AWS CloudTrail vs. Trellix ePolicy Orchestrator

Trellix ePolicy Orchestrator

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
AWS CloudTrail	Score 8.5 out of 10	N/A	AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…	N/A
Trellix ePolicy Orchestrator	Score 6.8 out of 10	N/A	Trellix ePolicy Orchestrator (formerly McAfee ePolicy Orchestrator) software centralizes and streamlines management of endpoint, network, data security, and compliance solutions.	N/A

Pricing

AWS CloudTrail

Trellix ePolicy Orchestrator

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
AWS CloudTrail	Trellix ePolicy Orchestrator
Free Trial
Yes	No
Free/Freemium Version
Yes	No
Premium Consulting/Integration Services
Yes	No

Entry-level Setup Fee

No setup fee

Additional Details

You can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.

—

More Pricing Information

Community Pulse
	AWS CloudTrail	Trellix ePolicy Orchestrator

Features

AWS CloudTrail

Trellix ePolicy Orchestrator

Threat Intelligence

Comparison of Threat Intelligence features of Product A and Product B
	AWS CloudTrail - Ratings	Trellix ePolicy Orchestrator 6.6 1 Ratings 20% below category average
Network Analytics	00 Ratings	5.01 Ratings
Threat Recognition	00 Ratings	6.01 Ratings
Vulnerability Classification	00 Ratings	7.01 Ratings
Automated Alerts and Reporting	00 Ratings	7.01 Ratings
Threat Analysis	00 Ratings	8.01 Ratings
Threat Intelligence Reporting	00 Ratings	7.01 Ratings
Automated Threat Identification	00 Ratings	6.01 Ratings

Vulnerability Management Tools

Comparison of Vulnerability Management Tools features of Product A and Product B
	AWS CloudTrail - Ratings	Trellix ePolicy Orchestrator 6.0 1 Ratings 32% below category average
IT Asset Realization	00 Ratings	7.01 Ratings
Authentication	00 Ratings	5.01 Ratings
Configuration Monitoring	00 Ratings	6.01 Ratings
Web Scanning	00 Ratings	6.01 Ratings
Vulnerability Intelligence	00 Ratings	6.01 Ratings

Best Alternatives
	AWS CloudTrail	Trellix ePolicy Orchestrator
Small Businesses	Armor Score 6.0 out of 10	Action1 Score 9.4 out of 10
Medium-sized Companies	Druva Security Cloud Score 9.6 out of 10	Action1 Score 9.4 out of 10
Enterprises	Druva Security Cloud Score 9.6 out of 10	CrowdStrike Falcon Score 9.0 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	AWS CloudTrail	Trellix ePolicy Orchestrator
Likelihood to Recommend	8.0 (4 ratings)	7.0 (14 ratings)
Support Rating	- (0 ratings)	8.2 (4 ratings)

User Testimonials
	AWS CloudTrail	Trellix ePolicy Orchestrator
Likelihood to Recommend	Amazon AWS It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) [McAfee ePolicy Orchestrator] seems to be better suited to large enterprise applications... I don't feel it really suits the or self-managed SMB market. The general joe is not going to understand how to wield this product to it's full potential. For those of us managing large networks, this is a very ideal product for managing multiple sites and users. Incentivized GG Gus Gilchrist Asst. Network Admin Read full review
Pros	Amazon AWS API Log User activity tracking Real-time alerts Incentivized AS Anton Smyslov Product Owner Read full review	Trellix (FireEye + McAfee) Static malware scans for known bad processes and files works well and can be schedules on endpoints easily Preventing users from accessing USB drives and other peripherals is easily configured. We can also allow users to access to USB drives with user codes for the times they need it for business reasons. ePO provides access into our MSME software so that we're not managing many different products from different locations. In recent years the console has gotten much easier to navigate even though there is a ton of information to be accessed. Incentivized Verified User Anonymous Read full review
Cons	Amazon AWS [In my experience] Cost can easily get out of control with multiple trails on full logging Logs can be difficult to decipher Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) It has a slow mechanism when adding custom threat feeds. For example, if McAfee didn't have a signature or detection about a new virus and we try to add it to our console it is like a really big process in adding that to our available signatures. Whenever a scan is performed, the system CPU utilization goes up 100 percent. Installation fails due to difference in timestamp when we try to shuffle between packages. Verified User Anonymous Read full review
Support Rating	Amazon AWS No answers on this topic	Trellix (FireEye + McAfee) McAfee support is definitely GREAT! It is one of the best technical support on a business level. GOLD support is recommended to business. Their website is easy and quick to create a ticket. Their technical team usually responds right away with an email or call. Via call and web they provide a full and complete support until the issue is resolved. The best, most of the time they explain in detail what is the issue, the reason and how to resolve it. Incentivized TM Tiago Mokwa IT Senior System Network Administrator Read full review
Alternatives Considered	Amazon AWS I think in the end, CloudTrail has more features and you can dive deeper inside the logs so it depends on your usage and what you expect in the end to make the right choice, I would say that both tools are really useful and bring a lot of benefits to I.T. companies. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) I have used Symantec Endpoint Encryption before. Symantec and EPO are both good in their own ways. EPO allows integration of other McAfee products. I have been using ePolicy Orchestrator for years. I have a lot of experience with the product. That is why I like it. Incentivized AI Angel Iani Cyber Security Engineer Read full review
Return on Investment	Amazon AWS Allows us to investigate any strange api actions Increases security Audit trail of changes made in AWS Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) Peace of mind that your environment is safe and secure. Keep your network environment up and running. Additional resources (consulting or training) may be required if not familiar with the product. Very complex to setup and configure ( training may be required). Once configured, it will take care of almost 80% of your tasks. Incentivized Verified User Anonymous Read full review
ScreenShots	AWS CloudTrail Screenshots