An integrated solution, designed for small or medium-sized businesses, bringing together the productivity of Microsoft Office with advanced security capabilities to help
safeguard data from external threats and help protect against data leaks.
With Microsoft 365 Business Premium, users can empower employees to be productive
anywhere on any device. Get more done with AI built into the Office apps. Work
better together with a hub for teamwork bringing your tools and people together
in one place.…
N/A
Microsoft Defender for Endpoint
Score 8.7 out of 10
N/A
Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.
Microsoft 365 Business Premium is well suited to any size organization and is a must-have for business purposes. It is a vital component for the majority of work software needs, as the Microsoft 365 Business Premium package has apps to handle needs that I didn't know we had. It is a great way to provide the required software programs to teams, especially those that work remotely due to the great sharing capabilities built into it. Furthermore, the nonprofit program provided our small nonprofit with vital components for our remote work, while allowing us to keep our donated funds going directly to our mission.
Because of its integration with Windows, it is very easy to deploy and manage. Any IT department should be able to leverage the software and interface. The admin portal provides weighted recommendations that comprise the Secure Store, offering admins, security teams, and business owners valuable insights into their security footprint without requiring a strong security background. The software would be ideal for small and mid-sized businesses that cannot dedicate resources to security. Larger enterprises would also benefit, but may require the enhanced license.
One, it's crazy lightweight, so compared to some of the competitors that we also have used with our security services, it's really lightweight and so I don't have a lot of overhead on the system that it's running on.
The only thing that is a bit cumbersome is that it doesn't seem that you can save files directly to programs like one drive if you aren't using a Microsoft program to generate the document. An example of this would be if I am working in a PDF in our PDF Program I have to first save it to my desktop and then drag it into one drive. I end up with duplicates and that can sometimes make it hard to remember which is the most up-to-date.
So the fact that Defender for Endpoint still works with signatures is actually, I don't know, a little difficult for us because, I mean, since Microsoft trusts those signatures, you can easily inject code. And we've done it many times. To show that you can inject code through vulnerabilities like CV 2013, 99, and 33 but still keep the signature. So because of the trust of those signatures, the malware just kind of slides into the environment without Defender knowing. That's the first part. The second part is that the behavioral analysis is not precisely its Prime. It's not Defender's best capability for endpoints. So, Defender does not identify all behaviors considered by other EDRs in the market.
Microsoft Defender is closely catching -up in market with existing competitors they have added DLP endpoint & DLP Network and Cloud DLP solution last year with OCR capabilities. I would say Microsoft Defender is not legacy Vendor in end point security, the need to learn from other vendors in market and focus on new XDR technologies, which is going to be new battle for all vendors
The basic apps are straightforward and easy to use, especially since they have been around so long. I'm referring to the basic apps like Outlook, Excel, Word, PowerPoint, OneNote, etc. Other features such as Microsoft Teams and Sharepoint Sites, Sharepoint Lists, Sharepoint Groups, etc. all require a higher level of knowledge to both implement and use properly
Because in terms of the usability is easy to understand, it's easy to manage, obviously you need to have specific skills to do that, but I would say that even the console and the product is walking through the flow that you are looking for on this console.
Microsoft Defender for Endpoint chugs along just fine no matter what we throw at it and what systems it's running on. It doesn't take up a lot of resources either, so that's welcomed.
In the last 5 years, Microsoft has come a long way. The performance of the products has become more and more user-friendly and it seems that the feedback provided by the user community is being listened to and worked on. The processes are very fast and seamless. There are negligible errors and doesn't slow the systems down.
As mentioned elsewhere in the review, Microsoft has historically paid attention to community feedback and issues, but timeliness can improve, and so can the addressing of long-standing issues about which many users have said "I have this issue too!" but no official solution exists. For issues that do have a solution, however, the solution is usually not difficult to find, and the explanation of features on Microsoft's website can mitigate many problems.
Overall support is really good for this product. Since it's a Microsoft product, you will get good support from a number of different resources, including knowledgebase articles on the web, support from Microsoft technicians, and documentation (which tends to very thorough). Also, there is a vast user support community for this product, so user support forums would also be another valuable channel to get help if needed. I don't envision too many people will have issues/problems with the product, as it tends to run good overall.
Deployment was handled by our team here and everything went pretty smoothly. We did have a few hiccups in our test group, but that only took a bit to get ironed out.
We selected Microsoft 365 Business Premium as it provides a better integration that aligns better with the needs of our company. Another obvious plus is that our staff was used to Microsoft Office so switching to Microsoft 365 Business Premium offered an almost seamless transition. The addition of Team and the SharePoint libraries sealed the deal as we were able to migrate our entire infrastructure from on-premise to the cloud thereby simplifying administration, backups and ultimately reducing costs.
Microsoft Defender for Endpoint offers strong integration with Microsoft 365 and Azure services, which provide a unified security experience. While McAfee Trellix is known for solid antivirus, Microsoft Defender excels in integration in the ecosystem.