It’s been a busy couple of days at Trellix, with many of our teams working through the weekend to help customers: recover from the outage, understand what went wrong at CrowdStrike, and update them on the latest adversarial intelligence.
It felt like almost everyone I spoke to this weekend – our customers, parents at lacrosse games, the media, and even my own mother – had the same two questions:
“Is Trellix affected by Friday’s outage?” Easy answer, no.
"Could what happened to CrowdStrike happen to Trellix?” Also easy, no.
Why? Trellix has a different philosophy. Let me tell you how.
First, we believe security vendors hold great responsibility. We occupy a privileged position with access to the kernel of customers' systems. We must exercise this power with great care.
Second, at Trellix we employ a conservative approach anchored by three imperatives:
💡 Our customers have complete control over what to deploy and when. The trade-off between security and operations lies with those who know best, our customers.
🔒 We are committed to full transparency. Our customers have visibility into when we release new drivers.
🛡️ We minimize business risk through phased updates. Every update undergoes rigorous testing, deploys through staged gates, and can be revoked.
On days like last Friday, I am so thankful to have been a CISO earlier in my career because it informs how I run Trellix every day. My singular focus is always: What do our customers need? How can we help them be successful?
You have my commitment we won’t ever run the company another way.
#CustomerChoice #Trellix