Illumio vs Microsoft Defender for Cloud Apps comparison

The compared Illumio and Microsoft solutions aren't in the same category. Illumio is ranked #3 in CDCS , with an average rating of 8.0, and holds a 23.0% mindshare in the category. Microsoft is ranked #4 in CASB , with an average rating of 8.6, and holds a 18.4% mindshare. Additionally, 87% of Illumio users are willing to recommend the solution, compared to 100% of Microsoft users who would recommend it.

Illumio

Read 9 Illumio reviews

4,918 Views
3,847 Comparison Views

87% willing to recommend

Microsoft Defender for Clou...

Read 32 Microsoft Defender for Cloud Apps reviews

7,225 Views
5,735 Comparison Views

100% willing to recommend

Illumio

Microsoft Defender for Clou...

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Illumio and Microsoft Defender for Cloud Apps based on real PeerSpot user reviews.

Find out what your peers are saying about VMware, Akamai, Illumio and others in Cloud and Data Center Security.

To learn more, read our detailed Cloud and Data Center Security Report (Updated: November 2024).

Buyer's Guide

Cloud and Data Center Security

November 2024

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Illumio

Average Rating

8.0

Number of Reviews

Ranking in other categories

Cloud and Data Center Security (3rd), Cloud Workload Protection Platforms (CWPP) (14th), Microsegmentation Software (3rd)

Microsoft Defender for Clou...

Average Rating

8.4

Number of Reviews

Ranking in other categories

Cloud Access Security Brokers (CASB) (4th), Advanced Threat Protection (ATP) (12th), Microsoft Security Suite (11th)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Illumio is designed for Cloud and Data Center Security and holds a mindshare of 23.0%, up 15.7% compared to last year.
Microsoft Defender for Cloud Apps, on the other hand, focuses on Cloud Access Security Brokers (CASB), holds 18.4% mindshare, down 24.1% since last year.

Cloud and Data Center Security

Cloud Access Security Brokers (CASB)

Featured Reviews

Vincent TOH

Assistant Manager at KPMG S.A.

Aug 15, 2024

Offers real-time application dependency mapping that is useful

The product's initial setup phase is not difficult. We are using a cloud version of the tool. Picking up the PC for the setup was difficult because Illumio's service provider took care of it. In our company, we only installed the tool on our devices, so it wasn't much of a difficult process. On a scale of one to ten, one is difficult, and ten is easy, I rate the setup phase as nine. I didn't deploy Illumio. My company uses the cloud version of the tool. I created my account and paired my device, which was all that was required.

Read full review

Anthony Alvarico

Deliver Practice Director at DynTek

Jul 9, 2024

Provides discovery, data exfiltration, and sensitive data exposure at low cost

The deployment process is quick, taking two to three days. The implementation and customization require more time. We need to adjust the setup to fit the client's needs, which involves fine-tuning notifications and alerts to avoid overwhelming them. First, you need the appropriate licensing. Once you have that, go to security.microsoft.com and integrate with Defender for Endpoints to receive information. While you can ingest logs from different firewalls, such as Palo Alto or Cisco, we usually implement them with Defender for Endpoints. Once a laptop or desktop is set up in Defender for Endpoints, integrating Cloud Apps with the endpoints allows us to collect the data easily. I rate the initial setup a nine out of ten, where one is difficult and ten is easy.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution is easy to use."

"It has helped us to understand internal network visibility and firewall policy implementation. We use the product to simplify firewall policy implementation."

"The solution helps to maintain logs and monitor activities. It also helps us with access management. The tool helps us to secure organizational data that include files."

"The most valuable feature of Illumio Adaptive Security Platform is monitoring. When I have no requirement from the other application, I can use the web block traffic to build."

"The flexibility of the solution is its most valuable feature."

"The tool helps with my company's security posture."

"The features that I have found most useful is the ability to centralize all the rules and then distribute them across various locations. However, I've encountered challenges related to tagging policies, which can be complex to devise. It's a matter that requires careful consideration and stakeholder involvement before implementing such policies."

"The Explorer allows you to know the traffic between source and destination."

