Please share with the community what you think needs improvement with Trend Micro Deep Security.
What are its weaknesses? What would you like to see changed in a future version?
The client can show as offline sometimes, and that becomes a bit difficult for troubleshooting. We end up basically redeploying the client. This is something that could be improved in the future. It would be helpful if they added more machine learning into the solution in the future.
Some areas for improvement are: * There are new additions to the standard product that should be included with the Deep Security version. * When implementing this solution, sometimes we have challenges with SQL migration. * Some of our customers complain about the cost of this solution. * I would like to see an AI component added to the next release of this solution. * The agent-based version has performance issues and they have to make it more lightweight. * The forensic analysis capability needs to be improved.
The support for email protection can be improved.
The training needs improvement. It is expensive (classroom training), and it is often hard to find answers by yourself using the documentation. I would like them to add EDR features, moving away from traditional signature-based anti-malware.
It needs better global visibility of the virtual environment. I would like more security tools which could fit into a DevOps environment.
If I had more reporting, the product would be an A plus. Reporting is the one thing that we are sort of missing, especially with more log information.
Trend Micro is not government certified or federal complaint. If they could become compliant/certified, this would make it easier for us to use it for our government projects.
I know that they are working on it, but their automation needs improvement. I would also like to see more containerization stuff, specifically Docker.
It needs to improve its integration with a lot of other products. This should be in the road map because we have a lot of SaaS-based appliances which are not connected with each other. Thus, I'm looking forward to more integrations coming together as a part of the product. Going forward, I would like to have more APIs and integration with more application monitoring intelligence platforms.
The initial setup needs improvement. Once it is set up, the configuration is relatively simple. However, the initial setup was a bit of a challenge.
The working interface and the reports for non-technical people could use improvement. They are a bit scary.
AWS products could become more compatible with intrusion detection products leveraging help from Trend Micro.
I'm currently evaluating TippingPoint. Trend Micro is still working on building tight integration with TippingPoint being a recent acquisition from a few years ago. So, a Tipping Point integration with Deep Security, having one single pane of glass dashboard, would provide us a simple use case.
Reports. The default reports provided don't provide much insight.
I'd like to have the ability to manage heterogenous clouds so that, for example, AWS and Microsoft are protected with the same security patterns. It already does that, but I think they may have rolled it back recently. Also, it has great IDS/IPS built in, but I'd like a way to visualize the traffic. This way, there's more of an artistic view of security and the ability to ask question about the data. That would be really beneficial.