Great security event management and behavioral analysis platform
October 08, 2021

Great security event management and behavioral analysis platform

Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with FireEye Helix

FireEye Helix is our organization's system for managing all security events and conducting behavioral analysis. We have deployed FireEye agents to all desktops, laptops, and servers that report into FireEye Helix. We also have a series of taps and other systems reporting into FireEye Helix and the associated SOC service. This gives us one place to review all security information and take the needed actions.
  • Single location for all security event management
  • Detect advanced threats
  • Provide audit artifacts to ensure compliance
  • Overly complex platform
  • Multiple logins needed for various tools--leads to confusion
  • Costs can add up
  • Reduce manual intervention for most events
  • Single tool containing all security information--much more efficient than checking multiple tools
  • Overall a boost to our security operation--positive ROI
We found FireEye Helix to outperform all other tools we reviewed. SecureWorks had a great marketing plan but once we drilled into the technical details, the platform wasn't able to keep up.

Do you think Trellix Helix delivers good value for the price?


Are you happy with Trellix Helix's feature set?


Did Trellix Helix live up to sales and marketing promises?


Did implementation of Trellix Helix go as expected?


Would you buy Trellix Helix again?


FireEye Helix provides good actionability for all security threats. It all starts with the logging and audit trails created by sending all security information into a single source. Once we have all the information in a single place, we only have one place to search. This leads to a much more efficient process for researching and resolving security threats. We find we can look into even minor issues, which before was often too much effort to do.
FireEye Helix was fairly easy to integrate with our existing systems. It uses standard industry protocols (syslog for logging, https for management access), which allowed us to quickly set up the various integrations and get information flowing.
Overall, we've had a great experience with FireEye Helix and would recommend it to organizations looking to improve their operational security. We've found Helix to be a great way to collect and analyze revenant security events and take action. Having a single pane of glass makes this process much more efficient. Prior to moving to FireEye Helix, we had different teams sending data to different applications, which resulted in confusion and critical data being missed.

Trellix Helix Feature Ratings

Centralized event and log data collection
Event and log normalization/management
Deployment flexibility
Integration with Identity and Access Management Tools
Custom dashboards and workspaces
Host and network-based intrusion detection

FireEye Helix Support

Quick Resolution
Good followup
Knowledgeable team
Problems get solved
Kept well informed
Immediate help available
Support understands my problem
Support cares about my success
Quick Initial Response
We did purchase premium support; given the critical role this plays in our environment, we felt it was required.
FireEye provided exceptional support when we had a runaway process from the FireEye Agents eating up CPU on our servers. They were able to identify the source and provide a quick fix within a day.
We've been fairly happy with FireEye Helix support overall. Most issues are resolved the same day the case is opened.