More Illumio pros

"The ability to prevent users from using certain applications is one of the most valuable features. It doesn't require any configuration for implementation from the client perspective. It just works right away and gives you the information you need."

"The most valuable feature is the alerting system."

"All of the features are valuable because all of the features are related."

"The solution does not affect a user's workflow."

"Everything from Microsoft is integrated. You receive regular reports on them all. You can push your reports, logs, and security alerts, which are all integrated. It is crucial that these solutions work natively together to deliver coordinated detection and response across our environment."

"We have become more aware of what services our users are using, how often they are using them, and what data is being sent out of the organization and to which services. So, it is really a lot about visibility and helping us make decisions based on that. It drives some of our policy decisions for adding extra security controls."

"I like the web GUI/the management interface. I also like the security of Microsoft. As compared to other manufacturers, it's less complex and easy to understand and work with."

"In Microsoft Defender for Cloud Apps, there is an option to enable files. Once you enable that, it will give you all the files in your organization and where they are located in the cloud... That feature is very useful for investigation purposes."

More Microsoft Defender for Cloud Apps pros

Cons

"It requires a low-level re-architecting of the product."

"The product’s agents don't work very well in OT environments."

"I would like to see better data security in the product."

"The customer service is lagging a bit. It could be better."

"Some of the features that can be improved is offer additional guidance on creating an effective and risk-free tagging policy would be highly beneficial."

"We need more details on areas where there is an error or a traffic blockage. I would like the tool to offer a more detailed view."

"The interaction we've had with the support team hasn't been ideal. Technical support should be improved."

"The solution is very basic and doesn't do anything other than the orchestration of layer four endpoint firewall rules."

More Illumio cons

"The interface needs to be more user-friendly."

"In the future, I would like to see more plug-and-play capabilities that use AI to tell you what needs to be done. It would be helpful if it scanned our devices and made security suggestions, on a configuration basis."

"It doesn't actually decrease the time to respond. This has been an issue with Microsoft recently. Sometimes, there is a delay when it comes to getting an alert policy email... Sometimes it takes two or three hours for that email to be sent."

"There are challenges with detection and there are challenges with false-positive rates."

"Defender for Cloud Apps could come with more configured policies out of the box. Also, integration could be easier. Integration is moderately difficult because Microsoft hasn't developed a solution that unifies device onboarding and management. You have to use Intune to manage devices and Defender for Endpoint to enforce policies. They need to fix their integration, but I believe they will straighten it out by the end of the year."

"Currently, reporting is not very straightforward and it needs to be enhanced. Specific reports are not included and you need to run a query, drill down, and then export it and share it. I would love to have reports with more fine-tuning or granularity, and more predefined reports."

"The technical support team has room for improvement."

"They need to improve the attack surface reduction (ASR) rules. In the latest version, you can implement ASR rules, which are quite useful, but you have to enable those because if they're not enabled, they flag false positives. In the Defender portal, it logs a block for WMI processes and PowerShell. Apparently, it's because ASR rules are not configured. So, you generally have to enable them to exclude, for example, WMI queries or PowerShell because they have a habit of blocking your security scanners. It's a bit weird that they have to be enabled to be configured, and it's not the other way around."

More Microsoft Defender for Cloud Apps cons

Pricing and Cost Advice

"The product's pricing is around 10,000-15,000 USD. The pricing is on a yearly basis."

"There is a subscription needed to use Illumio Adaptive Security Platform and we pay every three years. Overall the solution is expensive."

"We utilize the Microsoft E5 licensing, which encompasses the entire Microsoft suite; however, it is costly."

"Where we are right now, this is an acceptable pricing. I would like to see more transparency given to the end user. The end user given to us is via the cloud service provider. There are different programs and license models. Some include this, and some include that. It is all over the place. There can be a little more consistency or simplification in the pricing so that your parts list is not ten pages long, and you are not trying to determine, "If I have an E3, does this cover that?", or "Do I need to pay separately for the license?" Simplification would probably be better."

"Our clients normally use the Microsoft E1 licensing, which is renewed yearly."

"The pricing is fair."

