We performed a comparison between CrowdStrike Falcon and Trend Micro Deep Security based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: CrowdStrike Falcon is the clear winner in this comparison. It is stable, easy to use, and high performing. In addition, it is easier to deploy and less expensive than Trend Micro Deep Security.
"It is a scalable solution...The initial setup of Fortinet FortiEDR was straightforward."
"The price is low and quite competitive with others."
"Fortinet FortiEDR's scalability is quite good, and you can add licenses to the solution."
"The setup is pretty simple."
"The product's initial setup phase is very easy."
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"Ability to get forensics details and also memory exfiltration."
"The ease of deployment and configuration is valuable. It's very easy compared to other vendors like Sophos. Sophos' configuration is complex. Fortinet is a lot easier to understand. You don't need a lot of admin knowledge to do the configuration."
"CrowdStrike Falcon is a very light solution. It does not use too much processor or RAM."
"All the features are beneficial."
"This solution consistently releases improvements. They have communicated their next two years of development which is powerful and covers all of our needs."
"The most valuable features of CrowdStrike Falcon are the AI in detecting and real-time detections."
"It seems to do a pretty good job of protecting the host. It offers good insights that it gives you when it has a detection. It's pretty incredible."
"The most valuable features of CrowdStrike Falcon include Falcon Fusion workflows and endpoint detection capabilities."
"Among CrowdStrike Falcon's most valuable capabilities are its UEBA and SOAR functionalities, along with its seamless integration with any other SIEM solution."
"The most valuable features are the complete IPS and IDS."
"Deep Security's most valuable features are antivirus and host intrusion detection."
"Automated virtual patching is a good feature."
"The traceback feature in XDR is amazing. You can trace back an attack. You can playback where an attack actually occurred and see how the attacker moved. We can easily show this to management, and it makes it easy to make them understand and convince them, which is the best thing."
"The most valuable features are web security, email filtering, and content filtering."
"It has a perfect SaaS which integrates with AWS, offering flexibility to deploy quickly and easily in the cloud."
"The customer service/technical support for this solution is very fast."
"DLP, Data Loss Prevention, and the complexity of how we manage the console and how this client, or this tool, will notify us when there is something going wrong within the server and endpoint, is good."
"It's scalable."
"We'd like to see more one-to-one product presentations for the distribution channels."
"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"We've encountered challenges during API deployment, occasionally resulting in unstable environments."
"There's room for improvement in the quick response time and technical support for integration issues, especially when dealing with multiple vendors."
"The solution should address emerging threats like SQL injection."
"The only minor concern is occasional interference with desired programs."
"The solution is not stable."
"CrowdStrike Falcon could improve the logs by making them free to the API."
"If CrowdStrike can further expand its support for XDR compatibility, that would give it an edge over all the other competing new products."
"There is room for improvement in managing multiple customer IDs."
"For CrowdStrike to work, all the machines need to have an internet connection. This makes it challenging to assist customers without an internet connection. We would like to have a mechanism or relay to make this possible."
"The price is too high."
"CS Falcon sensing capabilities for non-domain machines should be enhanced since the agent doesn't detect the neighbor's IP Address and/or any anomaly which was identified in the network for the non-domain machine."
"It does take more time to scan than other solutions."
"Too many false positives."
"The solution could use more integration."
"There should be signature-based advanced and responsive features."
"We want to see improved authentication."
"I've not worked with CrowdStrike Falcon, but one of our customers also had CrowdStrike Falcon on some of the devices. I was only supporting Trend Micro. They had a ransomware attack, but Trend Micro didn't detect that particular ransomware attack, whereas CrowdStrike did."
"The initial setup needs improvement, as it was a bit challenging."
"I think more work could be done on Deep Security's ability to handle dynamic threat scenarios."
"The workloads must be better."
"It needs to improve its integration with a lot of other products. This should be in the road map because we have a lot of SaaS-based appliances which are not connected with each other."
CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 107 reviews while Trend Micro Deep Security is ranked 1st in Virtualization Security with 81 reviews. CrowdStrike Falcon is rated 8.8, while Trend Micro Deep Security is rated 8.6. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Trend Micro Deep Security writes "High availability, effective VPM, and responsive support". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Vision One and VMware Carbon Black Endpoint, whereas Trend Micro Deep Security is most compared with Trend Micro Apex One, Microsoft Defender for Endpoint, Symantec Endpoint Security, Trellix Endpoint Security and Kaspersky Endpoint Security for Business.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
I like that Crowdstrike allows me to easily correlate data between my firewalls. What’s most useful for my needs is the intelligence modules feature. I also find that Crowdstrike Falcon’s dashboard is very user-friendly; Information is easy to find because of how it is presented and everything is linkable, which is a big win for me. Stability is fantastic and so is the scalability. I was able to do so many endpoints so easily, and without any issues. In terms of pricing, Crowdstrike Falcon is reasonable for all that it has to offer. As far as technical support, that has been great too.
Trend Micro Deep Security offers a lot of features. It guarantees security for your data center, cloud, and containers - all with a unified and comprehensive SaaS solution and without compromising performance. Although that might make it sound appealing, every time there are new features released, they have to be paid for separately, which I am not thrilled about.
Trend Micro Deep Security offers powerful protection, an all-in-one workload security option (which may help with eliminating the cost of deploying multiple point solutions), and flexible integration. They also offer a “pay-for-what-you-use” pricing model which is hard to come by. While their pricing model seems enticing, a big downside for me is that it does not support versions prior to Windows 7. It has a good intrusion prevention feature that I like. However, that is not enough for me to settle for Trend Micro Deep instead of Crowdstrike.
Conclusion:
I much prefer Crowdstrike Falcon over Trend Micro Deep Security because I feel that it is much more reliable. While Trend Micro Deep Security may be represented as a classic antivirus solution, I am satisfied with the overall performance of Crowdstrike Falcon and happy with my purchase of the product.
Having previously run a penetration testing company, I can tell you that the general feedback I have from professional hackers is that CrowdStrike Falcon does make their job a lot more difficult.
The "traditional" players in the endpoint protection market e.g. Trend Micro, Symantec and McAfee they generally view as trivial to bypass.