TrustRadius Insights for Microsoft Defender for Cloud Apps are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.
Pros
Insightful User Actions Tracking: Users have appreciated the detailed insights provided into user actions and connections, aiding in managing shadow IT, identifying suspicious activities, and offering strong protection for sensitive cloud information.
Efficient Automation Features: Reviewers have praised the tool for its easy automation capabilities, helping with tasks like implementing policies and templates for app control, investigating threats, receiving alerts on suspicious behaviors, and assessing security posture of internal domain controllers seamlessly.
Strong Security Measures: Customers have highlighted the product's robust security features such as automatic checks for integrations, detailed threat severity distinctions, compatibility with Microsoft tools and Azure, as well as effective filters to enhance data protection.
The entire organization depends on Microsoft Defender for Cloud Apps to protect all our Cloud Apps that we normally use and helps to identify those Apps our employees are using which are risky and does not comply to our organizational needs, in order to keep our organizations Cloud assets secure from external attacks and shield us from internal accidents with excellent reporting capabilities.
Pros
Helps to discover and manage shadow IT.
Suspicious activity identification.
Perfect protections to sensitive Cloud information.
Cons
In the event of Cloud traffic it is not easy to monitor and identify attacks.
Difficult to protect unmatched Cloud devices.
Likelihood to Recommend
Microsoft Defender for Cloud Apps is best suited to organizations using multiple Cloud SaaS and in situations where risky Apps are being used by employees which are not compliant to organizations needs and [it] helps secure sensitive information from external attacks. [It] also shields them from internal accidents and helps organizations with a secure environment when moving information to the Cloud.
We use Microsoft Cloud App Security to protect against data breaches or data theft. Currently, we use it to protect data within Office 365. We have a lot of documents and files within OneDrive, Work, Sharepoint, and other O353 tools. The problem we were facing [was] team members [used] their personal machines to download data and remove it as part of their separation from the company. MCAS was able to help us detect and alert on such occurrences
Pros
Integrates with Microsoft Products
Has a fair share of popular SasS connectors
Is constantly releasing new connectors for new SaaS platforms
Cons
They need more Saas integrations
Some of the integrations are lacking data or feeds that are needed
Likelihood to Recommend
Currently, we have an Enterprise license with Microsoft so MCAS is included. For a tool that is "free" to us, it works well. This compares to a tool that we would have to purchase and then put in a lot of time to configure. For us, there is a cost savings component that makes this worthwhile use.
VU
Verified User
Manager in Corporate (Automotive company, 10,001+ employees)
We Use Microsoft Cloud App Security in our Microsoft Technology Department like Azure, Power apps, and .Net department. We use MCAS for threat detection vulnerable checkpoints in web applications, mobile apps, or servers. As it is mostly used in the Saas category. Mostly our clients want to switch to azure and apply MCAS for security purposes.
Pros
Security and Auto check for integrations
Detail distinguish according to severity of threats
Work well with Microsoft tools and Azure
filters are also good
Cons
Not smooth working with other cloud service provider like aws
sometimes not updated with latest threat or very late threat detection.
Can be more UI side attractive
Not a cheap price
slow with real time data
Likelihood to Recommend
It is well suited if your team is working with Microsoft tools and Azure services. but if you are using other cloud service providers and don't want to spend efforts in learning integration with third-party software then this is not a great fit for you. overall we are very satisfied with the product. If your corporation with Microsoft tools then I would recommend it.
We utilize Microsoft Cloud App Security (MCAS) in conjunction with the Defender ATP and Office ATP suite to protect our environment. We utilize it globally for all users to provide insight into cloud activities and abnormalities or user activity as well as to provide insight around in-use cloud applications.
Pros
Easy automation
straight forward dashboard
integration with other Microsoft security tools
Cons
Massive delays between the time an activity occurs and when MCAS alerts, up to 24 hours sometimes
Many false negatives due to the way it tracks IP addresses and things like impossible travel
Some of the default alerts dont trigger emails or dont even support email
Likelihood to Recommend
It's great because it's included with other Microsoft tools like Defender, but it's not worth it on its own. It lacks the speed of alerting, and in the world of security 24 hours for an alert to trigger is simply not acceptable. There is some very nice built-in automation around cloud apps with low scores and the ability to outright block these that is really nice.
Provides visibility into the access of apps and data. Monitors users’ activities. Classifies and protects sensitive information. Ensures compliance.
Pros
Detect threats based on user activity logs.
Set manual and automatic alert remediation.
Implement activity policies.
Detect threats based on user activity logs.
Cons
It takes some time to scan and apply the policies when there is some sensitive information.
After it applies the policies, it works, but there is a delay.
It doesn't provide any way to scan Microsoft Teams when an external exchange of images is happening. You can always do the filtering on the documents during the chat, but if there is an image, then some kind of OCR capability is required to detect it. At present, there is no way [Microsoft Cloud App Security] can go and detect those kinds of images and alert us
Likelihood to Recommend
The feature that helps us in detecting the sensitive information being shared has been very useful. In addition, the feature that allows [Microsoft Cloud App Security] to apply policies with SharePoint, Teams, and OneDrive is being used predominantly. It is a kind of unified solution. As compared to other solutions such as Netskope, Symantec, or McAfee, it provides a more unified reporting structure. It also integrates with other technologies. We have Azure Information Protection, and it goes well with the solutions that we are already using.
Microsoft Cloud App Security has been integrated to provide users a comprehensive platform in the cloud, which has allowed us to leverage a whole bunch of integration options thereby increasing productivity and efficiency. We can now administrate policies and safeguard organization data.
Pros
Audit
Enterprise Security
Integration
Cons
Intermittent bugs related to policies turning off
Likelihood to Recommend
Setting policies on apps is easy with this software. You can get real-time alerts and logs as notifications. You can then use monitoring dashboards to view and take corrective actions.
VU
Verified User
Project Manager in Information Technology (Pharmaceuticals company, 10,001+ employees)
We use MCAS - Microsoft Cloud App Security for data protections, DLP and Threat Detections in our known and approved SaaS applications. It allows us to inspect the content of data at rest, as well as in use, and enforce security policies. MCAS brings a set of security capabilities that I cover a huge gap we had prior - Security visibility and enforcements in SaaS apps.
Pros
DLP content inspection of SaaS file stores.
Auto detection and classification of content in SaaS File stores.
Threat detection for data ex filtration and identity related threats.
Cloud SaaS discovery.
Cons
Cloud discovery throws away found services not found in the MCAS database of SaaS apps.
Many panes of glass required for a fully enabled implementation to administer, configure and utilize 100% of the product.
Room for improvement in the reporting realm - not enough records are visible and exportable for high record count policy reports.
Likelihood to Recommend
Excellent cloud discovery capabilities that can help you better understand what apps your users are using and the relative risks of each. Data protection and DLP use cases work as advertised and are exactly what our company needs to replicate DLP implementations already in the SaaS problem space. MCAS does a good job of identifying content that meets a number of pre-built types and templates for PCI and other related governance frameworks. It's a good CASB and can solve a lot of problems - it might be right for your organization and you should certainly evaluate the tool in you need CASB.
VU
Verified User
Program Manager in Information Technology (Telecommunications company, 10,001+ employees)