
Trellix Collaboration Security + Email Security + IVX Cloud
Secure collaboration channels have protected our team from threats and enable safe file sharing
What is our primary use case?
My main use case for Trellix Collaboration Security is to secure our collaboration tools and ensure that any file or link shared through them is safe and free from any threats across the environment.
A specific example of how I use Trellix Collaboration Security in my daily work is when it caught a malicious file that was shared through our messaging platform before anyone could open it. That alone demonstrated how valuable this product is for our team.
What is most valuable?
The best features Trellix Collaboration Security offers include real-time scanning of files being shared and links, automatic threat blocking, and seamless integration with our existing collaboration tool.
The feature I find most valuable in my day-to-day work is the real-time file scanning. Knowing that every file shared across our team is being checked automatically gives us a lot of peace of mind.
Trellix Collaboration Security has positively impacted our organization by making our collaboration environment very safe, allowing our team to share files and links without worrying about threats.
This positive impact has led to measurable outcomes, such as threats being blocked automatically that could have caused real problems, and the team feels much safer using collaboration tools now than they did before. Overall, it is providing great security for the organizational environment.
What needs improvement?
Trellix Collaboration Security is working smoothly, but a more detailed report on what has been blocked could be really helpful.
For how long have I used the solution?
I have been using Trellix Collaboration Security for more than three years.
What do I think about the stability of the solution?
Trellix Collaboration Security is a very stable solution, and it has been running without any issues.
What do I think about the scalability of the solution?
The scalability of Trellix Collaboration Security is excellent, as it has scaled well with our organization's growing team.
How are customer service and support?
The customer support has been really helpful and responsive, with very knowledgeable engineers on the product who have addressed any questions or issues.
Which solution did I use previously and why did I switch?
I am using this type of solution for the first time and did not previously use a different solution.
How was the initial setup?
My experience with pricing, setup cost, and licensing is that pricing is reasonable, licensing is straightforward, and the setup was not complicated.
What about the implementation team?
We are a partner with Trellix Collaboration Security, and my company has a business relationship with this vendor other than being a customer.
What was our ROI?
I have seen a return on investment as blocking threats before they reach our team has saved us from potential incidents, saving us time and money.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing is that pricing is reasonable, licensing is straightforward, and the setup was not complicated.
Which other solutions did I evaluate?
We have not evaluated other options before choosing Trellix Collaboration Security.
What other advice do I have?
My advice for others looking into using Trellix Collaboration Security is that any organization using collaboration tools regularly must have this product. Set it up early and ensure it covers all your collaboration channels; once it is in place, your team can collaborate freely without worrying about security threats. I would rate this solution a 9 out of 10.
Collaboration security has protected our hybrid workspace and has prevented insider ransomware spread
What is our primary use case?
My main use case for Trellix Collaboration Security is to protect our platforms like Slack, Microsoft Teams, Google Workspace, Drive, OneDrive, and Google Drive.
With the help of Trellix Collaboration Security, we use Slack in our organization, ensuring that no one can post or share data related to threats or anything sensitive in our production environment. We employ Trellix Collaboration Security to protect against emerging threats.
With the help of Trellix Collaboration Security, we are able to block phishing campaigns, malware delivery, suspicious URLs, and the lateral movement of shared files. This ensures that no one can target my drives where we have uploaded sensitive data on Google Drive and OneDrive.
What is most valuable?
Trellix Collaboration Security offers inbound security that is similar to email security, providing significant protection on the inbox level rather than just at the gateway level.
It secures our sales applications, such as Salesforce, and HR and finance platforms, helping protect our hybrid work environment, reduce attack surfaces, and prevent the spreading of malware from one user to another. Trellix Email Security protects at the gateway level, while Trellix Collaboration Security ensures protection from insider users and enhances cyber resilience.
Trellix Collaboration Security is a comprehensive cybersecurity solution that secures collaborations such as Microsoft Teams, Office 365, Google Workspace, and enterprise applications, and it also protects our files, links, chats, and overall digital workspace.
