2020-05-14T10:16:00Z

What is your primary use case for FireEye Helix?

Julia Miller - PeerSpot reviewer
  • 0
  • 20
PeerSpot user
7

7 Answers

Abanoub Alfy - PeerSpot reviewer
Real User
Top 10
2023-05-15T13:41:00Z
May 15, 2023

We use Trellix Helix for protection against network attacks, TLS, and SSL attacks. We also use the solution for user behaviour accesses.

Search for a product comparison
MK
Reseller
Top 20
2023-03-09T21:55:13Z
Mar 9, 2023

I primarily use FireEye Helix to manage alerts and tickets.

BP
Real User
Top 20
2022-09-06T09:44:20Z
Sep 6, 2022

You can use it for everything, incident response, automated responses, alerts, visibility.

RM
Real User
2021-09-01T15:14:24Z
Sep 1, 2021

It is used for correlating data.

SB
Real User
2021-05-26T07:40:14Z
May 26, 2021

We use it for everything like our logs, data allocation, and ransomware. We basically do malware objects and malware callbacks. I think it's our integration tool. It's our centralized SIEM where we look at all the events, alerts and then do a tryout. The major playbooks that we use are ransomware and phishing campaigns. We basically use it for our PTI-based credit card fraud detection.

MM
Real User
2020-10-23T14:46:32Z
Oct 23, 2020

The solution is typically used for sub-services, managed detection, and response services as well as advanced sub-services. The solution was managed by the company where I worked and we offered the services to the customer.

Find out what your peers are saying about Trellix, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: March 2024.
765,234 professionals have used our research since 2012.
BP
Real User
Top 20
2020-05-14T10:16:00Z
May 14, 2020

We have evaluated great vendors like QRadar, Splunk, and all the big players, but they are certainly lacking at getting all the investigations done properly. With FireEye Helix, if a customer already uses any of the FireEye endpoint solutions, the response part is very fast and the investigation is also very fast. You can do a lot of investigation depending on what that product's like. If you want to clarify something on the endpoint, you have to do it manually but if you are a FireEye customer, you can do it right away. The email security offering around FireEye also directly integrates with your Helix. So if you have to investigate malware you can do it from Helix. It's very powerful and centered on the cloud.

Security Information and Event Management (SIEM)
A Security Information and Event Management (SIEM) system gives security managers a holistic overview of multiple security systems.
Download Security Information and Event Management (SIEM) ReportRead more

Related Q&As