Microsoft Defender for Cloud

Microsoft Defender for Cloud
Formerly Azure Security Center

Customer Verified
Score 8.5 out of 10
Microsoft Defender for Cloud


What is Microsoft Defender for Cloud?

Microsoft Defender for Cloud is a Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) for Azure, on-premises, and multicloud (Amazon AWS and Google GCP) resources.
Read more

Recent Reviews

Best in the market

7 out of 10
February 01, 2023
It is been used as a continuous security posture management tool. It is been helping our resources by Assessing them continuously and …
Continue reading
Read all reviews

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of Microsoft Defender for Cloud, and make your voice heard!

Return to navigation


View all pricing

What is Microsoft Defender for Cloud?

Microsoft Defender for Cloud is a Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) for Azure, on-premises, and multicloud (Amazon AWS and Google GCP) resources.

Entry-level set up fee?

  • No setup fee


  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

1 person want pricing too

Alternatives Pricing

What is Cisco Secure Access by Duo?

Cisco Secure Access, by Duo is a two-factor authentication system (2FA), acquired by Cisco in October 2018. It provides single sign-on (SSO) and endpoint visibility, as well as access controls and policy controlled adaptive authentication.

What is OpsCompass?

OpsCompass is an enterprise-ready cloud security management software that drives multi-cloud operational control, visibility, and security to Microsoft Azure, AWS, and Google Cloud Platform. Its UI is designed to provide clear data visualization for resource management, remediation, and…

Return to navigation

Product Details

What is Microsoft Defender for Cloud?

Microsoft Defender for Cloud is a Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) for Azure, on-premises, and multicloud (Amazon AWS and Google GCP) resources.
  • Defender for Cloud secure score continually assesses security posture so as to enable users to track new security opportunities and precisely report on the progress of security efforts.
  • Defender for Cloud recommendations secures workloads with step-by-step actions that protect workloads from known security risks.
  • Defender for Cloud alerts defends workloads in real-time so users can react immediately and prevent security events from developing.

Microsoft Defender for Cloud Features

  • Supported: AWS
  • Supported: Palo Alto
  • Supported: Trend Micro Cloud One

Microsoft Defender for Cloud Screenshots

Screenshot of Accelerates remediation of critical issues in codeScreenshot of Offers cloud security benchmark mapped to industry FramworksScreenshot of Prioritizes critical risks with contextual threat analysisScreenshot of Protects workloads comprehensivelyScreenshot of Unified DevOps VisibilityScreenshot of Visualizations to improve security posture proactively

Microsoft Defender for Cloud Video

Microsoft Defender for Cloud Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo
Return to navigation


View all alternatives
Return to navigation

Reviews and Ratings



(1-13 of 13)
Companies can't remove reviews or game the system. Here's why
February 01, 2023

