We have all of the Trend Micro products, so it's beneficial to integrate them all and get consolidated logs of suspicious objects and malware attacks in a single console. We can do the same work with fewer employees because of Apex One's automation. 

If a machine is not patched properly or the required certificates are not installed, Trend Micro has the ability to remove the existing end device. 

We can access all products and policies now from Apex One. We can deploy policies and do everything directly from Apex One. 

Prior to this solution, we used Symantec, and we managed everything locally. When we were researching this product, we liked that it was managed based on region. We had good results following incidents and observed detection capabilities. 

The solution provides our customers with malware protection. It has a good level of malware protection to protect against malicious threats. It provides protection against a good number of threats, both known and unknown, and we do get more details to help us log and investigate.

Before implementing Apex One, we didn't have another security product, so we can't check to see if there has been an improvement from one over the other. You can save time with Apex One. For example, you can typically save about two hours of investigation time. You can save more time if you identify the problem device earlier and block it.  Also, the action is immediate. You don't need to check, read, and understand what happens, and then perform an action. All you do is take the action. 

The XDR is helpful because it requires less work to manage the endpoints. All the alerts are inside the window, and you can apply the different tools from the same console. You can find all the information and hold it in the sandbox for 30 days in case you need to check something. You can also make a bigger sandbox with more logs, but you don't need all that normally.

I am confident in Apex One's capability to defend endpoints against threats like malware, ransomware, and malicious scripts. 

Apex One has predictive machine learning and behavior monitoring, which are essential for endpoint security. Our file scan also scans the memory for malware. Behavior monitoring is particularly effective at detecting ransomware attacks because it can check for unusual encryption methods.

I like the way Trend products integrate with each other. The Apex One servers are all tied into Central, which is now integrated into my Vision One console. The on-premises stuff is also integrated with Azure.

We use a single dashboard through Apex Central to view detections, threat hunting, and investigations. The visibility through the single console is important. When we open the dashboard, it tells us what it has found. For example, I am currently looking at the SaaS version. If I go to ApexOne, I can see all of the agents that are currently connected. It takes a few moments for all of the agents to load. We are currently in a downtime during the summer months. We are a school board, so there are fewer staff members on-site, and not all of the schools are open. We have 12,000 employees and 80,000 students. However, not all of the students are online right now as they would be during the school year. Next Friday, we will have more staff members in the office. When school starts after the Labor Day long weekend in Canada in September, everyone will be back online. Currently, the dashboard only shows 9,140 agents. Last week, it showed 6,400 agents. I have the system set up to remove inactive agents so that the system does not have to constantly scan a bunch of systems that are not even there. I have seen up to 17,000 endpoints on our system.

Vision One is now monitoring my Cloud One workload security and My Cloud Central. This means that Vision One is collecting data from both systems and giving me a comprehensive overview of my security posture. When I open Vision One, I will be able to see visibility into my entire organization. I have configured Vision One to send data to our Syslog server and receive data from our Qualys server. The Qualys server scans my servers for vulnerabilities and reports back to Vision One. I have also set up a service gateway and a workload security data center gateway. The workload security data center gateway feeds data from my VMware ESX servers into Vision One. This allows Vision One to see the real-time status of our VMs, including which ones are powered on, which ones are running the Deep Security Agent, and which ones are still running on my on-prem Deep Security server. Vision One provides me with a risk overview, an exposure overview, and an attack overview. This information includes details about credential access, lateral movement, collection impact, and suspicious mail forwarding rules.

We have our Azure system for Office 365 and on-premises Azure Active Directory also connected to Vision One. This means that Vision One can see all logins to our Azure system and our on-premises AD. I have agents running on our on-premises directory controllers, so this data is also being fed into Vision One. Vision One can also see our Azure domain controllers and our DMZ. I receive alert emails when something serious happens. I haven't received any of these emails since we started using Vision One. However, I receive emails about endpoints that have had files quarantined. The file on the endpoint was too large to move to the main server quarantine, so Vision One just gave me a small error message. Currently, the endpoint protection dashboard shows that out of 19,678 endpoints, agents have been deployed on 13,675. This includes Macs. The dashboard shows one Linux endpoint, which is my service gateway. There are 882 Mac OS endpoints, which is lower than the usual number of 1,100 because not all of them are turned on. There are 12,792 Windows endpoints. The dashboard also shows that 6,003 endpoints have no security protection. These endpoints likely include network equipment, certain Linux servers that are not running Trend Micro software, and proprietary operating systems that are used by our network team and other IT groups. There are also endpoints that are listed in our Active Directory, but they are either turned off or do not have any active systems.

