Microsoft Defender External Attack Surface Management vs. Trellix Email Security

Microsoft Defender External Attack Surface Management is particularly well-suited for discovering, inventorying, and continuously monitoring the external attack surface, especially in environments with heavy Microsoft adoption. It is less suitable as a standalone solution for internal scanning, real-time attack detection, automated remediation, or advanced application testing. Microsoft Defender External Attack Surface Management es especialmente adecuado para descubrir, inventariar y monitorear continuamente la superficie de ataque externa, sobre todo en entornos con fuerte adopción de Microsoft. Es menos adecuado como solución única para escaneo interno, detección de ataques en tiempo real, remediación automática o pruebas avanzadas de aplicaciones. Parts of this review were originally written in Spanish and have been translated into English using a third-party translation tool. While we strive for accuracy, some nuances or meanings may not be perfectly captured.

Incentivized

It has a very good feature of URL replace, it helps us to block or prevent spam, phishing, or malicious emails. It has some limitations like if some large or lengthy emails come it takes more time to scan and to avoid delay it forwards the mail to the recipient with a warning note on it.

• Lack of visibility of external assets
• Reduction of the risk of external attacks
• Falta de visibilidad de activos externos
• Reducción del riesgo de ataques externos

Incentivized

• Very user-friendly and simple interface.
• Policy rules are easy to create and they work.
• Very little downtime or operational impact.
• Email delivery issues are easy to investigate and troubleshoot.

Incentivized

• Asset Attribution and Ownership Clarity
• Risk Prioritization and Business Context
• Noise and False Positives

Incentivized

• Sometimes feels that console running slow.
• Riskware detection has a lot of false positive.
• The user interface is not very intuitive.

Incentivized

We rate Microsoft Defender External Attack Surface Management’s overall usability as 10 out of 10 because it delivers a strong balance between depth of capability and ease of use, particularly within organizations already operating in the Microsoft security ecosystem.

Incentivized

FireEye Email Security is the most effective email security solution for protecting enterprises from APT. It is not complicated to set up and you can ride a wave of continuous security effects for a long time without major changes after the initial setup. It's automated, so users don't have to care too much about it. In addition, it provides detailed analysis data, so you can utilize it for 3rd party solutions if you want.

Incentivized

The reason that I gave the support a 5 is that I have had both positive and negative experiences. One of the positive experiences was when a senior support engineer spend quite a few hours with me solving an issue that we were having. One of the negative ones was when we were experiencing an issue and one person from support gave one solution, and when the issue reoccurred we were told by another person that what was recommended to us the first time was incorrect. The issue was never fully solved.

Incentivized

Because Microsoft Defender External Attack Surface Management is part of the broader Microsoft Defender family (including Defender XDR, Entra ID, Azure Security, Sentinel, etc.), it:
Shares identity, endpoint, and threat context across tools
Reduces the need for custom integrations or connectors
Works in a “single pane of glass” experience for SOC analysts
Why it matters:
Organizations already invested in Microsoft security tools gain greater contextual insight and lower operational overhead.

Incentivized

It was called Barracuda Spam Filter when we evaluated and switched to FireEye ES (called FireEye ETP at the time). At the time we compared them ES was much better at security and also spam filtering. ES has continued to get even better since we first chose them. The user interface, support, sales/engineer provided service, the effectiveness of the product, and continued improvement/development have made them a great choice.

Incentivized

• Reduced Business Risk from Unknown External Assets
• Operational Efficiency and Cost Avoidance
• Faster Risk Identification During Change Events

Incentivized

• It can reduce the spam, malicious and phishing mails.
• It has advanced threat intelligence.
• It gives some false positives as well.
• It has great decision making intelligence.