Best in the market

Score 7 out of 10
Vetted Review
Verified User
It is been used as a continuous security posture management tool. It is been helping our resources by Assessing them continuously and providing the needed recommendations to make it more secure throughout. It basically solved the overhead of monitoring resources manually. Microsoft Defender for Cloud made it so easy to monitor them also it shows the secure score of the current environment which gives the overview of current security status.
  • Continuous security posture management
  • Provides secure score
  • Provides Advance threats protection
  • Provides regular resource assessment
  • Also able to assess different vendors machine like aws gcp
  • Should provide free trial more than 30 days
  • Should assess the other resources apart from compute
  • Should improvise the in the server plan 1
It is needed when you are using plenty of compute resources and you needed them to be monitored in terms of security. It is well known for its recommendations provided by the resource assessment. Also it makes it more easier to know the current security posture of your environment which contains N number of resources.
It is less appropriate if you want to manage the onpremises servers. The whole onboarding process is bit of lengthy.
Score 8 out of 10
Vetted Review
Verified User
Azure Security Center is the central go-to point for us in terms of security relating to our cloud migration. We are still semi-cloud based, and with Azure Security Center being able to cover both on-prem and cloud, Azure Security Center is an ideal solution for us and we don't feel the need to look elsewhere at third party solutions.
  • Centralisation
  • Uniform layout
  • On-prem and cloud integration
  • Constant changes
  • Alert delays
  • Availability
Azure Security Center is a great starting point to ensure security of your cloud deployments, especially if you have just begun your cloud migration journey. It's probably easy to dismiss Azure Security Center since it's Microsoft's own product and maybe doesn't have the weight of other well known security product providers, but it's well capable.
Sebastian Zimmerman | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
We have a faster response to vulnerable data threats, today we are with a new security expansion process in more systems. Projects are important for the company, for this reason we have Azure Security Center and guarantee safe monitoring, personalized security metrics, integration with more Microsoft products, simple incident alerts, it is not the simplest software of all, but it is the that has always given us more security.
  • Possibility of customizing security metrics.
  • Robust integrations with other Microsoft services (DCU, MSRC).
  • It is not easy to use.
  • The most common complaint is related to usability.
The use of other Microsoft services (DCU, MSRC), the detailed and secure monitoring, the customization features, the ability to improve integration, advanced behavioral analysis, robust analytics, all this is a wide group of features that generate me a great satisfaction, it is important to mention that we have Azure Security Center for all our business security system and I think we are on the right track.
Score 7 out of 10
Vetted Review
Verified User
We use it to manage our Microsoft 365 workloads for our clients. We make use of it's user management features, especially the password complexity and multi-factor authentication features.
  • Multifactor authentication feature
  • Password complexity feature
  • Password expiration policies
  • There are way too many things on the screen at the same time. The interface is clogged.
  • The workflow to achieve something is very complicated. Most of the time I have to Google to find out the steps before I can locate the configuration I wanted to tweak.
I'm not too sure about managing third party workloads using this and I'm not even sure of it as possible.