In our organization, Trellix Collaboration Security has positively impacted us after we experienced an incident where an insider sent data that spread ransomware. After using collaboration security, we no longer allow sharing or sending data that could be designed or injected with malicious files or viruses.
After implementing Trellix Collaboration Security, we have not encountered any incidents related to ransomware.
What needs improvement?
I believe no improvements are needed for Trellix Collaboration Security as we are already using more tools from Trellix.
I don't think any improvements are necessary or there are features missing in Trellix Collaboration Security.
I deduct two points because while we are using it for insiders, we still rely on another solution for gateway level security, which makes us use two different solutions for the same purpose.
For how long have I used the solution?
I have been using Trellix Collaboration Security for the last two years.
What do I think about the stability of the solution?
Trellix Collaboration Security is stable.
What do I think about the scalability of the solution?
Trellix Collaboration Security's scalability is simple, as it operates from a single console where we just configure our Slack, Teams, and OneDrive, and afterwards we only need to set the policies.
How are customer service and support?
Customer support for Trellix Collaboration Security is good, especially in the area of email security, as they have dedicated email security support engineers.
Which solution did I use previously and why did I switch?
I have never used any different solution prior to Trellix Collaboration Security.
What was our ROI?
I see a return on investment with Trellix Collaboration Security as it saves time, reduces incidents, and allows one person to handle what previously required more effort to check one by one.
What's my experience with pricing, setup cost, and licensing?
My experience with the pricing, setup cost, and licensing has been positive as I find it cheaper than other OEM solutions and thus is good.
Which other solutions did I evaluate?
We evaluated Sophos security before choosing Trellix Collaboration Security, but they did not provide the functionalities we required.
What other advice do I have?
My advice for others looking into using Trellix Collaboration Security is to prevent insider threat vectors because a colleague may unknowingly share infected files. You need to be vigilant and ensure that you are safeguarding your organization.
Endpoint protection has strengthened network control and has simplified global threat response
What is our primary use case?
My main use case for Trellix Collaboration Security is based on my experience with Trellix EPO and Trellix products, as I have over six years of experience managing Trellix EPO and all its features when it comes to antivirus protection, including its firewall and DLP functionality. You can also encrypt a drive instead of using BitLocker, integrate your whole network, deploy a fabric from Trellix, and this fabric serves as a private network that enhances secure communication. It becomes comparable to an EDR because you can integrate it with Trellix TIE services, a reputation service, and manage USBs for controlling data movement from the computer to the USB.
On top of that, you can run scans 24/7, which is called the on-access scan, or run on-demand scans whenever you prefer, perhaps once a day for a full scan. You have extensive management capabilities regarding the ports and IPs the computers communicate with, providing a lot of functionalities.
A specific example of how I have used Trellix Collaboration Security in my consulting work is in my current work environment, where I manage over 130,000 endpoints, allowing me to protect each endpoint with a firewall, which makes a significant difference because the entire network is not protected by a network firewall alone. Having an endpoint firewall is valuable, and being able to scan all applications for malicious content 24/7 with an on-access scan, which scans everything you click on in real-time, ensures effective security which I truly appreciate.
Day-to-day, we scan the endpoints once a week and conduct full scans weekly while also performing 24/7 scans through the on-access scans. We help people troubleshoot performance issues related to scanning and create exclusions for threat prevention, exploit prevention, and the on-access scan itself because a file, folder, or software may not need to be scanned continuously. My everyday tasks revolve around managing performance and connectivity, which may involve opening ports or ensuring domain reachability, as well as managing USBs, including creating new exclusions for new vendors of USBs. Additionally, you can integrate Trellix EPO with LDAP, which helps manage computers and users, enabling the creation of specific, more granular rules.
What is most valuable?
In my opinion, the best features Trellix Collaboration Security offers include the firewall, the on-access scan, and the ability to obtain daily signatures for the latest malware. These daily signatures, referred to as content, ensure that we are protected against the most recent malware threats recognized by other companies.
