber Risk Exposure Management  capabilities in Trend Vision One are being used. Plans exist to expand the usage, but currently the overview of the cyber risk settings is checked, though it hasn't been used much in the last few months.

Trend Vision One has helped consolidate the use of security vendors and reduce silos, but other vendors have not been replaced. Trend Vision One alone is sufficient for current needs, so other vendors for such solutions do not need to be used, at least not for now.

Trend Vision One is used for consolidated security across hybrid environments.

The comprehensive overview of the security status is the most valuable feature of Trend Vision One. Trend Vision One platform's ability to provide centralized visibility and management is quite good because all the relevant data are present, providing everything needed. The interface is quite simple to use and all the relevant data can be seen there.

Trend Vision One has helped reduce the time to detect and respond to threats because information is gathered more quickly and all the relevant points are visible. If there's any problem, it can be seen much easier and quicker.

Trend Vision One has also helped reduce cyber risks because it decreases cyber risks as there is more control over the environment.

There are currently no particular suggestions on how Trend Vision One can be improved because improvements have been seen in nearly every version, and satisfaction with what can be seen and used is high.

Additional features are not desired to be seen in the next release of Trend Vision One because not all the features that are available now are being used. For current needs, everything is already there. Perhaps in the future something else will be needed, but everything that is currently needed is already included.

Trend Vision One has improved its integration with other products, with other vendors, or with mobile device management. The mobile device management solution has improved over the years and was pretty basic when it started, but now it has much more options. Some improvements could be made, but all the possibilities of the platform are not being fully utilized, so some features that could be discussed may not have been explored yet, though they may already be available.

Trend Vision One has been used for a couple of years.

There have been no problems with scaling Trend Vision One. The organization is not large, so there were no problems in scaling. Trend Vision One appears to be tailored for much bigger organizations, so no scaling problems were encountered.

There has not been much contact with technical support, though some checks and presentations were conducted, which were quite good. The response was very quick and all the information needed was received, resulting in high satisfaction.

Technical support would be rated nine out of ten. Regarding local technical support, it is also quite good through the partner network and directly. If something is escalated directly to Trend Micro, responses are received. There is high satisfaction with the current support level.

The initial setup of Trend Vision One was seamless because it was a migration from an on-premises Trend Micro service to a cloud-based one, so there were no particular problems.

External partners were used for the implementation of Trend Vision One, though the process was overseen. There was a transfer of knowledge during the implementation.

Return on investment from Trend Vision One has not been calculated in the traditional sense, but price-wise, it's a better solution than some others that have been looked at or researched. Trend Vision One is quite convenient for the organization.

Before Trend Vision One, a broader marketplace was evaluated. A granular possibility to purchase only needed options without purchasing unnecessary components was not observed in other solutions. The licensing model of Trend Vision One is the best among other solutions that have been seen.

For integrations with third-party solutions, integration was done for log management. Logs are downloaded or shipped from Trend Micro solutions to internal log management solutions, and there were no particular problems in integrations. Many other integrations specifically with Trend Micro were not conducted.

Trend Vision One is considered the best option on the market at the moment for this organization. Trend Vision One appears to be quite popular in the region, with many companies using it, both bigger and smaller organizations. A community provides information and support, making Trend Vision One popular in the area.

Trend Vision One has been using AI technologies already for some time, which shows awareness of the landscape. It is believed that Trend Vision One will tailor the solution accordingly, as AI is already being used in some solutions within the platform, indicating good direction for the product.

Trend Vision One provides learning courses, and events from partners sometimes offer opportunities to gather new information on the products. Additionally, a community is available, creating a good landscape for learning and support in the region.

The partnership program is not well known because collaboration is through partners, but it is believed that partner satisfaction is high.

Trend Vision One received an overall rating of eight out of ten.