However managing Microsoft 365 and azure workloads are a perfect native solution.
Score 9 out of 10
Vetted Review
Verified User
In the past, we had a number of security solutions that did not communicate with one other, and we often had no idea what the other one was doing. Using Azure Security Center, we can analyze, track, and address threats in our ecosystem from a single console. To provide complete security, we must be able to look into events and compare them across many products and providers.
  • Automation is crucial to managing sprawl and the additional complexity that comes with it. SOC management workbooks and process automation give significant flexibility.
  • The Security posture score and Security Alerts are neatly centralized and offer me crucial information quickly.
  • Defender for Cloud avoids the common compromise of simplicity for completeness (former Azure Security Center). The security warnings and advice go into great detail while remaining current and useful.
  • Navigating through the Azure portal with all the flyouts may be tedious, especially when time is of the essence.
  • Adding cost estimates to security suggestions would be a great improvement.
  • For the queries and workbooks, another language must be taught; it would have been ideal to keep it close to T-SQL or something similar to avoid learning new syntax.
When it comes to monitoring Microsoft Security products, Azure Security Center excels. Defender for Endpoints, Defender for Office, Defender for Identity, and Defender for Cloud are all simple to set up and operate. Adding a log server to the mix for additional services may need transforming logs/events from other sources.
Score 9 out of 10
Vetted Review
Verified User
We use Azure Security Center (now called Microsoft Defender for Cloud) for its security management across multiple clouds. It gives us a great overview of where security gaps are with easy-to-understand remediation or single-click automation fixes in some cases. The reason we went with this product over others is that we are already using most of the Microsoft stack and this compliments it.
  • Generates a "secure score" that gamifies the remediation process.
  • Automation of some of the remediations that can be done. "Fix it" button.
  • Defending hybrid or other-cloud resources and easily onboarding them.
  • Just-in-time VM access
  • You need to spend time learning the platform as it's not a simple 'subscribe and start'.
  • Firewall manager is a bit complicated, it could be simplified and not another portal link.
  • Microsoft could do a better comparison job against this product and others that do similar features/overlap.
  • Recommendations could be more descriptive of the possible outcomes after resolution.
As your company expands from small-medium business and if you have available people/hour resources this product is a great complement to the Microsoft suite and not just for security, but for implementing compliance across a multi-cloud tenant. If you don't have people's time or experience it may be better to invest time into it. It's also really a good product to give a bird's-eye view of security and compliance in your environment.
Alex Richards | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
We use Azure Security Center mainly around our use of Azure AD and the enforcement of rules/policies around our Office 365 environment. We have implemented conditional access rules on our AD and implemented other suggestions that the security center has made to us based on current settings. It's great how it shows you the warnings based on severity so you can get an idea of priority before you start making any changes. We are in the process of launching more services in Azure which I'm sure will see us back in the Security Center looking for advice again.
  • The UI is really clear and easy to navigate.
  • Sorts recommendations via Severity.
  • Really like the identity secure score.
  • Still shows an action in improvements when it's been completed.
  • Sometimes you end up in a new browser tab and you can't get back to the previous screen.
We use Azure AD throughout our org and the Azure Security Center is an invaluable tool for helping point out where we can improve our security posture - before we started using Azure for our day-to-day operations we relied on the security centre guiding us on improvements we can make. However, as we are a hosted 365 customer - we thought most of the security features would be enabled/configured yet when we first got to the Security Center we had lots of work to do. Which was fine as it allowed us to see what was configured and what wasn't. All in all - a great tool and I don't know why someone wouldn't want to use it.
Score 8 out of 10
Vetted Review
Verified User
We have recently migrated our entire infrastructure to the Azure cloud. I needed a comprehensive tool to secure our environment that didn't require a dedicated security staff. Azure Security Center fits the bill.
  • Endpoint security on Azure VM's
  • Email Security
  • Reporting and hunting
  • remediation
  • It can be very overwhelming when first using it. It's very comprehensive.
In the scenario where you have limited resources in the area of staffing, it is a big help. I wouldn't recommend it for a high-security environment unless there are trained personnel that focuses on security and are VERY familiar with ASC.
Score 9 out of 10
Vetted Review
Verified User
We had multiple security products which did not talk to each other, and often didn't know what the other one was doing. Azure Security Center brings security events from many different places into one console where we can investigate, hunt, track and remediate within our ecosystem. That we can dig into events and cross-reference across multiple products and vendors is required to do comprehensive security.
  • Correlation of events
  • Automated Remediation
  • Tracking of events
  • Cost
  • It could be more intuitive to use
Azure Security Center is especially well suited for monitoring Microsoft Security products - Defender for Endpoint, Defender for Office, Defender for Identity, Defender for Cloud - all are easy to get set up and working with Azure Security Center. For other services, you may need to add a log server into the mix to gather and/or transform logs/events from other sources.
