Solid Endpoint Protection
July 14, 2025
Solid Endpoint Protection
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Defender for Endpoint
We have MDE deployed to 3000+ devices. It provides valuable protection, information about vulnerabilities and how to remediate them on the protected devices, and alerts us to potential nefarious activity. The data can be used to track harmful payloads from the source, its activity on the machine and any network connections made. We rarely have to create exceptions for software except on older operating systems.
Pros
- Malware protection
- Vulnerability reporting
- Attack analysis and response
- Web content filtering
Cons
- Better support for older operating systems
- Onboarding devices can be tricky to set up
- Tracking and monitoring for devices that have not been onboarded can be confusing
- I work closely with the security team and although we have had some incidents, I don't know that we have had any impact from malware or ransomware.
- There is a ton of logging generated that needs full time staff or an MSSP to parse and generate alerts, which adds to the cost.
- Scalability
- Integration with Other Systems
- Ease of Use
For the most part, MDE is included in our Microsoft 365 Enterprise licensing. MDE is largely considered a solid product by the IT Security community, so adding that to the cost comparison with other vendors made it a no-brainer. The cost of a security breach can be staggering but MDE allows us to use those dollars on other layers of protection, instead of extra 3rd party endpoint protection licensing.
We use the web content filtering to block websites we don't want our users visiting. This blocks access to newly registered domains that may often be used by phishing pages or ransomware C&C URLs. Our security team reviews logs of suspicious activity, impossible travel alerts based on the source IP of the endpoint changing geography too fast that could indicate a compromised account, and other indicators of compromise.
We have MDE deployed to about 3000 devices, mostly Windows laptops and Windows servers. Our organization does not have a significant number of macOS or other types of devices. We are not deploying MDE to phones.
- Bitdefender Managed Detection and Response (MDR)
MDE integrates much more into our M365 ecosystem than any other MDR possibly could. Bitdefender may have provided a similar level of endpoint protection but the reporting, vulnerability reporting and other incident tracking and correlation are critical in today's business world. There is no additional management servers to set up, no extra vendor to manage, etc.
Do you think Microsoft Defender for Endpoint delivers good value for the price?
Yes
Are you happy with Microsoft Defender for Endpoint's feature set?
Yes
Did Microsoft Defender for Endpoint live up to sales and marketing promises?
Yes
Did implementation of Microsoft Defender for Endpoint go as expected?
Yes
Would you buy Microsoft Defender for Endpoint again?
Yes
Microsoft Defender for Endpoint Feature Ratings
Comments
Please log in to join the conversation