We started with the antivirus solution, Trend Vision One Endpoint Security, after switching from Sophos. Initially, our focus was antivirus, but later we expanded to include multiple Trend Vision One products: XDR for Networks, Managed SOC, and Cloud Endpoint Security.

Our deployment covers endpoints, network sensors, and integrations with Active Directory and Microsoft. We use virtual sensors for full network visibility and maintain a hybrid environment with both private and Azure cloud infrastructure.

Our customers are mainly in the public sector—municipalities, cities, healthcare, and retirement homes—so ransomware is a major concern. Trend Vision One provides tools to fend off attacks and allows us to use virtual patching to quickly close vulnerabilities without waiting for traditional patches.

Trend Vision One has significantly enhanced our visibility into vulnerabilities and security incidents. Unlike Sophos, which only offered basic antivirus protection, Trend Vision One provides comprehensive insight into user behavior, dark web login monitoring, and open vulnerabilities.

We can now see everything from a single platform, which simplifies security operations and reduces complexity. It also allows for real-time risk management linked to live data, enabling continuous improvement rather than periodic reviews.

The Swiss Trend Vision One team supported us closely in refining our cybersecurity processes, leading to substantial overall progress and reduced cyber risk across the organization.

The rollout was quick thanks to the cloud-based infrastructure of Trend Vision One Complete, which eliminated the need for additional hardware. The central visibility of the platform is particularly valuable: users can log in and immediately identify areas of high risk. The unified dashboard highlights vulnerable areas at a glance, streamlining remediation.

Attack Surface Risk Management (ASRM) is also a key feature, helping prioritize assets based on criticality and data sensitivity. For instance, devices holding high-value data receive more attention in risk scoring.

The platform's ability to provide insights across multiple protection layers helps us address vulnerabilities quickly and efficiently. The system's simplicity and consolidated data have also made managing risks far more effective than before.

The main area of improvement lies in the Workbench interface. When investigating alerts, users often have to navigate through multiple windows and tabs to gather all relevant information. Consolidating case details into a single, more intuitive view would streamline investigations and save time. Otherwise, the solution's functionality is well-balanced.

We've had the solution for a little more than two years.

The solution's stability is excellent. We have not experienced any issues or downtime since implementation.

Scalability has been strong. We began with server deployments and are now rolling out to 2,200 client devices. The process has been seamless, requiring minimal additional configuration.

We have had an excellent experience with Trend Vision One's customer and technical support. The Swiss Trend Vision One team provides consistent, personalized assistance, with dedicated contacts who understand our setup well.

They have been very responsive, and we even have an ongoing relationship with them beyond technical support. Overall, I would rate the service a nine out of ten for professionalism, consistency, and expertise.

Our previous solution was Sophos Endpoint Protection, which reached end-of-life. We evaluated multiple vendors, including Sophos's new offerings, but Trend Vision One stood out due to its platform capabilities, the SOC integration potential, and especially the excellent support from the Swiss Trend Vision One team.

The switch was smooth, and Trend Vision One's modern detection capabilities and compatibility with both legacy and modern systems were major advantages over Sophos's on-premises, outdated setup.

There were no major deployment issues. The initial rollout was phased, starting with servers before moving to clients. Trend Vision One Switzerland supported the implementation directly, ensuring smooth execution.

The initial setup was straightforward. We rolled out the solution to around 1,000 on-premises data center servers over two to three months. The process was divided into test, review, and full rollout phases, which helped minimize issues. The overall setup was simple and efficient, especially for the scale of deployment.

Implementation was handled internally by two people: myself and one team member. We managed all phases from planning and clarification to deployment.

Trend Vision One Switzerland provided close technical guidance during the process, and later, the service provider Pingas in Germany assisted with SOC integration. Our ongoing maintenance involves eight people from our team, although the Trend Vision One solution itself requires little upkeep.

Return on investment was not a primary goal. We offer managed services to our clients, with antivirus protection included as part of the package rather than a separate revenue stream. The investment was made to ensure robust cybersecurity and operational reliability. However, we plan to expand some of these services to external customers to achieve a return in the future.

