Item: Microsoft Defender for Cloud
Rating: 9
Author: Alex Richards

Use Cases and Deployment Scope

We use Azure Security Center mainly around our use of Azure AD and the enforcement of rules/policies around our Office 365 environment. We have implemented conditional access rules on our AD and implemented other suggestions that the security center has made to us based on current settings. It's great how it shows you the warnings based on severity so you can get an idea of priority before you start making any changes. We are in the process of launching more services in Azure which I'm sure will see us back in the Security Center looking for advice again.

Pros and Cons

The UI is really clear and easy to navigate.
Sorts recommendations via Severity.
Really like the identity secure score.

Still shows an action in improvements when it's been completed.
Sometimes you end up in a new browser tab and you can't get back to the previous screen.

Most Important Features

Recommendations for improvement
MFA
Named Locations
Conditional Access

Return on Investment

Simplified admin tasks
Allowed us to get a greater understanding of our security posture.

Alternatives Considered

AWS Identity & Access Management, AWS Single Sign-On and Google Workspace (formerly G Suite)

We decided to go with Office 365, instead of G-Suite (what it was at the time) because of my employees' familiarity with the Office set of apps (Word, Excel, etc). As part of O365 comes the Azure Security Center and we've used it ever since - we've not had any issues with it and it's always been able to do whatever we've needed to do for our business (configure our rules, whitelisting, conditional access, adding banners to emails from external senders). It's solid, enterprise-ready software.

Key Insights

Do you think Microsoft Defender for Cloud delivers good value for the price?

Yes

Are you happy with Microsoft Defender for Cloud's feature set?

Yes

Did Microsoft Defender for Cloud live up to sales and marketing promises?

Yes

Did implementation of Microsoft Defender for Cloud go as expected?

Yes

Would you buy Microsoft Defender for Cloud again?

Yes

Other Software Used

Amazon Web Services, SentinelOne, MobileIron Acquired by Ivanti, Chargebee, Planhat, PhpStorm, HubSpot CRM, Zendesk Support Suite

Likelihood to Recommend

We use Azure AD throughout our org and the Azure Security Center is an invaluable tool for helping point out where we can improve our security posture - before we started using Azure for our day-to-day operations we relied on the security centre guiding us on improvements we can make. However, as we are a hosted 365 customer - we thought most of the security features would be enabled/configured yet when we first got to the Security Center we had lots of work to do. Which was fine as it allowed us to see what was configured and what wasn't. All in all - a great tool and I don't know why someone wouldn't want to use it.

Great software, Easy To Use

Overall Satisfaction with Azure Security Center