What is Microsoft Defender for Endpoint?
Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.
Categories & Use Cases
Media
1 / 5
Top Performing Features
Malware Detection
Detection and blocking of zero-day file and fileless malware.
Category average: 9.1
Endpoint Detection and Response (EDR)
Continuous monitoring and response to advanced internet threats by endpoint agents.
Category average: 9.1
Infection Remediation
Capability to quarantine infected endpoint and terminate malicious processes.
Category average: 8.6
Areas for Improvement
Centralized Management
Centralized management supporting multi-factor authentication, customized views, and role-based access control.
Category average: 8.7
Vulnerability Management
Vulnerability prioritization for fixes.
Category average: 8.6
Hybrid Deployment Support
Administrators should be able to choose endpoint security on-premise, cloud, or hybrid.
Category average: 8.1