We have an Enterprise Agreement with Trend Vision One, a six-year strategic partnership covering a defined consumption volume. Pricing is considered fair for the range of functions included. It's neither excessively high nor low, and overall, it aligns well with the value provided.

We evaluated multiple alternatives, including Sophos's updated solutions, but Trend Vision One prevailed due to its modular service structure, modern platform design, and strong support from the Swiss Trend Vision One team.

I would recommend others to evaluate this solution, especially with the support of a trusted partner during the introduction phase. Having expert guidance early on helps with configuration and understanding the platform's capabilities. Trend Vision One also consolidates vendor management effectively, reducing the need for multiple partners.

I would rate Trend Vision One a nine out of ten.

Foreign Language: (German)

Wir haben mit Trend Vision One™ – Endpoint Security begonnen, nachdem wir von Sophos gewechselt hatten. Anfangs lag der Schwerpunkt ausschließlich auf dem Antivirenschutz. Inzwischen nutzen wir jedoch mehrere

Module der Plattform Trend Vision One – darunter XDR (Extended Detection & Response) für Netzwerke, Managed SOC und Cloud Endpoint Security.

Unsere Implementierung umfasst Endpoints, Netzwerksensoren sowie Integrationen mit Active Directory und Microsoft. Durch den Einsatz virtueller Sensoren erreichen wir vollständige Netzwerksichtbarkeit. Unsere Umgebung ist hybrid aufgebaut – mit privater sowie Azure-Cloud-Infrastruktur.

Unsere Kunden stammen überwiegend aus dem öffentlichen Sektor – Gemeinden, Städte, das Gesundheitswesen und Pflegeeinrichtungen – für die Ransomware eine zentrale Bedrohung darstellt. Trend Vision One bietet leistungsstarke Tools zur Abwehr solcher Angriffe und ermöglicht virtuelles Patchen, sodass Schwachstellen umgehend geschlossen werden können, ohne auf klassische Patches warten zu müssen.

Trend Vision One hat unsere Transparenz hinsichtlich Schwachstellen und Sicherheitsvorfällen erheblich verbessert. Im Gegensatz zu Sophos, das lediglich grundlegenden Antivirenschutz bot, liefert Trend Vision One umfassende Einblicke in Nutzerverhalten, Dark-Web-Anmeldungen und offene Schwachstellen.

Heute haben wir alle sicherheitsrelevanten Daten auf einer einzigen Plattform, was den Betrieb vereinfacht und Komplexität reduziert. Zudem erlaubt die Lösung Echtzeit-Risikomanagement auf Basis von Live-Daten – ein kontinuierlicher Verbesserungsprozess statt punktueller Überprüfungen.

Das Schweizer Trend Micro Team hat uns bei der Optimierung unserer Cybersecurity-Prozesse eng begleitet. Das führte zu deutlichen Fortschritten und einer spürbaren Reduktion des Cyberrisikos in der gesamten Organisation.

Die Implementierung verlief zügig, dank der Cloud-basierten Architektur von Trend Vision One, die keine zusätzliche Hardware erforderte. Besonders wertvoll ist die zentrale Transparenz der Plattform: Nutzer können sich einloggen und sofort risikoreiche Bereiche identifizieren. Das einheitliche Dashboard zeigt Schwachstellen auf einen Blick und erleichtert deren Behebung.

Ein herausragendes Feature ist das Cyber Risk Exposure Management (CREM), das Assets nach Kritikalität und Datenwert priorisiert. Systeme mit sensiblen oder geschäftskritischen Daten werden im Risikoscore entsprechend stärker gewichtet.

Durch die ganzheitliche Sicht über mehrere Schutzebenen hinweg können Schwachstellen schnell und effizient adressiert werden. Die einfache Bedienbarkeit und die konsolidierten Daten haben das Risikomanagement deutlich effektiver gemacht.

