Microsoft Defender for Endpoint vs. Proofpoint Advanced Threat Protection

Because of its integration with Windows, it is very easy to deploy and manage. Any IT department should be able to leverage the software and interface. The admin portal provides weighted recommendations that comprise the Secure Store, offering admins, security teams, and business owners valuable insights into their security footprint without requiring a strong security background. The software would be ideal for small and mid-sized businesses that cannot dedicate resources to security. Larger enterprises would also benefit, but may require the enhanced license.

Incentivized

It is great out of the box and uses AI and machine learning to identify threats with minimal input. It does need to be configured and tuned to meet the needs of the organisation. Industry specific software that sends or receives emails may be affected by this product.

Incentivized

• One, it's crazy lightweight, so compared to some of the competitors that we also have used with our security services, it's really lightweight and so I don't have a lot of overhead on the system that it's running on.
• It does really fantastic PowerShell integration.

Incentivized

• Spam filtering.
• Automatic retrieval of malicious emails that have gotten through the filter but were later detected using sample data across all the organizations Proofpoint has as customers.

Incentivized

• So the fact that Defender for Endpoint still works with signatures is actually, I don't know, a little difficult for us because, I mean, since Microsoft trusts those signatures, you can easily inject code. And we've done it many times. To show that you can inject code through vulnerabilities like CV 2013, 99, and 33 but still keep the signature. So because of the trust of those signatures, the malware just kind of slides into the environment without Defender knowing. That's the first part. The second part is that the behavioral analysis is not precisely its Prime. It's not Defender's best capability for endpoints. So, Defender does not identify all behaviors considered by other EDRs in the market.

Incentivized

• With our current setup we need to add new users manually.
• Reports aren't that intuitive.
• Mailboxes have to be removed manually.

Incentivized

Cost add-ons for Security features is nickel and diming the process to keep pace with cybercrime. Limited Education budgets require us to be more pro-active in finding cost-effective measures to protect our devices, staff and students. Defender is a strong, well-featured product that is pricing itself out of the education market

Incentivized

It offers multiple security features and integrates well with Microsoft ecosystems. A workflow for threat detection, investigation, automated remediation, and a centralized dashboard is an added advantage. This application is mainly designed for experienced users; new users may feel challenged.

Incentivized

Proofpoint offers a lot of products, but they are not particularly well integrated. They all look different, and there is no central location to access them all from, which is disappointing. However, I do know they have a big push for upgrading the UI and usability, so this should improve in the coming months I hope.

Incentivized

Microsoft Defender for Endpoint chugs along just fine no matter what we throw at it and what systems it's running on. It doesn't take up a lot of resources either, so that's welcomed.

Incentivized

Microsoft Defender for Endpoint is easy on memory and resources on clients.

Incentivized

The first time I tried to onboard my macOS endpoints to MDE I struggled for quite a bit. I had to reach out to Microsoft's MDE support team. The tech was very helpful in walking me through the steps during a screen share session

Incentivized

Even though the product is good, the support can be lacking at times. The support needs to know their product inside and out, but there are times in which we figure out things before their support does. I feel as if we should not be able to fix issues that their support cant fix, hence the main reason for support.

Incentivized

Deployment was handled by our team here and everything went pretty smoothly. We did have a few hiccups in our test group, but that only took a bit to get ironed out.

Incentivized

Cylance's policy is to block everything and requires an active person to monitor and unblock legitimate processes. As updates and software continue to evolve, it is a full-time job to be a Cylance administrator. Microsoft Defender for Endpoint is a set-and-forget solution that catches threats when they occur and leaves you to focus on your work unimpeded.

Incentivized

Proofpoint's Advanced Threat Protection, in the past, has identified threats whereby Microsoft's Advanced Threat Protection did not.

Incentivized

Microsoft Defender for Endpoint is easily scaled from small orgs to giant enterprises.

Incentivized

• Reduced incidents of security breaches lead to lower remediation costs and avoid potential financial losses and reputational damage.
• Reduces the need for additional third-party security solutions and training, thereby lowering overall security management costs.
• Increased efficiency and productivity of IT staff lead to better allocation of resources and cost savings.
• Reduces the risk of fines and sanctions associated with non-compliance, ensuring business continuity and protecting revenue.

Incentivized

• PP blocks 5-10 emails per day which are spam or malicious
• I only get a small number of emails per week which are spam
• The only malicious emails I receive are from our internal security team which bypasses the PP threat protection

Incentivized