We use Vision One together with the other products in the Trend Micro security stack, such as XDR, Site Management, and Apex One.
Trend Vision One™
Trend MicroExternal reviews
273 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Robust, wide-coverage tool
What do you like best about the product?
risk view, attack surface and workbench correlation
What do you dislike about the product?
not having a single agent for servers and workstations
What problems is the product solving and how is that benefiting you?
With it we are able to focus our efforts on the most crucial point of the organization.
Has made our detection and response time much faster
What is our primary use case?
How has it helped my organization?
Vision One has made our detection and response time much faster. We have 30-plus integrations, helping us to identify the most critical threats. The more connections, the better. We can also identify and resolve false positives faster.
What is most valuable?
I like Vision One's workbench. It provides helpful logs that I can search, and the telemetry is excellent because I can see what's happening during an attack or potential attack.
Another one of my favorite features is attack surface risk management. It shows me faults and blind spots in my security. I also like the attack phase management. The model shows the risks in the corporation and provides considerable information about what is happening on the platform and the network, offering more visibility. There's also a risk index that shows me where I can improve my security.
Vision One provides centralized visibility and management across multiple layers. This is critical because I need to see what's happening. It also allows me to set separate rules and policies for some security areas.
What needs improvement?
Vision One's search could be improved. While the platform is very user-friendly, the search feature uses terms that aren't as intuitive. The automation is excellent, but I wish there were more templates to help me optimize more things.
For how long have I used the solution?
I have used Vision One for nearly a year.
What do I think about the stability of the solution?
I rate Vision One nine out of 10 for stability. It has only crashed once.
How are customer service and support?
I rate Trend Micro support six out of 10. They respond quickly but the answers aren't clear sometimes. They don't always understand the issue, so I need to explain a lot.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I previously used the Microsoft 365 security stack, but I found Microsoft's XDR lacking. We also used Microsoft CASB and Defender for Endpoint. Vision One's threat intelligence and modeling are better. It has all the features like attack surface and risk management as well as the workbench. I also find Vision One easier to navigate.
How was the initial setup?
Vision One is easy to deploy. It's mostly automatic, but we needed to deploy some of the agents manually. If you can deploy all of the agents to the endpoints automatically, it takes only about five minutes.
What's my experience with pricing, setup cost, and licensing?
Vision One is expensive, but I think it's a typical market price.
What other advice do I have?
I rate Visione One nine out of 10. I recommend fully exploring Vision One's features. It has many features that you don't need to pay extra for. There are so many things to explore. For example, they have free playbooks for third-party integration.
TrendMicro XDR as Lake of Logs and details
What do you like best about the product?
It shows comprehensive logs and detection details
What do you dislike about the product?
Expensive due to ASRM separate module and its modular approach
What problems is the product solving and how is that benefiting you?
Daily detection of account compromise and threat detection correlation on logs from apex one and other system Trend offers
Excellent Service
What do you like best about the product?
It seems very functional to me. The best thing about the suite is that it allows the integration of many of the security tools that the organization uses.
What do you dislike about the product?
There are some activities that could be deployed automatically for example the detection model selection in automated playbook, always we have to select it manually.
What problems is the product solving and how is that benefiting you?
It helps us to admin correctly our security policies and internal govenance.
Vision one with safety
What do you like best about the product?
Vision one is awesome tool for the organisation cyber security team vision 1 work on organisations levels and also this is a capturing the data of the deep discoveries inspector this is awesome detection from network.
What do you dislike about the product?
When the any one ability out of the market that time is very slow update.
What problems is the product solving and how is that benefiting you?
This tools solving many problem like all detection ditails detection and also how to start attack and endpoint was work that all types of attck and ditails proparly in organization.
The Perfect Tool to monitor and Optimize Risk around the organization
What do you like best about the product?
The Things I like the most is features like runnig a remote script which makes it easy to patch and implement
Apart of that its integration with firewall and other data sources for various tasks is very easy to implenet and use
being the tip of the iceberg trendmicro also proivdes automated response playbook which makes it a easy daily respond to alerts
Apart of that its integration with firewall and other data sources for various tasks is very easy to implenet and use
being the tip of the iceberg trendmicro also proivdes automated response playbook which makes it a easy daily respond to alerts
What do you dislike about the product?
Althogh I like many features there is this credit usage system, it is a bit confusing
What problems is the product solving and how is that benefiting you?
As a SOC Analyst it provides me a solution to monitor security posture of my enviroment checkking alerts creating automated playbooks taking shell remotely also at some pooint patch management
Helps save investigation time, reduces false positives, and provides real-time analysis
What is our primary use case?
We use Trend Vision One for real-time analysis and monitoring to identify the root cause of security incidents. This includes finding details like how the attack unfolded, user names involved, IP addresses associated with the attack, and the affected systems and devices. By analyzing this information, we can map out the entire attack flow chart.
How has it helped my organization?
The network coverage provided by Trend Vision One is important.
Trend Vision One is an XDR tool so it is important for us that it provides centralized visibility and management across protection layers.
