FireEye Helix Overview

FireEye Helix is the #3 ranked solution in our list of top Security Incident Response tools. It is most often compared to Splunk: FireEye Helix vs Splunk

What is FireEye Helix?

FireEye Helix is a cloud-hosted security operations platform that allows organizations to take control of any incident from alert to fix. Available with any FireEye solution, FireEye Helix integrates your security tools and augments them with next-generation SIEM, orchestration and threat intelligence capabilities to capture the untapped potential of security investments. Designed by security experts, for security experts, it empowers security teams to efficiently conduct primary functions, such as alert management, search, analysis, investigations and reporting.

FireEye Helix is also known as FireEye Threat Analytics.

Buyer's Guide

Download the Security Information and Event Management (SIEM) Buyer's Guide including reviews and more. Updated: June 2021

FireEye Helix Customers

Police Bank, Verisk Analytics, Teck Resources

FireEye Helix Video

Pricing Advice

What users are saying about FireEye Helix pricing:
  • "The price could be better. But I think it's rightly placed when we buy everything in one shot, and we get some discount for that. That's how we basically plan our deployment, and it's holistic. We pay for the license yearly."

Filter Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
BiswabhanuPanda
Senior Technical Consultant at Hitachi Systems Micro Clinic
Consultant
We can have an API connection with any cloud, the integration is very easy

What is our primary use case?

We have evaluated great vendors like QRadar, Splunk, and all the big players, but they are certainly lacking at getting all the investigations done properly. With FireEye Helix, if a customer already uses any of the FireEye endpoint solutions, the response part is very fast and the investigation is also very fast. You can do a lot of investigation depending on what that product's like. If you want to clarify something on the endpoint, you have to do it manually but if you are a FireEye customer, you can do it right away. The email security offering around FireEye also directly integrates with… more »

Pros and Cons

  • "The integration is very useful and very easy. You can have an API connection with any cloud and I'll be able to do both ways of communication with the help of APA."
  • "We have certain challenges with integrating the SOAR platform with multiple vendors."

What other advice do I have?

Don't be afraid. Request a demo or POC. See the features and if you find it interesting, start implementing it for your use cases. I would recommend it because it really works. I would rate it a nine out of 10. We have certain challenges with integrating the SOAR platform with multiple vendors.
MM
CTO & CISO at a tech vendor with 51-200 employees
Real User
Top 5Leaderboard
Easy to set up with strong automation and few false positives

What is our primary use case?

The solution is typically used for sub-services, managed detection, and response services as well as advanced sub-services. The solution was managed by the company where I worked and we offered the services to the customer.

Pros and Cons

  • "The product offers very strong automation. Our cyber security analysts don't have to correlate the information to detect problems. They only need to analyze problems that have been identified by the platform."
  • "The graphical user interface could be improved. It's not easy to handle and it's not easy for a customer or end-user to learn how to manage the solution."

What other advice do I have?

We're just customers. We don't have a business relationship with the company. With FireEye, everything is managed by cloud artificial intelligence. The solution is built to target larger enterprises. Their market's different from many other markets as it's made for 99% of mid-sized enterprises of 1,000 or so people. In Italy, that's quite a large-sized company. We're most likely not their target market as our businesses tend to be a bit smaller. If this solution would work for another company, I'd say it depends on the size of the company and the maturity level. For a small company that is not…
Find out what your peers are saying about FireEye, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: June 2021.
511,607 professionals have used our research since 2012.
SB
Sr Manager - Information Security & Researcher at a tech services company with 1,001-5,000 employees
Real User
Top 5Leaderboard
A cloud-hosted security operations platform that's easy to use

What is our primary use case?

We use it for everything like our logs, data allocation, and ransomware. We basically do malware objects and malware callbacks. I think it's our integration tool. It's our centralized SIEM where we look at all the events, alerts and then do a tryout. The major playbooks that we use are ransomware and phishing campaigns. We basically use it for our PTI-based credit card fraud detection.

Pros and Cons

  • "I like that it's easy. It's got the protection set up, and we can see whatever is required. We write our own rules and the rules that we can input. I think it is good."
  • "Sometimes the rules are disabled by FireEye, and we basically get it after the patch. I think there needs to be a better way of creating the application rules. I would like to see better pricing for our licensing."

What other advice do I have?

I would recommend this solution to new users. On a scale from one to ten, I would give FireEye Helix a nine.
Buyer's Guide
Download our free Security Information and Event Management (SIEM) Report and find out what your peers are saying about FireEye, Splunk, IBM, and more!