Cybereason XDR vs Microsoft Defender XDR comparison

Cybereason and Microsoft are both solutions in the Extended Detection and Response (XDR) category. Cybereason is ranked #22 with an average rating of 8.5, while Microsoft is ranked #5 with an average rating of 8.4. Cybereason holds a 0.9% mindshare in XDR, compared to Microsoft’s 10.2% mindshare. Additionally, 100% of Cybereason users are willing to recommend the solution, compared to 97% of Microsoft users who would recommend it.

Cybereason XDR

Read 2 Cybereason XDR reviews

1,530 Views
479 Comparison Views

100% willing to recommend

Microsoft Defender XDR

Read 89 Microsoft Defender XDR reviews

7,029 Views
5,340 Comparison Views

97% willing to recommend

Cybereason XDR

Microsoft Defender XDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Microsoft Defender XDR and Cybereason XDR compete in the extended detection and response category. Cybereason XDR holds the upper hand due to its robust features and adaptability.

Features: Microsoft Defender XDR offers comprehensive coverage, integration with other Microsoft products, and a cohesive security ecosystem. Cybereason XDR provides advanced threat detection capabilities, adaptability, and a robust feature set.

Room for Improvement: Microsoft Defender XDR needs enhancements in detection capabilities, reporting functionalities, and initial setup challenges. Cybereason XDR could improve its integration with third-party services, enhance its feature adaptability, and refine threat detection further.

Ease of Deployment and Customer Service: Microsoft Defender XDR is straightforward to integrate within Microsoft environments, receiving positive feedback for customer service despite setup challenges. Cybereason XDR deployment is praised for simplicity and effective support.

Pricing and ROI: Microsoft Defender XDR is economically favorable, offering value through Microsoft ecosystem integration. Cybereason XDR is a premium option with higher costs but provides high-level features, resulting in strong ROI.

To learn more, read our detailed Cybereason XDR vs. Microsoft Defender XDR Report (Updated: October 2024).

Buyer's Guide

Cybereason XDR vs. Microsoft Defender XDR

October 2024

Download the complete report

Helped 816,406 peers since 2012

Categories and Ranking

Cybereason XDR

Ranking in Extended Detection and Response (XDR)

22nd

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

No ranking in other categories

Microsoft Defender XDR

Ranking in Extended Detection and Response (XDR)

5th

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (5th), Microsoft Security Suite (2nd)

Mindshare comparison

As of November 2024, in the Extended Detection and Response (XDR) category, the mindshare of Cybereason XDR is 0.9%, up from 0.6% compared to the previous year. The mindshare of Microsoft Defender XDR is 10.2%, up from 6.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

Ivan Burke

Head of Research Development and Innovation at CSIR

Provides effective incident response and investigation features

We also use Palo Alto's XDR, SentinelOne, Trend Micro, and quite a few others. SentinelOne is nice because you have a centralized dashboard. You just have a single instance and can manage all your clients from one central dashboard, which Cybereason currently lacks. It hinders our use case because we have to redeploy our rules. However, SentinelOne's search feature is slightly more limited than Cybereason's. SentinelOne's search feature is very restrictive, and they have a certain way you have to do it. If you don't follow that way, you're kind of stuck. The deployability is the same, and we have not had scalability issues. We don't work with a larger client. Our largest deployment was about 3,000 endpoints. Cybereason's tech support or the support engineer tends to be slightly better than SentinelOne's because there is no direct contact for support in our region. We usually have to reach out to either the European or the American branches for assistance. There's a bit of a time delay or something that happens. Those are the only major differences.

Read full review

Desray Liu

Project Manager at Freedom Systems Inc.

A time-saving and easy-to-integrate product that needs to offer a control center to users

As a part of Microsoft's attempt to reduce costs, there has been a direct cut down of the local technical support team. Sometimes, you have to use the technical support offered by Microsoft from other countries, but at times, we speak different languages, just like how people speak in Chinese or Mandarin, but there are still some differences between them. The front-line support from Microsoft has only limited technical abilities or access to their internal system. Sometimes, my company cannot even escalate an issue to Microsoft's senior team members. The support team of Microsoft is nice as they attempt to solve the problems together with you, but I believe that due to some cost-related issues, they don't have enough permissions. Sometimes, users might feel blocked when trying to connect with the support team. I rate the technical support a seven out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cybereason XDR's most useful feature is the investigation."

"The solution has an investigation feature, which is useful for building storylines."

"The integration between all the Defender products is the most valuable feature."

"The summarization of emails is a valuable feature."

"Scanning, vulnerability reporting, and the dashboard are the most valuable features."

"We can automate routine tasks and write scripts to carry out difficult tasks, which makes things easier for us."

"It gives a lot of flexibility in terms of configuration and customization as per the business requirements."

"The most valuable feature is probably the aggregation and correlation of the different telemetry points with Defender for Identity, Defender for Endpoint, and Defender for Cloud Apps. All of these various things are part of that portal. We've wanted that single pane of glass for years."

"The attack simulation is excellent; initially, this feature wasn't very robust, but Microsoft improved what we could achieve with it. We can now customize our practice phishing emails and include our company logo, for example. Attack simulation also helps integrate with third-party solutions where applicable and provides an overview of our security architecture through testing. The summary includes areas for improvement in our protection and what steps we need to take to get there."

"The EDR and the way it automatically responds to ransomware and other attacks are valuable features."

More Microsoft Defender XDR pros

Cons

"The one thing we sometimes have issues with is its integration with other security applications like antiviruses."