"Its pricing is on the higher side. Its price is definitely very high for a small-scale company. As an enterprise client, we do get benefits from Microsoft. We get a discounted price because of the number of users we have in our company. We have a premier package, and with that, we do get a lot of discounts. There are no additional costs. It only comes in the top-tier packages. Generally, the top-tier license is the best license that you can get for your organization. If you want, you can buy it separately, but that's not a good idea."

"I'm not totally involved in the pricing part, but I think its pricing is quite aggressive, and its price is quite similar to Netskope. Netskope has separate licensing fees or additional charges if you want to monitor certain SaaS services, whereas, with MCAS, you get 5,000 applications with their Office 365. It is all bundled, and there's no cost for using that. You only have the operational costs. In the country I am in, it is a bit difficult to get people with the required skill sets."

"The E5 license offers everything bundled. People are moving to Microsoft because you buy one license and it gives you everything."

"It has pretty good pricing."

More Microsoft Defender for Cloud Apps pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud and Data Center Security solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

20%

Computer Software Company

16%

Manufacturing Company

Government

Computer Software Company

17%

Financial Services Firm

12%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Illumio Adaptive Security Platform?

The features that I have found most useful is the ability to centralize all the rules and then distribute them across various locations. However, I've encountered challenges related to tagging poli...

See all answers

What is your experience regarding pricing and costs for Illumio Adaptive Security Platform?

The product's pricing is around 10,000-15,000 USD. The pricing is on a yearly basis.

See all answers

What needs improvement with Illumio Adaptive Security Platform?

The log collection part needs improvement, and the tool should offer more details about the logs. We need more details on areas where there is an error or a traffic blockage. I would like the tool ...

See all answers

Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?

Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-native solution, unifying multiple features like DNS-layer security, threat intelli...

See all answers

What do you like most about Microsoft Cloud App Security?

It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notifications are pretty good.

See all answers

What is your experience regarding pricing and costs for Microsoft Cloud App Security?

It's relatively low-cost, especially since it's often bundled with Microsoft 365.

See all answers

Comparisons

Akamai Guardicore Segmentation vs Illumio

Compared 41% of the time

VMware NSX vs Illumio

Compared 15% of the time

Cisco Secure Workload vs Illumio

Compared 10% of the time

Zero Networks vs Illumio

Compared 5% of the time

Zscaler Internet Access vs Illumio

Compared 4% of the time

More Illumio Competitors

Zscaler Internet Access vs Microsoft Defender for Cloud Apps

Compared 24% of the time

Cisco Umbrella vs Microsoft Defender for Cloud Apps

Compared 18% of the time

Netskope vs Microsoft Defender for Cloud Apps

Compared 12% of the time

Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps

Compared 7% of the time

Skyhigh Security vs Microsoft Defender for Cloud Apps

Compared 4% of the time

More Microsoft Defender for Cloud Apps Competitors

Product Reports

Buyer's Guide

Cloud and Data Center Security

November 2024

Download Illumio product report

Buyer's Guide

Microsoft Defender for Cloud Apps

October 2024

Microsoft Defender for Cloud Apps report

Download Microsoft Defender for Cloud Apps product report

Also Known As

Illumio Adaptive Security Platform, Illumio ASP

MS Cloud App Security, Microsoft Cloud App Security

Learn More

Illumio

Microsoft

Overview

Illumio Zero Trust Segmentation is a cloud and data center security solution that helps stop breaches from spreading across hybrid and multi cloud IT environments. The solution is designed to stop ransomware, contain cyber attacks, and reduce risk. With Illumio Zero Trust Segmentation, users can understand relationships and communications to map exposure risk of systems and data, identify the right security posture and secure applications through least-privilege policies, and ensure a Zero Trust security posture.

Illumio Zero Trust Segmentation Features

Illumio Zero Trust Segmentation has many valuable key features. Some of the most useful ones include:

Scalability: Illumio Zero Trust Segmentation scales up to 200,000 managed workloads or over 700,000 unmanaged workloads. These workloads can be in the cloud, on-premises, and in hybrid environments.

Single pane of visibility: The solution’s single pane of visibility improves your security posture and ability to prevent and respond rapidly to cyberattacks.