Updates are applied on an hourly basis. If an exploit gets through and an endpoint has not been updated, it will receive the update on the next cycle. The most common reason for an endpoint not receiving an update is a network issue or the endpoint being powered off. Once an endpoint goes online, it is configured to automatically retrieve security updates from the server, or directly from Trend Servers over the internet if the server is unavailable. The first thing the endpoint does when it goes online is update its security patches, signatures, and scan engines. When a detection is made, the endpoint first deletes the file and quarantines it. It then blocks the action of whatever the file was trying to do. The endpoint's virtual patching, behavior monitoring, and predictive machine learning then stop any unusual activity. This may even include an activity that is supposed to happen. We have had members of our ICT department complain that they were unable to install software because the antivirus protection was blocking it. In some cases, we have groups within our organization that are responsible for maintaining their own servers. When they are doing upgrades, they may schedule us to temporarily disable the antivirus protection so that they can complete the upgrade. Even if malware does not get detected by the web reputation system and is downloaded by a user, it may still be detected by the signature-based malware detection system. If it is not detected by either of these systems, it may still be blocked if it tries to contact its master. These master addresses are often common addresses on the internet that are used by bots to communicate with a server that is maintained by the threat actor. If a bot is blocked from contacting its master, it will be unable to function. If we see a large number of bots being blocked, we will investigate the system to see what is causing the issue. In many cases, it turns out to be a legitimate activity that is being blocked by the system. For example, we may have custom scripts running on certain servers that look suspicious to the system. We can manually whitelist these scripts so that they are not blocked. Overall, the system is designed to be overprotective. This is because it is better to block something that is legitimate than to let malware through. We can always fix a false positive, but it is much more difficult to fix a security breach.

I started using Apex One in August 2020. I learned how to move agents, install software, and get the agent onto the server. I also learned from the documentation, knowledge base, forums, and other users. I found Apex One to be more difficult to learn than PaperCut because the terminology and concepts are different. PaperCut is just about printing and monitoring, while Apex One is about cybersecurity. There are also many caveats to consider with Apex One. I found the scan settings to be particularly challenging. Trend Micro has helpful best practices documents, which I used to learn what the normal settings are for servers and workstations. For example, servers don't need to be scanned for office document exploits because they typically don't have Office installed. I also learned that it's important to balance security with performance. We don't want to scan servers so heavily that it slows them down, but we also don't want to skip important security checks. In January 2021, we changed our policy on security settings. We now tell users that if there are any problems, we will fix them. We would rather have a small problem that we can fix quickly than have to restore a server from backup, which can take days.

ApexOne provides virtual patching, also known as vulnerability protection, to protect against vulnerabilities before they are exploited. Deep Security and Workload Security call this feature intrusion prevention, but it is essentially the same thing.

It is a tool that is required for our company's security. There were some cases when the software brought it to our attention that we received some documents with malware that we should not open. It blocked the threat. It is very important for us.

Apex One has advanced protection capabilities that adapt to protect against unknown and stealthy new threats. The ability to adapt to protect against unknown and stealthy new threats is very helpful. We do not need to be concerned with some threats because it is blocking them. It is easy for us to track all the changes. We cannot install some of the applications by ourselves. We need to get approval from the top company.

Apex One can detect ransomware with runtime machine-learning capabilities. We do not need to be very concerned about attacks because the software is blocking them and protecting our machines internally. It also automatically sends reports.

It provides us with a single console for cross-layer detection, threat hunting, and investigation. We can have just one console and one system to track all the attacks and threats we have. For us, it is a matter of opening just one system and not navigating through a lot of systems to check what is happening. Everything is consolidated in one console. It saves time.

This single console does not provide end-to-end visibility into the entire IT security environment because we have another one for web filtering. Apex One is there as an antivirus and anti-malware solution for protection from threats.

We have integrated Apex One with Active Directory. It saves a lot of time for us. It is a worldwide solution. It saves a lot of time and a lot of work, especially for IT.

Apex One gives us the track for the attacks, and we can prepare our end users to be alert about the threats. We can also give them training.

Apex One is easy to learn, but when it comes to administration, it is not the easiest tool. It requires some adaptation to the system. Especially, if we do not use it every day, we tend to forget how to go to the system and obtain all the results that we need. It is average in terms of working with the system. It is not the easiest one.

It does not take much time to realize the benefits of Apex One. After we install the software, all the information automatically pops up on the console, and we can track everything from there. Because it is integrated with Active Directory, it is an easier way of managing the work.

It provides us with virtual patching to protect against vulnerabilities even before a patch is available for the source of the issue. This virtual patching is important.

It gives us safety. In spite of the training, users can forget and click on something they should not. We need the security that Apex One provides.

There has been a reduction in the alerts that we see. We still get some alerts, but not as many as we used to have before moving to Apex One. There is about a 75% reduction in alerts.

Apex One reduced the workload. It is integrated with Active Directory. It is much easier to manage and be aware of any threats. It has reduced about 85% of the workload.

Apex One saves a lot of time in configuration and management.

The XDR feature helps detect and defend our endpoints against threats.

The protection features can help defend against unknown threats. When an unknown application is detected, we can send information about it to the Apex One team for analysis and signature creation, which will be shared globally.

The machine learning capabilities help with the detection of ransomware which is important.

Apex One provides a single console for cross-layer detection, threat hunting, and investigation.

Apex One provides end-to-end visibility into the entire IT security environment. We can use the added visibility to decrease our response times.

Apex One integrates with other security products. When a threat is detected in the network sandbox, Apex One can deploy rapid updates to the endpoints. It's important that the solution can identify the threat and provide a rapid update.

Apex One has helped our organization by protecting us against unknown threats and reducing our response times.

It uses virtual patching to protect against vulnerabilities before vendor patches are available.

