Endpoint Threat Detection and Response

What is Trellix Endpoint Security (HX)?

As the mandated endpoint detection and response (EDR) solution for the UC system, Trellix (formerly FireEye) Endpoint Security HX is deployed across campus. Trellix HX is used to detect malware and/or viruses such as ransomware that antivirus software has difficulty locating on the endpoint, and protection against other threats and attacks on the endpoint that can’t be seen on the network.  It also allows OIT Security to be able to respond and help recover affected systems more quickly when an attack occurs to prevent further spread to other systems. Trellix HX automates some time-consuming steps of incident response and helps with forensics investigations.

Who should use Trellix HX?

Trellix HX is required for all compatible university-owned computers.

How do I get Trellix HX?

Contact your IT Support or Technical UISL, or for self-managed University endpoints you can follow these self-service technical instructions.

Privacy and EDR

We protect both privacy and security, appropriately striking a careful balance in line with UC policy.

More details can be found at:

• • UCI Trellix HX Data Privacy Summary
  • UCI EDR Privacy Balancing Analysis
  • UCI Information Security Monitoring and Privacy Disclosure
  • UCOP EDR FAQs

Quick Links

• UCI Trellix HX Technical Guide
• UCOP EDR Overview
• Trellix HX Endpoint Security Product