Microsoft Defender ATP Reviews

15 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 7.1 out of 101

Do you work for this company? Manage this listing

Overall Rating

Reviewer's Company Size

Last Updated

By Topic

Industry

Department

Experience

Job Type

Role

Reviews (1-3 of 3)

No photo available
Score 8 out of 10
Vetted Review
Verified User
Review Source
This is the main threat protection software being used all across the University. It is used to monitor threats/viruses/malware, etc. that occur on users machines. It is pre-configured on all computers that connect to the network. This ensures that users don't really need to worry about installing threat protection software on their individual computers, or worry about configuring settings.

It address the business problem of helping to protect every computer that connects to the network, or that connects to the domain. All policies/settings get pushed down to the clients that are installed on the individual machines. There doesn't need to be user interaction to get this done
  • It is great at proactively monitoring threats across the network. It works seamlessly with the client to monitor individual user computers, and it has a good real-time scanning engine.
  • On the client side, Windows Defender doesn't require a whole lot of system resources to run, nor will it create unnessary slowdowns of a computer, even while scanning for threats
  • We've noticed one issue with the SmartScreen filter settings on the client and trying to install programs. If the Administrator sets the setting to Block on the server side, then this might interfere with some programs trying to get installed on the client side. Microsoft should look into this issue, and maybe offer more sub-settings for the Block option
  • Noticed that Windows Defender will occassionally do a system scan on a client during business hours, even though on the server side, scans are set for the middle of the night. This does not occur on all endpoints, or at all times, but tends to be random
It would be well suited in an environment where most all your endpoints are Windows-based computers, as Windows Defender is already built into the operating system, so there is no client to have to worry about installing. It also will make the management of endpoints easier on the server side, if most all machines are Windows-based.

It might be less of ideal solution if a company/organization were looking for something more robust, or had a lot more features/configuration settings. It also might be less ideal for a company/organization that was looking for a product that didn't have a high detection rate of false positives
Read this authenticated review
No photo available
Score 8 out of 10
Vetted Review
Verified User
Review Source
We use MS Defender ATP on all of our systems. It uses low resources compared to other AV providers and full integration into Windows OS. You don't experience the breakage that happens when you have a 3rd part AV providers when there are feature roll-up updates and hotfixes issued by Microsoft. Also is MS ATP is competitive compared to 3rd part AV providers.
  • It does not take up a lot of system resources, unlike other 3rd part AV providers.
  • Integrated into the MS product line without having to touch it too much, unlike 3rd part AV providers.
  • Easy to set-up and manage endpoints.
  • It does not break Windows OS like 3rd party AV providers whenever a patch or roll updated is deployed.
  • Detection rates are less than some of the competitors out there.
  • Too many false positives with 3rd part applications.
  • For smaller deployments can get expensive compared to competitors.
MS ATP is great for any organization that wants to protect itself from AV, malware, spyware, and ransomware threats. I can't imagine any organization doing without an AV protection provider. Small deployment can get expensive compared to the competition.
Read this authenticated review
Danilo Soares Peres profile photo
Score 8 out of 10
Vetted Review
Verified User
Review Source
Windows Defender is used in my company on all of our computers to protect against virus and intruders. All computers use the Windows 7 or Windows 10 operating system and so Defender has a good integration on these computers. So it is one of the main defenses of my company against hackers and other things.
  • Low impact on computer performance.
  • Easy-to-use interface.
  • Several settings that help you customize the software.
  • Virus detection rates are below competitors.
  • Too many notifications that end up bothering.
  • Do not ask every time if you should send reports to Microsoft.
Windows Defender is highly recommended for company employee's computers because it will be able to detect most viruses and protect files well without slowing down the computer. I recommend using it with Windows 10 as it is already natively in the system and works very well on it, and is always updating on Windows updates.
Read Danilo Soares Peres's full review

Microsoft Defender ATP Scorecard Summary

Feature Scorecard Summary

Anti-Exploit Technology (1)
8
Endpoint Detection and Response (EDR) (1)
8
Centralized Management (1)
10
Hybrid Deployment Support (1)
9
Infection Remediation (1)
8
Vulnerability Management (1)
9
Malware Detection (1)
7

About Microsoft Defender ATP

Microsoft Defender Advanced Threat Protection (ATP) is an endpoint security solution.

It integrates technology based on the 2017 acquisition of Israeli cyber security company Hexadite, the developer of Hexadite AIRS, which uses AI designed to model optimal cyberthreat response behavior and provide an automated response. Windows Defender ATP also features vulnerability management.

Microsoft Defender ATP Technical Details

Operating Systems: Unspecified
Mobile Application:No