Microsoft Defender for Endpoint

Formerly Microsoft Defender ATP

Microsoft Defender for Endpoint provide IT hygiene , Gives visibility into enabled products on endpoints & also provide strong remote remediation .

Microsoft Defender for Endpoint assist the customer in Full endpoint event collection & collects log for further analysis for ATP & Sandbox. According Gartner magic Quadrant for EPP Microsoft Defender for Endpoint score high in ability to execute & forward learning organizations.

It was influenced by several aspects, first of all, we needed a product capable of integrating easily with our Microsoft 365 environment, The comprehensive threat detection and response capabilities were important for enhancing our cybersecurity.
We also have been using the reporting capabilities and analytics features integrated that offered better visibility in our security team interface. We have been also trusting Microsoft products and it does not disappoint us at all. This amazing product has been helpful overall.

My decision to get Microsoft Defender for Endpoint was influenced by performance impact to other processes and applications. Also that cost and RIO benefits from using Microsoft Defender for Endpoint and utilizing other functionalities that are available with Defender. For example, vulnerability detection is available and DLP for data loss prevention.

Our IT environment is basically based on Microsoft products. Hence, it was beneficial to use Microsoft Defender for Endpoint as the product for endpoint protection. It can easily get integrated with Microsoft Intune which was a big plus for us. Furthermore, being cloud based helped us in covering the remote devices also.

Being a majority Microsoft Services shop currently, the integration and ease of information access via the entire Microsoft Defender for Endpoint family to manage and maintain through a single portal - security.microsoft.com, including Defender for Exchange, O365/Cloud, Servers, Identity and the rest of the family allowed our Security team to decrease response time, and increase the number of managed responses.

Maturity of product functionality and ease of deployment.

I think that it is easy to use and manage and supports a wide variety of devices. We also wanted something that was cloud based so we did not have to have the database on our physical machines and could manage it from anywhere. Its also very easy to upgrade or uninstall if needed.

It comes with various MS subscriptions, so no reason not to use it if you effectively have it free. In my opinion, I would never pay money for it though.

The biggest factors for us revolved around the need to have a product that was compatible with both windows and mac endpoints. In addition, we wanted a tool that provided more than just traditional AV scanning and gave us more vulnerability reporting as well as security recommendations. Finally, we wanted it to be cloud based as well.

Device Threat Analysis and Score: Microsoft Defender antivirus software collects underlying system data used for threat analysis and the device's Microsoft Security Score. This will provide your organization's security team with more meaningful information, such as recommendations and opportunities to improve your organization's security posture.

It's a management decision. It wasn't me.

I wasn't one of the decision makers were the purchase overall that goes through our CIO organization. But as a user though, I would say it was a good decision. Trying to think how to word that in a sense. Well, from a decision not involved in the purchase process, I would say I didn't have a decision to use it, but I'm glad that they made the decision that we can use it.

NA

In this case, it was ease of deployment. Now, we don't buy it per se. We actually manage it for customers. Since most Microsoft subscriptions are bought by the customers themselves, we manage them, but we don't buy them and then resell them. We don't work like that.

N/A

The fact that it's basically included with our licenses. We have it already and it was seamless to install. It didn't impact us. The fact that it worked in all the operating systems. It was easy to install within Intune and deploy it. It's all positive.

Because Microsoft Defender for Cloud, the good thing they have is that they work with compliance. You have N, you have sis, you have compliance, I don't know the word in English, but like compliance format. So I can see myself if I can't, I dunno how to say it, but you have nist SI or other PCI and I can see myself if I can get those compliance in N score, you guys have a score for those compliance. That's really helpful for us for those.

Good reputation and functionality? I wouldn't have bought it five years ago, but it's been improved a lot. I want to make sure if it's got a high detection rate, it is easy enough to manage as distributor so we can distribute it out to distributed management. Well-based source, it does all those.

Best production. Ease of use.

The most important factor was getting the complete suite of Microsoft products available in the A five licensing. And the most important factor was just our money went a lot further. One thing I guess I'm not sure it's in this question, but that I am a little unhappy with is now we're finding there are add-ons that are not part of it, especially as Microsoft moves into artificial intelligence, it's like, nope, that's not included.

It's ease of implementation especially in the initial setting up process and the awesome customer support we got from the technical team really made it stand out from others.

Before we chose to move forward with Microsoft Defender for Endpoint, we had three different platforms that were performing the tasks of vulnerability scanning, antivirus/antimalware and SIEM. Now, with Microsoft Defender for Endpoint, we've been able to integrate these into one platform and seamlessly integrate with other Microsoft security applications for even greater insight.

Our biggest influence was selecting a product that works well with our current product portfolio and the ease of implementation. It has also been fairly easy to manage after getting past some of the initial setup tasks. Overall, this has been a lot easier to setup and use than any other endpoint protection software.