We performed a comparison between Symantec Advanced Threat Protection and Trellix Network Detection and Response based on real PeerSpot user reviews.
Find out in this report how the two Advanced Threat Protection (ATP) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It has certainly helped out our audit efforts because we each stay compliant in terms of various security standards."
"Technical support has been helpful and responsive."
"Real-time threat analysis is quick and takes action on threats immediately."
"The most valuable feature is NetFlow threat protection."
"The great advantage in using this product is it creates multiple services."
"You don't have to buy a separate email security platform. You can enable that using their endpoint, and I like that. You don't have to have two agents running on the same box."
"What I like most about Symantec Advanced Threat Protection is its notification capability."
"The Application Control code and the easy integration are valuable features."
"The installation phase was easy."
"We see ROI in the sense that we don't have to react because it stops anything from hurting the network. We can stop it before we have a bigger mess to clean up."
"We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. With Trellix, we easily confirmed that there was no lateral network involvement and that nothing else was infected. It helped us correlate the events and feel confident in our containment."
"The server appliance is good."
"Its ability to find zero-day threats, malware and anything malicious has greatly improved my customer's organization, especially for protecting the users' browser."
"It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature. When there is a threat or any malicious activity with a signature, it can be blocked by IPS. However, attacks that do not have any signatures and are very new can only be blocked by using the sandboxing feature, which is available only in FireEye. So, FireEye has both engines. It has an IPS engine and a sandbox engine, which is the best part. You can get complete network protection by using FireEye."
"Very functional and good for detecting malicious traffic."
"Before FireEye, most of the times that an incident would happen nobody would be able to find out where or why the incident occurred and that the system is compromised. FireEye is a better product because if the incident already happened I know that the breach is there and that the system is compromised so we can take appropriate action to prevent anything from happening."
"Symantec appliances need improvement. The whole appliance environment is a robust system and it needs a massive amount of storage space. If you have to increase or speed up the background storage it's a pretty complicated process. The scalability and sizing is critical, and if you do it wrong you run into issues pretty quickly."
"It also needs network-based threat protection for shared folders and files."
"Not ideal for advanced threat protection."
"An improvement could be made on the reporting because then it would be easier to collect information and submit it for compliance."
"There are some features that would add value to this product. One of them would be a graphical presentation of threats that the system has encountered."
"Scalability could be better."
"The cloud platform needs to have improvement in terms of the user interface and the different capabilities it has available. It needs to match the other leading next-gen EDR products that are available in the market. That's the reason why we are stepping away from Symantec. Their cloud environment is just generally lacking in comparison to others."
"The security features need to be improved."
"It is not a very secure product."
"It would be a good idea if we could get an option to block based upon the content of an email, or the content of a file attachment."
"Certain features in Trellix Network Detection and Response, such as using AL-type commands, may initially pose a challenge for those unfamiliar with such commands. However, once users become accustomed to the system, it becomes easier to use."
"They can maybe consider supporting some compliance standards. When we are configuring rules and policies, it can guide whether they are compliant with a particular compliance authority. In addition, if I have configured some rules that have not been used, it should give a report saying that these rules have not been used in the last three months or six months so that I disable or delete those rules."
"Technical packaging could be improved."
"The world is currently shifting to AI, but FIreEye is not following suit."
"We'd like the potential for better scaling."
"Technical support could be improved."
More Symantec Advanced Threat Protection Pricing and Cost Advice →
More Trellix Network Detection and Response Pricing and Cost Advice →
Symantec Advanced Threat Protection is ranked 21st in Advanced Threat Protection (ATP) with 14 reviews while Trellix Network Detection and Response is ranked 9th in Advanced Threat Protection (ATP) with 37 reviews. Symantec Advanced Threat Protection is rated 7.8, while Trellix Network Detection and Response is rated 8.4. The top reviewer of Symantec Advanced Threat Protection writes "Provides end-to-end antivirus protection and has good stability ". On the other hand, the top reviewer of Trellix Network Detection and Response writes "Offers in-depth investigation capabilities, integrates well and smoothly transitioned from a lower-capacity appliance to a higher one". Symantec Advanced Threat Protection is most compared with Palo Alto Networks WildFire, Check Point SandBlast Network, Microsoft Defender for Office 365, Fortinet FortiSandbox and Arbor DDoS, whereas Trellix Network Detection and Response is most compared with Fortinet FortiSandbox, Palo Alto Networks WildFire, Fortinet FortiGate, Zscaler Internet Access and Trend Micro Deep Discovery. See our Symantec Advanced Threat Protection vs. Trellix Network Detection and Response report.
See our list of best Advanced Threat Protection (ATP) vendors.
We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
