Microsoft 365 Defender has come a long ways, becoming a top shelf product
Updated June 05, 2024
Microsoft 365 Defender has come a long ways, becoming a top shelf product
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Defender XDR
we use this as the front line of defense and then use Huntress as the add on to get the optimal settings and config and reporting to give better insight into what is going on and how to remediate the issues. Microsoft 365 Defender has come a long way and certainly at this point a great firstline
- built in, ready to go
- easy for complicancy
- one stop shop
- reporting
- config
- positive, has become a strong product over time
- built in to windows so there is no need to remove or stop it
- one less thing to install / remove
Out of the gates, was not the best and took a while to get it where it's is now but continues to make huge strides and is a good challenger for top shelf for endpoint management.
easier to roll out and manage, built in to windows OS so one less thing to install or roll out. no need for tokens or special installers
not directly, we use huntress as the reporting and config portion as the maturity of the product as it is now is does not meet our needs. i am sure they will develop this to include more features for management of this.
not at the momment, as it's not mature enough to use as a stand alone. we have coupled it with huntress.
yes another SIEM, was dead simple to config and all data is pushed up and we get it all monitored and alerts sent to use.
- BlackBerry Protect (CylancePROTECT) and CrowdStrike Falcon
beats cylance protect, crowstrike is solid but at a costly product
cannot use kapersky due to embargo
norton not good enough now
cannot use kapersky due to embargo
norton not good enough now
Do you think Microsoft Defender XDR delivers good value for the price?
Yes
Are you happy with Microsoft Defender XDR's feature set?
Yes
Did Microsoft Defender XDR live up to sales and marketing promises?
Yes
Did implementation of Microsoft Defender XDR go as expected?
Yes
Would you buy Microsoft Defender XDR again?
Yes
Using Microsoft Defender XDR
450 - all walks, from front line staff to executives. we deploy this to every endpoint by default. no one escapes from having this installed on the corporate device by policy and reinstalls if removed. Fill as many gaps as possible so that we try to have complete and wide as possible coverage for threat protection.
6 - we have 6 FTE for internal, but 2 are dedicated to security. we have over lapping roles so that we have extended coverage so that we all are on top of this important asset.
- built in to windows so, so it should be ideal for the product
- no excuse not to have it
- not perfect but we add a 3rd party to beef things up
- able to offset some of the costs to the 3rd party tool
- not sure
Evaluating Microsoft Defender XDR and Competitors
Yes - cyclance protect
- Scalability
- Integration with Other Systems
- Ease of Use
built in so scalability is a no brainer
work closer with MSFT partner to get more insight into some roll out ideas
Microsoft Defender XDR Implementation
- Implemented in-house
Change management was a small part of the implementation and was well-handled - get it rolled out in our dev environement, tested on a few users then once UAT accepted and no issues or noted the issues rolled out on mass
- people leaving their devices on
Microsoft Defender XDR Support
Pros | Cons |
---|---|
Quick Resolution Good followup Problems get solved Kept well informed No escalation required Support understands my problem | None |
comes with our subscription so there is no added costs
generally average or just above average support, there was once a licensing support issue that they went above and beyond to help resolve the reporting error in the portal caused a huge error and the support went above and beyond to quickly get it sorted out
Using Microsoft Defender XDR
Pros | Cons |
---|---|
Like to use Easy to use Well integrated Consistent Quick to learn Convenient Feel confident using | Requires technical support |
- no need to install, all machines that are rolled out have it
- no need to find installers or tweak settings
- poor reporting
- poor remediations