We have seen a reduction of 20 percent in viruses and malware since moving to Apex One.

Apex One as a service has helped reduce our staff workload by 30 percent.

We used Trend Micro's managed XDR services in conjunction with Apex One and they helped with the integration and patches.

Trend Micro Apex One is able to identify threats and notify us to investigate from a central location. From there we are able to inform the client and disconnect the affected device to protect the environment.

Apex One employs advanced protection features, including behavior analysis, to adapt to and defend against unknown threats. Apex One's ability to recognize abnormal behavior and terminate processes is crucial for safeguarding our organization's security.

Apex One utilizes runtime machine learning to detect ransomware, a crucial feature for safeguarding our data from ransomware attacks.

We utilize Apex Central as a single unified console for comprehensive management, enhanced visibility, and effective cross-layer threat detection, hunting, and investigations. As managers of Apex One, we require a centralized console for comprehensive threat detection, investigation, and hunting across all layers of the environment to effectively monitor and manage client performance.

Apex One's single console provides end-to-end visibility into the entire IT security environment.

The end-to-end visibility has significantly reduced our response time, enabling us to respond within five minutes.

We have integrated Apex One with other security products. Apex One is able to deploy rapid updates within ten minutes of detecting threats in the network sandbox. 

The ability to deploy updates immediately is crucial for me as a security manager.

Apex One is easy to learn.

Administering Apex One is more straightforward than the other products I manage.

Apex One has helped improve our production. We were able to see the benefits within two months.

Apex One offers virtual patching to mitigate vulnerabilities that attackers could exploit.

We have seen a reduction in viruses and malware since the implementation of Apex One.

Apex One has reduced our administrative overhead because it is easy to use.

Trend Micro Apex One has assisted us in safeguarding our data.

Trend Micro Apex One has helped improve our organization's performance by preventing attacks. We noticed the benefits during the testing phase.

The solution is good for monitoring endpoints and providing or removing access.

Trend Micro Apex One has been doing a good job protecting our endpoints against malware and malicious scripts. We have not had to deal with any threats.

Apex One boasts advanced protection capabilities that continuously adapt to safeguard against previously unknown and deceptive new threats. The ability to adapt to evolving threats is crucial, especially considering the surge in new variants, including zero-day attacks.

It detects ransomware using machine learning. This capability is important to defend against ransomware attacks.

The solution provides a single console for cross-layer detection for threat hunting and investigations. This is particularly helpful for gaining visibility across multiple platforms.

Apex One is integrated with our other security products.

It is easy to learn. Updating the solution is also easy.

I have experience with previous versions of Trend Micro so for me administering Apex One is easy.

Apex One has protected our organization from threats.

Apex One provides virtual patching before patches are available for the source of the issue. The virtual patching helps minimize risk until the patch is ready.

Since using Apex One, we have seen a reduction in viruses and malware by 50 percent.

We use Apex One as a service and this has helped save our staff five percent of their time.

Apex One has reduced our administrative overhead by five percent.

By implementing Apex One, we wanted malware protection for our endpoints. We also had a requirement for a data loss prevention solution. It was integrated into the Trend Micro suite, so we got three capabilities: malware protection, DLP, and device control. The Trend Micro suite worked for these three use cases for us.

Device control worked as expected. We tried other solutions too, but they did not work the way we configured them, whereas with Trend Micro, it was not difficult.

Apex One was good at defending endpoints against threats such as malware, ransomware, and malicious scripts. In the five to six years that I used it, I did not have a single issue. All the endpoints were protected. I did not have any outbreak or anything else. It was effective.

Apex One had advanced protection capabilities that adapted to protect against unknown and stealthy new threats. It was pretty good. In the reports, we could see the outbreaks mitigated by Trend Micro. It automatically provided an alert.

Apex One provided us with a single console for cross-layer detection and investigation, but I am not sure about threat hunting. As I understand, threat hunting is something that comes under the SIEM solution. I am not sure whether it has threat-hunting capabilities or not. I did not deal with that.

Apex One integrated well with other security products. It was good. We integrated it with our SIEM solution. It was seamless. When a threat was detected, it deployed rapid updates to endpoints. It was very critical. I could see that every two hours, definitions were getting updated.

Apex One has consistently been a good product. It consistently performed well for me. It kept getting updated for any new evolving threats and ransomware. I did not have any issues.

Apex One provides virtual patching to protect against vulnerabilities even before a patch is available for the source of the issue. Because we did not have any issues, we were not very concerned about that, but the feature was there.

I offer Trend Micro Apex One to our customers just because they want a secondary signature-based solution.

Apex One did not work as per my expectations. I am doing zero-day attacks by myself, and for fileless attacks, it does not work at all.

With the current architecture, Apex One does not have advanced protection capabilities that adapt to protect against unknown and stealthy new threats. It might have these capabilities in the future if they change the architecture. For instance, McAfee merged with FireEye and created a new brand Trellix. They changed the overall architecture. If Trend Micro considers shifting its architecture, it can get this kind of protection.

Apex One is okay for detecting ransomware with runtime machine-learning capabilities. It has some signature-based protection against ransomware, but it may miss the ransomware, which has been a huge threat at least for the last seven or eight years. It is the foundation of zero-day protection, and that is why I am looking for a more capable solution besides Trend Micro.

