Azure Security Center provides intuitive and effective cloud security posture management
May 05, 2022
Azure Security Center provides intuitive and effective cloud security posture management
Score 8 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Defender for Cloud
We utilize Azure Security Center to understand what services we have provisioned in the cloud as well as detect any possible security oversights that were made while creating these cloud resources; Azure Security Center helps us with our cloud security posture management initiative as it allows us to quickly assess compliance of our cloud environment with various industry-standard compliance frameworks e.g. ISO27001, SOC2, NIST and others which our business partners recognize
- Native integration without need for other tools to collect logs
- Many compliance frameworks available out of the box
- Intuitive and easy to use GUI interface
- Usable and comprehensive recommendations as to how problems can be addressed
- Frequent updates and releases to the product suite with new features
- The free tier could benefit from slightly more functionality
- Integrations with other systems and the ability to configure alerting for common ticketing systems e.g. PagerDuty, Slack, Splunk, Jira
- Ability to add/interact with custom compliance frameworks
- More customization when it comes to suppressing certain risks that you know may be expected or false positives
- Multiple compliance standards and frameworks so we can demonstrate, for example, that our US-based virtual machines comply with US standards while EU virtual machines comply with EU standards
- Compliance standards are kept up to date automatically without us needing to do that work and maintain the different versions of the standards
- Intuitive user interface that can be easily navigated and understood by auditors and internal risk teams
- Comprehensive information and metadata are provided for each finding to allow us to understand the problem, its impact as well as any recommended remediation steps we can take
- Integrated vulnerability scanner powered by industry leader Qualys
- Has given confidence to auditors that we are managing our cloud estate in a secure manner
- Developers have a single pane of glass to verify whether there are any findings for the services they own
- Helped avoid the manual process of ensuring we are evaluating our environment against the latest compliance framework versions
- Detections are getting smarter so we haven't had to deal with many false positives
- Ability to quickly remediate findings
Prisma Cloud has some of the same features that Azure Security Center provides but the licensing costs are greater; however, Prisma offers more technical, low-level metadata showing the actual configuration of the cloud resource as well as the ability to search through all your cloud resources via their highly customizable SQL like syntax to find exactly what you're looking for. However, besides the increased cost, it's more challenging to onboard different cloud environments into Prisma whereas Azure Security Center requires little initial setup and configuration since it's a native solution
Do you think Microsoft Defender for Cloud delivers good value for the price?
Yes
Are you happy with Microsoft Defender for Cloud's feature set?
Yes
Did Microsoft Defender for Cloud live up to sales and marketing promises?
Yes
Did implementation of Microsoft Defender for Cloud go as expected?
Yes
Would you buy Microsoft Defender for Cloud again?
Yes