Tool that can give a Good feel factor for IT Team
December 01, 2023
Tool that can give a Good feel factor for IT Team
Score 8 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Defender XDR
As a young start up, our end users are not the most advanced in term of Security and since we bought 200 Licenses for O365, getting the defender is just something we have to do, as it provides layers of protection for our users from the popular phishing attempts, Protecting the other tools within our suite like one drive etc, not to mention the scary malware attacks. For other organization this might seems to be small, but for a start up where every dollar counts, this is a big matter for us, combining it with Hybrid working mode and a not too advanced users in term of security, this is just a must for us
- Impersonation of email and account
- Protecting our one drive's content from malicious uploads
- This protection should come by default on every subscription, not an add on as it is vital tool
- Price is another point
- Security incident cannot be measured, once you down you down, hence the security applications like this is just a must have
- The subscription model will be cheaper and can be a good point if you want to free resources within the IT Team
- The SaaS model, if measured correctly can and will reduce long term cost in Infrastructure and Man Power
Daily phishing emails that are just reaching the level where it is too much and too risky for us, as our users cannot be categorized as computer geek, Malware these days are just embedded everywhere,
Those are the two that we faced on daily basis in the Service Desk Side, which now has been greatly reduced
Those are the two that we faced on daily basis in the Service Desk Side, which now has been greatly reduced
We are using the guide that are provided by Microsoft as baseline to have automated investigation and response capabilities, once this is settled, we are adjusting few parameters and combined them with MS Defender for endpoint, which so far has been a great combination for usFor those who really want to know this automated response, I strongly suggest to start at here https://learn.microsoft.com/en-us/microsoft-365/security/defender/m365d-configure-auto-investigation...
We combined them with Wazuh, it is not as simple as it would've been but we got the basic functionality from the SIEM' perspective, as this is implenented in around 25% of our accounts, so far it is giving a good feedback from the statistic that are reported to our ticketing system, so it is working to some level that we expected
We used the MS XDR as this is a bundle that we bought when we subscribed to the M365 platform, so having it was a bonus as we stated earlier, but due to limitation on licenses in Sentinelone, having this is just a blessing for us, so we can reduce around 200 licenses and can utilize it for other users
Do you think Microsoft Defender XDR delivers good value for the price?
Yes
Are you happy with Microsoft Defender XDR's feature set?
Yes
Did Microsoft Defender XDR live up to sales and marketing promises?
Yes
Did implementation of Microsoft Defender XDR go as expected?
Yes
Would you buy Microsoft Defender XDR again?
Yes