Der Hauptverbesserungsbedarf liegt in der Workbench-Benutzeroberfläche. Bei der Untersuchung von Warnmeldungen müssen Anwender häufig zwischen mehreren Fenstern und Tabs wechseln, um alle relevanten Informationen zu erfassen. Eine konsolidierte, intuitivere Fallansicht würde Analysen beschleunigen und Zeit sparen. Abgesehen davon ist die Funktionalität der Lösung sehr ausgewogen.

Wir verwenden Trend Vision One seit etwas mehr als zwei Jahren.

Die Stabilität ist ausgezeichnet. Seit der Implementierung kam es zu keinerlei Ausfällen oder Problemen.

Die Lösung ist hochgradig skalierbar. Wir begannen mit Server-Deployments und haben die Nutzung mittlerweile auf 2.200 Client-Geräte ausgeweitet – reibungslos und ohne größeren Konfigurationsaufwand.

Unsere Erfahrungen mit dem Kunden- und technischen Support von Trend Micro sind durchweg positiv. Das Schweizer Trend Micro Team bietet eine konstante, persönliche Betreuung mit festen Ansprechpartnern, die unsere Umgebung bestens kennen.

Die Reaktionszeiten sind hervorragend, und die Zusammenarbeit geht über reine Supportfälle hinaus. Insgesamt bewerten wir den Service mit neun von zehn Punkten – für Professionalität, Zuverlässigkeit und Fachkompetenz.

Zuvor setzten wir Sophos Endpoint Protection ein, dass das End-of-Life-Stadium erreicht hatte. Nach Evaluierung mehrerer Anbieter – auch der neuen Sophos-Lösungen – überzeugte Trend Vision One durch seine Plattformfähigkeiten, SOC-Integrationspotenziale und den hervorragenden Support des Schweizer Teams.

Der Wechsel verlief reibungslos. Besonders die modernen Erkennungsmechanismen und die Kompatibilität mit sowohl älteren als auch modernen Systemen stellten deutliche Vorteile gegenüber der veralteten On-Premises-Struktur von Sophos dar.

Es traten keine nennenswerten Probleme auf. Die Einführung erfolgte phasenweise, zunächst auf Servern, danach auf Clients. Die Implementierung wurde direkt vom Schweizer Trend Micro Team unterstützt und verlief reibungslos.

Insgesamt war die Einrichtung unkompliziert: Rund 1.000 Server im Rechenzentrum wurden innerhalb von zwei bis drei Monaten in Test-, Review- und Rollout-Phasen eingeführt. Der Prozess war effizient und gut strukturiert – besonders angesichts der Deployment-Größe.

Die Implementierung erfolgte intern durch zwei Personen – mich selbst und einen weiteren Kollegen. Wir betreuten alle Phasen, von der Planung bis zum Rollout.

Das Schweizer Trend Micro Team leistete dabei enge technische Unterstützung. Später übernahm der deutsche Dienstleister PingUs die Integration des SOC. Die laufende Wartung wird von acht internen Mitarbeitenden übernommen, wobei der Pflegeaufwand der Lösung insgesamt gering ist.

Ein direkter Return on Investment war kein vorrangiges Ziel. Wir bieten unseren Kunden Managed Services an, bei denen Antivirenschutz im Gesamtpaket enthalten ist. Die Investition diente vor allem der Cyber-Resilienz und Betriebssicherheit. Künftig planen wir jedoch, Teile dieser Services auch extern anzubieten, um einen ROI zu erzielen.

Wir verfügen über ein Enterprise Agreement mit Trend Micro – eine sechsjährige strategische Partnerschaft mit definiertem Verbrauchsvolumen. Das Preisniveau ist für den Funktionsumfang angemessen: weder überhöht noch niedrig, sondern im Einklang mit dem gebotenen Mehrwert.

