Microsoft Defender for Endpoint should just be enabled by default
December 31, 2025
Microsoft Defender for Endpoint should just be enabled by default
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Defender for Endpoint
[...] is a manufacturing company headquartered in Montreal. We have offices across Canada and the United States. Microsoft Defender for Endpoint is deployed across our entire organization. Having a cloud based solution with a single pane of glass to manage all our assets is of the highest importance to us. Being able to receive immediate alerts when suspicious activity occurs has been extremely helpful in keeping our risks at a minimum. Microsoft Defender for Endpoint management is also smart enough to not send several alerts when an attack could be hitting multiple targets within a certain time frame or it's the same attack multiple times.
Pros
- Consolidate alerts so you are not overwhelmed
- Integrates with Microsoft products
- Already licensed if you're using Office Premium or higher enterprise licenses
Cons
- Management Interface needs work
- Digging through analysis is not always informative
- Constant clicking around to find all the relevant information
- Microsoft Defender for Endpoint has alerted our team when users clicked on phishing links in emails and we were able to prevent any harm
- When a website frequently visited was compromised, Microsoft Defender for Endpoint quickly quarantined the file that was auto-downloaded.
- The alerts for the website download were all consolidated to one incident making it easier to manage.
- Cloud Solutions
- Integration with Other Systems
- Ease of Use
As a company that is using many other Microsoft products, most notably Microsoft Office Business Premium, having a solution that is already licensed as part of the Office suite made the decision for us. Given that Microsoft Defender for Endpoint is already built into every Windows machine, it really is a simple process to then take that already installed Microsoft Defender for Endpoint and make it centrally managed.
We currently us all the components of Microsoft Defender for Endpoint. Not sure why this is even a question as there are no components or separate features. We have Microsoft Defender for Endpoint installed on all our workstations and servers, both on-premise and in Azure. We monitor all of them from the Microsoft Security Admin Center.
We have Microsoft Defender for Endpoint installed across our entire organization with offices in Canada and the United States. All our workstations are Microsoft Windows based. Our servers are all Microsoft Windows Server and we have a few on-premise servers at our headquarters as well as several hosted on Microsoft Azure.
- BlackBerry Protect (CylancePROTECT) and BlackBerry Optics (CylanceOPTICS)
Unless you have a dedicated Security Operations Center working twenty four hours a day seven days a week that is able to constantly monitor Cylance and make the necessary changes for your users, it is not worth the trouble. Microsoft Defender for Endpoint does what it needs to do and does not require much if any intervention.
Do you think Microsoft Defender for Endpoint delivers good value for the price?
Yes
Are you happy with Microsoft Defender for Endpoint's feature set?
Yes
Did Microsoft Defender for Endpoint live up to sales and marketing promises?
Yes
Did implementation of Microsoft Defender for Endpoint go as expected?
Yes
Would you buy Microsoft Defender for Endpoint again?
Yes
Microsoft Defender for Endpoint Feature Ratings
Comments
Please log in to join the conversation