Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.
$2.50
per user/per month
Mimecast Advanced Email Security
Score 8.8 out of 10
N/A
The Mimecast Secure Email Gateway is a messaging security option with anti-spam / anti-malware, data loss prevention, large file send, and other features, from UK company Mimecast.
Usually we had lots two platforms tasked with scanning exposures, anti-malware and provision for information and threat management. But with Microsoft Defender for Endpoint we have an all inclusive platform that even integrate with other Microsoft security apps such as Microsoft Defender for Cloud for enhanced threat insights and visibility.
Mimecast is good when you are needing a basic email security platform. It does some basic things really well, but when you start hitting some advanced needs, it lacks. Mimecast does not do a good job with BEC detection. Mimecast does spam filtering alright, but it could be much better. It really doesn't care about gmail or other external addresses. It doesn't check for age of accounts, etc.
The Admin Management console is absurdly complicated. For every first time we wanted to setup we've had to call their support for assistance. Support is quick and fantastic but it's so difficult to do anything yourself. They seem to have gone out of their way to call features unique things instead of using standard language from other providers so you as an IT professional know what you're looking for to setup.
They have lots of KB articles, which their support will point you to. They are written on the most basic level and don't actually provide the help you need. For example, the KB page will tell you the list of options on the page... but not actually tell you what you do, why you might use them, or define their terminology.
Their email threat management system has several nice features. One of the features available is that it will rewrite links in emails so that users click the link and it sandboxes the link, testing it on their server space and the user sees it there. This means the actual link in the email gets changed to the address of one of their servers. As a law firm, the EXACT LINKS are important to maintain in our communications and editing actual data from our clients to point to a Mimecast server is an unacceptable practice. I wish they had an alternative that did not edit the link itself on the page.
Yes using the same administration console is good, as user that you have assigned limited functionality to the console, they are already familiar with it when you increase their functionality. The new portal does take a bit of getting used to, but i can see that it is an improvement on the old version.
The first time I tried to onboard my macOS endpoints to MDE I struggled for quite a bit. I had to reach out to Microsoft's MDE support team. The tech was very helpful in walking me through the steps during a screen share session
When calling them you get best in the world customer services but as previously mentioned their online community and capabilities are a bit lacking. They want you to log into their portal to see updates on issues (vs. using a public facing service) and I rarely find the answers to my issues in electronic format. Their online presence is only helpful with the simplest of issues.
in an overall protection sentinelone is providing better protection for us, but as it comes with subscription's limitation, we have to be really careful in managing the licenses, the MS Defender for endpoint is providing us a decent protection which we are not complaining about, why we chose them ? as mentioned, this is coming with our subscription
Previously we have only used the default on-premise exchange that comes with SBS. This was very simple and only provided basic filtering of spam and junk mail. We weren't able to filter impersonation mail or emails with malicious code
By providing robust threat protection, Defender for Endpoint can prevent downtime caused by security issues. Employees can work without interruptions, leading to increased productivity.
By significantly decreasing the frequency of security incidents like malware infections and data breaches, Microsoft Defender for Endpoint can protect your network. The cost of incident response, cleanup, and potential regulatory fines are reduced as a result of the decrease in events.
The implementation and configuration of Microsoft Defender for Endpoint may require an initial investment in licensing, training, and deployment, which can temporarily affect ROI.
The cost of licensing can be substantial, especially for larger organizations. This cost needs to be factored into the ROI calculation.
Reasonably priced solution, even for a small business like ours.
It's hard to put a figure on our ROI - I would just say we feel like we've gotten our money's worth with the advanced email protection we receive. We have definitely avoided many potentially dangerous emails since we've implemented this solution.
