TrustRadius Insights
FireEye Helix has been praised by users for its ease of use and user-friendly interface. It simplifies the management of security …
Trellix HelixFormerly FireEye Helix
Starting at $0 Events per second
View PricingOverview
What is Trellix Helix?
Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.
Recent Reviews
Pricing
Helix Console
$0
Cloud
Events per second
Helix Enterprise
$0
Cloud
Events per second
Entry-level set up fee?
- Setup fee optional
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Product Details
- About
- Integrations
- Competitors
- Tech Details
- Downloadables
- FAQs
What is Trellix Helix?
Trellix Helix (formerly FireEye Helix) is a cloud-hosted security operations platform that allows organizations to take control of any incident from alert to fix. Trellix Helix integrates disparate security tools and augments them with advanced SIEM, Orchestration, and threat intelligence capabilities to capture the untapped potential of security investments.
Trellix Helix Features
Security Information and Event Management (SIEM) Features
- Supported: Centralized event and log data collection
- Supported: Correlation
- Supported: Event and log normalization/management
- Supported: Deployment flexibility
- Supported: Integration with Identity and Access Management Tools
- Supported: Custom dashboards and workspaces
- Supported: Host and network-based intrusion detection
Additional Features
- Supported: Security Information and Event Management (SIEM) Improve threat and vulnerability detection with managed and curated detection rules
- Supported: User and Entity Behavior Analytics (UEBA) Detect insider threats and advanced attacks with machine learning driven analytics
- Supported: Security Analytics Surface answers from your data with next generation security analytics
- Supported: Security Orchestration, Automation, and Response (SOAR) Automate response with pre-built playbooks created by frontline practitioners
Trellix Helix Screenshots
Trellix Helix Videos
To protect against advanced threats, organizations need to integrate their security and apply the right expertise and processes. FireEye Helix is a cloud-hosted security operations platform that allows organizations to take control of any incident from alert to fix.
Axway Software, an API-software developer utilizes FireEye to reinvigorate its security operations.
Trellix Helix Integrations
- Microsoft 365
- Splunk
- Cisco
- Azure
- Okta
Trellix Helix Competitors
- IBM Security QRadar SIEM
- IBM Security QRadar SOAR
- IBM i2 Analyze
- Splunk Enterprise Security (ES)
- Rapid7 InsightIDR
- Microsoft Sentinel
- Splunk Security Essentials
- Google Chronical
- Rapid7 Insight Connect
- Rapid7 Insight Ops
Trellix Helix Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
| Supported Countries | Worldwide |
| Supported Languages | English |
Trellix Helix Downloadables
Frequently Asked Questions
Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.
IBM Security QRadar SIEM, IBM Security QRadar SOAR, and IBM i2 Analyze are common alternatives for Trellix Helix.
Reviewers rate Host and network-based intrusion detection highest, with a score of 9.
The most common users of Trellix Helix are from Enterprises (1,001+ employees).
Trellix Helix Customer Size Distribution
| Consumers | 0% |
|---|---|
| Small Businesses (1-50 employees) | 0% |
| Mid-Size Companies (51-500 employees) | 10% |
| Enterprises (more than 500 employees) | 90% |
Comparisons
Compare with
Reviews and Ratings
(6)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
- Pros
- Cons
FireEye Helix has been praised by users for its ease of use and user-friendly interface. It simplifies the management of security operations by consolidating security events and alerts into a single view, allowing users to easily monitor and manage security events. With its customizable dashboard, FireEye Helix helps in prioritizing real threats and critical alerts, thereby improving cybersecurity.
One of the key use cases of FireEye Helix is its ability to automate routine security tasks and workflows, enabling faster response times and more efficient use of security resources. This is valuable for organizations with limited resources as it eliminates the need for manual intervention and streamlines the security operations process. Additionally, FireEye Helix serves as a log aggregator, providing a centralized dashboard to consolidate security logs and correlate them for global businesses.
Users have also found value in FireEye Helix as a SIEM - Security Information and Event Management solution. It assists in the management of security events and conducts behavioral analysis to detect potential threats. The product enhances collaboration among work teams, allowing tasks to be completed faster and more accurately. Furthermore, FireEye Helix integrates existing security tools with its next-generation SIEM, bolstering organizational threat intelligence capabilities.
Another notable use case for FireEye Helix is compliance reporting. The product offers features that support compliance efforts by providing comprehensive reports on security events, helping organizations meet regulatory requirements. Furthermore, FireEye Helix leverages User and Entity Behavior Analytics - UEBA to identify anomalous behavior and potential insider threats.
Lastly, FireEye Helix empowers organizations to maintain total control over their SaaS - Software-as-a-Service security operations. It particularly excels in managing attacks targeting digital assets trading platforms, ensuring the security of these critical assets.
Overall, FireEye Helix provides valuable solutions across various areas of cybersecurity management, from automating routine tasks to enhancing threat intelligence capabilities and facilitating compliance reporting. Its user-friendly interface and excellent technical support have been appreciated by users, making it a reliable choice for managing security operations.
Easy Deployment: Many users have mentioned that the deployment of FireEye Helix is easy and can be easily adopted in their environment. They found the integration to be uncomplicated and straightforward, making it a hassle-free process.