Wir haben mehrere Anbieter geprüft, darunter auch die neuen Sophos-Lösungen. Trend Vision One setzte sich durch – dank modularer Servicearchitektur, moderner Plattformstruktur und der starken Unterstützung durch das Schweizer Team.

Ich empfehle, diese Lösung in Betracht zu ziehen – insbesondere mit Unterstützung eines kompetenten Partners in der Einführungsphase. Fachliche Begleitung hilft, die Plattform optimal zu konfigurieren und ihr volles Potenzial auszuschöpfen. Zudem vereinfacht Trend Vision One das Vendor Management, da mehrere Anbieter überflüssig werden.

Ich bewerte Trend Vision One mit neun von zehn Punkten.

Hybrid-Cloud-Umgebung

We operate as an MSP. Most of my clients are financial institutions, such as one of the largest banks in Pakistan. We primarily serve enterprise-level financial institutions and banks.

The best features in Trend Vision One are the workbench and the XDR feature for the playbooks. We continue to use these two features extensively.

We also have our own product called SIRP, which is a SOAR platform, and we integrate it with Trend Vision One for automations, alert information, auto enrichment, and IOC enrichment.

We appreciate that Trend Vision One provides a good API with actions for our SIRP operations.

While we did not calculate specific MTTR and MTTD metrics, it has significantly reduced suspicious alerts and benign alerts compared to what we previously experienced.

Trend Vision One provides its own MDR services for detection capabilities, similar to CrowdStrike. Their team collaborates effectively with us on response and detection. The solution doesn't require frequent maintenance, and services are not regularly interrupted.

Areas that need improvement in Trend Vision One include the AI-based mechanism, AI-based detections, and AI-based autonomous detections, which are currently lacking. Additionally, they need to add more integrations to their playbooks. They should lower the cost for integrations as they charge for each individual integration. Trend Vision One does not initially disclose to customers that they need to purchase additional licenses and pay more for integrations. They need to modify their licensing mechanism and improve their AI-based detections.

We have been using Trend Vision One for approximately six to seven years. We provide services to different customers on various security controls and security products.

Trend Vision One demonstrates strong stability, warranting a rating of seven out of ten.

Trend Vision One is scalable. For DMG area operations, they have their own dedicated product available.

I cannot provide detailed feedback about Trend Vision One support as we haven't needed to utilize it extensively. The configuration process is straightforward enough that we rarely require support assistance.

Most of the enterprise-level clients use CrowdStrike or Cylance. Trend Vision One or Trend Vision One Apex Central is used by most smaller banks, while bigger banks predominantly use CrowdStrike and Cylance.

In Pakistan and the MENA region, clients prefer on-premises deployment unless cloud services are available. When cloud hosting is located in the US or other countries, Saudi and UAE clients typically opt for on-premises deployment.

Vision One is very easy to deploy. We don't have to do much of anything on that. We just have to deploy the agent, and we have to configure the policy. It's not very complicated.

Regarding pricing, Trend Vision One offers very competitive rates compared to CrowdStrike and Cylance. Customers who cannot afford CrowdStrike's pricing can easily opt for Trend Vision One.

We are not a partner with Trend Micro; we only provide deployment services. Trend Vision One can generate false positives; however, this depends on the whitelisting configuration, particularly in the application control area and IOC whitelisting. The detection mechanism is good, though CrowdStrike performs better in detections and reducing false positives due to its behavioral-based analysis and AI-based features. In comparison with other vendors, CrowdStrike ranks first, followed by Cylance, then Trend Vision One. Cylance and Trend Vision One can work together effectively.

I would primarily recommend CrowdStrike, and then Trend Vision One for customers with budget constraints. CrowdStrike's recent launch of a new AI model and features such as the MDC module for comprehensive log collection provide superior visibility and control compared to Trend Vision One.

The overall rating for Trend Vision One is seven out of ten.