Great security event management and behavioral analysis platform
October 08, 2021

Great security event management and behavioral analysis platform

Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with FireEye Helix

FireEye Helix is our organization's system for managing all security events and conducting behavioral analysis. We have deployed FireEye agents to all desktops, laptops, and servers that report into FireEye Helix. We also have a series of taps and other systems reporting into FireEye Helix and the associated SOC service. This gives us one place to review all security information and take the needed actions.

Pros

  • Single location for all security event management
  • Detect advanced threats
  • Provide audit artifacts to ensure compliance

Cons

  • Overly complex platform
  • Multiple logins needed for various tools--leads to confusion
  • Costs can add up
  • Reduce manual intervention for most events
  • Single tool containing all security information--much more efficient than checking multiple tools
  • Overall a boost to our security operation--positive ROI
We found FireEye Helix to outperform all other tools we reviewed. SecureWorks had a great marketing plan but once we drilled into the technical details, the platform wasn't able to keep up.

Do you think Trellix Helix delivers good value for the price?

Yes

Are you happy with Trellix Helix's feature set?

Yes

Did Trellix Helix live up to sales and marketing promises?

Yes

Did implementation of Trellix Helix go as expected?

Yes

Would you buy Trellix Helix again?

Yes

FireEye Helix was fairly easy to integrate with our existing systems. It uses standard industry protocols (syslog for logging, https for management access), which allowed us to quickly set up the various integrations and get information flowing.
Overall, we've had a great experience with FireEye Helix and would recommend it to organizations looking to improve their operational security. We've found Helix to be a great way to collect and analyze revenant security events and take action. Having a single pane of glass makes this process much more efficient. Prior to moving to FireEye Helix, we had different teams sending data to different applications, which resulted in confusion and critical data being missed.

Trellix Helix Feature Ratings

Security Information and Event Management (SIEM)
8.6
Centralized event and log data collection
9
Correlation
9
Event and log normalization/management
9
Deployment flexibility
7
Integration with Identity and Access Management Tools
7
Custom dashboards and workspaces
9
Host and network-based intrusion detection
10

FireEye Helix Support

ProsCons
Quick Resolution
Good followup
Knowledgeable team
Problems get solved
Kept well informed
Immediate help available
Support understands my problem
Support cares about my success
Quick Initial Response
None
We did purchase premium support; given the critical role this plays in our environment, we felt it was required.
FireEye provided exceptional support when we had a runaway process from the FireEye Agents eating up CPU on our servers. They were able to identify the source and provide a quick fix within a day.
We've been fairly happy with FireEye Helix support overall. Most issues are resolved the same day the case is opened.

Comments

More Reviews of Trellix Helix

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. Trellix Helix Reviews
  4. User Review of Trellix Helix