Microsoft 365 Defender combines SIEM and XDR capabilities for Microsoft 365 environments, encompassing threat detection, post-breach detection, automated investigation, and response for endpoints. Additionally, it protects cloud apps, emails and documents, and employee identities.
N/A
Mimecast Advanced Email Security
Score 8.6 out of 10
N/A
The Mimecast Secure Email Gateway is a messaging security option with anti-spam / anti-malware, data loss prevention, large file send, and other features, from UK company Mimecast.
Microsoft Defender XDR is well suited for organizations already invested in the Microsoft Ecosystem - including Microsoft 365, Azure Ad and INTune. For example, in scenarios where you need to correlament the fishing attacks with the closing point behavior and identity agreement, Microsoft Defender XDR does a big task of sewing the timeline of a full attack simultaneously and even automatically removing. This hybrid function is also ideal for the environment, where safety visibility in distance tools, cloud apps and email is important. Microsoft Defender XDR provides centralized insight and response in all these domains without the requirement of many devices. However, it is less suitable in the atmosphere with diverse or non-microsoft infrastructure, such as an organization running a mixture of Linux server, Google work area or third-party EDR tools. Cross-platform support is still developing, and integration of the microsoft ecosystem often requires additional configurations or third-party connectors. For companies of that situation, Microsoft Defender XDR cannot give its full value from the XDR box.
Mimecast's advanced email security remains the number one security tool available for any organization. You will be ahead of the game before anything gets in and users start clicking. Users are often the ones who can disclose sensitive data and compromise the organization and its brand.
The software uses advanced AI and machine learning algorithms to monitor activities and detect any anomalies immediately, protecting our financial data.
Automated responses to known threats reduce the impact of possible incidents and improve our security posture.
Microsoft 365 Defender easily combines with other Microsoft 365 services and external security solutions, providing a complete and unified security solution.
Simplicity: Once set up, Mimecast Advanced Email Security is easy to use, intuitive, and simple. This reduces onboarding time with new employees.
Robust Audit Trail: Being able to see what happened with specific emails, why things happened, and who was responsible for them helps to reduce troubleshooting time as well as improving overall email observability.
Clean Interface: Mimecast Advanced Email Security is a Swiss-Army-Knife of email security. There are many different configurations and complex rules that can be implemented. To make this manageable Mimecast Advanced Email Security has implemented a simple and clean UI. Being able to favorite commonly used features makes a huge difference in usability.
Simple SSO Integration: This seems like a no-brainer, but its odd to see how many SaaS products either don't support SSO, or make it so complicated and convoluted that setup and maintenance becomes a fully time job.
Improved algorithms to minimize false positives in threat detection, reducing the impact on security teams and preventing unnecessary investigations into non-threatening incidents.
Advanced User-Friendly Interface:
Streamlined and intuitive user interface for the centralized dashboard, making it more accessible for security professionals with varying levels of expertise.
Greater Third-Party Integration:
Increased compatibility and integration capabilities with a broader range of third-party security tools
I would like to see some additional improvement around the attachment protection, specifically what may be getting caught and what types of files are attempting to be delivered via email by impersonators.
The Targeted Threat Protection is a great product, and I wish there was a dashboard for this service where we could easily see the types of emails and/or links that have been caught as part of the protection module that could be shared with executives.
Finally, I feel that the phishing protection is great and honestly don't believe there should be much improvement needed there.
We are likely to renew our used of Microsoft defender XDR due to its comprehensive security features, integration capabilities, and the proactive approach to threat detection and response it enables. It’s often seen as a valuable asset in maintaining robust cybersecurity defenses. The automated responses aids the IT team in our business to respond to threats as soon as they appear.
There is no question as to the value of the product to the business and the disruption of changing vendors would not be worth any savings possibly achieved by switching.
The console is nice, but it could use some improvements for day to day activities for Admins. I find I am jumping around all over to get what I need (always searching for the right area). Being able to customize a Dashboard or having a central typical activities dashboard will be helpful to save more time.
Their support throughout our onboarding of the product was fabulous. They not only took the time to carefully explain to teams not as well equipped with the lingo but explained to the tech team how to teach the other teams to be successful. They never once seemed impatient or annoyed with basic questions and didn’t pretend to know something when they needed to research an answer
When calling them you get best in the world customer services but as previously mentioned their online community and capabilities are a bit lacking. They want you to log into their portal to see updates on issues (vs. using a public facing service) and I rarely find the answers to my issues in electronic format. Their online presence is only helpful with the simplest of issues.
Microsoft Provides a good training for the Microsoft 365 Defender and has a good learning paths to learn and take the exams and get your Certifications.
seemless and almost transparent. can be deployed by script if needed so every endpoint on our system get's it. if you have intune it gets dumped on the the endpoint by policy so nothing escapes it
Our product in that area, for instance as a security platform and for us it is for the moment really bad point. We started to move in that direction that there is that disconnect from the client management. So if there is some action that needs to be executed detected by security team, there is not an easy way to make that available to the team that is responsible for managing the identities as users, as the devices
In my opinion, Mimecast Advanced Email Security outpaces Microsoft in terms of usability and reduction of spam and phishing emails. Mimecast Advanced Email Security was cheaper than Proofpoint, but I suspect Proofpoint is doing better on staying current with trends than Mimecast Advanced Email Security. I think Abnormal offers the best incoming email security, but does not offer outgoing email data loss prevention or encryption, which is a key use cast for us.
