AWS Config vs. AWS OpsWorks vs. Microsoft Defender for Cloud

Microsoft Defender for Cloud

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
AWS Config	Score 7.0 out of 10	N/A	Amazon Web Services offers AWS Config, a service that provides monitoring and assessment of AWS resource configurations to support compliance auditing, change management and troubleshooting, with resource histories and comparison of historical configurations against planned configurations.	N/A
AWS OpsWorks	Score 4.3 out of 10	N/A	AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet.	N/A
Microsoft Defender for Cloud	Score 8.5 out of 10	N/A	Microsoft Defender for Cloud is a Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) for Azure, on-premises, and multicloud (Amazon AWS and Google GCP) resources.	N/A

Pricing

AWS Config

AWS OpsWorks

Microsoft Defender for Cloud

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
AWS Config	AWS OpsWorks	Microsoft Defender for Cloud
Free Trial
No	No	Yes
Free/Freemium Version
No	No	No
Premium Consulting/Integration Services
Yes	No	No

Entry-level Setup Fee

No setup fee

Additional Details

With AWS Config, you are charged based on the number of configuration items recorded, the number of active AWS Config rule evaluations and the number of conformance pack evaluations in your account. A configuration item is a record of the configuration state of a resource in your AWS account. An AWS Config rule evaluation is a compliance state evaluation of a resource by an AWS Config rule in your AWS account, and a conformance pack evaluation is the evaluation of a resource by an AWS Config rule within the conformance pack.

—

More Pricing Information

Pricing Info

Community Pulse
	AWS Config	AWS OpsWorks	Microsoft Defender for Cloud

Best Alternatives
	AWS Config	AWS OpsWorks	Microsoft Defender for Cloud
Small Businesses	HashiCorp Terraform Score 8.8 out of 10	HashiCorp Terraform Score 8.8 out of 10	No answers on this topic
Medium-sized Companies	Ansible Score 9.2 out of 10	Ansible Score 9.2 out of 10	CrowdStrike Falcon Score 9.1 out of 10
Enterprises	Ansible Score 9.2 out of 10	Ansible Score 9.2 out of 10	CrowdStrike Falcon Score 9.1 out of 10
All Alternatives	View all alternatives	View all alternatives	View all alternatives

User Ratings
	AWS Config	AWS OpsWorks	Microsoft Defender for Cloud
Likelihood to Recommend	8.8 (6 ratings)	6.0 (3 ratings)	8.1 (56 ratings)
Likelihood to Renew	- (0 ratings)	- (0 ratings)	8.9 (4 ratings)
Usability	- (0 ratings)	- (0 ratings)	8.2 (2 ratings)
Performance	9.6 (2 ratings)	- (0 ratings)	- (0 ratings)
Support Rating	- (0 ratings)	6.0 (1 ratings)	- (0 ratings)
Ease of integration	6.2 (2 ratings)	- (0 ratings)	- (0 ratings)

