Symantec CloudSOC CASB vs. Microsoft Defender for Cloud Apps vs. Trend Micro Deep Security

If you want to extend your Endpoint DLP to cloud: Apps, Web & Email, Then CloudSOC DLP detection Services help you to control with clouds apps & DLP detection Services with WSS help you to control all web. Also, cloud DLP detection services for Email will help you to control visibility & control over Office 365 Exchange, On prem-exchange & Gmail. In the case of other email services- we need to consider other solutions like Forcepoint One.

Incentivized

Microsoft Defender for Cloud Apps is well suited when working with other Microsoft Applications. For example, if you are working with Microsoft Office 365 it works very well when implementing CASB features. It works when implementing monitoring or blocks on Sanctioned applications however customizing the message to users is not that great.

Incentivized

Hypervisor based agentless security this product excels at. It provides thorough protection for your VM's. The web filtering product that comes with it also does a great job filtering out malicious websites from being accessed by users with a very user friendly prompt that they are going to a website which has been found to be malicious. This is particularly useful when it comes to VDI.

Incentivized

• As we know real data protection starts with Data Detection It helps us in the detection of any data like related to GDPR, Source Code, Designs, Financial Plans, SSN, IDs, etc.
• All Channel coverage - Cloud , Email Data at rest, in-use, in-motion.
• Data Formats- Described data, Structured & Unstructured Data image forms like presentation formats, Text & Markup, word processing, Spreadsheet formats, graphic formats, etc.
• Machine Learning - Proximity, Derivative, Partial, Pattern, Large data sets, Distributed, Dynamic embedded.

Incentivized

• The integration to Microsoft Entra ID is seamless, which allows Conditional Access to redirect the session to Microsoft Defender for Cloud App for it to take actions (Block or Monitor).
• Tracker users' activity is very good when troubleshooting or running an investigate.
• Detecting risky users through tight integration with Microsoft Entra ID is a very good feature.
• Detecting mass downloads and blocking the download of files from non-manage company devices is a very good feature as well.

Incentivized

• It's easy to use the console.
• It has a very similar look and feels to Deep Security Console.
• It plugs into the Apex Central for easy management.

Incentivized

• Broadcom CloudSOC CASB also needs to more focus on data classification, Classification will help to control the false positive & fast negative.
• Broadcom has more focus on SMB business As SMB & Mid Enterprise is going to be more aware of cyber security especially start-ups.

Incentivized

• It takes some time to scan and apply the policies when there is some sensitive information.
• After it applies the policies, it works, but there is a delay.
• It doesn't provide any way to scan Microsoft Teams when an external exchange of images is happening. You can always do the filtering on the documents during the chat, but if there is an image, then some kind of OCR capability is required to detect it. At present, there is no way [Microsoft Cloud App Security] can go and detect those kinds of images and alert us

Incentivized

• Trend Micro has very little room for improvement. I am using version 9.6 at this time and it is extremely reliable. Some of the upgrades were not completely intuitive, but in those cases Deep Security support came through with documentation that covered all the bases.

Incentivized

It's the best one compared to other security applications

Incentivized

The interface is pretty simple and easy to use; however, you will need to do a lot of investigative research on your own to get comfortable with it. Originally, many of the Microsoft security tools had their own seperate consoles. Overtime, they have blended into one interface which is the ideal state. In some cases it is clear Microsoft had to pick which console a certain feature or setting was going to reside in and this leads to some confusion. For example, DLP is managed through Defender for Cloud Apps but you will also need to jump into Purview. For things like reverse proxy on your M365 tenant, you will need to go into Azure and setup conditional access rules. Not a big problem and I can understand why the settings are located where they are but for someone just starting out with Defender for Cloud Apps, it will take some time to figure out.

Incentivized

It is the best application I've used. Its features are effective.

Incentivized

I have not utilized actual support but the Sales and Product teams have been super helpful in moving our implementation forward and showing us the best practices.

Incentivized

Trend Micro's support is pretty decent, we have had issues in the past and they have been fairly responsive to us and our complaints. Depending on how severe the issue was. Any ticket that had a high priority was handled very shortly especially when we contacted our account rep even if it was after hours, we were still able to get support within a short time period.

Incentivized

Everything is good

Incentivized

We were using Broadcom Symantec Endpoint security Enterprise, Hybrid subscription services & DLP solution at prem, which helped us in CloudSoC CASB Use Case & we have seen PoC of same, which was easy to integrate with existing security architectures. Overall they have offered us the best commercial in comparison with competitors.

Incentivized

More flexible and more features with easy integration with cloud services like Microsoft Azure and other cloud services. Overall both gives similar features but we prefer Microsoft cloud app security due to its high threat detection rate. mostly we have been able to stop the threat in very very less time.

Incentivized

We selected trend micro to take the AV scans and filtering out of the hands of the Windows and Linux vm's we have deployed and move it to the hypervisor level. This has led us to be able to deploy only a single DSVA per host and can protect all VM"s that are on that hosts. This has allowed for more time being spent on other priority security tasks.

Incentivized

• Securing the digital transformation. CloudSOC CASB helps the organization's Digital journey by reducing complexities & poor experience of end-users.
• Cloud SOC helps us to comply with multiple Compliance like HIPPA, PCI-DSS, GDPR, etc.
• Security breaches cause billion-dollar losses to enterprises, CloudSOC will help to assist in the best industry practice by having predefined templates specifically for each industry.

Incentivized

• Cloud App Security saves us thousands of dollars finding and rectifying apps security issues
• Identity Security Posture helps the organization identity stay in shape, saving thousands of dollars on security consultations
• The cost of suffering a breach cannot be quantified, CAS helps minimize the chances of the attackers succeeding, with excellent historical logging for most operations

Incentivized

• 100% positive ROI. Without Deep Security we would have to leverage and endpoint protection management solution like Sophos or SEPM (Symantec). Although both are good products, from a cost perspective it would have hit us much harder. Trend Micro Deep Security scales very nicely.
• Since Deep Security actually has zero (or at least unnoticeable) resource footprint on monitored VMs, it is a huge cost benefit for us. As previously mentioned, actual antivirus clients installed on each virtual machine (VM) would have significantly affected performance. This would have cost us much more additionally in paying for additional resources to allocate over VMs in the VMware environment. Deep Security is almost completely unintrusive from a resource perspective.
• Also, from a layered security perspective, it helps us meet our goals; and since the price of Trend Micro Deep Security quite reasonable, it is that much easier to get approval for this specific internal layer of security.

Incentivized