Trellix ESM Initial Setup

Daniel Durian - PeerSpot reviewer
Information Security Manager at SM Prime Holdings

The initial setup is done by the system integrator. The initial setup of all log sources is straightforward as long as there is readily available connectors.

The solution has readily available dashboarding so after the log sources were configured, graphical representations of incidents were clearly depicted.

View full review »
LAWAL YUSUF - PeerSpot reviewer
IT auditor at SHEFFIELD HALLAM UNIVERSITY

The initial setup process is straightforward. The deployment time depends on the specific software. It takes approximately two or three hours to complete.

We check for licenses, system requirements, and network planning. Later, we choose the deployment method. It could be a manual deployment using McAfee policy or third-party deployment. Further, we create an installation package and conduct tests. After that, we configure monitoring and maintenance features. We require three to four technicians to execute the process.

View full review »
Usman Ali - PeerSpot reviewer
Principal Engineer at Emerson

The initial setup is easy, and two executives work on it. However, the complexity depends on the number of nodes. We encounter challenges related to ESM's interface. Its licensing model for allowing listing configurations needs enhancement as well. It is easy to maintain and can be managed by one executive.

View full review »
Buyer's Guide
Trellix ESM
March 2024
Learn what your peers think about Trellix ESM. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,386 professionals have used our research since 2012.
ES
Security Engineer at PC Store

The product's initial setup phase is very easy.

The solution is deployed on an on-premises model.

Considering that you need to set up all the core machines to proceed with the product's setup phase, it may take more or less than an hour, after which, if there is any additional time requirement, then it depends on the configuration part of data sources. Some network configurations need to be carried out during the configuration process involving data sources. If everything goes smoothly, then the product's setup phase takes more or less two hours to be completed.

View full review »
Amirsaeed Iloukhani - PeerSpot reviewer
Security Consultant at Bank Meli Exchange

The initial setup of McAfee ESM is straightforward. It took us approximately two days to complete the implementation.

I rate the initial setup of McAfee ESM a five out of five.

View full review »
MV
Senior Security Specialist at a manufacturing company with 10,001+ employees

It is easy to implement and not complex. It can be done in a week if the information is ready. Its integration, however, can take a long time depending on the requirements.

View full review »
CM
CEO at Inteligencia

The setup is pretty good. The only problem is when you're trying to remove a certain version It takes a long time because McAfee keeps a lot of files in the source, on the computer, so you really have to make sure that you delete everything when you're removing the software. When you install a different version of McAfee you need to make sure that you grab all the files and clean the computer out.

View full review »
Chetankumar Savalagimath - PeerSpot reviewer
Delivery Manager at a tech services company with 1,001-5,000 employees

The initial setup is straightforward. SIEM isn't a single module component. They have different modules, like the receiver and the console, and the two modules switch. Right now, we have a complex module, and it's compatible. It's not a worry to implement it. 

When it comes to infrastructure deployment, it won't take more than two weeks. The first stage would be procuring the software. If you want to deploy it in your own mediums, or if you want to bring in your own box, it could take a few more days. But once the software and the license are there in your hands, it doesn't take more than a week to get it implemented.

View full review »
SW
Technical Support Engineer at a comms service provider with 10,001+ employees

The initial setup is difficult and could improve. 

We have four engineers that do the maintenance for this solution.

View full review »
SA
Information Security Officer at a healthcare company with 1,001-5,000 employees

I was not a part of the installation. It was installed before I joined the company.

View full review »
LA
IT Security Lead at a tech services company with 10,001+ employees

It is complex, not straightforward. 

For examples, concerning an upgrade, the pre-installer check provided to us before the upgrade was showing the result was "all requirements met." But when we ran the actual installation, it was different.

View full review »
WA
Cyber Security Consultant at a computer software company with 51-200 employees

The initial setup of this solution is easy. There is no problem with it.

Our deployment took about one week. It involved upgrading to the new version and adding the data sources. Integration of the new devices was not complex.

Two people are required for the deployment, with one being from our side and one from the client's side.

View full review »
MA
Systems Engineer at First Datacorp

Trellix ESM is easy to implement. In addition, it would be better if I had enough hardware resources to run or implement it.

View full review »
it_user1369827 - PeerSpot reviewer
Information Security Engineer at a financial services firm with 51-200 employees

The initial setup is pretty much straightforward. We haven't had any problem.

View full review »
VA
IT Consultant and Project Manager at a government with 1-10 employees

The initial setup of this solution was very clear. We followed the instructions on the web page, and there were no problems. The deployment was really quick and completed within a couple of hours.

View full review »
it_user128397 - PeerSpot reviewer
Manager of System Security at a tech services company with 10,001+ employees

I remember the first client I on-boarded and it was pretty straightforward adding data sources. In less than a minute, I could see the events populating on the screen. We developed a custom taxonomy of attacks and related the signature IDs to our own custom taxonomy. We were logging incidents to our helpdesk within the first month to remediate.

The lessons learned from other implementations is that you need to have a plan before you just add data sources. There must be an intent and purpose with each data source that you want to add to ESM. Otherwise, you are just collecting events for the purpose of collection.

View full review »
it_user182445 - PeerSpot reviewer
ICT Security Officer at a healthcare company with 1,001-5,000 employees

Deployment of any of these products is easy. What becomes a daunting task is the creation of use cases and also ensuring that alerts are accurate.

View full review »
NA
Information Technology Security Engineer at a tech consulting company with 1-10 employees

I rate the tool's deployment an eight out of ten. The deployment is completed in two days. 

View full review »
it_user732735 - PeerSpot reviewer
Threat Intelligence Engineer (Security Engineering Team) at a government with 10,001+ employees

It had a few hurdles initially, but in its current versions and offerings McAfee SIEM is sort of plug and play. It has so many offerings out-of-the-box.

View full review »
it_user374493 - PeerSpot reviewer
Security Consultant, Presale and System Engineer at a tech services company with 501-1,000 employees

If you buy the all-in-one solution (Virtual or Hardware), the setup takes a couple of hours.

View full review »
SH
Assistant Vice President at a financial services firm with 1,001-5,000 employees

The initial setup was a bit complex.

View full review »
LR
IT Manager at a tech services company with 10,001+ employees

I was not involved in the initial setup, but it was straightforward.

View full review »
RN
Business System Analyst at a consultancy with 5,001-10,000 employees

The installation and setup of this solution is straightforward.

View full review »
SK
Vice President Cyber Security Practice Head at a tech services company with 1,001-5,000 employees

The deployment is easy, but because it is a hybrid deployment which makes it complex. It is partly in the cloud and partly an on-premises deployment. The device will have to access the cloud and on-premises data.

View full review »
MA
Information Security Officer at a tech services company with 51-200 employees

The initial setup was straightforward. There were no complications in its deployment.

View full review »
AS
Systems-Engineer at a tech services company with 10,001+ employees

The initial setup was straightforward.

View full review »
it_user380976 - PeerSpot reviewer
Information Security Analyst at a tech services company with 501-1,000 employees

The initial setup is simple and descriptive. It was very straightforward.

View full review »
it_user380976 - PeerSpot reviewer
Information Security Analyst at a tech services company with 501-1,000 employees

This was the easiest initial setup that I have made.

View full review »
Buyer's Guide
Trellix ESM
March 2024
Learn what your peers think about Trellix ESM. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,386 professionals have used our research since 2012.