Microsoft Defender for Cloud vs. Microsoft Defender for Cloud Apps

Microsoft Defender for Cloud is very good at allowing users to see how their Azure environment is secure through the secure score. The recommendations are an excellent source of the controls that should be in place to ensure a secure environment. There needs to be more protection and features for data security.

Incentivized

It is well suited if your team is working with Microsoft tools and Azure services. but if you are using other cloud service providers and don't want to spend efforts in learning integration with third-party software then this is not a great fit for you. overall we are very satisfied with the product. If your corporation with Microsoft tools then I would recommend it.

Incentivized

• detect and respond to security threats in the cloud environment, reducing the risk of data breaches and unauthorized access.
• The product assists our organization dealing with sensitive data in achieving and maintaining compliance with data protection rules.
• The product provides real-time visibility into the cloud environment, offering insights into ongoing security activities.
• It guarantees that security teams can actively handle possible threats by delivering real-time monitoring and notifications, reducing the impact on business operations.

Incentivized

• Detect threats based on user activity logs.
• Set manual and automatic alert remediation.
• Implement activity policies.
• Detect threats based on user activity logs.

Incentivized

• The licensing structure could be better by providing possibilities for partial deployment in a subscription
• The information in the dashboards are sometimes scattered, there should be a better overall view
• Some parts of Defender for Cloud are expensive, some features should be moved to the standard capabilities of Azure

• Cloud discovery throws away found services not found in the MCAS database of SaaS apps.
• Many panes of glass required for a fully enabled implementation to administer, configure and utilize 100% of the product.
• Room for improvement in the reporting realm - not enough records are visible and exportable for high record count policy reports.

Incentivized

It is a great product that integrates nicely when running an Azure platform and even multi-cloud environment. Not looking for point-solutions but a suite that answers most requirements. It is very comfortable being able to use KQL, workbooks and automation that is native to the azure platform

Compliance mapping capabilities of the software and reporting.

Ease in deployment and implementation.

Seamless integration of the software with cloud and other third party applications.

The software ensures quick incident response and avilability of ready to help customer services providers.

User interface of the product is very friendly.

The interface is pretty simple and easy to use; however, you will need to do a lot of investigative research on your own to get comfortable with it. Originally, many of the Microsoft security tools had their own seperate consoles. Overtime, they have blended into one interface which is the ideal state. In some cases it is clear Microsoft had to pick which console a certain feature or setting was going to reside in and this leads to some confusion. For example, DLP is managed through Defender for Cloud Apps but you will also need to jump into Purview. For things like reverse proxy on your M365 tenant, you will need to go into Azure and setup conditional access rules. Not a big problem and I can understand why the settings are located where they are but for someone just starting out with Defender for Cloud Apps, it will take some time to figure out.

Incentivized

I have not utilized actual support but the Sales and Product teams have been super helpful in moving our implementation forward and showing us the best practices.

Incentivized

Microsoft Defender for Cloud is definitely the choice with the latest market trend and attacks that are currently happening. Microsoft has been able to safe guard a lot after the recent serious attacks happening globally in the digital world. There is a trust in this software and with the latest updates and machine learning capabilities, Microsoft Defender for Cloud should be the choice.

Incentivized

Microsoft Defender for Cloud Apps was chosen primarily due to its ability to work perfectly within our mostly M365 environment. Given that this was an added feature of our E5 license, we chose to dive into it and use it due to it's good visibility into user actions and the ability to tie all M365 actions together into one place. We did not see similar visibility with other tools that we vetted

Incentivized

• It simplifies security management and saves time. I'm not sure, but I'm very confident it saved me a couple of paychecks by centralizing the data I need to secure the cloud environment.
• I also utilize the inventory overview to monitor my team's activities and verify they are following internal regulations, as well as cost overruns.
• The recommendations can be utilized as a valuable instructional tool. I have the team explain why they are receiving them, why they are not following them, and what they are doing differently.

Incentivized

• Cloud App Security saves us thousands of dollars finding and rectifying apps security issues
• Identity Security Posture helps the organization identity stay in shape, saving thousands of dollars on security consultations
• The cost of suffering a breach cannot be quantified, CAS helps minimize the chances of the attackers succeeding, with excellent historical logging for most operations

Incentivized