Amazon Inspector vs Microsoft Defender for Cloud comparison

Amazon Inspector vs. Microsoft Defender for Cloud

Download the complete report

Helped 891,869 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Amazon Inspector

Ranking in Vulnerability Management

21st

Average Rating

8.2

Reviews Sentiment

6.3

Number of Reviews

Ranking in other categories

IT Vendor Risk Management (6th)

Microsoft Defender for Cloud

Ranking in Vulnerability Management

6th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Container Management (7th), Container Security (6th), Cloud Workload Protection Platforms (CWPP) (1st), Cloud Security Posture Management (CSPM) (4th), Cloud-Native Application Protection Platforms (CNAPP) (4th), Data Security Posture Management (DSPM) (5th), Microsoft Security Suite (7th), Compliance Management (4th), Cloud Detection and Response (CDR) (3rd)

Mindshare comparison

As of April 2026, in the Vulnerability Management category, the mindshare of Amazon Inspector is 1.4%, down from 2.6% compared to the previous year. The mindshare of Microsoft Defender for Cloud is 3.3%, down from 4.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management Mindshare Distribution
Product	Mindshare (%)
Microsoft Defender for Cloud	3.3%
Amazon Inspector	1.4%
Other	95.3%

Vulnerability Management

Featured Reviews

Abdalla Kenawy

AWS DevOps SRE/Infrastructure Engineer at Capgemini

Automated insights streamline data security assessment

For Amazon Inspector, we have many EC2 or virtual machines deployed inside our AWS environment, and the problem is that the existing package deployed inside this EC2 instance has already outdated packages. As we progress with time, this package needs to be updated for security enhancement, which requires us to uninstall the package, install the new version, and then we should be fine. However, the challenge comes with how to scan all our EC2 instances for security vulnerabilities, which is currently managed by Amazon Inspector. Amazon Inspector can scan EC2 instances or ECR, which is the ECR registry where we can save artifacts Docker images. Amazon Inspector can also scan Docker images uploaded to ECR for Elastic Registry service, and it can scan databases and S3 based on the latest updates. I noticed this from a couple of months ago, and it provides huge benefits for security. Regarding the best features of Amazon Inspector, it gives us a list of all existing outdated packages as part of a deployed package on EC2 instances or specific Python packages that are part of the Docker file and the Docker image itself, which are causing security concerns. Amazon Inspector can list these security concerns and offer guidance on how we can remediate it by updating the package to a specific upper version or something similar.

Read full review

RyanWalker

Head Of IT at Cirrus Response

Cloud security has cut investigation time and now reveals threats faster but needs simpler oversight

When deploying AI applications, my key security concerns with Microsoft Defender for Cloud are data loss, leakage of data, and guardrails around the actual AI, and I am hoping that this is going to help me put those guardrails in place and identify data exfiltration. Microsoft Defender for Cloud has not helped me manage and secure multi-cloud environments, as we are 100 percent Microsoft and have not really got it in any other environment at all. I am not yet using the unified AI-powered security feature offered by Microsoft Defender for Cloud, but that is coming. I am not yet using the integrated XDR feature of Microsoft Defender for Cloud, but that is coming. I am not yet utilizing the GenAI threat protection features of Microsoft Defender for Cloud. That is also coming and a lot of that will come from learning it here. I have enabled the agentless scanning in my cloud environment with Microsoft Defender for Cloud. Assessing the impact on my workload protection without needing to install agents with Microsoft Defender for Cloud makes it a lot easier, but it also identifies a lot more, which puts more load on me sometimes. I would advise another organization considering Microsoft Defender for Cloud that it is the most logical route to follow if their whole ecosystem is Microsoft. It is easy to implement and it is very self-explanatory when doing it, making sense to just follow the steps as it is too simple, really. I would rate this review a 7.5 out of 10.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The assessment reports provided by Amazon Inspector have helped me in identifying security vulnerabilities in my cloud applications by giving us a nicely designed dashboard that provides all the security information we need to work on remediation."