Apex One integrates with other security products. As part of this integration, when a threat is detected in the network sandbox, it deploys rapid updates to endpoints, which has huge importance because if you can respond to events in a short time, you get the least damage from attacks. It is of huge importance.

Apex One provides us with virtual patching to protect against vulnerabilities even before a patch is available for the source of the issue, but it is a problem in itself because it consumes too many resources on an endpoint. It is a good feature, but it is a problematic feature because it consumes lots of the system resources. If you use signature-less architecture, you do not have to deal with virtual patching because all attack types are already addressed with some framework, such as the MITRE ATT&CK framework. You do not have to deal with virtual patching at all.

There has been no reduction in viruses and malware since moving to Apex One because my customers are using it as a secondary solution. They have primary products, and there are not many things left for Apex One. My customers are using it as a secondary solution just because of their habits of using signature-based. Some of my customers could not understand the concept of signature-less protection. Antiviruses have been there for 40 years or so, and their habits are a little bit hard to change. That is the reason why I am offering this product.

When we use Trend Micro, we can get pop-up messages about who is connecting additional USB hard drives or disks, and about cracked software that may be malware. We can also identify these issues from the client and from the central configuration manager. We can then push patches and behavioral monitoring to protect our custom clients.

With ransomware, malware, and other threats, behavioral monitoring can be a particular benefit because it can catch and quarantine ransomware or malware that is repeatedly using the same methods, even if the malware is new or unknown.

Apex One has advanced protection capabilities that adapt to protect against unknown and stealthy new threats, which is important for our clients, especially those who click on infected web content.

Apex One can detect most ransomware variants with real-time machine learning, which helps to detect threats before they spread.

We leveraged the practice sessions and Trend Micro's support to learn how to use Apex One which made it easy.

Administering Apex One is straightforward. We have a helpline available for the software, and the administrator user-level guide is accessible online.

Apex One has helped our organization improve its endpoint detection.

It has reduced the number of viruses and malware by more than 95 percent.

Apex One has reduced our administrative overhead by one hour per day because we can perform all administrative tasks from a single console.

The database engine is more efficient than other endpoint solutions and this helps protect against threats.

There is advanced protection capabilities that adapt to protect against threats, and its AI helps detect unknown threats and user attacks.

Trend Micro Apex One detects ransomware using its runtime machine learning capabilities. It can identify suspicious or infected machines and help to remediate them.

It provides a single console for crossfire detection, threat hunting, and investigation. The single console UI provides end-to-end visibility into our IT environment.

Apex One integrates efficiently with other security products. We can connect with the vendor that provides us with the API needed for the integrations.

The learning curve for Apex One is short. The steps required are easy to understand and follow.

Administering it is not difficult.

It has helped our customers by providing many features that help them scan their environments and provide recommendations to improve their security posture. These features include an intrusion prevention system, application control, and a firewall with filtering.

Trend Micro Apex One has helped our customers reduce the number of viruses and malware by 80 percent.

Trend Micro Apex One as a Service has helped reduce staff workload by providing reports that alleviate the headaches of security teams.

I would rate Apex One nine out of ten for its ability to defend endpoints against malware, ransomware, and malicious scripts.

Apex One can defend against zero-day attacks and stealthy attacks. This is important because in-house applications can have many vulnerabilities, such as coding errors and misconfigurations, which attackers can exploit. Having Apex One as an advantage would give clients a head start in defending against unknown threats.

It uses runtime machine learning to detect ransomware. Machine learning allows us to monitor activities and suspicious behaviors running in our system, not only at the file transfer level but also at the library and registry level. This is important because it allows us to identify potential threats. Runtime machine learning can see any entry points that ransomware might use to infect a system.

Trend Micro has announced that they will be migrating the Apex One platform to Vision One, which can be integrated with an XDR.

Our clients have integrated Apex One with a vulnerability management firewall, SIEM, MFA solutions integrated with Azure AD, and the native security of Microsoft 365.

Apex One is user-friendly. For those familiar with an endpoint security solution, it will not be difficult to learn Trend Micro Apex One. However, for those who are new to the solution, they will need to take some time to learn the ropes.

Administering Apex One is straightforward, especially for the SaaS solution compared to the on-premises solution. This is because we only need to download the installer. The installer is large, around 400 MB. Once we install it on the system, we can communicate with the management console, which is the same for both solutions. We just need to make sure that all required communication ports, FQDNs, IP addresses, and ports are allowed on the firewall. We usually take into consideration the clients when we are doing POCs, and we need to work with the infrastructure team to check on this.

Apex One provides our clients with virtual patching to protect against vulnerabilities. From the perspective of an impending threat, if a client is able to patch the vulnerability in the meantime, Apex One can see the potential threat and take action to protect the client. This is done by identifying the signatures of the vulnerability and creating a virtual patch. It is important to make sure that clients understand that this is not an official patch, but rather a temporary measure that can be used while the official patch is being developed and applied.

Before using Trend Micro, many of our larger clients, which are hospitals, were constantly attacked by malware. However, after adopting Apex One, the viruses and malware have been significantly reduced or eliminated altogether. This is why they continue to renew their subscriptions to Trend Micro.