Another feature I particularly enjoy is the capability to maintain different locations that can communicate with the fabric, or DXL fabric as I refer to it, allowing me to create something akin to an EDR for immediate responses to resolve issues.
The DXL fabric has helped my organization by enabling communication between different locations, such as one in Europe, another in South America, and one here. This fabric communicates with a broker that interacts with the TIE servers, which maintain the reputation of files, certificates, and known signatures from various regions including Europe, South America, and Canada. When something suspicious occurs, such as a certificate appearing malicious on an application, I can easily click and indicate that I trust this file, and through the fabric, I can apply an exclusion for that application across all locations simultaneously.
Other features I find valuable include the SSO integration with Trellix EPO, specifically SAML SSO, allowing people not to have to manage usernames and passwords if they already utilize an SSO service for SAML; I consider this functionality to be quite beneficial.
What needs improvement?
Areas where Trellix Collaboration Security can be improved include the fact that it used to support OpenLDAP but now does not support it any longer; it only supports LDAP, which means open-source lightweight directories are not supported anymore.
While I find Trellix's support and performance to be satisfactory, I do have concerns. Sometimes Trellix uploads packages, identifies bugs, and removes them without notifying users, which requires us to wait for the next release or roll back, both undesirable situations. I need assurance that proper testing occurs before the release of new packages.
For how long have I used the solution?
I have been using Trellix Collaboration Security for approximately six years.
What do I think about the stability of the solution?
Trellix Collaboration Security can indeed be stable if you know how to manage its features effectively.
What do I think about the scalability of the solution?
Trellix Collaboration Security is very good when it comes to scalability, demonstrating impressive capacity for growth.
How are customer service and support?
I appreciate the customer support, particularly if you can effectively communicate the issue you are experiencing.
Which solution did I use previously and why did I switch?
I have previously used SonicWall for antivirus and network firewalls; however, Trellix exceeds SonicWall's offerings, which are more aligned with a SaaS solution. The absence of an on-premise console with SonicWall was a significant factor that led me to choose Trellix.
What was our ROI?
I observe that the return on investment is hindered by the lack of adequate training opportunities, with Trellix's own training being quite costly, ranging from 2,000 to 4,000 dollars, which many small or medium-sized businesses cannot afford. I believe the educational materials can be enhanced, as Trellix does not explain certain concepts well in their training, and having completed the training, I feel I could offer better instructional support.
What's my experience with pricing, setup cost, and licensing?
The experience with pricing, setup costs, and licensing indicates that while Trellix Collaboration Security is a great product, it tends to be on the pricier side. I do not possess complete knowledge of all the pricing details for licensing or support as I am only somewhat involved in the purchasing process, but I know that larger enterprises, such as a bank I previously supported, invest in it as they have the financial resources. However, I believe it might be less accessible for small to medium-sized businesses, and I wish there were more affordable options available for them.
Which other solutions did I evaluate?
Before selecting Trellix Collaboration Security, I evaluated other options, including Trend Micro, which many individuals discuss. Though I personally have not used Trend Micro, it appears that it is popular for file servers, possibly enabling faster scans for zip files and specific files that can take Trellix longer to unzip.
What other advice do I have?
My advice for those considering using Trellix Collaboration Security is to ensure your budget accounts for investing over 100,000 dollars to hire someone to manage the product, as professionals with this expertise tend to come at a high cost. I give this product an overall rating of ten out of ten.
Collaboration has become safer as it has blocked malicious emails and protected shared files
What is our primary use case?
My main use case for Trellix Collaboration Security is in areas such as email usage and file sharing security, mostly for threat detection and blocking malicious content. This is our main use purpose, and it helps our team stay protected from malicious files and links.
What is most valuable?
Trellix Collaboration Security offers malware and link detection, automatic mail scanning, and secure file sharing as its best features in my experience.
Trellix Collaboration Security has helped our team by preventing phishing attacks and malware infections, keeping our systems secure through the detection of malicious emails. Secure file sharing has enabled our team to collaborate safely without risking sensitive data. For example, we avoided a potential data breach when a suspicious attachment was blocked before anyone could open it.
