TrustRadius: an HG Insights company

Microsoft Enterprise Mobility + Security

Score8.3 out of 10

14 Reviews and Ratings

Get a Demo

What is Microsoft Enterprise Mobility + Security?

Microsoft Enterprise Mobility + Security is a suite of applications supporting mobile device and application security, MDM, as well as conditional or privileged access with multi-factor authentication, and advanced security reporting. Products in the suite includes Microsoft Intune mobile device management, Azure Information Protection, Microsoft Identity Manager, Microsoft Cloud App Security, Azure Active Directory, and other ancillary applications.

Categories & Use Cases

Reviews

What users are saying about Microsoft Enterprise Mobility + Security.
View all reviews

Overall a good product if a bit confusing at times.

Incentivized
Verified User
Engineer in Information Technology (1001-5000 employees employees)

Use Cases and Deployment Scope

very large encompassing product with a lot of configurations and controls. Easy to get lost in the licensing though for features you want to use. I use this for general systems management and the defender for endpoint suite. With the toolsets you have access to in depth reporting and some analysis is available within a few minutes of the incident and can start generating automated actions.

Pros

  • Endpoint Logging
  • Integrated alerts
  • Machine lock downs

Cons

  • License clarity
  • Alert tuning
  • Slow console actions without notification of complete.

Return on Investment

  • Low overhead for setup and machine configurations
  • Automated alerting with backed in knowledge base.
  • Easy update cycles
  • Updates can cause negative results and are hard to track

Usability

Easy pre-packaged bundle of Enterprise Grade solutions/product offerings for our organization

Incentivized
Edwin YipView profile
Business Development Manager in Information Technology at SHI International Corp. (5001-10,000 employees employees)

Use Cases and Deployment Scope

Microsoft offers a convenient package for simplicity and security for our end users with Microsoft Endpoint Mobility + Security. In this product offering, we opted for the E5 plan which encompasses Azure P1, Azure Information Protection P1, ATP and Microsoft Intune. We were already using some of these solutions as standalone products, so it's great to have it bundled into one product offering for simplicity. Since our organization is predominantly Windows based, we use Microsoft Intune to manage user access to sensitive company data, and on all devices such as laptops, workstations/desktops, and countless mobile devices.

Pros

  • Simple pre-packed solution for many popular Microsoft products
  • Advanced threat protection
  • Simplified end user management with Intune

Cons

  • The subscription model (cost) could be revamped for perpetual licensing options

Most Important Features

  • On-Premise Advanced Threat Protection (ATP)
  • Microsoft Intune

Return on Investment

  • Increased productivity, including service requests for our customers
  • Reduced operational costs, and threat/risk of cyber-attacks

Alternatives Considered

ChromeOS

Microsoft Enterprise Mobility + Security - A way to keep things safe

Incentivized
Verified User
Administrator in Information Technology (501-1000 employees employees)

Use Cases and Deployment Scope

We use Microsoft Enterprise Mobility + Security primarily for end-point management as well as for its multifactor authentication and privileged identity management.

We use it to manage the setup and security of our devices through the use and configuration of Microsoft Intune as well use using it to secure all user accounts with MFA and our admin account with PIM.

Pros

  • End point managment
  • User account security
  • Privileged identity management

Cons

  • Licensing - All Microsoft licensing is unclear
  • Admin center organization - things are not all in an expected place
  • Clear reporting

Most Important Features

  • End point managment
  • Multifactor Authentication
  • Privileged Identity Management

Return on Investment

  • MFA has prevented a number of phishing attacks against our organization
  • Endpoint management has allowed us to use autopilot to set up our devices far faster
  • PIM has helped to secure our admin accounts

Alternatives Considered

Sophos Central Device Encryption and Microsoft Endpoint Manager (Microsoft Intune + SCCM)

Other Software Used

Microsoft 365, Sophos Central Device Encryption, Keepit

An Office 365 add-on license that is so useful, should be included with Business Premium licenses by default!

Incentivized
Patrick Plaisance
CTO (Chief Technical Officer) in Information Technology at Pachyderm Consulting (1-10 employees employees)

Pros

  • Azure AD Single Sign-On -- this is my favorite feature of EMS + Security. It is easy to setup and MS has simple instructions for most popular cloud services.
  • InTune -- the changeover from the old InTune Client/Silverlight Portal has been painful, but once you get Win10 devices setup with InTune, management is a breeze.

Cons

  • InTune deployment via Hybrid Azure AD. The instructions seem very simple but there are lots of little areas you can get tripped up and there is little logging to see where you've gone wrong.
  • Advanced Threat Protection anti-impersonation. It is WAY too sensitive. Users emailing themselves from personal accounts get their mail sent to quarantine just because the name/label of the personal account matches their Office 365 mailbox name/label? HUH???
  • Licensing. Typical of Microsoft, what you're actually getting and details of licensing are confusing.

Return on Investment

  • SSO setup through Azure AD has saved IT staff countless hours of lost passwords, multiple password resets, offboarding departed staff accounts, etc.
  • Anti malware/phishing policies have prevented active malware/phishing campaigns.

Alternatives Considered

Barracuda Email Security Service and OneLogin

Other Software Used

Microsoft Office 365, Google Drive, Datto