Microsoft Defender for Endpoint

Formerly Microsoft Defender ATP

Microsoft Defender for Endpoint will be super useful to you if you have a Microsoft security ecosystem in your organization because of the flawless and hassle-free integration capabilities.
Microsoft Defender for Endpoint will be a great choice when you are a big organization (more than 500 endpoints) and are dealing with customer data from a critical industry.
Although if you lie in the SMB segment, taking standalone Microsoft Defender for Endpoint plans will make you confused about which features to go for and which ones to let go off. Hence, explore other options here.

If you are looking for a scalable solution with decent organization size and even if it is relatively small it works very well. If you are looking for a solution that has great offline and online coverage that allows stimulated attacks and good for testing it is highly recommended. If you often run scans and looking for something that should not hinder the performance of your endpoint you should definitely go for it.

Microsoft defender prevented an downloaded executable with suspicious code from being installed.
This was well suited.
The executable generated by a c compiler that was not Microsoft's was considered dangerous code.
This was not suitable.

if you have significant no. Microsoft products in your ecosystem then Defender works extremely well. We onboarded defender as part of M365, which includes MDO and MDE both.
If your customers are spread across multiple geographies, then Defender can help you setup Compliance policies based on each reason which reduces the efforts from DPO significantly.
Apart from these, I feel it is a feature rich and stable EDR product.

When it comes to providing reports for supervisors, Microsoft Defender for Endpoint makes it simple to pull the requested information without having to spend a lot of time hunting for what has been requested. Even better than that is that I feel strongly confident in the product to actually protect our environment overall.

This is a good product for clients that just need simple security software that just works out of the box with no extra configuration needed. The product does a good job of automatically updating itself. It does not bog the systems down that it is deployed on so clients don't even know it is there.

It protects the business as a whole with it's network protection which does not allow malicious domains to be navigated to on the network. We've had some questionable websites that were caught because of this fast acting software

Microsoft Defender is well suited for home users who run Microsoft OS, small businesses with limited IT resources, large enterprises that require centralized management, some educational institutions for cost-effective protection, nonprofit and charity organizations offering protection from malware threats, mixed IT environments for easy and effective integration, for users and organizations with basic security needs.

I think Microsoft Defender for Endpoint is well suited for a Microsoft Enviornment that has is committed to the WIndows\Office suite of products as it easily integrates and deploys in that type of environment. In a mixed or primarily mac environment it does not have the complete integration that one may want and is hard to deploy through a MAC mdm such as Jamf.

I think it's suited very well if you have a lot of remote users and want some extra protection on their laptops or tablets. In my experience, Its easy to deploy and to install during the initial Laptop build or to push out using a remote management tool. I also think its easy to setup the VPN to check to make sure its upto date before they can connect.

We use it on an enterprise level for the whole state of Alaska. I guess in that sense that's well suited for that. But at the department level, we don't have a huge amount of control, so I guess it's super suited for enterprise-level security. That's how we use it. I don't really have anything beyond that. My knowledge on it is pretty slim, but I do know that we have it for not department-wide, but enterprise-wide. I know that the lack of control at the department level is a bummer for us. But for Enterprise Solutions, it's great. It works well.

It's good if our colleagues are already purchasing Microsoft products and have the tier of Microsoft licensing that this is included. I would definitely recommend that they use it, but a lot of my friends do not use Microsoft products or have that tier. They usually use the free tier, something along those lines. But here in our business, we have E five licenses, so it comes free and we love using it. It is well suited to do its scans, keep us updated, and keep us with our compliance goals. Less appropriate? I'm really not sure if it's not included.

I’m environments that require a variety of policies for different groups of user, Defender for end point performs great. Even for small business Defender for Endpoint can be effective. Obluba few areas where the landscape is at high risk or user count isn’t using to many environments integrated with Windows or cloud is when I would not suggest Defender for Endpoint, but these are few scenarios.

If your organisation has more than 1000 people and is heavily loaded with Windows devices this product can be very useful to manage them. It will protect your devices, laptops. It protects your system from viruses and external attacks. It is very quick in reacting to all the threats and vulnerabilities that are coming from the internet. As a security administrator it will help you to maintain the compliance score healthy by providing robust solution to your security problems. It will also show you which devices are not compliant. It will protect the devices from unsafe applications which are not healthy for the system.

If your organisation has maximum number of MAC devices then honestly I would not recommend this solution for you.

Small or large organizations will benefit from using MDE. They need to provide a way to buy MDE as a standalone add-on product not only make it a bundled feature in Microsoft 365 E5. I wish it had the ability to deploy updates to 3rd party apps when the vulnerability scanner discovers a vulnerability. Currently, I have to use a 3rd party tool to address this gap.

Microsoft Defender Advanced Threat Protection is the perfect solution for a company that is completely invested in a Microsoft environment. We have Windows 10 machines joining our Azure Active Directory. We use Exchange Online for emails, and it feels like Defender ATP gives you visibility into each and every corner of our environment. It's super lightweight and fairly easy to deploy (though we had some isolated difficulties), and end users seem to not notice it, which is, in my opinion, a very positive thing.

Where it may not be great is in mixed-OS environments. It requires a bit of determination to get ATP installed on OSX or Linux. While these platforms do get fewer viruses in general, it's good to have the layer of visibility and security for web and browser based threats.

In my opinion, It is well suited for small start-ups and entrepreneurs who have just started doing business. But when the amount of client data that you hold increases, you should not completely rely on Windows Defender. Another paid antivirus will definitely be recommended. But, I think they have really stepped up their game recently in terms of updating the software and virus definitions.

MS ATP is great for any organization that wants to protect itself from AV, malware, spyware, and ransomware threats. I can't imagine any organization doing without an AV protection provider. Small deployment can get expensive compared to the competition.

It would be well suited in an environment where most all your endpoints are Windows-based computers, as Windows Defender is already built into the operating system, so there is no client to have to worry about installing. It also will make the management of endpoints easier on the server side, if most all machines are Windows-based.

It might be less of ideal solution if a company/organization were looking for something more robust, or had a lot more features/configuration settings. It also might be less ideal for a company/organization that was looking for a product that didn't have a high detection rate of false positives