Trellix Collaboration Security has positively impacted my organization by improving security, making teamwork more effective, and ensuring collaboration has become smoother.
What needs improvement?
Trellix Collaboration Security can be improved by making the reporting and analysis tools more detailed. The interface could be more user-friendly and notifications more customizable.
For how long have I used the solution?
I have been using Trellix Collaboration Security for one year.
What do I think about the stability of the solution?
Trellix Collaboration Security is stable and has minimal downtime.
What do I think about the scalability of the solution?
Its scalability is good, and it has grown well with our organization's needs.
How are customer service and support?
Customer support for Trellix Collaboration Security is responsive and helpful when I have reached out.
Which solution did I use previously and why did I switch?
I previously used a different solution but switched to Trellix Collaboration Security for better security and easier management.
What was our ROI?
I have seen a return on investment from using Trellix Collaboration Security as we have saved time and reduced security incidents, improving our overall effectiveness.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing for Trellix Collaboration Security is that pricing and setup were reasonable and licensing was straightforward.
Which other solutions did I evaluate?
I evaluated other options like Option A and Option B before choosing Trellix Collaboration Security.
What other advice do I have?
Its use and integration with existing systems are very easy. My advice to others looking into using Trellix Collaboration Security is to ensure it fits your team's workflow and to take advantage of its security features fully. I would rate this product an 8 out of 10.
Centralized sensors have improved threat visibility and have reduced staffing needs
What is our primary use case?
My main use case for Trellix Collaboration Security involves using Policy Orchestrator, email gateway, web gateway, and Trellix sensors, Security Manager, Network Security Manager.
What is most valuable?
I use Trellix Collaboration Security in my daily operations by utilizing different sites sensors and then integrating security manager, which controls network operations, traffic inspections, packet inspection, deep packet inspection, and SSL inspections.
The best features Trellix Collaboration Security offers include GTI threat intelligence and signatures upgrade database. Since I have integrated GTI and sensors along with network security manager, all sensors share information and reports effectively, allowing me to view attack reports from the dashboard easily.
I can customize dashboards in Trellix Collaboration Security to view information like top attacks, ransomware attacks, and critical high attacks. I can monitor sensor health, attacks, logs that generate, and customize these as per my needs, plus I can add emails and alerts.
I rely on Trellix Collaboration Security because the sensors are highly reliable and high-performance sensors that can handle traffic efficiently. CPU resources are effectively utilized while handling deep packet inspections and SSL inspections. Moreover, there are policies to be on networks, and there is a built-in firewall that I can use to block external attacks.
What needs improvement?
Trellix Collaboration Security can improve by addressing some zero-day attacks and enhancing VM-based protections.
I chose a nine out of ten because some improvements are required, especially concerning East-West traffic or zero-day vulnerabilities. To improve vulnerabilities, Trellix can use an automation process to check if the system is vulnerable.
For how long have I used the solution?
I have worked with Trellix Collaboration Security for over almost four and a half years.
What do I think about the stability of the solution?
Trellix Collaboration Security is very stable.
What do I think about the scalability of the solution?
Trellix Collaboration Security scalability allows me to use sensors on-cloud, on-premises, inside premises, and in a hybrid environment. I can use VM-based environments to effectively stop East-West attacks.
How are customer service and support?
I have interacted with the customer support team of Trellix Collaboration Security. The support team is good overall, though my experience with the Indian support team was not as satisfactory since they did not provide adequate support to rectify issues. I managed to identify and resolve the problem myself.
Which solution did I use previously and why did I switch?
I previously tried to use the Fortinet solution, but the Fortinet solution was not providing good performance, making Trellix Collaboration Security a better choice for me.
What was our ROI?
I have seen a return on investment with Trellix Collaboration Security; specifically, money was saved and fewer employees were needed because I do not need employees on different sites. I only need a Network Security Manager deployed centrally to control all these sensors from one location.
