Microsoft Defender for Cloud
May 05, 2022

Microsoft Defender for Cloud

Ali Marandi | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Azure Security Center

The name of this tool has now changed to Microsoft Defender for Cloud, but the functionality remains the same. It is a must-have for your Cloud workloads; Including IaaS and PaaS usage. It combines Security best practices, Vulnerability management, and Threat Detection and Response. Secure Score is a nice way of keeping track of your overall security posture. Can be used in other clouds like AWS and GCP.
  • Secure Score
  • Vulnerability management
  • Alerts and Threat Detection
  • UI can always use improvements.
  • Recommendation section can have a lot of false positives.
  • Dashboards
  • Alerts and Threat Detection
  • Vulnerability Management
  • Secure Score
  • Easier to detect and remediate threats.
  • Easier to detect security misconfigurations.
  • Easier to manage vulnerabilities.
To me, Defender for Cloud provides a much richer toolset. It not only helps with Threat detection (Malware, SQL injection attempts, suspicious queries) but also gives me a single dashboard for vulnerability detection and security hardening which is similar to CSI benchmarks. Secure Score is a very useful way of keeping track of your progress. It makes for easy KPIs.

Do you think Microsoft Defender for Cloud delivers good value for the price?

Yes

Are you happy with Microsoft Defender for Cloud's feature set?

Yes

Did Microsoft Defender for Cloud live up to sales and marketing promises?

Yes

Did implementation of Microsoft Defender for Cloud go as expected?

Yes

Would you buy Microsoft Defender for Cloud again?

Yes

Microsoft Defender for Endpoint (formerly Microsoft Defender ATP), Microsoft Sentinel (formerly Azure Sentinel), Microsoft Defender for Identity (formerly Azure ATP)
This is a great tool for protecting cloud workloads, it's almost a must for PaaS services in Azure. Services like Key Vault, PaaS databases, or Azure WAF all benefit from Defender for Cloud. Workloads where installing an agent is not an option, also make a great candidate. It also makes it easier to monitor resources in other clouds, thus making it easier for SOC to monitor all assets.