Most of the time, we recommend the SaaS version of Apex One because the on-premises solution from Trend Micro requires significant resources from the client. If they do not have the necessary monetary resources, they will need to take this into account. This is because when we build an on-premises Apex One, we need two servers: one for Apex One on-premises and one for Apex in Cloud. Additionally, if we leverage the entire SPE package, we will also need a server for mobile security and file and drive encryption.

The endpoint deployment in the cloud has helped our clients reduce their staff workload, especially on the maintenance side.

Apex One has helped reduce our client's administrative overhead.

Some of our clients use Trend Micro's managed XDR service and they love it because the automation makes things easier for them. 

Normally, all organizations have their own domain services. Employees who log in to the local LAN network are given unique login credentials to log in to the system and access applications. Without the solution, DDoS attacks could happen in the network, and unknown traffic could be generated from the endpoints. Sometimes, the malware uses up all the resources, generates traffic, and destabilizes the server or network connectivity.

Services like Trend Micro Apex One and endpoints security identify malware or viruses infecting the systems. We can disconnect them from the network and limit unknown traffic. The official work which needs to be done gets faster. Otherwise, it slows the network and affects the other systems by overloading the services and applications.

As resellers, we benefit from the solution offering multiple events, seminars, and more, to gain knowledge and help clients. The solution offers a lot of updates and support to their partners. Solutions like Sophos don't have principals in our country (Pakistan) either. They are in the UAE. 

Apex One has streamlined our AV. We use the SaaS instance in the cloud.

We use real-time scans, manual and scheduled scans for viruses, malware, grayware, ransomware, etc. We also use other modules like Behavior monitoring and predictive machine learning, malicious web tracking, and blocking.

We were previously using the Trend Micro OfficeScan antivirus product, so it was only natural that we upgraded to the Apex One product when we decided to upgrade. The SaaS instance in the cloud was right for us.

It is an excellent defense against various threats like malware, ransomware, and malicious scripts at our hospital. Given the numerous open options we have, we still maintain a high level of protection. It functions as a robust barrier, effectively safeguarding our organization from potential risks from the external environment. 

With advanced protection capabilities that dynamically adapt to safeguard our crucial data, it is of utmost importance to us. As a hospital, the significance of our data cannot be overstated, making the robust protection provided by Trend Micro vital for our operations. 

It offers a unified console for comprehensive cross-layer detection, site hunting, and investigation. The console's efficiency is noteworthy, serving multiple purposes seamlessly, and holds significant value for us. 

The singular console offers comprehensive visibility into the entire IT security environment, providing internal visibility as well. This end-to-end perspective has significantly reduced our response time. 

The latest version is particularly effective, delivering a substantial improvement of at least sixty to seventy percent.  The benefits of Apex One are evident, particularly in its enhanced security and overall usefulness compared to other solutions. 

It has proven to be a stable product, with minimal issues over the past few years. 

While it took some time to grasp its full potential, especially in understanding and aligning policies to effectively filter various elements, the initial challenges faced in 2010 have been overcome. Integration and policy-related issues that required about eight to nine months of familiarization, in the beginning, are now resolved, and the product is functioning seamlessly. 

We've observed a noticeable decrease in viruses and malware since transitioning to Apex One, highlighting a significant improvement in the overall strength of our protection. There wasn't a significant decrease in administrative overhead.

I can easily manage all our endpoints from a single console. Apex One is very helpful for us.

Apex One is excellent for defending endpoints against threats such as malware, ransomware, and malicious scripts. We have not faced any issues till now.

Apex One detects ransomware with runtime machine-learning capabilities. It is a very important feature because the main attack these days is ransomware.

Apex One provides us with a single console for cross-layer detection, threat hunting, and investigation. It is important because I cannot go to every APC and scan them and look for notifications. From a single console, I can manage each and every endpoint. We can also manage reports.

This single console provides end-to-end visibility into the entire IT security environment. We can see the percentage of compliance of our PC security. This end-to-end visibility has reduced our response time by 50%.

Apex One is very easy to use. It also depends on the knowledge of the person managing it, but for me, the management of the console is very simple and very user-friendly.

We have seen a reduction in viruses and malware since we started using Apex One. There is about 50% reduction.

We use Apex One as a service. It has helped to reduce the staff's workload. The single console helps to reduce the workload by 30% to 40%.

Trend Micro Apex One is used for security for our endpoints, such as Microsoft Windows and mobile devices.

Apex One has helped us mitigate a lot of threats like phishing and malware. We've seen a reduction of about 30 percent. 

Apex One helps us defend our endpoints against threats such as malware, ransomware, and malicious scripts. We have configured Apex One to send us alerts so that we can take remedial action.

Apex One has advanced protection capabilities that adapt to protect against unknown and stealthy threats. These advanced protection capabilities are important because most targets are end users who are not well-informed and make mistakes that can end up compromising our entire environment.

It uses its runtime machine learning capabilities to detect ransomware attacks.

They provide a single console for cross-layer detection, threat hunting, and investigations. I find the single console very useful because it eliminates the need to log in to multiple consoles to view different security layers, such as Mail Security. For example, I can see all of my security information in one place, without having to log in and out of different consoles.