What's my experience with pricing, setup cost, and licensing?
My experience with Trellix Collaboration Security regarding pricing, setup cost, and licensing was very good, and the setup cost was very cheap.
Which other solutions did I evaluate?
I evaluated other options, including Trend Micro-based sensors, but I found that Trellix Collaboration Security's performance is better.
What other advice do I have?
All is good with Trellix Collaboration Security.
I would rate Trellix Collaboration Security a ten out of ten.
My advice for others looking into using Trellix Collaboration Security is to ensure that data backup is performed before upgrading to the latest version, as Trellix should provide a proper plan for device upgrades and fallback options. Sometimes, if the sensors are located in different locations and the network security manager is positioned elsewhere, data may get corrupted during upgrades. Firmware files may become corrupt, leading to sensor instability, and I would have to go on-site to resolve this. Therefore, Trellix should develop options for sensors to restore firmware remotely in case of failures.
I have additional thoughts about Trellix Collaboration Security. Trellix has various security products working; however, it should improve its design and devices to effectively compete with Fortinet, which is a growing company with diverse, efficiently running products.
Email protection solidifies threat coverage and fulfills customer needs
What is our primary use case?
What is most valuable?
What needs improvement?
For how long have I used the solution?
What was my experience with deployment of the solution?
What do I think about the stability of the solution?
What do I think about the scalability of the solution?
How are customer service and support?
Which solution did I use previously and why did I switch?
How was the initial setup?
What about the implementation team?
Which other solutions did I evaluate?
What other advice do I have?
Provides strong data protection with virtual patching and vulnerability assessments
What is our primary use case?
I primarily use it to monitor database access, particularly in banking and similar environments. It ensures that IT personnel and others do not create unauthorized accounts or users. Collaboration security assists in tracking database access and alerts in case of suspicious activity.
What is most valuable?
One of the most valuable features is the protection against vulnerabilities, particularly through virtual patching. This ensures that I am safe from potential threats affecting database security.
Another significant feature is the vulnerability assessment, which is effective for overall data protection.
What needs improvement?
There is a need for improved integration with totally different products, such as a rapid server. This is currently challenging since the management console becomes overloaded with logs, which complicates troubleshooting.
For how long have I used the solution?
I have been working with Trellix Collaboration Security for ten years.
What do I think about the stability of the solution?
Sometimes, integration can be challenging, impacting its stability, which is why I rate it a five out of ten.
What do I think about the scalability of the solution?
I rate it an eight out of ten. Scalability benefits me by allowing for growth, although sometimes adding users can be difficult due to licensing.
How are customer service and support?
The support isn't bad, but there is room for improvement in response time. Initially, I must generate a ticket, and then it gets escalated through tiers if the issue isn't resolved.
How was the initial setup?
For me, setup is easy because of my extensive experience. I rate it ten out of ten.
What's my experience with pricing, setup cost, and licensing?
The price is high at eight out of ten. It is quite expensive and should be reconsidered.
What other advice do I have?
Before installing, consider potential challenges with system performance, especially when integrating multiple tools, which could slow down performance. Overall, I rate the solution with an eight due to its impressive performance, however, integration with other systems needs improvement. My overall product rating is an eight out fo ten.
Out of data and hard to manage
Trellix Enterprise Security Manager helps us to detect the malwares and Threats and help mitigate
McAfee Enterprise Log review
It is having instant access to log data from various sources
And it is filtering options to quickly identify specific events or patterns
It can able to handle large volume of log data from diverse sources
It integrates with other McAfee solutions and third party tools
It is having features enabling security teams to monitor investigate and respond to the security incident
It is difficult to effectively communicate insights to the non technical stakeholders
It requires significant training and expertise for new users
Large volume of lock data can impact search performance leading to slower query results
Integration with diverse log sources and customization of dashboards and reports can be time consuming and require technical expertise
Offering centralised flat form for law collection analysis and reporting improving security teams
Identifying potential security threats in real time
It is giving incidence response enabling rapid investigation and analysis of security incident