Microsoft Defender for EndpointFormerly Microsoft Defender ATP
Overview
What is Microsoft Defender for Endpoint?
Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation…
Microsoft Defender for Endpoint Review
Defender Review
Microsoft Defender for Endpoint Review.
Microsoft Defender for Endpoint Review
Microsoft Defender for Endpoint Review
Microsoft Defender for Endpoint Review
Microsoft Defender for Endpoint Review
Microsoft Defender for Endpoint as a EDR tool
Defender for Endpoint Review
Microsoft Defender for Endpoint Review
Microsoft Defender for Endpoint Review
A reliable End to end security package.
Perfect Endpoint Security, Exposure Detection and Management Tool.
Microsoft Defender for Endpoint Review
How Microsoft Defender for Endpoint Differs From Its Competitors
Components
Protection Scope
Components
Protection Scope
Components
Protection Scope
Protection Scope
Components
Protection Scope
Windows - approx. 10,000
Windows server - approx. 1,200
macOS - 70
Linux server - 400
Components
Protection Scope
Components
Components
Protection Scope
Components
Protection Scope
Components
Protection Scope
Components
Protection Scope
Components
- Attack Surface Reduction helps us proactively block commonly used attack methods by malware (scripts).
- We use Microsoft Defender for Endpoint as a layered approach with other security tools.
Protection Scope
Components
- Vulnerability Management
- Baseline Assessments
- Device Discovery
- Endpoint Security Policies
- Automated Remediation
- Dynamic Device Tagging
- Endpoint DLP
- Web Content Filtering
- Live Response
- Unified integration with Defender for Cloud
- Always remediate PUA
- Device Deception (Preview)
- Download quarantined files
- Evaluatio…
Protection Scope
Components
Protection Scope
Components
1. Centralised deployment of antivirus agent
2. Centralised monitoring of security alerts
3. Vulnerability management
4. Antivirus and anti malware
5. Integration with Microsoft Intune
6. Device …
Components
Endpoint Detection and Response (EDR) : Organizations can investigate security incidents, collect pertinent data, and implement the necessary remediation activities to eliminate and contain threats by using …
Protection Scope
We are protecting over 30 Windows devices for our company, as well as more than 50 Windows and macOS devices for one of our customers. We also use Microsoft Intune to manage over …
Components
2. Advanced Threat Protection
3. Attack Surface Reduction
Protection Scope
Components
Protection Scope
Components
Threat & Vulnerability Management
Intune Integration
Microsoft Defender Antivirus
Microsoft Defender SmartScreen
Attack Surface Reduction
Components
Protection Scope
Components
Protection Scope
Components
Protection Scope
Components
Protection Scope
Components
Protection Scope
Components
Protection Scope
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Malware Detection (53)8.585%
- Infection Remediation (52)8.282%
- Anti-Exploit Technology (51)8.080%
- Centralized Management (52)7.979%
Reviewer Pros & Cons
Pricing
Academic
$2.50
Standalone
$5.20
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Product Demos
Microsoft Defender for Endpoint Overview
Features
Endpoint Security
Endpoint security software protects enterprise connected devices from malware and cyber attacks.
- 8Anti-Exploit Technology(51) Ratings
In-memory and application layer attack blocking (e.g. ransomeware)
- 8.5Endpoint Detection and Response (EDR)(51) Ratings
Continuous monitoring and response to advanced internet threats by endpoint agents.
- 7.9Centralized Management(52) Ratings
Centralized management supporting multi-factor authentication, customized views, and role-based access control.
- 7.8Hybrid Deployment Support(10) Ratings
Administrators should be able to choose endpoint security on-premise, cloud, or hybrid.
- 8.2Infection Remediation(52) Ratings
Capability to quarantine infected endpoint and terminate malicious processes.
- 8.3Vulnerability Management(50) Ratings
Vulnerability prioritization for fixes.
- 8.5Malware Detection(53) Ratings
Detection and blocking of zero-day file and fileless malware.
Product Details
- About
- Competitors
- Tech Details
- FAQs
What is Microsoft Defender for Endpoint?
Rapidly
stops threats: Protects against sophisticated threats such as
ransomware and nation-state attacks.
Scales security: Puts time back in the hands of defenders to prioritize risks and elevate the organization's security posture.
Evolves the organization's defenses: Goes beyond endpoint silos and mature the organization's security based on a foundation for extended detection and response (XDR) and Zero Trust.
Microsoft Defender for Endpoint Features
Endpoint Security Features
- Supported: Anti-Exploit Technology
- Supported: Endpoint Detection and Response (EDR)
- Supported: Centralized Management
- Supported: Infection Remediation
- Supported: Vulnerability Management
- Supported: Malware Detection
Microsoft Defender for Endpoint Screenshots
Microsoft Defender for Endpoint Video
Microsoft Defender for Endpoint Competitors
Microsoft Defender for Endpoint Technical Details
Deployment Types | On-premise |
---|---|
Operating Systems | Windows |
Mobile Application | No |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(186)Attribute Ratings
Reviews
(1-25 of 84)Microsoft Defender for Endpoint Review
- There's a lot of concepts that are trying to achieve in my environment where basically they have, they're testing a bunch of products, but this one I guess it's going to stay.