"Cybereason's customer support could be better."

"When discussing the secure score, which includes overviews and recommended actions, some of these recommended actions are not applicable to us, particularly those related to Microsoft Internet Explorer, which we do not use in any of our environments."

"My client would like the solution to be more customizable without using code. You can only build on the default console, but we're not allowed to change it."

"Defender XDR could provide recommendations for threat-hunting queries. Some people do not know how to write an advanced threat query, so we need to spend time training them."

"It would be highly beneficial if CoPilot could identify anomalies within the network and notify the IT team."

"What could be improved in Microsoft 365 Defender is its licensing, e.g. it should be more consolidated and would be good if it has some optimizations. Improving the alerts and notifications, in terms of adding more details, would also be good for this solution."

"Correctly updated records are the most significant area for improvement. There have been times when we were notified of a required fix; we would carry out the fix and confirm it but still get the same notification a week later. This seems to be a delay in records being updated and leads to false reporting, which is something that needs to be fixed."

"The licensing is a nightmare and has room for improvement."

"The solution can improve the rules and privileges it offers."

More Microsoft Defender XDR cons

Pricing and Cost Advice

"The solution is cheaper than Microsoft Defender. It has a subscription and no standard license."

"Sometimes 365 Defender is expensive, but it can be moderate, depending on the organization's size and the license type. We're satisfied with the cost because it gives us a product that protects our entire environment with DLP. To compromise some cost, of course, we are to complete the most secure environment."

"365 Defender can get expensive because you pay per gigabyte of data ingested. On the other hand, much of the data available in the other Microsoft security solutions are made available relatively cheaply—sometimes at cost or for free. Integrating only a limited set of third-party solutions with Sentinel would be cost-effective. It's much more affordable if companies only have Microsoft stuff."

"We have a lot of problems in Latin America regarding the price of Microsoft 365 Defender, because the relationship between dollars and the money of the different countries, it's is a lot. Many customers that have small businesses say that they would like the solution but it is too expensive. However, large companies do not find the cost an issue."

"The product is fairly priced for what we get from it."

"The most valuable licensing option is expensive, so pricing could be improved. Licensing options for this solution also need to be consolidated, because they frequently change."

"Microsoft is not competitive with the pricing of the solution. The competitors are able to offer lower discounts. The price of the solution is higher."

"The functionality is fantastic, but for medium and small-sized companies it's overpriced. It would be better if it were a little bit cheaper."

"Microsoft Defender XDR is expensive."

More Microsoft Defender XDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

816,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

23%

Manufacturing Company

10%

Comms Service Provider

Financial Services Firm

Computer Software Company

17%

Financial Services Firm

11%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Cybereason XDR?

The solution has an investigation feature, which is useful for building storylines.

See all answers

What needs improvement with Cybereason XDR?

The one thing we sometimes have issues with is its integration with other security applications like antiviruses. We connect this solution to many companies, so we set up new custom rules for every...

See all answers

What is your primary use case for Cybereason XDR?

We have mostly been using it to help us look into responses. We usually deploy it during the incident response scenarios, trying to find out what happened in an environment.

See all answers

What do you like most about Microsoft 365 Defender?

Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.

See all answers

What is your experience regarding pricing and costs for Microsoft 365 Defender?

The pricing is reasonable. It's cheaper than other options.

See all answers

What needs improvement with Microsoft 365 Defender?

The solution could enhance the threat Intelligence feature by making it more relevant to specific industries. Much of the threat intelligence information isn't directly applicable to our environmen...

See all answers

Comparisons

Wazuh vs Cybereason XDR

Compared 46% of the time

Cortex XDR by Palo Alto Networks vs Cybereason XDR

Compared 12% of the time

Cynet vs Cybereason XDR

Compared 9% of the time

CrowdStrike Falcon vs Cybereason XDR

Compared 7% of the time

TEHTRIS XDR vs Cybereason XDR

Compared 7% of the time

More Cybereason XDR Competitors

CrowdStrike Falcon vs Microsoft Defender XDR

Compared 37% of the time

Wazuh vs Microsoft Defender XDR

Compared 8% of the time

Microsoft Defender for Cloud vs Microsoft Defender XDR

Compared 8% of the time

Trend Vision One vs Microsoft Defender XDR

Compared 5% of the time

Microsoft Purview Compliance Manager vs Microsoft Defender XDR

Compared 4% of the time

More Microsoft Defender XDR Competitors

Product Reports

Buyer's Guide

Extended Detection and Response (XDR)

November 2024

Download Cybereason XDR product report

Buyer's Guide

Microsoft Defender XDR

November 2024

Download Microsoft Defender XDR product report

Also Known As

No data available

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender

Learn More

Cybereason

Microsoft

Overview

Cybereason is the leader in endpoint protection, offering endpoint detection and response, next-generation antivirus, and managed monitoring services. Founded by elite intelligence professionals born and bred in offense-first hunting, Cybereason gives enterprises the upper hand over cyber adversaries.

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.

It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.

Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.

Watch the Microsoft demo video here: Microsoft Defender XDR demo video.

Sample Customers

MOTOROLA MOBILITY

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.

Buyer's Guide

Cybereason XDR vs. Microsoft Defender XDR

October 2024

Free Report: Cybereason XDR vs. Microsoft Defender XDR

Find out what your peers are saying about Cybereason XDR vs. Microsoft Defender XDR and other solutions. Updated: October 2024.

DOWNLOAD NOW

816,406 professionals have used our research since 2012.

See our Cybereason XDR vs. Microsoft Defender XDR report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.