The single console provides end-to-end visibility into our entire IT security environment, which has helped to reduce our response time. We configured the alerting and have dealt with a lot of false positives since there are often a few false positives among security alerts. The solution is also capable of performing remedial actions without requiring me to actively monitor it. For example, I am working towards the mole, and there is no one in the office monitoring it because we do not have 24/7 monitoring. We have configured the solution so that I will be notified whenever there are alerts, and the solution will take action from the cloud.

Apex One integrates well with all our security products. 

I'm more technically inclined. When I joined my current company, I had never used Apex One before, but I've been able to navigate it easily since then. We have some reading materials, but the best thing about Apex One is that it provides recommendations, just like Microsoft Sentinel. This makes it easy to learn. If I'm not sure about something, I can go to the Learning Hub and watch videos on how to do it, in case there's something I don't understand.

The difficulty level of administering Apex One is reasonable. Many features are self-explanatory. For example, if we click on an alert, it provides a recommendation of what to do. Therefore, learning to use Apex One is not difficult. In general, all these security products are not difficult to use. For example, I have never used QRadar, but I believe it would not be difficult because I have used similar products in the past. All these products have many similarities.

We have seen a reduction in viruses and malware since we implemented Apex One. Occasionally, when I review tickets or attend SecOps meetings, I only see a presentation of what has been detected. However, I can confidently state that the number of incidents has decreased significantly, as we have not had many since I joined the company.

Apex One as SaaS has helped reduce our staff's workload by deploying endpoints in the cloud. We do not need to monitor our environment all day.

I believe the managed XDR adds value to our Apex One deployment. 

It's made it easier for us to monitor the security environment in general.

Apex One delivers some components we use that aren't available in other solutions. We've seen a reduction in viruses and malware since switching to Apex One. I would estimate that the number of incidents has been reduced by about 25 percent. 

We use Apex One as a service, with a few licenses in the cloud. When it's deployed on-prem, you need to maintain a physical site and deploy it within the environment. It's easier to manage on the cloud. I had no problems implementing policies on the application. It reduced the workload by about 50 percent. It saves some money because you do not need to maintain internal infrastructure. It can reduce your spending on Cisco hardware. 

Trend Micro Apex One effectively safeguards our endpoints against threats like malware and malicious scripts, provided that we accurately define our policies.

The advanced protection capabilities of Trend Micro Apex One, which adapt to safeguard against unknown and stealthy threats, are commendable. The solution scans our system and generates a repository that it can subsequently cross-reference when an unfamiliar application attempts to access or install a file on our system, thereby restricting access.

It is important for our organization that the runtime machine learning capabilities of Trend Micro Apex One can assist our organization in defending against ransomware, especially when we activate the behavior monitoring feature.

It is important that Trend Micro Apex One offers a single console for us to investigate threats.

Trend Micro Apex One is easy to learn. Additionally, there are numerous helpful training videos available online, along with a support site designed to assist with any issues.

Administering Apex One is easy through its user-friendly console.

Apex One has nearly all the features necessary to safeguard us from malicious or viral attacks. The solution incorporates proactive machine learning, web application capabilities, and real-time scanning features. Furthermore, we have the capability to install this agent on our server. Apex One encompasses a wide range of options that allow us to create policies on our server.

Apex One has helped reduce the number of viral attacks in comparison to our previous solution.

The deployment of the services endpoint in the cloud has helped to decrease our employees' workloads by 30 percent.

Apex One has reduced our administrative overhead by 30 percent.

Trend Micro's managed XDR service, in conjunction with Apex One, adds value by offering visibility into our environment.

We have implemented three levels of security to minimize endpoint security for user protection. We have also implemented a Data Loss Protection (DLP) policy to protect data in transit, data in motion, and data at rest. Additionally, we have implemented Server Deep Security to protect virtualized servers hosted in our organization.

The benefit for the organization is that we're getting secured.

Apex One effectively defends endpoints against threats, including malware and malicious scripts.

The advanced protection capabilities adapt to safeguard against unknown and stealthy new threats, a critical advantage for our customers. We often observe that our customer's systems lack proper patching, making them more susceptible to infections. However, Apex One effectively mitigates the damage caused by these attacks.

It utilizes runtime machine learning capabilities to detect ransomware. This is crucial as ransomware poses a significant threat, and customers are increasingly moving beyond traditional antivirus solutions due to ransomware's heightened prevalence.

Apex One offers a unified console for cross-layer detection, threat hunting, and investigations, depending on the services we subscribe to. Utilizing a single console for these tasks is crucial as it eliminates the need to manage multiple solutions and their respective consoles. When a single OEM provides its solutions within a single console, it presents the most efficient approach, eliminating the need to toggle between different consoles, manage disparate systems, and correlate data across multiple platforms.

Apex One provides around 95 percent visibility into our IT security environment.

Improved visibility can help reduce response times and proactively address issues with our endpoints. This allows us to take a more proactive approach rather than a reactive one.

Apex One is easy to learn, but like any security product, it requires additional skills beyond simply navigating the solution. However, for those who need to explore the solution and figure things out, it is quite convenient. Technicians should not take long to adapt to a user's experience with any kind of endpoint security system.