Microsoft Defender for Endpoint Review
- I would say the ease of use and integration across the broader M365 Suite has led to some other business decisions to move from third party tools onto more of a M365 stack. So not necessarily that was the gateway entry point into the broader solution, but it was one of many where the presence within IBM has grown across the entire portfolio of M365 as a result of the successes with Defender as well as other solutions as well.
Defender Review
- All positive, keeping us secure.
Microsoft Defender for Endpoint Review.
- It's awareness because while the vendor for endpoints cannot stop specific threats, you have the visibility that something else is going on, and that's much better than not having anything. So I mean, in the end, protection-wise, it has its areas of opportunity, but it's the awareness to say, company X customer, you need to do this, though the response is very manual.
Microsoft Defender for Endpoint Review
- Positive impact with adding of PIL security, I think it pretty much helped granular and also help tier one analyst understand better what is going on, what is going on an endpoint.
Microsoft Defender for Endpoint Review
- It's only positive you have it and you just have to install it.
Microsoft Defender for Endpoint Review
- The positive impact is that it allows us to answer to some compliant test that we have as a financial institution have been outdated year by year by an institution that is from the government. And this solution puts us in a good position to answer to those compliance.
Microsoft Defender for Endpoint Review
- Seamless integration with our EDR and XDR strategy.
Microsoft Defender for Endpoint as a EDR tool
- Defender for Endpoint has helped with enhancing security for our organization.
- Defender for Endpoint gives other benefits in that it is used with DLP and protects against data leakage.
- From a cost and implementation prospective, organizations does not have to purchase separate tools for managing DLP and EDR.
Defender for Endpoint Review
- Well, unfortunately it works so well. I might be getting a promotion and getting more responsibility, but I hope not.
Microsoft Defender for Endpoint Review
- Prevents downtime, and again, data breaches. So savings.
Microsoft Defender for Endpoint Review
- It has made me feel more comfortable on a day-to-day basis that our institution is secure, especially having gone through a ransomware in 2019. If we had something like this in place in 2019, we would've stopped the situation before we ended up calling the cyber liability insurance carrier.
A reliable End to end security package.
- Device security
- Data reliability
- End to end device encryption.
- AI based and Ai proof security.
- It is a unified platform with lots of core features for exposure detection, antivirus and SIEM all in a single platform.
- The centralized management is absolutely the it.
- It creates a more intertwined secure environment because it integrates well with other Microsoft security apps.
- Automated detection and remediation saves in time and money.
- Visibilities of endpoints and advanced threat detection increase our security and well-being.
Microsoft Defender for Endpoint Review
- Centralized management is nice.
- The visibility into the endpoints is helpful.
- It integrates well with other Microsoft security platforms.
Quick to rollout and get going, but takes some tweaking to optimize.
- Great product and compliments our other 365 security tools
- Has helped with our regulatory compliance by offering compliance reporting
- Reduced downtime by identifying and preventing threats
Microsoft Defender Review
- EDR doesn't come as inidivual product - if an organization needs only EDR they cannot buy and have a forceful look at the complete suite.
- Licenses consolidate and single visibility
- Basic firewall security is provided - can be easily position to SMB size customer.
The one stop security shop for the endpoints
- Only negative ROI is the costly licenses that can set you back a significant amount in your annual budget especially if you have a 300+ audience group.
- With automated remediation we have seen a tremendous decrease in triage time and even were able to deflect potential attacks in the early stages.
- With device groups, we have been able to customize EDR policies for different user types and hence were able to be compliant more effectively (in a user-friendly way).
- We have been able to manage content filtering very effectively with Endpoint DLP and has proven to be a big positive ROI for us.
Decent Protection for your endpoints
- It saved us another 200 licenses from other commercial AV, this then distributed to folks without M365,
- As we have different Antivirus, there are more efforts to manage two different systems
- Easy centralised deployment
- Centralised monitoring
- Suited for Microsoft environment
"Microsoft Defender for Endpoint One of the best tool to manage threat, Vulnerability and Compliance of the endpoints."
- Positive : Microsoft Defender for Endpoint offers sophisticated threat detection and response capabilities, putting it into use helps increase security. Reduced security incidents, data breaches, and related expenses may arise from this.
- Positive : A more secure environment means less time and effort spent by IT and security teams on remediation and incident response.
- False Positives: Like any security solution, false positives can occur, leading to unnecessary investigations and potential disruptions to business operations. This may require additional resources to manage.
Secure workstations with MDE
- It boosted security, saved costs, streamlined operations.
- This streamlined operations, heightened security, impressive results.
- Nothing else
Defender for Endpoint - First class EDR and more.
- Less license costs because of integration.
- Better detection of threats and vulnerabilities.
- Deployment was not always very smooth and took some time to become reliable.
- By providing robust threat protection, Defender for Endpoint can prevent downtime caused by security issues. Employees can work without interruptions, leading to increased productivity.
- By significantly decreasing the frequency of security incidents like malware infections and data breaches, Microsoft Defender for Endpoint can protect your network. The cost of incident response, cleanup, and potential regulatory fines are reduced as a result of the decrease in events.
- The implementation and configuration of Microsoft Defender for Endpoint may require an initial investment in licensing, training, and deployment, which can temporarily affect ROI.
- The cost of licensing can be substantial, especially for larger organizations. This cost needs to be factored into the ROI calculation.
Defend, Detect, Excel with Microsoft Defender for Endpoint
- Enhancement of our security posture.
- Its automations have improved our operational efficiency.
- Unified security through integrations.