Amazon Inspector vs Microsoft Defender for Cloud comparison

Amazon Inspector vs. Microsoft Defender for Cloud

Download the complete report

Helped 891,869 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Amazon Inspector

Ranking in Vulnerability Management

21st

Average Rating

8.2

Reviews Sentiment

6.3

Number of Reviews

Ranking in other categories

IT Vendor Risk Management (6th)

Microsoft Defender for Cloud

Ranking in Vulnerability Management

6th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Container Management (7th), Container Security (6th), Cloud Workload Protection Platforms (CWPP) (1st), Cloud Security Posture Management (CSPM) (4th), Cloud-Native Application Protection Platforms (CNAPP) (4th), Data Security Posture Management (DSPM) (5th), Microsoft Security Suite (7th), Compliance Management (4th), Cloud Detection and Response (CDR) (3rd)

Mindshare comparison

As of April 2026, in the Vulnerability Management category, the mindshare of Amazon Inspector is 1.4%, down from 2.6% compared to the previous year. The mindshare of Microsoft Defender for Cloud is 3.3%, down from 4.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Vulnerability Management Mindshare Distribution
Product	Mindshare (%)
Microsoft Defender for Cloud	3.3%
Amazon Inspector	1.4%
Other	95.3%

Vulnerability Management

Featured Reviews

Abdalla Kenawy

AWS DevOps SRE/Infrastructure Engineer at Capgemini

Automated insights streamline data security assessment

For Amazon Inspector, we have many EC2 or virtual machines deployed inside our AWS environment, and the problem is that the existing package deployed inside this EC2 instance has already outdated packages. As we progress with time, this package needs to be updated for security enhancement, which requires us to uninstall the package, install the new version, and then we should be fine. However, the challenge comes with how to scan all our EC2 instances for security vulnerabilities, which is currently managed by Amazon Inspector. Amazon Inspector can scan EC2 instances or ECR, which is the ECR registry where we can save artifacts Docker images. Amazon Inspector can also scan Docker images uploaded to ECR for Elastic Registry service, and it can scan databases and S3 based on the latest updates. I noticed this from a couple of months ago, and it provides huge benefits for security. Regarding the best features of Amazon Inspector, it gives us a list of all existing outdated packages as part of a deployed package on EC2 instances or specific Python packages that are part of the Docker file and the Docker image itself, which are causing security concerns. Amazon Inspector can list these security concerns and offer guidance on how we can remediate it by updating the package to a specific upper version or something similar.

Read full review

RyanWalker

Head Of IT at Cirrus Response

Cloud security has cut investigation time and now reveals threats faster but needs simpler oversight

When deploying AI applications, my key security concerns with Microsoft Defender for Cloud are data loss, leakage of data, and guardrails around the actual AI, and I am hoping that this is going to help me put those guardrails in place and identify data exfiltration. Microsoft Defender for Cloud has not helped me manage and secure multi-cloud environments, as we are 100 percent Microsoft and have not really got it in any other environment at all. I am not yet using the unified AI-powered security feature offered by Microsoft Defender for Cloud, but that is coming. I am not yet using the integrated XDR feature of Microsoft Defender for Cloud, but that is coming. I am not yet utilizing the GenAI threat protection features of Microsoft Defender for Cloud. That is also coming and a lot of that will come from learning it here. I have enabled the agentless scanning in my cloud environment with Microsoft Defender for Cloud. Assessing the impact on my workload protection without needing to install agents with Microsoft Defender for Cloud makes it a lot easier, but it also identifies a lot more, which puts more load on me sometimes. I would advise another organization considering Microsoft Defender for Cloud that it is the most logical route to follow if their whole ecosystem is Microsoft. It is easy to implement and it is very self-explanatory when doing it, making sense to just follow the steps as it is too simple, really. I would rate this review a 7.5 out of 10.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"My experience with AWS technical support is very good, I didn't face any specific challenges, and even the documentation of AWS is good for both Microsoft, which is Azure, and AWS."

"The vulnerability discovery is valuable, and they also rank those vulnerabilities for you. So, you could rapidly attack some of the higher, severe vulnerabilities as they pop up, if they do pop up."

"The findings dashboards are neat and easy to understand, offering clear demarcations for different types of findings and detailed insights into specific vulnerabilities and their associated instances. It is not a place where everything is dumped together. It offers an easy-to-understand layout."