It has improved our customers' security posture, enabling them to realize the benefits within the first three months.

Apex One proactively shields our customers from vulnerabilities by employing virtual patching, even before a patch is available for the underlying issue. This proactive approach proves invaluable in safeguarding against emerging threats.

Ideally, the reduction in risk stems from the implementation of multiple security measures. For instance, if an organization fails to implement device control, it might become susceptible to phishing attempts. These phishing emails, if clicked on or if attachments are downloaded, can lead to malware infections. However, endpoint security can block these threats before they reach the system, regardless of whether they arrive through a device, email, or web access. This is where detection becomes crucial. Endpoint security doesn't necessarily reduce the number of threats in the network environment, but it does prevent those threats from exploiting vulnerabilities on endpoints.

Apex One has helped reduce our customer's overhead by 30 to 40 percent.

We have seen a reduction in viruses and malware since moving to Apex One.

Apex One is very good for threat detection and removal and scanning purposes. It has advanced protection capabilities that adapt to protect against unknown and stealthy new threats. These capabilities are definitely important for us.

It can detect ransomware with runtime machine-learning capabilities. It has the capability to detect ransomware-related threats as well.

Apex One can be integrated with other security products.

They provide virtual patching to protect against vulnerabilities even before a patch is available for the source of the issue.

Trend Micro Apex One demonstrates a strong ability to protect endpoints against various threats, including malware, ransomware, and malicious scripts. The solution is considered one of the best in our region's market.

Apex One's advanced protection capabilities adapt to safeguard against unidentified threats, making this visibility crucial for endpoint security.

Apex One's runtime machine learning helps in detecting ransomware, for which we are grateful.

The learning curve for Apex One is easy. The documentation from Trend Micro is excellent, covering all aspects of security, and we also have access to their personnel if needed.

The administrative aspect of Apex One becomes easier as we continue to use the solution. Initially, we encountered some challenges with technical threats and passwords, but Trend Micro promptly assisted us in resolving these issues.

Apex One has helped our staff save time and has also assisted with saving resources.

Apex One has automatically blocked all malware and ransomware.

The deployment of endpoints in the cloud has reduced our employee workloads by 1,200 endpoints.

Apex One reduces administrative overhead by automating many tasks and consolidating all the information into a single dashboard.

We utilize Trend Micro's XDR in combination with Apex One. The pairing of XDR and Apex One enhances the security of our environment.

We implemented Apex One to have secure endpoints. I am an IT administrator, and I look into security. We chose this product because there is a SaaS-based platform through which the manageability is easy. No on-premise-specific connectivity is required for centralized management. The agents that are installed on the endpoints can communicate well with Trend Micro Cloud and get the latest updates. All the logs and other things flow seamlessly between the endpoint and Trend Micro Cloud.

We saw a plethora of benefits, specifically in terms of managed endpoints. We could see all the AV statuses in the console, and we could sort all the alerts and other things in a single console. It was easy from the management point of view and the compliance point of view. We were happy with the product.

Apex One is good for defending endpoints against threats such as malware, ransomware, and malicious scripts. It does not detect ransomware on every occasion with its runtime machine-learning capabilities, but it is pretty good.

It provides a single console for cross-layer detection, threat hunting, and investigation. These capabilities are pretty important for us. Security is one of the most important parts of any enterprise, especially in the hybrid work culture environment where everybody is not working from an office location. The workforce is mobile. People are working from home and other locations. In those scenarios, security becomes a requirement.

Apex One's single console does not provide end-to-end visibility into the entire IT security environment, but it does give visibility into the antivirus side. With security, there are multiple things such as multifactor authentication, single sign-on, access management, rule-based accesses, automated detection and response, and cloud-based security. All this is not there with Apex One. The scope of Apex One is the endpoint. It is installed on endpoints as an antivirus, and it gives a complete view of that but not the overall IT security.

Apex One is a pretty simple solution. It is pretty easy to master.

It was pretty helpful in reducing the employee workload. There was ease of management and deployment. We did not have to install it manually. It was automated onboarding. It was pretty good. It reduced our workload by 10% to 20%.

Apex One reduced viruses and malware. There was a 20% to 30% reduction.

Apex One has advanced protection capabilities that adapt to protect against unknown and stealthy new threats, but for the automated response, you need an XDR solution so that no IT admin is required to respond to any threat. Apex One does not have this capability. For this, you need a higher product or subscription from Trend Micro.

Apex One is easy to manage, but there is an administrative overhead because of the way Apex One creates a structure of the organization with OUs and other things. If you have a large number of devices in the organization, it is a bit of an administrative overhead to manage them because you have to look into each and every device and its compliance. Around 5% to 10% of devices would act as rogue, would not be compliant, or would not be connecting. They require manual intervention where you go and reinstall Apex One agent on the device.

Apex One is a great solution for defending endpoints against threats such as malware, ransomware, and malicious scripts. It can detect malicious files, ransomware, and suspicious files.

I have not had any issues regarding detection. I have deployed it on two customer sites, and I have not heard of any issues from them. It provides great protection to endpoints.

We have seen a reduction in viruses and malware since moving to Apex One. It provides great protection. It detected ransomware for one customer. After you install it and sign in, it quickly detects all the viruses.

