What is Trellix Endpoint Security (HX)?
OIT Security has deployed Trellix (formerly FireEye) Endpoint Security HX as the EDR solution for campus, also used throughout the UC system. Trellix HX is used to detect malware and/or viruses that antivirus software has difficulty locating on the endpoint, and attacks that can’t be seen on the network. Additionally, it allows the OIT Security to efficiently perform deep analysis on the malware to determine how the system became infected and help prevent further spread. Trellix HX automates some time-consuming steps of incident response and helps with forensics investigations.
What does Trellix HX do?
Armed with real-time indicator, Exploit Guard, and malware protection intelligence, the Endpoint Security Agent monitors for malware activity on each endpoint host, analyzing real-time, exploit, and malware data from events occurring on the endpoint, and identifying activity that matches the real-time indicator rules and Trellix’s exploit and malware intelligence.
Who should use Trellix HX?
Trellix HX is available for all university-owned computers.
How do I get Trellix HX?
Contact your Unit Information Security Lead or OIT Helpdesk at oit@uci.edu or 949-824-2222 or email OIT Security at security@uci.edu to help you obtain, download, and install the agent. Technical instructions for IT staff can be found here.
Cost
Trellix HX is provided by the University of California Office of the President at no cost to campus owned devices.
Compatibility
Trellix HX offers installers for Windows, MacOS and Linux and can be installed on workstations and servers operating systems. If you would like to find out if a specific OS is supported, contact OIT Security.