Detailed Information on Attacks: Reviewers appreciate that FireEye Helix provides detailed information on attacks. This allows analysts to see all the necessary information about threats, enabling them to take appropriate actions.
Excellent Technical Support: Customers are highly satisfied with the technical support provided by FireEye. They consider it to be the best in terms of expertise and assistance. The prompt and helpful support from the team enhances their overall experience with the product.
Slow Triage: Several users have expressed frustration with the slow triage process in FireEye Helix, stating that it hinders their ability to respond promptly and effectively to security incidents. This issue has been mentioned by multiple reviewers, highlighting a need for improved efficiency.
Expensive Cost: The cost of implementing FireEye Helix is relatively high compared to other security solutions available in the market, making it less accessible for smaller organizations with limited budgets. Some users have voiced concerns about the affordability of FireEye Helix, emphasizing the need for more cost-effective options.
False Positives: Users have reported instances of false positives being generated during the initial stage in FireEye Helix. These inaccurate alerts can lead to wasted time and resources as users investigate non-existent threats. Multiple reviewers have highlighted this issue, indicating the importance of enhancing detection accuracy.
Attribute Ratings
Reviews
(1-4 of 4)Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
Helped in collaboration with work teams to complete tasks faster, accurately, and easily. We are able to utilize this to enhance our organizational threat intelligence capabilities through the integration of our existing security tools with the next-generation SIEM. Helps in the management of our security events and in conducting behavioral analysis.
- Detection of advanced threats.
- Easy integration with cloud resources and our existing security tools thus enhancing performance.
- Easy deployment with great threats intelligence capabilities.
- Integration of SOAR with multiple vendors can be quite challenging.
- You have to login differently to it's multiple tools hence can be confusing.
- The cost can be quite high.
97.14285714285714%
9.7
- Optimization of your security investments.
- Operations are seamless and better with easy integrations that enhance performance.
- Efficiency in running of incidences with enhanced case management for all its alerts.
It offers extensive visibility thus easy detection of threats and easy mitigation practices. Utilization of its threats intelligence capabilities thus early detection of incidents and maximization of security investments. Offers great integration of cloud resources with existing security tools thus ensuring seamless performance and all-time security for the organizational resources.
April 25, 2022
Giving You Control of cybersecurity
We've used FireEye Helix to beef up our cybersecurity by helping us put priority on the 'real' threats and critical alerts. We employ FireEye Helix services in compliance reporting and User and Entity Behavior Analytics. Our websites offer a centralized digital assets trading platform for our customers and therefore attacks targeted on our sites attempt to mimic our staff for backdoor access and compromise the assets. With FireEye Helix, we have total control of our SaaS security operations.
- It's easy to analyze the Helix detect datasheet
- It's possible to automate both alert volumes and false positives.
- It may be overburdened by multi-vector attacks and must be used alongside deception software.
- Has limited API integrations.
72.85714285714286%
7.3
- Use and Entity Behavior Analytics have been crucial in detecting unauthorized users trying to gain backdoor access.
- We use it to consolidate all PCI compliance reports.
October 08, 2021
Great security event management and behavioral analysis platform
FireEye Helix is our organization's system for managing all security events and conducting behavioral analysis. We have deployed FireEye agents to all desktops, laptops, and servers that report into FireEye Helix. We also have a series of taps and other systems reporting into FireEye Helix and the associated SOC service. This gives us one place to review all security information and take the needed actions.
- Single location for all security event management
- Detect advanced threats
- Provide audit artifacts to ensure compliance
- Overly complex platform
- Multiple logins needed for various tools--leads to confusion
- Costs can add up
85.71428571428571%
8.6
- Reduce manual intervention for most events
- Single tool containing all security information--much more efficient than checking multiple tools
- Overall a boost to our security operation--positive ROI
We found FireEye Helix to outperform all other tools we reviewed. SecureWorks had a great marketing plan but once we drilled into the technical details, the platform wasn't able to keep up.
We did purchase premium support; given the critical role this plays in our environment, we felt it was required.
No
FireEye provided exceptional support when we had a runaway process from the FireEye Agents eating up CPU on our servers. They were able to identify the source and provide a quick fix within a day.
July 25, 2021
FireEye Helix: Cuts Through the Noise
Helix is used as a log aggregator to support global business. It is the SIEM within the environment.
- Single pane of glass for all alerts.
- Great at consolidating threat intelligence, alerts, and metadata all in a single platform.
- The ability to pivot directly from Helix to endpoint (HX) EDR, Email, etc. is a big blessing.
- Additional integration points (API cloud integrations).
98.57142857142858%
9.9
- Helix has had a significant impact on CSOC visibility efforts across the organization.
- Helix fills the logging and alerting gaps that are missing across the infrastructure side.
- Having a single pane of glass allows teams to more efficiently run incidents. Additionally, Helix is integrated with ServiceNow providing enhanced and efficient case management for all Helix alerts.
I find Helix to be super-efficient and able to cut through the noise. Previous installations of LogRhythm and Splunk resulting in an overwhelming amount of noise (out of the gate), and we had to constantly tune out false positives. Helix is different. Out of the gate, Helix provided higher fidelity hits, and our teams don't spend half their day turning out the noise.