"The automated vulnerability detection aspect is most valuable."

"The assessment reports provided by Amazon Inspector have helped me in identifying security vulnerabilities in my cloud applications by giving us a nicely designed dashboard that provides all the security information we need to work on remediation."

"Amazon Inspector is highly stable, rated ten out of ten, and this stability impacts business security and administration positively."

"It operates continuously, so as soon as resources are created, it scans them for vulnerabilities."

"The integration of Amazon Inspector with other AWS services has enhanced our security. Security Hub is a major asset because it allows us to centralize data from various AWS services. We can integrate third-party tools as well. It is just a single-click option."

More Amazon Inspector pros

"Everything is built into Azure, and if we go for cross-cloud development with Azure Arc, we can use most of the features. While it's possible to deploy and convert third-party applications, it is difficult to maintain, whereas Azure deployments to the cloud are always easier. Also, Microsoft is a big company, so they always provide enough support, and we trust the Microsoft brand."

"The most valuable features are the security recommendations provided by Defender for Cloud."

"The most valuable features are ransomware protection and access controls. The solution has helped us secure some folders on our systems from unauthorized modifications."

"One important security feature is the incident alerts. Now, with all these cyberattacks, there are a lot of incident alerts that get triggered. It is very difficult to keep monitoring everything automatically, instead our organization is utilizing the automated use case that we get from Microsoft. That has helped bring down the manual work for a lot of things."

"The tool's most valuable feature is its support for cloud-native services like Kubernetes, containers, managed storage, and databases. Protecting these without Microsoft Defender for Cloud would be extremely challenging. For threat protection specifically, I find the signature-based detection and heuristic detection features very effective."

"Some of the most valuable features of Microsoft Defender for Cloud include its effectiveness in threat detection through unsupervised machine learning, CTI, and advanced sandboxing."

"The most valuable feature is the regulatory compliance aspect, where we utilize predefined initiatives like NIST. Alert management is another useful feature. Alerts are directly integrated with our email or DevOps board for easy viewing, allowing us to identify problem areas efficiently."

"The solution is very easy to deploy."

More Microsoft Defender for Cloud pros

Cons

"There isn't too much to improve right now. Scanning on demand or as a part of the pipeline versus a post pipeline solution would be good, but it is not a deal breaker by any means."

"The most challenging aspect I faced with Amazon Inspector during integration was automating the remediation process."

"The false positive rate of Amazon Inspector is a little high, and it is not covering all different applications and scanning."

"There isn't too much to improve right now. Scanning on demand or as a part of the pipeline versus a post pipeline solution would be good, but it is not a deal breaker by any means."

"One major area for improvement is remediation. My team works on remediating findings over time, likely using available patches. However, easier integration with Amazon's patching services would be very helpful."

"It has automated vulnerability assessment, yet I seek more flexibility in defining custom vulnerability checks tailored to my needs, which is more difficult."

"The other point is that the reporting features of Inspector need improvement. For example, I am in an organization with millions of CVEs, and getting an overview of all this is challenging."

"One area for improvement in Amazon Inspector is the automation aspect."

More Amazon Inspector cons

"Microsoft does a fairly good job, but many products are developed from an engineer's perspective rather than the end user perspective, making the intuitive flow of the interface sometimes less than optimal."

"The solution is quite complex. A lot of the different policies that actually get applied don't pertain to every client."

"Microsoft Defender for Cloud could improve with more granular policy customization and better noise reduction in alerts to minimize false positives."

"There should be an automated mechanism to design Azure policies based on the recommendations, possibly with AI integration. Instead of an engineer having to write a policy to fix security gaps, which is very time-consuming, there should be an inbuilt capability to auto-remediate everything and have proper control in place."

"Azure Security Center should be more easily understood by a non-technical person. It needs to be simplified and made more user-friendly for a non-technical person."

"With the new Copilot functionality available everywhere, it is challenging to pinpoint areas for improvement. If I put in a lot of thought, I might identify things, but right now, nothing significant pops into my mind, but there is always room for more transparency, especially in pricing."

"Microsoft can improve the pricing by offering a plan that is more cost-effective for small and medium organizations."

"The documentation could be much clearer."

More Microsoft Defender for Cloud cons

Pricing and Cost Advice

"The lowest cost would be around $10 for a few small accounts, however, for thousands of accounts, it could be around $5000 to $6000 dollars per month."

