Microsoft Defender XDR and Kaspersky Endpoint Detection and Response compete in the cybersecurity space. Kaspersky Endpoint Detection and Response has the upper hand due to its comprehensive features and superior threat detection capabilities, although Microsoft Defender XDR is preferred for its seamless integration with Microsoft environments.
Features: Microsoft Defender XDR offers robust threat intelligence, integration with Microsoft services, and automated incident response. Kaspersky Endpoint Detection and Response provides advanced threat hunting, rich endpoint telemetry, and extensive forensics.
Room for Improvement: Microsoft Defender XDR users suggest improvements in customization options, more detailed reporting, and enhanced flexibility. Kaspersky users highlight the need for better integration with third-party services, a more intuitive process for setting up rules and policies, and expanded compatibility.
Ease of Deployment and Customer Service: Microsoft Defender XDR is noted for its straightforward deployment within Microsoft ecosystems and responsive customer support. Kaspersky Endpoint Detection and Response has a more complex deployment process but provides comprehensive support once operational.
Pricing and ROI: Microsoft Defender XDR is often found to be more cost-effective, appealing to budget-conscious users. Kaspersky Endpoint Detection and Response tends to be more expensive but is viewed as a worthwhile investment due to its extensive features and higher satisfaction with its ROI.
You get stuck in low-level support for way longer than you should, instead of them escalating the issue up the chain.
It's critical to escalate SEV B issues immediately to a domestic engineer.
The technical support from Microsoft Defender XDR has been disappointingly slow.
The licensing process needs improvement and clarification.
Improvements are needed in automated response capabilities.
It would be better if much of that information were immediately visible, especially when looking at endpoints or users.
Microsoft Defender XDR shows tremendous scalability, much more so than on-premises solutions.
It is suitable for enterprise-level deployment but has room for improvement.
Microsoft purposefully obfuscates this through marketing ploys to hide costs.
I would rate the pricing as eight out of ten, indicating it is a reasonable cost for the product.
The pricing is a little high, however, it is on par with other competitive tools in the market.
The service has remained consistently online, with any issues isolated to specific components, suggesting a well-designed and modular architecture.
The services within our ecosystem have been reliable, meeting their SLAs.
With Microsoft threat intelligence information, it detects various types of threats, including insider attacks, malicious content, and data exfiltration.
The Email Explorer feature has proven invaluable, offering a broader perspective than automated alerts and incidents alone.
The email protection feature is the most valuable because our risks primarily lie there, and it seems to be the most popular target.
Kaspersky Endpoint Detection and Response provides robust malware detection, endpoint security, integration with SIEM, control of USB devices, and behavior analysis, deployed on servers, mobile devices, and laptops.
Kaspersky Endpoint Detection and Response aids organizations in scanning environments, blocking sites, handling data transfers, and offering visibility into quarantine systems. Utilizing features such as encryption, machine learning analysis, caching, and automation, Kaspersky ensures enhanced security. The unified agent incorporates antivirus and EDR functionalities, centralizes management, and provides sandbox analysis alongside early-stage threat detection. Automated response capabilities improve efficiency, and the tool's lightweight nature maintains device performance despite high detection rates and advanced threat prevention mechanisms.
What are some of the key features?In industries like finance, healthcare, and retail, Kaspersky Endpoint Detection and Response can be implemented to protect sensitive data and critical systems against advanced threats. Financial institutions may leverage its high detection rates and behavior analysis to secure transactions and customer information. Healthcare organizations can utilize its sandbox analysis and early-stage threat detection to protect patient data. Retail businesses benefit from the enhanced security and efficient automated responses, ensuring customer data remains safe during transactions.
Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.
It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.
Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.
Watch the Microsoft demo video here: Microsoft Defender XDR demo video.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