User Testimonials
	AWS Config	AWS OpsWorks	Microsoft Defender for Cloud
Likelihood to Recommend	Amazon AWS It's really good if your infrastructure services is all in AWS, that means everything could be audited and monitored using AWS config. You also can create alarms to notify you or your team about any changes on your AWS resources which is very useful to prevent abuse if you have a fairly large team. It's also very useful whenever some third party wants to audit your AWS resources, if you have a fairly comprehensive AWS config configured, the auditing process will be easy since they only need to look at your AWS config setup. Incentivized Verified User Anonymous Read full review	Amazon AWS Where you already have some Chef recipes to build your application boxes and are happy to run directly on VMs, OpsWorks really shines. It won't do anything too complex for you, so it only really works well for simple stacks (load balancers, application layers, database layers). If you want to do more complex infrastructure, Cloudformation or Terraform are probably worth looking at. Incentivized Andrew Raines Backend Software Engineer Read full review	Microsoft Microsoft Defender for Cloud is very good at allowing users to see how their Azure environment is secure through the secure score. The recommendations are an excellent source of the controls that should be in place to ensure a secure environment. There needs to be more protection and features for data security. Incentivized Verified User Anonymous Read full review
Pros	Amazon AWS The ability to track changes in AWS is paramount, AWS config allows you to do this Allows the auditing of an AWS account Can view history of an account that has AWS config enabled Incentivized Verified User Anonymous Read full review	Amazon AWS connect between serveral AWS services (EC2, RDS, ELB) easy configuration management deployment via Chef Incentivized Verified User Anonymous Read full review	Microsoft detect and respond to security threats in the cloud environment, reducing the risk of data breaches and unauthorized access. The product assists our organization dealing with sensitive data in achieving and maintaining compliance with data protection rules. The product provides real-time visibility into the cloud environment, offering insights into ongoing security activities. It guarantees that security teams can actively handle possible threats by delivering real-time monitoring and notifications, reducing the impact on business operations. Incentivized Verified User Anonymous Read full review
Cons	Amazon AWS It's only AWS, no third party. Not the most intuitive interface, but with a little getting used to it is OK. Incentivized Verified User Anonymous Read full review	Amazon AWS Getting up and running with OpsWorks is a very technical and potentially time-consuming process. You need to know the ins and outs of Chef/Puppet if you really want to get into it and there isn't a convenient way to test out the environment locally so debugging can be time-consuming. To take advantage of some of the newer AWS instance types you need to be running on a VPC, which again is a pain if you don't have a DevOps team. The error logs and monitoring metrics in OpsWorks are pretty basic and haven't changed much over the years. Incentivized Verified User Anonymous Read full review	Microsoft The licensing structure could be better by providing possibilities for partial deployment in a subscription The information in the dashboards are sometimes scattered, there should be a better overall view Some parts of Defender for Cloud are expensive, some features should be moved to the standard capabilities of Azure Verified User Anonymous Read full review
Likelihood to Renew	Amazon AWS No answers on this topic	Amazon AWS No answers on this topic	Microsoft It is a great product that integrates nicely when running an Azure platform and even multi-cloud environment. Not looking for point-solutions but a suite that answers most requirements. It is very comfortable being able to use KQL, workbooks and automation that is native to the azure platform Verified User Anonymous Read full review
Usability	Amazon AWS No answers on this topic	Amazon AWS No answers on this topic	Microsoft My visibility is limited because I'm only doing very small pieces of what the overall org does. And also, we have limitations on what we're allowed to use. It's not like we get a new product as users or leadership level users, and everything is on, and we can just do whatever we want. We're very restricted in what we can use any tooling within the org because of the different levels of regulatory constraints we have, because of just the nature of who we are inherently. So that's why. I don't think it's necessarily the product. I think it's more or less of what we're able to do with the product. Incentivized Verified User Anonymous Read full review
Performance	Amazon AWS Would rate lower for other workloads but for AWS workloads its simple to set up, cost effective and customisable. Primary use case is compliance from a governance perspective. Incentivized Verified User Anonymous Read full review	Amazon AWS No answers on this topic	Microsoft No answers on this topic
Support Rating	Amazon AWS No answers on this topic	Amazon AWS Unless you pay for a pricey support package getting support on OpsWorks will be pretty slow. Documentation is also relatively limited and sometimes hard to follow when compared to competitors. Generally, we've been able to get the answers we need from OpsWorks support when we run into problems but don't expect rapid responses. Incentivized Verified User Anonymous Read full review	Microsoft No answers on this topic
Alternatives Considered	Amazon AWS I do not know or have used any other product in AWS cloud space that matches what AWS Config provides. We have some custom built monitoring and governance, however that is there because AWS Config does not provide it currently. Incentivized Verified User Anonymous Read full review	Amazon AWS OpsWorks isn't really a direct competitor to Terraform/Cloudformation, but it does allow you to do some of the more simple things on offer quite quickly and effectively. Opsworks was used for this reason, along with existing internal knowledge of Chef. Along with some of the other services on offer from AWS, it is good to use as a stepping stone along the way when building your systems - or perhaps it would be entirely suitable for a fairly simple project. Incentivized Andrew Raines Backend Software Engineer Read full review	Microsoft Microsoft Defender for Cloud is definitely the choice with the latest market trend and attacks that are currently happening. Microsoft has been able to safe guard a lot after the recent serious attacks happening globally in the digital world. There is a trust in this software and with the latest updates and machine learning capabilities, Microsoft Defender for Cloud should be the choice. Incentivized Verified User Anonymous Read full review
Return on Investment	Amazon AWS Enforcing audit requirements Easy to set up alerting when there are rule breaches Auto remediation reduces the manual policing of such breaches Incentivized Verified User Anonymous Read full review	Amazon AWS very quick way of creating new infrastructure low maintenance costs easy to create high availability setups thus reducing costs Incentivized Verified User Anonymous Read full review	Microsoft It simplifies security management and saves time. I'm not sure, but I'm very confident it saved me a couple of paychecks by centralizing the data I need to secure the cloud environment. I also utilize the inventory overview to monitor my team's activities and verify they are following internal regulations, as well as cost overruns. The recommendations can be utilized as a valuable instructional tool. I have the team explain why they are receiving them, why they are not following them, and what they are doing differently. Incentivized Verified User Anonymous Read full review
ScreenShots			Microsoft Defender for Cloud Screenshots