Apex One provides a single console for cross-layer detection, threat hunting, and investigation. It shows everything on the console. If you integrate it with Apex Central, then Apex Central provides a centralized dashboard of every product of Trend Micro. It provides full visibility into the environment. You get full visibility of all the products installed on the site such as DLP, encryption, XDR, and Vision One. Apex Central is the centralized management system.

Apex One integrates with other security products. I have integrated it with SIEM solutions. I have integrated it with LogRhythm and QRadar for log collection.

Apex One is an all-in-one solution. It provides application control, vulnerability management, and protection. It is also for EDR.

It is easy to administer. You have to specify the policy criteria and automate the policies.

Apex One reduces the administrative overhead. There is a 20% to 30% reduction.

The way that this solution has helped my organization is by protecting our devices from known and unknown malware.

It has been very useful, especially during the COVID-19 pandemic when so many users are working from home. Trend Micro Apex One has enabled us to easily update policies on the cloud so that they will be drilled down or updated automatically on the laptops when the users connect to the internet.

It safeguards endpoints by detecting threats like malware or malicious scripts, employing features such as behavior monitoring and machine learning. This includes detecting zero-day attacks and analyzing application behaviors for enhanced security. It delivers excellent products for effectively safeguarding endpoints, utilizing advanced features that enhance protection and mitigate various threats. It is equipped with advanced ransomware detection capabilities through real-time machine learning. 

This detection is not solely reliant on signatures; instead, it incorporates built-in features for proactive identification of ransomware threats, offering an advanced and pre-emptive approach to detection. A single console facilitates cross-layer detection, and access to the central console is necessary for on-premises solutions. In the SaaS-based model, the EDR console serves as the unified interface. 

This single console allows for threat hunting, investigations, incident management, playbook creation, and incident response. It is essential as it provides end-to-end visibility into the entire IT security environment, especially in EDR. However, challenges may arise when dealing with endpoints that contain files lacking signatures or behavior detection capabilities. To address this, a sandboxing solution becomes crucial to analyze and understand the behavior of such files. 

It offers the capability to swiftly deploy updates to endpoints, allowing for the immediate deployment of patches or signature files in response to incidents or attacks. In scenarios with no existing signatures, the support team from the OEM can provide the necessary signatures, and these can be promptly pushed to the Apex One Center. 

Timely updates are crucial for us as they help us maintain security. 

Since transitioning to Apex One, we have observed a notable decrease in viruses and malware. 

Our product now detects threats much faster, leading people to express confidence in the effectiveness of our custom machine-learning capabilities, evident in the significant reduction in detection times. Utilizing an independent cloud has significantly reduced the workload for our staff by eliminating the need to manage hardware, operating systems, and applications. 

Daily tasks such as console endpoint restarts, application protection, and agent communications compliance become more straightforward. The ease of managing these aspects is a notable advantage. 

Moreover, the SaaS solution proves particularly beneficial when customers are unable to provide on-premises infrastructure for applications. Users can effortlessly log in, deploy agents, and manage tasks without the complexities associated with on-premises solutions, which depend on factors like hardware, databases, operating systems, networks, proxies, and other variables.

The client already phased the product out. However, it was used as endpoint protection.

I did not get too much bad feedback from the employees and the users in the company. That is the main benefit for me. 

It reduces administrative overhead. Along with our mail security solution, there is a 40% or 50% reduction.

Before Apex One, we used OfficeScan, which Trend Micro acquired, but it was on-prem. We were managing three or four anti-virus solutions. Apex One's cloud model allowed us to decommission the on-prem servers and consolidate. We get all the same features, and everything is upgraded automatically, so we only need to use the software.

The detection of viruses has been good. The ability to automate has been useful.

It is a great product capability-wise.

It keeps us running very smoothly because there are no outages due to viruses. I think we have a very good security posture, and this product has helped us to get there.

We have also seen an increase in staff productivity because we manage the entire solution with just one person. Five years ago we needed a team of at least ten people.

Other major components can be integrated with the OfficeScan solution and managed through a centralized console. We haven't started using all of them yet. We are going to use the DLP data leakage prevention component, soon. It can be added as a plug-in. It's just a separate license.

No damage to the endpoints for more than two years.

The solution has helped our organization by protecting our endpoints from malware and web threats. It also helps us to block ports and provides features like IPS. IPS has multiple signatures and rules which can help us to patch vulnerabilities. 

It is available on our OS platform and will automatically scan our machines daily or weekly. It also provides an EDR option. With EDR, we have DLP and application control as well, so we have lots of features that we can use to protect our endpoints from ransomware and phishing attacks.

We have been able to develop policies created to monitor abnormal behaviors in addition to application control level policies that only allow specific applications to execute - the rest are blocked. 

We use several Trend Micro solutions. We use Trend Micro OfficeScan, DDM and DDI. We are also using IMSVA and WSVA for email security and web security. After deploying OfficeScan, we have found more detections of possible virus attacks.

This solution protects us from virus attacks before they affect the organization.

It has been detecting the management activities and quarantining them so that the continuity of our business is maintained. We had a ransomware attack, and Trend Micro was there to stop the attack, and we are still in business.