Centralized visibility and management across protection layers enable real-time monitoring, which improves our efficiency.
While the Trend Micro Vision One executive dashboard provides a valuable overview, the ability to drill down from that level into the XDR detections is crucial. During a real-time attack, this drill-down functionality is essential for identifying the root cause, prioritizing the threat type, and ultimately finding an effective solution.
Trend Micro Vision One's greatest strength lies in its real-time monitoring and analysis capabilities. This allows for the seamless blocking of malicious URLs and attacks.
The managed XDR has saved us time allowing us to focus on other tasks.
The managed XDR helps us detect and respond to threats in under five minutes. It will display all the details in a single, unified view, including any alerts, trends, usernames, and everything else relevant. By simply looking at the tag data, we can get a complete analysis. This eliminates the need to switch between different screens and saves us significant time. For example, if we see a flag, we can immediately understand its meaning and the associated location without having to search for it elsewhere. Having all this information on a single page is a huge time saver.
Trend Vision One helps reduce the time we spend investigating false positives. The more we familiarize ourselves with the tool the easier it becomes identifying false positives. The time saved by identifying false positives depends on the type of alert. In some cases, we only deal with simple attacks, such as brute-force password attempts, followed by alerts for unusual login failures. These are common attack methods. We can then determine if the user was trying a different password, mistyped their password, or there's a mismatch. In such cases, identifying a false positive can be relatively quick, taking only one to two minutes.
What is most valuable?
I appreciate the value of real-time activity monitoring. It provides accurate data, giving us a clear picture of what's happening, including who attempted an attack, their location, and any other details we need to mitigate the threat.
What needs improvement?
While blocking an IP address restricts access for 30 days, it eventually becomes accessible again. For true permanence, blocked IPs need to be transferred to a dedicated storage solution. However, this storage has limited capacity. To accommodate new blocked IPs, we must remove existing ones, creating a disadvantage that has room for improvement.
For how long have I used the solution?
I have been using Trend Vision One for over 1 year.
What do I think about the stability of the solution?
Trend Vision One is stable.
What do I think about the scalability of the solution?
Trend Vision One is scalable.
Which solution did I use previously and why did I switch?
We previously used Palo Alto's Cortex XDR. However, we switched to Trend Micro Vision One because it's more user-friendly. Trend Micro's interface allows us to better understand the features and processes, enabling us to achieve the desired results more easily. Cortex XDR, on the other hand, was more complex to navigate.
What was our ROI?
The solution has delivered a return on investment through time savings.
What other advice do I have?
I would rate Trend Vision One 9 out of 10.
Maintenance is required but it is easy to do.
I would recommend Trend Vision One to others. I suggest completing training before using the solution.
Nothing but positive feedback
What do you like best about the product?
The platform is intuitive to navigate, even for first timers there is the "Platform directory" page that acts as a tree root for all functions.
In case help is needed, the online documentation is very helpful and clear.
Support is very responsive in cases.
Too many possibilities to integrate with third party vendors.
Most important, the platform is under constant evolution and new features are getting added.
In case help is needed, the online documentation is very helpful and clear.
Support is very responsive in cases.
Too many possibilities to integrate with third party vendors.
Most important, the platform is under constant evolution and new features are getting added.
What do you dislike about the product?
The search under XDR Threat Investigation could use some tweaks, for example relaxing the restrictions to be able to do more "free text" searches across all collected events and telemetry data without having to specify the Search Method (Endpoint activity data, Detections, etc).
No major downsides but there are sometimes minor bugs with the UI that get resolved
No major downsides but there are sometimes minor bugs with the UI that get resolved
What problems is the product solving and how is that benefiting you?
It's a one stop shop for all security related events across all products that are connected, so it serves a quick way to start investigating a security event.
Centralized management of trend micro
What do you like best about the product?
the best in the trend micro is user friendly interface and has the centralized protection and the customer suppport is too fast frequency of the use is very easy to the client easy of integration and finally ease of implementation frquency of use is good
What do you dislike about the product?
there is no dilikes in the trend micro the official website is providing the mitigation plan for the each and every vulnerabilities.
Finally comes to say that trend micro is excellent to the preventing mitigating and centralized management
Finally comes to say that trend micro is excellent to the preventing mitigating and centralized management
What problems is the product solving and how is that benefiting you?
It is a centralizied management and best to detect and prevention of the organization
Best in XDR
What do you like best about the product?
Trend Vision One is an integrated cybersecurity platform that uses AI to enhance threat detection and response. It supports multi-tenancy for MSPs, provides a clear risk exposure dashboard, and continuously improves automation and endpoint-to-cloud coverage. These capabilities help security teams gain the visibility, speed, and insights needed to stay ahead of evolving threats
What do you dislike about the product?
The interface is a bit complex at times, and deeper integrations with third-party tools would make it more flexible
What problems is the product solving and how is that benefiting you?
Before we had all other ThrendMicro products separately and it was a tedious process to manage everything, after the implementation of Trend Micro XDR all the Trend Micro products are under one roof and we have a clear-cut picture of what is happening in our environment.
showing 101 - 110