Excellent all-in-one security solution for Microsoft users
July 15, 2025
Excellent all-in-one security solution for Microsoft users
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Microsoft Defender XDR
Microsoft Defender XDR is a must have solution if you rely on Microsoft products, especially in Azure. It provides excellent overview of the security posture in our company, represents valuable source of data, providing huge amount of information which can be used for different kinds of investigations and in conjunction with utilizing builtin/custom detections to detect different kinds suspicious events
Pros
- Logging
- Alerting
- Detection
- Prevention
Cons
- improve customization of detection rules
- improve automatic investigations speed
- improve remediation scope (some emails from same sender in a phishing campaign are quarantined some are not)
- increased SOC efficiency
- ROI negligible
One of the most complex things is the licensing, we needed many iterations with Microsoft to define all needed details.
We are using partially using it, it has a lot of space for improvement, especially on speed. I expect it to evolve a lot with the help od AI. For now we are approving each remediation action.
We have integrated Microsoft Defender XDR with Microsoft Sentinel. In the beginning it was difficult, now it is working as expected.
Falcon Crowdstrike is better than Microsoft XDR in terms of EDR, but in terms of the whole suite, Crowdstrike is lacking a lot of capabilities (email, Purview...)
Do you think Microsoft Defender XDR delivers good value for the price?
Yes
Are you happy with Microsoft Defender XDR's feature set?
Yes
Did Microsoft Defender XDR live up to sales and marketing promises?
I wasn't involved with the selection/purchase process
Did implementation of Microsoft Defender XDR go as expected?
Yes
Would you buy Microsoft Defender XDR again?
Yes
Comments
Please log in to join the conversation