We performed a comparison between Snyk and Trend Micro Cloud One based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Snyk is highly regarded for its developer-friendly approach, seamless integration, and ability to automatically generate pull requests. It particularly shines in software composition analysis and supports container usage. Trend Micro Cloud One is praised for its extensive range of features, strong vulnerability protection, and real-time server security. Snyk users say the solution could improve in terms of compatibility and reporting while expanding its vulnerability database. Trend Micro Cloud One should focus on providing equal support for AWS and Azure and enhance its automation capabilities.
Service and Support: Reviewers say Snyk should overhaul how it organizes and prioritizes requests. Trend Micro Cloud One was commended for its exceptional and easily accessible technical support. Users value the expertise and knowledge of the Trend Micro team.
Ease of Deployment: Most Snyk users found the setup process uncomplicated, but some needed professional guidance. Difficulties arose when collaborating with multiple developers and integrating Snyk with specific tools. Some found Trend Micro Cloud One easy to set up, while others found it complicated. It could pose challenges for individuals without a background in IT or information security. The deployment time varied depending on the complexity of the system.
Pricing: Snyk has a higher setup cost than other solutions, while Trend Micro Cloud One falls in the middle. Snyk offers a free open-source version, whereas additional services for Trend Micro Cloud One come at an added cost. The view of Trend Micro Cloud One's pricing is generally positive.
ROI: Snyk provides a budget-friendly option for detecting vulnerabilities in open-source software, which may offset yearly subscription costs. Trend Micro Cloud One offers a versatile return on investment and smooth integration without any reported issues.
Comparison Results: Snyk emerges as the favored choice compared to Trend Micro Cloud One. Users like Snyk's developer-oriented approach and valuable functionalities like automatic pull requests and software composition analysis. They also highlight its compatibility with containers and accurate identification of security vulnerabilities. Trend Micro Cloud One users want more automation and a more comprehensive feature set.
"The solution has great features and is quite stable."
"The solution's vulnerability database, in terms of comprehensiveness and accuracy, is very high-level. As far as I know, it's the best among their competitors."
"It has improved our vulnerability rating and reduced our vulnerabilities through the tool during the time that we've had it. It's definitely made us more aware, as we have removed scoping for existing vulnerabilities and platforms since we rolled it out up until now."
"From the software composition analysis perspective, it first makes sure that we understand what is happening from a third-party perspective for the particular product that we use. This is very difficult when you are building software and incorporating dependencies from other libraries, because those dependencies have dependencies and that chain of dependencies can go pretty deep. There could be a vulnerability in something that is seven layers deep, and it would be very difficult to understand that is even affecting us. Therefore, Snyk provides fantastic visibility to know, "Yes, we have a problem. Here is where it ultimately comes from." It may not be with what we're incorporating, but something much deeper than that."
"It has a nice dashboard where I can see all the vulnerabilities and risks that they provided. I can also see the category of any risk, such as medium, high, and low. They provide the input priority-wise. The team can target the highest one first, and then they can go to medium and low ones."
"Static code analysis is one of the best features of the solution."
"I think all the standard features are quite useful when it comes to software component scanning, but I also like the new features they're coming out with, such as container scanning, secrets scanning, and static analysis with SAST."
"The code scans on the source code itself were valuable."
"The most valuable part of Trend Vision One - Cloud Security is its dashboard, as it's simple. It's easy to manage, and you can better control the solution."
"The storage and computing features are valuable."
"The most valuable features are intrusion prevention and anti-malware capabilities."
"The the most valuable feature is the scanning engine. It does not impact server performance. It's very lightweight."
"Trend Vision One - Cloud Security does not utilize a lot of resources which allows our users to keep working even during a scan."
"Detection response and cloud conformity are valuable features."
"I really like Trend Vision One - Cloud Security's dashboard."
"The perfect package for all security platforms, providing more than any other endpoint solution."
"It can be improved from the reporting perspective and scanning perspective. They can also improve it on the UI front."
"We tried to integrate it into our software development environment but it went really badly. It took a lot of time and prevented the developers from using the IDE. Eventually, we didn't use it in the development area... I would like to see better integrations to help the developers get along better with the tool. And the plugin for the IDE is not so good. This is something we would like to have..."
"The reporting mechanism of Snyk could improve. The reporting mechanism is available only on the higher level of license. Adjusting the policy of the current setup of recording this report is something that can improve. For instance, if you have a certain license, you receive a rating, and the rating of this license remains the same for any use case. No matter if you are using it internally or using it externally, you cannot make the adjustment to your use case. It will always alert as a risky license. The areas of licenses in the reporting and adjustments can be improve"
"We use Bamboo for CI.CD, and we had problems integrating Snyk with it. Ultimately, we got the two solutions to work together, but it was difficult."
"The solution's integration with JFrog Artifactory could be improved."
"All such tools should definitely improve the signatures in their database. Snyk is pretty new to the industry. They have a pretty good knowledge base, but Veracode is on top because Veracode has been in this business for a pretty long time. They do have a pretty large database of all the findings, and the way that the correlation engine works is superb. Snyk is also pretty good, but it is not as good as Veracode in terms of maintaining a large space of all the historical data of vulnerabilities."
"I think Snyk should add more of a vulnerability protection feature in the tool since it is an area where it lacks."
"The solution's reporting and storage could be improved."
"The licensing model could be improved. To gain full coverage, you need to spend more to buy subscriptions for each kind of service they offer. It will start to be pricey if you want full coverage."
"Trend Vision One - Cloud Security could improve connections with different types of authentication and user groups concerning cloud services."
"The initial setup is easy for someone who operates container platforms on a daily basis. However, it could be difficult for those coming purely from informational security or another field of an IT."
"Documentation on cloud architecture and job architecture would be helpful."
"Trend Vision One - Cloud Security should address threats automatically without having user input."
"Securing S3 using Trend Vision One - Cloud Security can cost too much. Trend Vision One - Cloud Security has a tool that requires lots of privileges. From my understanding, it's only for static application testing, so they need to add dynamic application testing, and there should be more collaboration with the application testing tools on the market. We have not used this product, and I don't know if they plan to decommission it or something. They should focus on application security because this tool's unique feature is multi-cloud support. However, they should improve integration with tools for these kinds of use cases, especially application security and dynamic scanning. For example, I would like it to support Dell SecureOps. I'd also like to see some enhancements to API gateway security."
"The firewall configuration should have been automated based on the understanding of the application, utilities, and protocols."
"One area for improvement in Trend Vision One - Cloud Security is marketing; in particular, Trend Vision should update the marketing documentation. The information needs to be more comprehensive."
More Trend Vision One - Cloud Security Pricing and Cost Advice →
Snyk is ranked 4th in Application Security Tools with 41 reviews while Trend Vision One - Cloud Security is ranked 13th in Application Security Tools with 17 reviews. Snyk is rated 8.2, while Trend Vision One - Cloud Security is rated 8.6. The top reviewer of Snyk writes "Performs software composition analysis (SCA) similar to other expensive tools". On the other hand, the top reviewer of Trend Vision One - Cloud Security writes "We can quickly deploy cloud conformity, provides good visibility, and control". Snyk is most compared with SonarQube, Black Duck, GitHub Advanced Security, Fortify Static Code Analyzer and Veracode, whereas Trend Vision One - Cloud Security is most compared with Microsoft Defender for Cloud, AWS GuardDuty, Check Point Harmony Email & Collaboration, Prisma Cloud by Palo Alto Networks and AWS Security Hub. See our Snyk vs. Trend Vision One - Cloud Security report.
See our list of best Application Security Tools vendors and best Container Security vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.