"The most valuable feature of Amazon Inspector is the categorization of findings, which filters vulnerabilities by instance, container image, container repository, and Lambda function."

"The integration of Amazon Inspector with other AWS services has enhanced our security. Security Hub is a major asset because it allows us to centralize data from various AWS services. We can integrate third-party tools as well. It is just a single-click option."

"Amazon Inspector is highly stable, rated ten out of ten, and this stability impacts business security and administration positively."

"The automated vulnerability detection aspect is most valuable."

"My experience with AWS technical support is very good, I didn't face any specific challenges, and even the documentation of AWS is good for both Microsoft, which is Azure, and AWS."

"The vulnerability discovery is valuable, and they also rank those vulnerabilities for you. So, you could rapidly attack some of the higher, severe vulnerabilities as they pop up, if they do pop up."

"I recommend Amazon Inspector because it allows the automation of processes and requires less manual monitoring."

More Amazon Inspector pros

"The tool's most valuable feature is its support for cloud-native services like Kubernetes, containers, managed storage, and databases. Protecting these without Microsoft Defender for Cloud would be extremely challenging. For threat protection specifically, I find the signature-based detection and heuristic detection features very effective."

"The strong point of Defender, especially when using Azure Arc to bring in on-premises systems, is that it doesn't matter where these systems are; they're just resources in the portal."

"The most valuable feature is the comprehensive overview across different workloads. It allows us to see protection not just across one workload, such as virtual machines, containers, infrastructure, or data, but across all our workloads. This overall visibility is really helpful."

"The feature of Microsoft Defender for Cloud that I have found most valuable is the alerts, which are pretty standard for security."

"When we started out, our secure score was pretty low, we adopted some of the recommendations that Security Center set out and we were able to make good progress on improving it, as it had been in the low thirties and is now in the upper eighties."

"The scalability of Microsoft Defender for Cloud is very good."

"The most valuable feature is the recommendations provided on how to improve security."

"Some of the most valuable features of Microsoft Defender for Cloud include its effectiveness in threat detection through unsupervised machine learning, CTI, and advanced sandboxing."

More Microsoft Defender for Cloud pros

Cons

"There isn't too much to improve right now. Scanning on demand or as a part of the pipeline versus a post pipeline solution would be good, but it is not a deal breaker by any means."

"One area for improvement in Amazon Inspector is the automation aspect."

"The most challenging aspect I faced with Amazon Inspector during integration was automating the remediation process."

"There is room for improvement in the scanning capabilities. I'd like to see broader coverage in terms of the vulnerabilities detected."

"There are challenges associated with the interdependencies in AWS services, like requiring an Active Directory for other services, resulting in additional charges."

"One major area for improvement is remediation. My team works on remediating findings over time, likely using available patches. However, easier integration with Amazon's patching services would be very helpful."

"The false positive rate of Amazon Inspector is a little high, and it is not covering all different applications and scanning."

"It has automated vulnerability assessment, yet I seek more flexibility in defining custom vulnerability checks tailored to my needs, which is more difficult."

More Amazon Inspector cons

"I rate Microsoft support five out of 10. It gets better once you're escalated past the first and second levels. It's difficult to get the necessary support when tickets are first opened."

"From a compliance standpoint, they can include some more metrics and some specific compliances such as GDPR."

"From my own perspective, they just need a product that is tailored to micro-segmentation so I can configure rules for multiple systems at once and manage it."

"It's very expensive in terms of the need to maintain it actively."

"I would rate Microsoft Defender for Cloud a six out of 10 due to its lack of necessary features to operate as a standalone solution."

"The process of deploying Microsoft Defender for Cloud was not smooth. It was always a challenge migrating, as a lot of it involved application dependencies and what was required before being able to use Azure for those services."

"I would like to see more connectors and plugins with other platforms."

"My experience with Microsoft Defender for Cloud has been largely negative due to a poor user experience."

More Microsoft Defender for Cloud cons

Pricing and Cost Advice

"The pricing is very transparent and clear."

