Likelihood to Recommend Microsoft Defender is very good while we are enhancing our organization's security, and it is very useful in getting threat alerts and vulnerabilities that can harm our system and users. It is recommended to use this to improve overall security and threat protection of our users and organization. With the help of Microsoft Defender, we get fully covered and secured.
Read full review Rapid7 InsightVM is perfect for a scenario where IT admin or CISO wants to scan its infrastructure to be sure that there is no vulnerability that could be exploited from outside or inside the company. It also could be used to automate patching and dealing with vulnerabilities. It's also adapted for users that need cloud security management
Read full review Pros detect and respond to security threats in the cloud environment, reducing the risk of data breaches and unauthorized access. The product assists our organization dealing with sensitive data in achieving and maintaining compliance with data protection rules. The product provides real-time visibility into the cloud environment, offering insights into ongoing security activities. It guarantees that security teams can actively handle possible threats by delivering real-time monitoring and notifications, reducing the impact on business operations. Read full review Being a vulnerability scanner tool, its purpose is to scan the systems to find the vulnerabilities. We can define the assets like IP address for the scans and it also allows to either schedule the scan at a preferred time or start the scan immediately. Upon completion of the scan, this tool can result provide the details like host type, OS information, hardware address, along with the vulnerabilities. Rapid7 Nexpose has a list of templates to perform the scan. Once the templates are defined then the scans are performed accordingly. It also contains an option to add credentials/authentication using passwords, usernames, private keys to perform the credential-based scans which I think is a great feature. Read full review Cons 'Regulatory Compliance' is definitely an area of improvement for MDC. The complex and high number of controls within a specific framework should allow a more helpful and detailed guidelines in order to tackle them. The limitation of options in the incident management menu of MDC has proven to be a hassle while managing security alerts. For example, an analyst cannot even provide a comment about the actions taken on an incident. There is a missing functionality of connecting other EDR or XDR solutions to MDC which I think should be there for a CSPM tool. Read full review Frequent updates and console lockups. A lot of issues with scans running long out of nowhere, causing resource issues for the next scans. Read full review Likelihood to Renew It is a great product that integrates nicely when running an Azure platform and even multi-cloud environment. Not looking for point-solutions but a suite that answers most requirements. It is very comfortable being able to use KQL, workbooks and automation that is native to the azure platform
Read full review Support Rating I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response.
Read full review Alternatives Considered We used to use Symantec and McAfee. It's been mostly defenders since, gosh, the last eight to 10 years. So we're a small organization. We don't have a lot of folks, so single-painted glass is really important to be able to see the whole environment in a single place. And the Microsoft tooling gives us that.
Read full review Nessus Pro does scans, but does not maintain an inventory from scan to scan. There is no history for a specific device, you have to look inside the results of each scan. Search across inventory is non-existent. There are no dashboards for data analysis. This is no tracking for remediation
Read full review Return on Investment It simplifies security management and saves time. I'm not sure, but I'm very confident it saved me a couple of paychecks by centralizing the data I need to secure the cloud environment. I also utilize the inventory overview to monitor my team's activities and verify they are following internal regulations, as well as cost overruns. The recommendations can be utilized as a valuable instructional tool. I have the team explain why they are receiving them, why they are not following them, and what they are doing differently. Read full review Can reduce time to patch most critical vulnerabilities Can help to identify who is spending time patching things of lower risk thus keeping the organization in a more vulnerable position Easily provides the patch team with a work plan to enhance security more quickly Read full review ScreenShots Microsoft Defender for Cloud Screenshots