Score 8 out of 10
Vetted Review
Verified User
Defender for Cloud (formerly Azure Security Center) is one of my day-to-day "bases of operation". I.e., it's one of the key dashboard-type utilities I use daily to track the health of my infrastructure and network. There is a lot of sprawl now, given that I am a hybrid and am in the process of migrating up to Azure. For example, I have some virtual machines, VPNs, gateways, tunnels, VNets, SQL databases, etc., that all require monitoring but are very difficult to do in a time-conscious manner and in a way that gives a whole picture. By centralizing everything (at the subscription level), Defender for Cloud really simplifies that task by giving me the issues I need to know about in one shot.
  • Simplicity. The "Security posture" score and Security Alerts give me the key pieces of information at a glance and are nicely centralized.
  • Automation is key for managing the sprawl I had mentioned, and the increased complexity arising from that. The workbooks and workflow automation provide great flexibility in security operations management.
  • Thoroughness. The tradeoff for simplicity is often in thoroughness, but this isn't the case with Defender for Cloud (former Azure Security Center). The security alerts and recommendations actually go into a significant amount of depth while keeping them relevant and meaningful.
  • UI/UX. It can get a little messy when navigating around with all the flyouts in the Azure portal which can be frustrating, particularly when under time pressure.
  • The query languages for the queries and workbooks are another language that needs to be learned - it would be nice to have kept it closer to T-SQL or something like that to minimize the need to learn new syntax.
  • Adding cost estimations to the security recommendations would really improve the experience.
I would strongly recommend any user of the Azure cloud platform use Defender for Cloud. Even if there are very few resources used, getting into the habit early is a huge advantage. If one waits until their cloud infrastructure has grown significantly, it becomes very difficult to at that point try to implement a management process, workbooks, etc.
Score 8 out of 10
Vetted Review
Verified User
We currently use Azure Security Center to secure our Azure environment and ensure that everything is operating within our internal requirements. Azure Security Center gives us direct visibility into all of the events and recommendations for our cloud servers. We also utilize Azure Security Center to get security posture ratings and vulnerability assessments on our endpoints in our Azure environments.
  • Security Posture Rating
  • Workload Protection
  • Compliance
  • Usability
  • More reliable vulnerability scanning
  • Cleaner alert visibility
Azure Security Center is perfect for anyone running their workloads in the cloud, specifically Azure. While I wouldn't recommend it to anyone running a multi-cloud environment, it definitely is the best one for Azure due to its direct insight and being built by Microsoft. I would also not recommend this solution as your sole vulnerability assessment tool, but it is good for quick assessments or standing up servers to a specific preset requirement base.
Score 9 out of 10
Vetted Review
Verified User
The name of this tool has now changed to Microsoft Defender for Cloud, but the functionality remains the same. It is a must-have for your Cloud workloads; Including IaaS and PaaS usage. It combines Security best practices, Vulnerability management, and Threat Detection and Response. Secure Score is a nice way of keeping track of your overall security posture. Can be used in other clouds like AWS and GCP.
  • Secure Score
  • Vulnerability management
  • Alerts and Threat Detection
  • UI can always use improvements.
  • Recommendation section can have a lot of false positives.
  • Dashboards
This is a great tool for protecting cloud workloads, it's almost a must for PaaS services in Azure. Services like Key Vault, PaaS databases, or Azure WAF all benefit from Defender for Cloud. Workloads where installing an agent is not an option, also make a great candidate. It also makes it easier to monitor resources in other clouds, thus making it easier for SOC to monitor all assets.
Score 8 out of 10
Vetted Review
Verified User
We utilize Azure Security Center to understand what services we have provisioned in the cloud as well as detect any possible security oversights that were made while creating these cloud resources; Azure Security Center helps us with our cloud security posture management initiative as it allows us to quickly assess compliance of our cloud environment with various industry-standard compliance frameworks e.g. ISO27001, SOC2, NIST and others which our business partners recognize
  • Native integration without need for other tools to collect logs
  • Many compliance frameworks available out of the box
  • Intuitive and easy to use GUI interface
  • Usable and comprehensive recommendations as to how problems can be addressed
  • Frequent updates and releases to the product suite with new features
  • The free tier could benefit from slightly more functionality
  • Integrations with other systems and the ability to configure alerting for common ticketing systems e.g. PagerDuty, Slack, Splunk, Jira
  • Ability to add/interact with custom compliance frameworks
  • More customization when it comes to suppressing certain risks that you know may be expected or false positives
Azure Security Center is a good solution if you want to get started with cloud security posture management without having to invest too much time into setting up a comprehensive log collection infrastructure or a cloud compatible, fully-fledged SIEM; the inbuilt compliance frameworks are kept up to date and are very useful for non-technical stakeholders to understand the actual risks. Appropriate recommendations are provided for each finding in order to be able to quickly remediate any issues identified
Return to navigation