TrustRadius: an HG Insights company

Microsoft Defender for Cloud Reviews & Insights

Score8.5 out of 10

111 Reviews and Ratings

Top industries

Based on 1,147 HG Insights installations.

Powered by

Community Insights for Microsoft Defender for Cloud

Synthesised from 5 verified reviews.


Synthesised from 5 reviews | Last Published June 16, 2026


Microsoft Defender for Cloud is primarily utilized by organizations to enhance their overall cloud security posture and protect sensitive data across various cloud environments, including Azure, Google, and AWS. In TrustRadius reviews, it is valued for its robust cloud security, effective security posture management, and strong threat detection and response capabilities, often integrating seamlessly within existing Microsoft ecosystems.

Reviewers frequently highlight its positive return on investment through significant cost savings and consolidation of security functions, with all 5 reviewers noting its ability to reduce operational expenditures. However, some users report challenges with configuration complexity and the initial setup process, which can require substantial training. Despite these implementation hurdles, the overall sentiment indicates a highly effective security solution that delivers tangible business value.


  • Robust multi-cloud security and threat protection capabilities
  • Effective security posture management and vulnerability identification
  • Seamless integration, particularly within the Microsoft ecosystem
  • Immediate alerts for suspicious activity
  • Significant cost savings and operational expenditure reduction
  • Complex configuration and initial setup processes
  • Challenging user interface navigation
  • High resource requirements for initial deployment and training
How does your environment look today? Do you have on-prem resources? Do you use only Azure or other clouds (AWS and Google Cloud)?

From 16 reviews | Last Published April 30, 2026

Reviewers describe varied and often complex cloud and on-premises infrastructure environments, with a notable trend towards multi-cloud strategies and a significant focus on Microsoft Azure. Over 31% of reviewers indicated that Azure is their primary or sole cloud provider, often citing its accessibility and integration with other Microsoft tools like Office and Teams. However, a substantial portion of the surveyed organizations operate in multi-cloud environments, with 25% explicitly stating they use a mix of cloud providers, including AWS and Google Cloud, alongside Azure. Furthermore, 19% of reviewers confirmed the continued presence of on-premises resources, often integrated with cloud services through solutions like Azure ARC, highlighting a hybrid approach to infrastructure management. While Azure appears to be a dominant platform for many, the overall landscape is characterized by a strategic blend of different cloud providers and traditional on-premises infrastructure, reflecting a desire for flexibility and authorization capabilities across diverse platforms.

Azure Cloud Usage

Azure is now our main cloud, so we got startup credits, and so we are able to switch over and we're basically using it for free.

Multi-Cloud Environment

Right now we do have AWS, we were previously really relying on it, but now we're mainly using Azure.

On-Premises Resources

A mix between Azure ARC for on-prem resources, multi-cloud environments, the whole shebang.

Does using Microsoft Defender for Cloud help reduce the number of third party products you would use otherwise to protect your infrastructure? If yes, can you estimate the amount you have saved by using Defender for Cloud?

From 16 reviews | Last Published April 30, 2026

Microsoft Defender for Cloud is frequently cited by reviewers as a valuable platform for consolidating security operations and reducing reliance on disparate third-party security products. A notable 6 of 16 reviewers specifically highlighted that the platform contributes to cost savings by replacing expensive external tools, with some estimates suggesting annual savings between $20,000 and $50,000. This financial benefit is closely linked to the platform's ability to reduce the overall number of security tools an organization needs to manage, a point emphasized by 3 of 16 reviewers who noted that Defender for Cloud often negates the need for acquiring additional specialized licenses. However, while consolidation is a clear advantage, 2 of 16 reviewers also mentioned instances where additional tools were still integrated or acquired to augment specific security functions, indicating that Defender for Cloud often serves as a foundational component rather than a complete replacement for all security solutions.

Cost savings from third-party reduction

It's specific to just Azure, but I think that it works and it's saving us cost because some of the third party tools are really expensive.

Reduction in number of security tools

I think that we'd have to, we probably would've had to get a Wiz license or something if it weren't for Microsoft Defender.

Need for additional tools

The savings in tools are noticeable, but we also acquired other tools to improve the company, so let's say there were improvements and savings, but the expense was on other services.

Does Microsoft Defender for Cloud help reduce the number of threat alerts? Can you elaborate on how it has helped reduce your threat alerts? What was the percentage of threat alerts you were able to cut down by using Defender for Cloud?

From 16 reviews | Last Published April 30, 2026

Microsoft Defender for Cloud demonstrates a mixed impact on the number of threat alerts, with some reviewers experiencing a reduction, while others noted an increase in overall visibility or challenges with false positives. A notable portion of reviewers, 5 of 16 (31%), indicated that the platform aids not only in reducing alerts but also in prioritizing critical threats for more effective response [1]. One reviewer specifically reported a 25% reduction in risk associated with implementing policies. However, 2 of 16 reviewers (13%) highlighted concerns regarding false positives, suggesting that while the system generates alerts, not all represent genuine threats, which can complicate alert management. Beyond alert volume, 3 of 16 reviewers (19%) positively affirmed the platform's utility in vulnerability and threat management, praising its dashboards for clearly identifying threats and providing quick remediation insights, thereby enhancing overall security posture.

