Hospitality Company
Trend Vision One™ reduces the time to detect, investigate, and respond
Operations Manager
at a hospitality company with 10,000+ employees
WHAT IS OUR PRIMARY USE CASE?
“We have deployed Trend XDR on all our endpoints. It is deployed as an agent because we are using Trend Micro Apex One™, the antivirus agent, and the SaaS agent. This means that we receive notifications from XDR for any suspicious activity related to endpoints. For example, if a user connects to a suspicious website, XDR should alert us based on our rules. It can also generate alerts for malicious Windows activities.
In addition to deploying XDR on our endpoints, we have connected Trend Micro Vision One XDR to our Office 365 email platform. This allows XDR to read incoming emails. We can then configure rules to remove emails from mailboxes if they have certain properties or are particularly suspicious.
We have also connected XDR to our Azure platform, which is our user authentication platform. XDR can monitor for risky user sign-ins, such as sign-ins from unusual locations. If it detects any risk, it will notify us.
Finally, we have integrated XDR with a third-party tool to receive indicators of compromise. When we receive an IOC, Trend Vision One will automatically run a check in our environment to see if any endpoints have been compromised. It will also check to see if any emails have been sent from any of the senders in the IOC listing. If it finds any matches, it will notify us.
We can also configure playbooks to automatically take action when XDR detects a threat. For example, we could configure a playbook to force a user to reset their password or isolate an endpoint from the network.
We are using the Trend Vision One XDR agent. This agent component is installed on all of our endpoints, including servers, workstations, desktops, and any other computer elements. Trend Vision One also has an API-based element, which we have connected to our email system, such as Azure.”
I cannot imagine my day-to-day operations without the visibility that Trend Vision One provides. It makes all the difference. No other platform compares to Trend Vision One in terms of simplicity, ease of use, and importance.
WHAT NEEDS IMPROVEMENT?
“I would like to have the capability to export the information we receive from the XDR into Microsoft Excel.”
Trend XDR has helped us reduce the time we spend investigating false positive alerts. I am 100 percent confident that everything that comes out of the platform is legitimate.
FOR HOW LONG HAVE I USED THE SOLUTION?
“I have been using Trend XDR for almost four years. ”
WHAT DO I THINK ABOUT THE STABILITY OF THE SOLUTION?
“Trend XDR is stable. We have not experienced any stability issues when using the console. ”
WHAT DO I THINK ABOUT THE SCALABILITY OF THE SOLUTION?
“I do not have access to the backend, so I am not aware of the specific technical details. However, from an end-user perspective, the scalability of the system appears to be excellent.”
HOW ARE CUSTOMER SERVICE AND SUPPORT?
“I reach out to technical support almost every week to address any questions I have. I also have a bi-weekly meeting with their technical team. They guide open tickets and address any concerns we may have. Additionally, we have a monthly meeting with Trend Vision One developers where they discuss upcoming features and seek input. I know exactly who to contact for any assistance I may need. Sometimes, I can simply email them directly instead of opening a ticket. The process is always straightforward and efficient. At times, the prompt responses make me wonder if they are using AI assistance, but I hope that's acceptable. I usually receive a response within a minute or two, which suggests AI involvement. However, the signature at the end of the IT person's email confirms that an actual person is handling my request.”
WHICH SOLUTION DID I USE PREVIOUSLY AND WHY DID I SWITCH?
“We had Carbon Black, but we're using it only for application control. With Trend XDR we can detect and respond.”
HOW WAS THE INITIAL SETUP?
“The initial deployment was straightforward. I have extensive experience in deployments across various companies and platforms. However, Trend XDR surpassed all my expectations. We had previously deployed on-premises, and all we had to do was access the designated console and click a button to migrate all on-premises agents to cloud agents. It was incredibly easy. My team of two and I handled the entire process without any involvement from the teams and properties. I right-clicked and moved everything over. A few agents remained unmovable due to their outdated versions, but we successfully migrated close to 99 percent of all agents.”
WHAT ABOUT THE IMPLEMENTATION TEAM?
“The implementation was completed in-house. Trend provided a document link to help with the deployment.”
WHAT'S MY EXPERIENCE WITH PRICING, SETUP COST, AND LICENSING?
“Trend XDR is reasonably priced for its value, comparable to other products like VMware Carbon Black.”
WHICH OTHER SOLUTIONS DID I EVALUATE?
“We evaluated an additional option with Carbon Black because we already had that agent in our environment. We also considered Cisco, which has its own XDR platform.”
WHAT OTHER ADVICE DO I HAVE?
“I would rate Trend XDR ten out of ten.
We tried to use the risk index feature, but I didn't have the resources to focus on it at the time. I was more focused on the actual findings that were happening. I have since hired someone who will focus on the risk index, as the primary reason I hired them is to focus on the risk element coming from Trend Vision One, as well as from other third-party intelligence platforms that we work with or have contracts with. Now that I have someone here, we will be focusing on the risk index.
No maintenance is required.”
WHICH DEPLOYMENT MODEL ARE YOU USING FOR THIS SOLUTION?
Public Cloud
Join 500K+ Global Customers
Get started with Trend today