GFI LanGuard vs. Microsoft Defender for Endpoint

-To track the vulnerability level of a windows network. -To push windows and other application updates from a central location. -Produce reports to highlight work being done to protect a network. In some organizations, you may have to prove for audit reasons you are enforcing policies put into place around cyber-security. This software can help you track work done on an ongoing basis for such purposes.

Incentivized

Small or large organizations will benefit from using MDE. They need to provide a way to buy MDE as a standalone add-on product not only make it a bundled feature in Microsoft 365 E5. I wish it had the ability to deploy updates to 3rd party apps when the vulnerability scanner discovers a vulnerability. Currently, I have to use a 3rd party tool to address this gap.

Incentivized

• Install an agent to thoroughly scan machines to discover vulnerabilities.
• Keeps there lists up-to-date with applications outside of windows and lets you know when an update is available.

Incentivized

• It is great at proactively monitoring threats across the network. It works seamlessly with the client to monitor individual user computers, and it has a good real-time scanning engine.
• On the client side, Windows Defender doesn't require a whole lot of system resources to run, nor will it create unnessary slowdowns of a computer, even while scanning for threats

Incentivized

• It could be a bit of information overload which some things are shown can become noise. Maybe different levels of "security" for lack of a better term may be better where you have a summary vs detailed level when it comes to rating the vulnerability of the entire network.
• I find I sometimes have issues with PCs on a different network accessed across a VPN where timeouts often occur with very large updates. This aspect can be improved.

Incentivized

• Virus detection rates are below competitors.
• Too many notifications that end up bothering.
• Do not ask every time if you should send reports to Microsoft.

Incentivized

I only tried to access there support once and it was a relatively pain-free process. They also have a lot of documentation available online which can be used to learn and tailor the software to suit your needs. It just takes time and effort to plan, execute and monitor going forward.

Incentivized

Every time I've had a question or a problem, I was able to get it addressed quickly. Microsoft has a huge database for ATP support, and it has contained 90% of what I have looked for. It was a lifesaver during initial setup.

Incentivized

WSUS was the other alternative I considered but I believe GFI takes updates, reporting, and functionality to a different level for an enterprise/medium-size business environment.

Incentivized

Defender works better for my org. This may depend on your ecosystem, however for me, Defender is a clear winner. I like Defender's ability to utilize multiple sensors and data points to detect possible breaches. I like the built-in EDR functionality. I do not need to purchase a separate EDR software anymore. I really like the vulnerability management. it has enabled our SOC team to view multiple security-related sensors from a single portal.

Incentivized

• Certainty. It allows you to know where on your network needs attention.
• Peace of mind. As security professionals, we can only put the necessary things in place to prevent malicious persons from exploiting a network. The software allows you to know whether or not your risk of exploitation is high or low. and if high what to do with it.

Incentivized

• There is definitely a piece of mind provided when you know that your system will not get compromised because of malware and viruses.
• The fact that I don't have to spend money in the first place means that I can spend money on other more important things that do require it.

Incentivized