"The lowest cost would be around $10 for a few small accounts, however, for thousands of accounts, it could be around $5000 to $6000 dollars per month."

"It is scaled as you go. There are probably a certain number of scans per month, and there are tiers. If you're under a certain tier, it is free. The second level is pennies, and then all the way up to like a million. So, it has a tiered pricing program. They're pretty good with your initial scanning, and there is room to scale based on being affordable, but it is fairly cheap. There are no additional costs. They pretty much think about it as a pay-per-scan type model."

"It's priced according to market standards for its services."

"Microsoft Defender for Cloud is pricey, especially for Kubernetes clusters."

"It is bundled with our enterprise subscription, which makes it easy to go for it. It is available by default, and there is no extra cost for using the standard features."

"I'm not privy to that information, but I know it's probably close to a million dollars a year."

"The cost is fair. There aren't any costs in addition to the standard licensing fee."

"We are using the free version of the Azure Security Center."

"Pricing is a consideration, but we strive to keep costs low by enabling only necessary services."

"The pricing is very difficult because every type of Defender for Cloud has its own metrics and pricing. If you have Cloud for Key Vault, the pricing is different than it is for storage. Every type has its own pricing list and rules."

"Defender for Cloud is pretty costly for a single line. It's incredibly high to pay monthly for security per server. The cost is considerable for an enterprise with 500-plus virtual machines, and the monthly bill can spike."

More Microsoft Defender for Cloud pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

891,869 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

15%

Computer Software Company

Government

Manufacturing Company

Financial Services Firm

12%

Computer Software Company

10%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	2
Midsize Enterprise	2
Large Enterprise	6

By reviewers
Company Size	Count
Small Business	29
Midsize Enterprise	11
Large Enterprise	49

Questions from the Community

What is your experience regarding pricing and costs for Amazon Inspector?

I am not honestly sure about the pricing side of Amazon Inspector, but that is taken care of by a separate team. I believe it's cheaper than the other third-party solutions.

What needs improvement with Amazon Inspector?

They might launch support for third-party environments in the next version regarding the best features in Amazon Inspector from my perspective. The false positive rate of Amazon Inspector is a litt...

What is your primary use case for Amazon Inspector?

I mostly use Amazon Inspector for vulnerability scanning on AWS native applications. For hybrid applications, we have different security scanners.

How is Prisma Cloud vs Azure Security Center for security?

Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening across your ecosystem. It also has great remote workforce capabilities and supports a...

What is your experience regarding pricing and costs for Microsoft Defender for Cloud?

My experience with pricing, setup costs, and licensing was that the license cost was the only consideration. Setup and support had no issues.

What needs improvement with Microsoft Defender for Cloud?

To improve Microsoft Defender for Cloud, I think pricing-wise, the license price is a little bit higher from an ingestion cost perspective. Depending on what license you choose, you might have to p...

Tenable Nessus vs Amazon Inspector

Comparisons

Compared 11% of the time

Tenable Vulnerability Management vs Amazon Inspector

Compared 8% of the time

Rapid7 Metasploit vs Amazon Inspector

Compared 6% of the time

Qualys CyberSecurity Asset Management vs Amazon Inspector

Compared 6% of the time

Prisma Cloud by Palo Alto Networks vs Amazon Inspector

Compared 4% of the time

More Amazon Inspector Competitors

AWS GuardDuty vs Microsoft Defender for Cloud

Compared 30% of the time

Wiz vs Microsoft Defender for Cloud

Compared 5% of the time

Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud

Compared 3% of the time

SentinelOne Singularity Cloud Security vs Microsoft Defender for Cloud

Compared 2% of the time

Microsoft Defender XDR vs Microsoft Defender for Cloud

Compared 2% of the time

More Microsoft Defender for Cloud Competitors

Product Reports

Amazon Inspector

Download Amazon Inspector product report

Microsoft Defender for Cloud

Download Microsoft Defender for Cloud product report

Also Known As

No data available

Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender

Interactive Demo

Demo not available

Amazon Web Services (AWS)

Microsoft

Overview

Amazon Inspector offers automated vulnerability detection, scanning AWS workloads and recommending remediation, ensuring enhanced security without constant supervision.

