MS Defender XDR
July 09, 2025

MS Defender XDR

John Robinson | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Microsoft Defender XDR

Microsoft Defender XDR actively monitors all our company endpoints for malicious software and URLS. It covers approx. 100 machines, and is accessed through our MS365 admin portal. It provides us with a real time view of any malicious activity, a break down of the chain of events lading up to it, the machines and user sinvolved and provides automated responses and recommendations on manual interventions.

Pros

  • Active/real time monitoring
  • dashboards
  • Automated responses

Cons

  • logs even informational incidents as active, even if there's no threat
  • little hard to navigate some of the consoles to find information sometimes
  • not always clear if action is needed
  • No specific ROI, though has caught a small number of malicious attacks.
  • It's included with our MS365 Business Pro licenses, so the value is good as its essentially at no extra cost on top of the Office software and Azure AD we are using anyway.
Understanding how many machines we had that could even be compromised. Before XDR we had nothing, so viruses and malicious software was entirely up to users to report - very difficult in a geographically dispersed organization.
Much is automated, and with other layers of secuity we have added from its recommendations, we have had 0 known breaches and very few malicious attacks at all. Don't have to manually intervene with meny detections either, Defender takes care of it and reports back.
So far good-ish. Not always apparent if it cleaned everything and/or if manual intervention is still needed - though I often do so anyway just to be sure. It does report well locations of malicious files and registry entries that I can check to ensure anything is completely removed.
N/A
No.
N/A
We actually use both in tandem! This provides an extra layer of security as they do not appear to clash. Each works well with the other, and gives us greater coverage and visibility of any malicious attacks on our endpoints.

Do you think Microsoft Defender XDR delivers good value for the price?

Yes

Are you happy with Microsoft Defender XDR's feature set?

Yes

Did Microsoft Defender XDR live up to sales and marketing promises?

Yes

Did implementation of Microsoft Defender XDR go as expected?

Yes

Would you buy Microsoft Defender XDR again?

Yes

Multiple laptops in remote locations where they cannot be managed hands on easily. Provides many monitoring tools or keep them secure. It does work well with some other AV products (Trend Micro ApexOne in our case). May not be so useful for IT staff not familiar with security issues.

Comments

More Reviews of Microsoft Defender XDR

  1. Home
  2. Extended Detection and Response (XDR) Platforms
  3. Microsoft Defender XDR Reviews
  4. User Review of Microsoft Defender XDR