FireEye Helix

FireEye Helix Reviews

Do you work for this company? Learn how we help vendors

Ratings and Reviews
(1-2 of 4)

Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Review Source
FireEye Helix is our organization's system for managing all security events and conducting behavioral analysis. We have deployed FireEye Agents to all desktops, laptops and servers which report into Helix. We also have a series of taps and other systems reporting into Helix and the associated SOC service. This gives us one place to review all security information and take the needed actions.
  • Single location for all security event management.
  • Detect advanced threats.
  • Provide audit artifacts to ensure compliance.
  • Overly complex platform.
  • Multiple logins needed for various tools, leads to confusion.
  • Costs can add up.
Overall we've had a great experience with FireEye Helix and would recommend to organizations looking to improve their operational security. We've found Helix to be a great way to collect and analyze revenant security events and take action. Having single pane of glass makes this process much more efficient, prior to moving to FireEye we had different teams sending data to different applications which resulted in confusion and critical data being missed.
FireEye Helix provides good actionability for all security threats. It all starts with the logging and audit trails created by sending all security information into a single source. Once we have all the information in a single place we only have one place to search, this leads to a much more efficient process for researching and resolving security threats. We find look into even minor issues which as before that was often too much effort to do.
We've been fairly happy with FireEye Support overall, most issues are resolved the same day the case is opened.
Score 10 out of 10
Vetted Review
Verified User
Review Source
Helix is used as a log aggregator to support global business. It is the SIEM within the environment.
  • Single pane of glass for all alerts.
  • Great at consolidating threat intelligence, alerts, and metadata all in a single platform.
  • The ability to pivot directly from Helix to endpoint (HX) EDR, Email, etc. is a big blessing.
  • Additional integration points (API cloud integrations).
Very impressed with the solution. I would recommend it to any organization. Even if they have a SIEM in place, the Helix solution could be another area of telemetry.
As noted previously, I find Helix to be super-efficient and able to cut through the noise. Helix provides higher fidelity hits, and our teams don't spend half their day turning out the noise. The Helix engine justifies alert severity very well by correlating multiple points of telemetry. Also, artifacts such as PCAPs are parsed within the interface (or inside of FireEye HX—one click away) to save the Aanalyst's time and effort.

FireEye Helix Scorecard Summary

Feature Scorecard Summary

Security Information and Event Management (SIEM) (7)
Centralized event and log data collection (2)
Correlation (2)
Event and log normalization/management (2)
Deployment flexibility (2)
Integration with Identity and Access Management Tools (2)
Custom dashboards and workspaces (2)
Host and network-based intrusion detection (2)

What is FireEye Helix?

FireEye Helix is a cloud-hosted security operations platform that allows organizations to take control of any incident from alert to fix. FireEye Helix integrates disparate security tools and augments them with advanced SIEM, Orchestration, and threat intelligence capabilities to capture the untapped potential of security investments.

FireEye Helix Features

Security Information and Event Management (SIEM) Features

  • Supported: Centralized event and log data collection
  • Supported: Correlation
  • Supported: Event and log normalization/management
  • Supported: Deployment flexibility
  • Supported: Integration with Identity and Access Management Tools
  • Supported: Custom dashboards and workspaces
  • Supported: Host and network-based intrusion detection

Additional Features

  • Supported: Security Information and Event Management (SIEM) Improve threat and vulnerability detection with managed and curated detection rules
  • Supported: User and Entity Behavior Analytics (UEBA) Detect insider threats and advanced attacks with machine learning driven analytics
  • Supported: Security Analytics Surface answers from your data with next generation security analytics
  • Supported: Security Orchestration, Automation, and Response (SOAR) Automate response with pre-built playbooks created by frontline practitioners

FireEye Helix Screenshots

Helix Cloud IntegrationsHelix Asset Alert Correlation

FireEye Helix Videos

To protect against advanced threats, organizations need to integrate their security and apply the right expertise and processes. FireEye Helix is a cloud-hosted security operations platform that allows organizations to take control of any incident from alert to fix.
Axway Software, an API-software developer utilizes FireEye to reinvigorate its security operations.

FireEye Helix Downloadables

FireEye Helix Integrations

  • Splunk
  • Cisco
  • Microsoft 365
  • Azure
  • Okta

FireEye Helix Competitors

FireEye Helix Pricing

More Pricing Information

SaaS Editions Pricing
Pricing DetailsTerms
Helix Console$0Events per second
Helix Enterprise$0Events per second

FireEye Helix Customer Size Distribution

Small Businesses (1-50 employees)0%
Mid-Size Companies (51-500 employees)10%
Enterprises (more than 500 employees)90%

FireEye Helix Technical Details

Deployment TypesSaaS
Operating SystemsUnspecified
Mobile ApplicationNo
Supported CountriesWorldwide
Supported LanguagesEnglish

Frequently Asked Questions

What is FireEye Helix?

FireEye Helix is a SIEM solution providing a non-malware threat detection solution.

Who uses FireEye Helix?

The most common users of FireEye Helix are from Enterprises and the Computer Software industry.