"The pricing is very transparent and clear."

"It's priced according to market standards for its services."

"It is scaled as you go. There are probably a certain number of scans per month, and there are tiers. If you're under a certain tier, it is free. The second level is pennies, and then all the way up to like a million. So, it has a tiered pricing program. They're pretty good with your initial scanning, and there is room to scale based on being affordable, but it is fairly cheap. There are no additional costs. They pretty much think about it as a pay-per-scan type model."

"The pricing is very difficult because every type of Defender for Cloud has its own metrics and pricing. If you have Cloud for Key Vault, the pricing is different than it is for storage. Every type has its own pricing list and rules."

"Its pricing is a little bit high in terms of Azure Security Center, but the good thing is that we don't need to maintain and deploy it. So, while the pricing is high, it is native to Azure which is why we prefer using this tool."

"Pricing depends on your workload size, but it is very cheap. If you're talking about virtual machines, it is $5 or something for each machine, which is minimal. If you go for some agent-based solution for every virtual machine, then you need to pay the same thing or more than that. For an on-premises solution like this, we were paying around $30 to $50 based on size. With Defender, Microsoft doesn't bother about the size. You pay based on the number of machines. So, if you have 10 virtual machines, and 10 virtual machines are being monitored, you are paying based on that rather than the size of the virtual machine. Thus, you are paying for the number of units rather than paying for the size of your units."

"The solution is expensive, and I rate it a five to six out of ten."

"We only use the free tier, so we haven't faced any pricing, setup costs, or licensing challenges."

"Azure Defender is a bit pricey. The price could be lower."

"They have a free version, but the license for this one isn't too high. It's free to start with, and you're charged for using it beyond 30 days. Some other pieces of Defender are charged based on usage, so you will be charged more for a high volume of transactions. I believe Defender for Cloud is a daily charge based on Azure's App Service Pricing."

"The tool is pretty expensive."

More Microsoft Defender for Cloud pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

891,869 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

15%

Computer Software Company

Government

Manufacturing Company

Financial Services Firm

13%

Computer Software Company

10%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	2
Midsize Enterprise	2
Large Enterprise	6

By reviewers
Company Size	Count
Small Business	29
Midsize Enterprise	11
Large Enterprise	49

Questions from the Community

What is your experience regarding pricing and costs for Amazon Inspector?

I am not honestly sure about the pricing side of Amazon Inspector, but that is taken care of by a separate team. I believe it's cheaper than the other third-party solutions.

What needs improvement with Amazon Inspector?

They might launch support for third-party environments in the next version regarding the best features in Amazon Inspector from my perspective. The false positive rate of Amazon Inspector is a litt...

What is your primary use case for Amazon Inspector?

I mostly use Amazon Inspector for vulnerability scanning on AWS native applications. For hybrid applications, we have different security scanners.

How is Prisma Cloud vs Azure Security Center for security?

Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening across your ecosystem. It also has great remote workforce capabilities and supports a...

What is your experience regarding pricing and costs for Microsoft Defender for Cloud?

My experience with pricing, setup costs, and licensing was that the license cost was the only consideration. Setup and support had no issues.

What needs improvement with Microsoft Defender for Cloud?

To improve Microsoft Defender for Cloud, I think pricing-wise, the license price is a little bit higher from an ingestion cost perspective. Depending on what license you choose, you might have to p...

Tenable Nessus vs Amazon Inspector

Comparisons

Compared 11% of the time

Tenable Vulnerability Management vs Amazon Inspector

Compared 8% of the time

Rapid7 Metasploit vs Amazon Inspector

Compared 6% of the time

Qualys CyberSecurity Asset Management vs Amazon Inspector

Compared 6% of the time

Prisma Cloud by Palo Alto Networks vs Amazon Inspector

Compared 4% of the time

More Amazon Inspector Competitors

AWS GuardDuty vs Microsoft Defender for Cloud

Compared 30% of the time

Wiz vs Microsoft Defender for Cloud

Compared 5% of the time

Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud

Compared 3% of the time

SentinelOne Singularity Cloud Security vs Microsoft Defender for Cloud

Compared 2% of the time

Microsoft Defender XDR vs Microsoft Defender for Cloud

Compared 2% of the time

More Microsoft Defender for Cloud Competitors

Product Reports

Amazon Inspector

Download Amazon Inspector product report

Microsoft Defender for Cloud

Download Microsoft Defender for Cloud product report

Also Known As

No data available

Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender

Interactive Demo

Demo not available

Amazon Web Services (AWS)

Microsoft

Overview

Amazon Inspector offers automated vulnerability detection, scanning AWS workloads and recommending remediation, ensuring enhanced security without constant supervision.

