Microsoft Defender for Endpoint Reviews & Product Details

What I like best about Microsoft Defender for Endpoint is its strong integration with the Microsoft ecosystem and its visibility. It provides actionable insights through real-time threat detection, advanced investigation, and automated response capabilities. Review collected by and hosted on G2.com.

In more complex environments, advanced configuration and troubleshooting is less intuitive and certain features require navigating multiple portals or having deep Microsoft expertise to use effectively. The real issue is knowing where to go to create a policy. Between Entra, Intune, Defender, and Perview, I have a hard time knowing where to go or how to keep track of my policies. Most significantly though, I've seen way to many tests/comparisons on how Defender performs on Zero Day or viruses and I'm not sure if they are bias or not but Microsoft does not fair well in blocking these attacks. Review collected by and hosted on G2.com.

We like that Microsoft Defender for Endpoint is tightly integrated with Microsoft 365, Azure, and Defender XDR. For organizations already running a suite of Microsoft cloud products, it delivers in-depth telemetry, supports automated response, and enables a more unified investigation experience across the environment. Review collected by and hosted on G2.com.

Detection quality on macOS and Linux is improving, but it still lags behind Windows. Also, some of the more advanced response capabilities require E5 licensing, which can be a limitation depending on your setup. Review collected by and hosted on G2.com.

I appreciate the deep integration of Microsoft Defender for Endpoint with the Microsoft ecosystem. This integration enhances its automated response capabilities, which is invaluable in providing a comprehensive defense strategy. The solution effectively correlates signals across various services such as endpoints, identities, cloud applications, and email. This unified signal sharing system ensures prompt detection and action, such as instantly connecting the dots when a phishing email detected in Outlook is associated with lateral movement attempts on an endpoint. Moreover, the initial setup of Microsoft Defender for Endpoint was smooth and posed no specific challenges, which makes the onboarding process efficient and hassle-free. Review collected by and hosted on G2.com.

I find challenges with third-party integration on non-Microsoft platforms. Additionally, the licensing complexity and limitations in centralized management are areas that I believe need improvement. Review collected by and hosted on G2.com.

It's easy to manage across our organization, it offers strong protection against malware and cyber threats with advanced threat detection. Review collected by and hosted on G2.com.

The setup and configuration can be complex, especially for new users. Otherwise it's all good. Review collected by and hosted on G2.com.

It comes built-in with your Microsoft Windows OS so no need for additional program installation. Not only that, is has also become one of the most preferred endpoint for the users as it detects the threats very quickly. Review collected by and hosted on G2.com.

Too many notifications which makes it dislikable and also if you are using any linux based system you will not able to configure it with full support. Review collected by and hosted on G2.com.

We use Microsoft Defender for Endpoint on a very large deployment and most of the endpoints were previously running Cortex XDR. Defender provides high level of protections against cyber treats. Our GSOC team investigates incidents and deploys security policies via the Microsoft Defender portal. We were able to detect and stop cyber attacks in the very early stages and this helps us keep the environment clean. So far we haven't had any major incidents. Review collected by and hosted on G2.com.

It takes a lot of training and constant learning, managing the security policies for all protection modules is a complex process. There is no Linux support at this time. Review collected by and hosted on G2.com.

Microsoft provides security for endpoints , Office 365 apps , Servers etc. Their providing zero hour prevention to all of the endpoint which are configured with Microsoft endpoint security. Review collected by and hosted on G2.com.

the deployment process is very complex when configuring security for IOS device. Review collected by and hosted on G2.com.

It provides endpoint protection against cyber threats. It has a combination of machine learning , behavioural analytics and the best part which I personally like is that it has cloud-based security intelligence to detect and response to the threats in real-time. It is seamlessly works with Windows, Mac.

The best thing about the EDR is that it can analyze the behavior patterns and trriger alerts when unusual or malicious activities are detected. Review collected by and hosted on G2.com.

There are two, three things I want to mention about the EDR which I personally felt to mention is that it's complex liscensing model it can be confusing to the new user and for thr intermidiate as well , defender for endpoint is included in different packages and organizations may need help understanding which features are included in which package.

And the last thing I want to mention is intensive resource utilization on certain devices , perticularly on the older devices the software can be resource-intensive which may cause trouble in performance degradation, mainly during scans. Review collected by and hosted on G2.com.

The integration into the MS Defender ecosystem and the ease of use of the Defender portal Review collected by and hosted on G2.com.

Incidents are often lackluster with details. Additional context pulled into the incidents would be nice Review collected by and hosted on G2.com.

We like of Microsoft Defender for Endopint, system license that permit have 2 choise and the price that is competitive in the market, console cloud is another plus and multiple support different operating system. Defender is easy to use and easy to implement and with api is very easy to integrate with SIEM Review collected by and hosted on G2.com.

Support is not the best and take a long time to respond to service request Review collected by and hosted on G2.com.