Simplicity: With Illumio Zero Trust Segmentation, setting up groups and tags is simple. The solution is easy to integrate with next-generation firewalls and can also integrate with IT service management tools to import workload tags to provide more context to workloads.

Ransomware containment: The solution provides enforcement boundaries to contain attackers from moving laterally across your organization, enabling security architects to immediately isolate any workload or endpoint compromised in an attack. Enforcement boundaries can be activated instantly through scripts or by manual control, isolating workloads and endpoints already infected from spreading across the organization.

Illumio Zero Trust Segmentation Benefits

There are many benefits to implementing Illumio Zero Trust Segmentation. Some of the biggest advantages the solution offers include:

Visibility everywhere: The Illumio Zero Trust Segmentation solution helps ensure that every interaction on your network is accounted for.

Least-privilege access: By implementing Illumio Zero Trust Segmentation, your organization can prevent unexpected breaches from propagating.

Adaptability and consistency: The solution guarantees consistent network behavior everywhere.

Proactive posture: Using the solution enables your organization to always be on the lookout for an attack.

Improve breach containment: With the solution, you can prevent unauthorized lateral movement and reduce your blast radius. Creating micro-perimeters around specific assets breaks up your attack surface and gives you the granular control needed to contain breaches.

Streamline policy management: The solution enables organizations to decouple segmentation from the underlying network to define policies based on the language that IT uses. Illumio's human-readable labels make policy creation much simpler and faster than traditional network segmentation approaches like VLANs, IP addresses, and port numbers.

Reviews from Real Users

Illumio Zero Trust Segmentation is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it has a good auto policy writing feature, great mapping, and useful monitoring.

Shashi, Technical Consultant at a financial services firm, explains which features she really likes. “The auto policy writing is great. The feature will give you the option of inbound-outbound traffic. The Explorer allows you to know the traffic between source and destination. The illumination definitely stands out. Mapping is great. The application group mapping is useful.”

The solution has “helpful support, useful monitoring, and high availability,” according to Edwin L., Security Architect at MGM.

Microsoft Defender for Cloud Apps is a comprehensive security solution that provides protection for cloud-based applications and services. It offers real-time threat detection and response, as well as advanced analytics and reporting capabilities. With Defender for Cloud Apps, organizations can ensure the security of their cloud environments and safeguard against cyber threats. Whether you're running SaaS applications, IaaS workloads, or PaaS services, Microsoft Defender for Cloud Apps can help you secure your cloud environment and protect your business from cyber threats.

Microsoft Defender for Cloud Apps Benefits:

Provides comprehensive security for cloud applications
Integrates with other Microsoft security tools
Easy to use and deploy
Provides real-time threat detection and response
Strong protection against phishing attacks and other common threats
Highly customizable to meet specific needs of different organizations

Microsoft Defender for Cloud Apps Use Cases:

Governance, authentication, security, and compliance.
Detects shadow IT and anomalous user behavior
Controls access to applications
Provides auditing and filtering setups
Used for end-user compute devices, file monitoring, user investigation, and activity
Used for data governance, threat detection, and getting visibility over cloud applications
Used to identify information about applications beyond organizational boundaries
Prevent exfiltration and data filtration of corporate data
Used to deal with spam emails and detect shadow IT

Reviews from Real Users

Ram-Krish, Cloud Security & Governance at a financial services firm, says that Microsoft Defender for Cloud Apps "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need".

PeerSpot user, Senior Cloud & Security Consultant at a tech services, writes that Microsoft Defender for Cloud Apps "Great for monitoring user activity and protecting data while integrating well with other applications".

Simon Burgess,Infrastructure Engineer at SBITSC, states that Microsoft Defender for Cloud Apps is "A fluid, intelligent product for great visibility, centralized management, and increased uptime".

Sample Customers

Plantronics, NTT Innovation Institute Inc.

Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.

Buyer's Guide

Cloud and Data Center Security

November 2024

Download Free Report

Find out what your peers are saying about VMware, Akamai, Illumio and others in Cloud and Data Center Security. Updated: November 2024.

DOWNLOAD NOW

814,649 professionals have used our research since 2012.

We monitor all Cloud and Data Center Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.