Amazon Inspector provides advanced automated vulnerability assessments, specifically designed for AWS environments. It scans EC2 instances, ECR, and container images for vulnerabilities, ranking them by priority. With capabilities like integration with CloudTrail and CloudWatch, adherence to compliance benchmarks, and a comprehensive view for diverse resources, it supports continuous detection and detailed reporting. Users can schedule regular scans, maintaining strong security oversight. Current feedback highlights a need for improved scanning of EBS, S3, and EFS, as well as expanded databases and better patch integration.

What features make Amazon Inspector stand out?

Automated Vulnerability Assessments: Detects and prioritizes vulnerabilities in AWS workloads.
Continuous Detection: Keeps an eye on EC2, ECR, and container images for ongoing risk management.
Integration Capabilities: Works with CloudTrail and CloudWatch to centralize oversight and alerts.
Compliance Adherence: Aligns with industry benchmarks for strengthened regulatory compliance.
Detailed Reporting: Provides comprehensive reports with findings and CVEs.

What benefits do users gain from Amazon Inspector?

Enhanced Security: Automates vulnerability detection, reducing manual efforts.
Efficiency: Identifies and prioritizes threats, streamlining resource allocation.
Comprehensive Oversight: Detailed reports improve understanding and response strategies.
Regulatory Compliance: Aligns with compliance standards, aiding legal adherence.

Amazon Inspector is utilized across industries, including finance, healthcare, and tech, assisting with robust security management in cloud-native environments. By integrating with services like Security Hub and SIEM, businesses maintain compliance and streamline alert management. This solution supports broader security frameworks, often paired with third-party tools to enhance protection strategies.

Amazon Web Services (AWS)

Microsoft Defender for Cloud is a comprehensive security platform offering integration with Microsoft services, multi-cloud capability, AI-driven threat detection, compliance, and unified visibility for improved security operations.

Microsoft Defender for Cloud manages security operations by integrating with Microsoft services and supporting multi-cloud environments. Its features include AI-driven threat detection, compliance oversight, and advanced threat protection. It simplifies processes with unified visibility, threat intelligence, and automated workflows, enhancing security posture across various workloads. Despite its robust capabilities, improvements are needed in third-party tool integration, comprehensive AI-driven remediation, and a more intuitive dashboard. Users report complexity in licensing, inadequate documentation, and high costs, with room for enhancements in compliance reporting and multi-cloud support.

What are the key features of Microsoft Defender for Cloud?

Integration with Microsoft Services: Seamlessly integrates with Microsoft platforms for streamlined operations.
Multi-Cloud Capability: Supports various cloud environments for broader coverage.
AI-Driven Threat Detection: Uses AI to identify and counter security threats effectively.
Compliance Features: Offers regulatory compliance tools to ensure adherence to standards.
Unified Visibility: Provides a comprehensive view of security operations for better management.
Endpoint Management: Manages and secures endpoint devices efficiently.
Advanced Threat Protection: Delivers enhanced defense against complex threats.
Vulnerability Management: Identifies and addresses vulnerabilities proactively.

What benefits and ROI can users expect?

Enhanced Security Posture: Strengthens security across multiple environments.
Unified Threat Intelligence: Centralizes threat data for informed decision-making.
Automated Processes: Streamlines security operations with automated workflows.
Prioritized Remediation: Offers prioritized actions to address security challenges efficiently.

Industries leverage Microsoft Defender for Cloud for security posture management and endpoint protection. Many companies integrate it with Office 365 for enhanced functionality. It provides comprehensive security overviews by monitoring cloud vulnerabilities, limiting unauthorized access, and replacing existing tools with its extensive capabilities from network security to compliance checks, securing Azure infrastructure, and enhancing client security.

Microsoft

Sample Customers

betterment, caplinked, flatiron, university of nutri dame

Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.

Amazon Inspector vs. Microsoft Defender for Cloud