Amazon Inspector provides advanced automated vulnerability assessments, specifically designed for AWS environments. It scans EC2 instances, ECR, and container images for vulnerabilities, ranking them by priority. With capabilities like integration with CloudTrail and CloudWatch, adherence to compliance benchmarks, and a comprehensive view for diverse resources, it supports continuous detection and detailed reporting. Users can schedule regular scans, maintaining strong security oversight. Current feedback highlights a need for improved scanning of EBS, S3, and EFS, as well as expanded databases and better patch integration.

What features make Amazon Inspector stand out?

Automated Vulnerability Assessments: Detects and prioritizes vulnerabilities in AWS workloads.
Continuous Detection: Keeps an eye on EC2, ECR, and container images for ongoing risk management.
Integration Capabilities: Works with CloudTrail and CloudWatch to centralize oversight and alerts.
Compliance Adherence: Aligns with industry benchmarks for strengthened regulatory compliance.
Detailed Reporting: Provides comprehensive reports with findings and CVEs.

What benefits do users gain from Amazon Inspector?

Enhanced Security: Automates vulnerability detection, reducing manual efforts.
Efficiency: Identifies and prioritizes threats, streamlining resource allocation.
Comprehensive Oversight: Detailed reports improve understanding and response strategies.
Regulatory Compliance: Aligns with compliance standards, aiding legal adherence.

Amazon Inspector is utilized across industries, including finance, healthcare, and tech, assisting with robust security management in cloud-native environments. By integrating with services like Security Hub and SIEM, businesses maintain compliance and streamline alert management. This solution supports broader security frameworks, often paired with third-party tools to enhance protection strategies.

Amazon Web Services (AWS)

Microsoft Defender for Cloud is a comprehensive security platform offering integration with Microsoft services, multi-cloud capability, AI-driven threat detection, compliance, and unified visibility for improved security operations.

Microsoft Defender for Cloud manages security operations by integrating with Microsoft services and supporting multi-cloud environments. Its features include AI-driven threat detection, compliance oversight, and advanced threat protection. It simplifies processes with unified visibility, threat intelligence, and automated workflows, enhancing security posture across various workloads. Despite its robust capabilities, improvements are needed in third-party tool integration, comprehensive AI-driven remediation, and a more intuitive dashboard. Users report complexity in licensing, inadequate documentation, and high costs, with room for enhancements in compliance reporting and multi-cloud support.

What are the key features of Microsoft Defender for Cloud?

Integration with Microsoft Services: Seamlessly integrates with Microsoft platforms for streamlined operations.
Multi-Cloud Capability: Supports various cloud environments for broader coverage.
AI-Driven Threat Detection: Uses AI to identify and counter security threats effectively.
Compliance Features: Offers regulatory compliance tools to ensure adherence to standards.
Unified Visibility: Provides a comprehensive view of security operations for better management.
Endpoint Management: Manages and secures endpoint devices efficiently.
Advanced Threat Protection: Delivers enhanced defense against complex threats.
Vulnerability Management: Identifies and addresses vulnerabilities proactively.

What benefits and ROI can users expect?

Enhanced Security Posture: Strengthens security across multiple environments.
Unified Threat Intelligence: Centralizes threat data for informed decision-making.
Automated Processes: Streamlines security operations with automated workflows.
Prioritized Remediation: Offers prioritized actions to address security challenges efficiently.

Industries leverage Microsoft Defender for Cloud for security posture management and endpoint protection. Many companies integrate it with Office 365 for enhanced functionality. It provides comprehensive security overviews by monitoring cloud vulnerabilities, limiting unauthorized access, and replacing existing tools with its extensive capabilities from network security to compliance checks, securing Azure infrastructure, and enhancing client security.

Microsoft

Sample Customers

betterment, caplinked, flatiron, university of nutri dame

Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.

Amazon Inspector vs. Microsoft Defender for Cloud