A lot of times you would think that for having the vendor, a lot of times what happens is that they come in for the premise of like, we have all these potential problems. So a lot of what happens is it becomes more of a proactive need, not so much of a reactive problem. What ends up happening is that a lot of them, they kind of just want to hit checkmark, like "Do we have defender?" A lot of times they just, once it's set up, they just never ask about it until an audit comes in. They have to make sure things happen. A lot of times it's really just making sure it's set up so that way they don't fail. Especially for government, as long as they don't fail a checklist, that's what happens.
Pros
In terms of what it does very well is that if you are really involved with using Azure, it is a really good setup tool because one thing that I've noticed with a lot of partners in general is that you're going to end up having a company comes up to you and they're going to offer, you have someone to integrate them, but if you know how to really configure and utilize the vendor, in my opinion it's not as crazy expensive. You might think it is, but it does because of how well it does everything, the big thing.
Cons
I know right now the big push is on things for copilot. Copilot is one of the big pushes in general right now. From what a lot of people have been mentioning to us, they have the ability to utilize things if they pay for copilot, but the problem is they still prefer to go to consultant to help them really set things up. In general, I think consultants suck, right? And because they suck, it would be nice to have a tool that really gets rid of that need. For that it's much more useful for them right now, at least I think somewhere around two, three years ago when they were really pushing copilot on the introduction, people were very excited about it, but right now there's still a lot of hesitation really using it, at least from what I've seen, at least on government relationships. If you're like a school district for example, there's a big common
Likelihood to Recommend
So where it is really helpful is if you are doing things inhouse. So if you are working on things and you're building it for your internal processes in general, it's very good if you are going to be dealing with end users, specifically with end users that are outside of and by end user, I don't necessarily mean you're a software engineer that works for you or something like that. What I mean is if you are a company that is ours in particular, if you have a company like ours, we have a manufacturing site as a client. If you're on the OT side of things, I wouldn't say it's really as effective for the OT side.
In my organization, we use Microsoft Defender for Cloud as a Cloud Security Posture Management tool. It is also used for workload protection which extends to on-prem workloads. Microsoft Defender for Cloud helps us with the management of our Cloud security in that it is native to Azure and covers all aspects on Azure Security. With the workload protection we do not need to invest in other third-party tools for CSPM, CWPP and CNAPP. The scope of our use cases covers the full capabilities of the Azure platform. We leverage also all resources types you can think of and Microsoft has thought of a way to protect and or gain insights from a security perspective.
Pros
I like that with Microsoft Defender for Cloud you can track your secure score to see how well you are doing with your security controls.
There are remediation steps for findings with the platform and some can be fix automatically with a few clicks.
There are recommendations for exactly what controls to put in place to ensure a more secure environment for Azure.
Cons
I think Microsoft Defender for Cloud could do a better job of making some of the security alerts easier to understand and easier to resolve.
Since there are some popular ITSM tools that a lot of companies use, I think Microsoft should make it a lot easier for Microsoft Defender for Cloud to integrate with the popular ITSM tools.
The should be a way for users to trigger their own scans for data security related events.
Likelihood to Recommend
Microsoft Defender for Cloud is very good at allowing users to see how their Azure environment is secure through the secure score. The recommendations are an excellent source of the controls that should be in place to ensure a secure environment. There needs to be more protection and features for data security.
VU
Verified User
Contributor in Information Technology (Consumer Goods company, 5001-10,000 employees)
Microsoft Defender for Cloud offers a simpler way to view vulnerabilities in our cloud platform. Its real-time asset discovery allows us to inform the application owners where to view their up-to-date vulnerability information. This assist the application owners to not only see their real-time vulnerabilities, but to verify if their patching was successful. This not only reduces the risk to our company but also saves the company time. With its easy navigation to view vulnerabilities, compared to other cloud providers platforms, this has greatly enhanced our ability to discover and remediate vulnerabilities in a timely manner.
Pros
Easy view of vulnerabilities
Detects vulnerabilities in real-time
Saves time and reduces risk
Likelihood to Recommend
With its easy navigation to view vulnerabilities, compared to other cloud providers platforms, this has greatly enhanced our ability to discover and remediate vulnerabilities in a timely manner.
VU
Verified User
Analyst in Information Technology (Automotive company, 10,001+ employees)
It is the best cloud security solutions offered by Microsoft which we are using in our organization to protects cloud environment which hosted on Microsoft Azure. Scope : To protect cloud resources hosted on Microsoft Azure including Azure VM, databases, storage account and web applications. Business Problems Addressed as below: Threat Detection and response : It helps in detecting the attack such as malware infections, unauthorized access and provides alerts and then automated responses to mitigate the risks. Identity and Access management : Helps in protecting user identities and access to azure resources. Security Configuration management : Identify the misconfiguration that might exposes the vulnerabilities and provides recommendation.
Pros
Scalibility
Identity and access management
Automated remediation
Real Time monitoring and alerts
Cons
Integration with Non-Microsoft environments
Streamline the UI and provide user-friendly guidance
Need more customization and reporting.
Likelihood to Recommend
Well Suited : Ideally suited for organizations heavily invested on Microsoft Azure where it will provide security to azure resources. Also it is well suited for identity and access management in Azure. Less Appropriate : Less suitable for organization with Non-Windows environments, Multi-Cloud environments and non-azure workloads.
VU
Verified User
Engineer in Information Technology (Aviation & Aerospace company, 1001-5000 employees)
We use Microsoft Defender for Cloud to protect our hybrid environment from security risks as well as help us remediate any potential issues
Pros
Provide security score
Provide remediation instructions
Provide security analytics
Cons
Incorporate AI in assisting with remediation
Provide better customization for alerts
Less focus on windows defender application for remediation
Likelihood to Recommend
In my opinion, if you have a cloud or hybrid environment Microsoft Defender for Cloud or a similar product is very necessary to protect the environment.