Alert reduction and prioritization

Yes, attempts to steal information have significantly reduced and now any situation is blocked and reported to us immediately, which for us is one less job to do.

False positives and alert management

I don't review the threat alerts, but I'm sure that it's better to have the alerts than the deep breach.

Vulnerability and threat management

Using this software for protecting the data and virtual machine it provides a immediately response if any suspicious activity found in application and provides easy solution to work in secure environment along with that we are able to secure our servers easily as they provide all the information about the configuration and vulnerability objects.

What positive or negative impact (i.e. Return on Investment or ROI) has Microsoft Defender for Cloud had on your overall business objectives?

From 5 reviews | Last Published June 16, 2026

Microsoft Defender for Cloud consistently demonstrates a positive return on investment for businesses, primarily by delivering significant cost savings, bolstering security postures, and offering ease of use and integration. All 5 reviewers highlighted the product's ability to reduce operational expenditures, citing benefits such as decreased human hours for security implementations and infrastructure cost reductions. Concurrently, all 5 reviewers emphasized the platform's robust security capabilities, noting its effectiveness in preventing potential breaches and protecting critical assets like servers, virtual machines, and databases. Furthermore, 4 of 5 reviewers appreciated the product's straightforward implementation and its capacity to consolidate security functions within a single tool, thereby enhancing efficiency and control without requiring additional software installations. The integration within existing E5 licenses was also noted by some reviewers as a key factor contributing to its positive ROI, as it eliminated additional software costs.

Cost Savings and ROI

This translates into more operational continuity and less time spent inactive.

Security and Protection

We don't know how many potential breaches it may have stopped, so potentially pretty massive.

Ease of Use and Integration

Security in a single tool

Describe how you use Microsoft Defender for Cloud in your organization. What are the business problems the product addresses and what is the scope of your use case?

From 5 reviews | Last Published June 16, 2026

Microsoft Defender for Cloud is primarily utilized by organizations to enhance their overall cloud security posture and protect sensitive data across various cloud environments. All five reviewers highlighted its role in providing robust cloud security and protection, addressing concerns about safeguarding Azure environments, virtual machines, networks, and data, including sensitive information like payment tokens. The platform is valued for its ability to extend protection beyond Azure to other cloud platforms like Google and AWS, and for integrating with Microsoft 365 services to keep users safe. Beyond foundational protection, 3 of 5 reviewers also noted its strong capabilities in security posture management, emphasizing its ability to identify vulnerabilities, suggest remediations, and create policies across cloud endpoints. Furthermore, 2 of 5 reviewers specifically mentioned its effectiveness in threat detection and response, leveraging features like threat explorer and AI technology to quickly identify and address malware and other security incidents. The product is seen as a crucial tool for reducing risk and making infrastructure more efficient and robust.

Cloud Security and Protection

We use it to make sure that our Azure environments are safe and that no one's starting up VMs or doing anything in our Azure environment.

Security Posture Management

The more important feature is I can pull or create policies for all the cloud endpoints we have at the moment. It's like an active directory back in the cloud.

Threat Detection and Response

It combines CSPM & CWPP to detect and responds on the threats or malware quickly. It has DevSecOps Integration that makes the pipelines, servers, container more secure by scanning the infrastructure.

Please provide some detailed examples of areas where Microsoft Defender for Cloud has room for improvement.

From 5 reviews | Last Published June 16, 2026

Microsoft Defender for Cloud presents notable areas for improvement, primarily centered around its configuration and setup processes. A significant majority of reviewers, specifically three of five, highlighted challenges related to the platform's initial deployment and ongoing management. These concerns suggest that while the product offers robust capabilities, the user experience for implementation and training could benefit from simplification. The complexity cited by reviewers encompasses difficulties in navigating the user interface, the initial setup phase, and the resources required to adequately train personnel. This indicates a potential barrier to entry or efficient adoption for organizations, particularly those with limited specialized resources or those new to the platform.

Configuration and Setup Complexity

Complex Configuration and UI Overload

Please provide some detailed examples of things that Microsoft Defender for Cloud does particularly well.

From 5 reviews | Last Published June 16, 2026

Microsoft Defender for Cloud is primarily recognized by reviewers for its robust security and threat protection capabilities, which 4 of 5 reviewers explicitly highlighted. This core strength is frequently linked to its ease of integration, with 4 of 5 reviewers noting the straightforward implementation, particularly within the Microsoft ecosystem. The platform's ability to provide immediate alerts for suspicious activity was also a significant positive, mentioned by 3 of 5 reviewers, enhancing its effectiveness in threat response. Furthermore, 3 of 5 reviewers commended its strong visibility features, specifically its capacity for security posture management and identifying configuration risks, which contributes to proactive risk assessment. These combined attributes suggest that the product is valued for its comprehensive security framework that is both effective and user-friendly to deploy.

Ease of Integration

Easy Integration

Security and Threat Protection

Security

Visibility and Risk Assessment

I really think security posture management is something it does really well.

Loading Reviews List....