TrustRadius: an HG Insights company

Trellix Helix

Score7.1 out of 10

6 Reviews and Ratings

Get a Demo

What is Trellix Helix?

Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.

Categories & Use Cases

Media

Helix Cloud Integrations
Helix Asset Alert Correlation

1 / 2

Key Features

Learn about the best (and worst!) features Trellix Helix has to offer, as determined by TrustRadius' reviewers.
Based on 6 ratings of Trellix Helix's features
View all features

Top Performing Features

  • Host and network-based intrusion detection

    Ability to detect both endpoint intrusion and network ingress detection

    Category average: 8

  • Centralized event and log data collection

    Effectiveness of real-time centralized event and log data collection

    Category average: 8.4

  • Correlation

    Correlation of logs and events to pinpoint significant threats

    Category average: 8.4

Areas for Improvement

  • Integration with Identity and Access Management Tools

    Integration with access control tools like Active Directory and LDAP

    Category average: 8.4

  • Event and log normalization/management

    Ability to normalize event syntax so that logs can be compared and are machine-understandable

    Category average: 8.5

  • Custom dashboards and workspaces

    dashboards that can be customized to meet the needs of specific groups

    Category average: 8.6

Reviews

What users are saying about Trellix Helix.
View all reviews

Great security operations platform and behavioral analysis solution.

Shirleen MurayaView profile
Branch Manager at SunTrust Robinson Humphrey (1001-5000 employees employees)

Use Cases and Deployment Scope

Helped in collaboration with work teams to complete tasks faster, accurately, and easily. We are able to utilize this to enhance our organizational threat intelligence capabilities through the integration of our existing security tools with the next-generation SIEM. Helps in the management of our security events and in conducting behavioral analysis.

Pros

  • Detection of advanced threats.
  • Easy integration with cloud resources and our existing security tools thus enhancing performance.
  • Easy deployment with great threats intelligence capabilities.

Cons

  • Integration of SOAR with multiple vendors can be quite challenging.
  • You have to login differently to it's multiple tools hence can be confusing.
  • The cost can be quite high.

Return on Investment

  • Optimization of your security investments.
  • Operations are seamless and better with easy integrations that enhance performance.
  • Efficiency in running of incidences with enhanced case management for all its alerts.

Alternatives Considered

UiPath Enterprise RPA Platform

Other Software Used

Instana, QuoteWerks, Turbonomic, an IBM Company

Great security event management and behavioral analysis platform

Incentivized
Verified User
Engineer in Information Technology (201-500 employees employees)

Use Cases and Deployment Scope

FireEye Helix is our organization's system for managing all security events and conducting behavioral analysis. We have deployed FireEye agents to all desktops, laptops, and servers that report into FireEye Helix. We also have a series of taps and other systems reporting into FireEye Helix and the associated SOC service. This gives us one place to review all security information and take the needed actions.

Pros

  • Single location for all security event management
  • Detect advanced threats
  • Provide audit artifacts to ensure compliance

Cons

  • Overly complex platform
  • Multiple logins needed for various tools--leads to confusion
  • Costs can add up

Return on Investment

  • Reduce manual intervention for most events
  • Single tool containing all security information--much more efficient than checking multiple tools
  • Overall a boost to our security operation--positive ROI

Alternatives Considered

CrowdStrike Falcon Endpoint Protection and Secureworks Security Consulting Services

FireEye Helix: Cuts Through the Noise

Incentivized
Verified User
Manager in Information Technology (1001-5000 employees employees)

Pros

  • Single pane of glass for all alerts.
  • Great at consolidating threat intelligence, alerts, and metadata all in a single platform.
  • The ability to pivot directly from Helix to endpoint (HX) EDR, Email, etc. is a big blessing.

Cons

  • Additional integration points (API cloud integrations).

Return on Investment

  • Helix has had a significant impact on CSOC visibility efforts across the organization.
  • Helix fills the logging and alerting gaps that are missing across the infrastructure side.
  • Having a single pane of glass allows teams to more efficiently run incidents. Additionally, Helix is integrated with ServiceNow providing enhanced and efficient case management for all Helix alerts.

Alternatives Considered

LogRhythm NextGen SIEM Platform and Splunk Cloud

Other Software Used

FireEye Email Security, FireEye Endpoint Security, FireEye Network Security

Related Products

Products similar to Trellix Helix that may also meet your needs.
All comparisons
IBM Security QRadar SIEM
CompareLearn more
IBM Security QRadar SOAR
CompareLearn more
Rapid7 InsightIDR
CompareLearn more
IBM i2 Analyze
CompareLearn more
Splunk Enterprise Security
CompareLearn more
Microsoft Sentinel
CompareLearn more