Microsoft Defender for Cloud Apps vs Threat Stack Cloud Security Platform [EOL] comparison

The compared Microsoft and F5 solutions aren't in the same category. Microsoft is ranked #4 in CASB , with an average rating of 8.5, and holds a 6.5% mindshare in the category. Additionally, 100% of Microsoft users are willing to recommend the solution, compared to 88% of F5 users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Microsoft Defender for Cloud Apps and Threat Stack Cloud Security Platform [EOL] based on real PeerSpot user reviews.

Find out what your peers are saying about Palo Alto Networks, Cisco, Netskope and others in Cloud Access Security Brokers (CASB).

To learn more, read our detailed Cloud Access Security Brokers (CASB) Report (Updated: January 2026).

Buyer's Guide

Cloud Access Security Brokers (CASB)

January 2026

Download the complete report

Helped 881,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

iboss

Featured Reviews

reviewer2701851

Managing Director

Enhances web security with a single pane of glass and flexible deployment

I don't see any need for improvement; one of the really good things about iboss as a company is that they listen to customer feedback. I have suggested enhancements, and they are responsive, making changes for the better, and they do a lot of testing. To improve iboss, although we haven't used it, we considered the VPN solution that comes with the highest tier licensing, which includes DLP and various other add-ons. We prefer using another product which automatically logs you back onto your network when turning on your PC. With iboss, the connection is manual, which doesn't meet our needs. Additionally, sizing can be tricky because, although the initial recommendations may seem adequate, actual usage may require more gateways than anticipated.

Read full review

Frank Van Der Spek

Security and Continuity Manager at Rolinco NV

Deployment has been seamless with insightful data categorization and enhanced control

The features of Microsoft Defender for Cloud Apps that I have found most valuable include the overall portal view, with bubble graphs which give us insight into what goes where in the categorization, nowadays with Generative AI but all kinds of categorization, collaboration, etc. That central view of the portal is very useful for us. The impact of Microsoft Defender for Cloud Apps on our organization's ability to assess and manage app related risks has been significant because we have more visibility. Therefore, we can add more control, and we have already done so. This was not possible in the old solution, in the old CASB solution with Netskope. We now can see on the spot, and we do that almost weekly, what the end users are utilizing, which cloud providers or cloud apps they're using. The visibility into OAuth apps provided by Microsoft Defender for Cloud Apps is very good. The visibility into risk and risk management of our organization's Generative AI apps is very nice, as you can choose the category Generative AI and then see exactly what traffic has been going to and from Generative AI in the cloud. This makes us very insightful on what is used within the company. We have some policies on blocking specific Generative AI, and we use within our company one particular AI part, which is CoPilot of Microsoft. In this way, we can see what the end users are using other than CoPilot, and that makes us more in control. The effectiveness of the integration of Microsoft Defender for Cloud Apps with Defender XDR and defending against SaaS attacks is very intuitive. It works immediately if we create a new policy or in Purview or in Microsoft Defender for Cloud Apps, or when we make an app unsanctioned by blocking it, then it is almost immediately, or at least within a couple of hours, effective on all the endpoints where the EDR is running. This gives us much better control over things than before.

Read full review

Skyler Cain

Software Development Manager at Rent Dynamics

SecOps program for us, as a smaller company, is amazing; they know what to look for

They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter. Even as part of the SecOps Program, that could be helpful; a quick analysis. They're analyzing our whole infrastructure and saying, "You have one VPC and that doesn't make a lot of sense, that should be multiple VPCs and here's why." The architecture of the servers in whatever cloud-hosting provider you're on could be helpful. Other than that, they should continue to expand on their notifications and on what's a vulnerability. They do a great job of that and we want them to continue to do that. It would be cool, since the agent is already deployed and they know about the server, they know the IP address, and they know what vulnerability is there, for them to test the vulnerability and see if they can actually exploit it. Or, once we patch it, they could double-check that it can't be. I don't know how hard that would be to build. Thinking on it off the top off my head, it could be a little challenging but it could also be highly interesting. It would also be great if we could test a couple of other features like hammering a server with 100 login attempts and see what happens. Real test scenarios could be really helpful. That is probably more something close to what they do with the SOC 2 audit or the report. But more visualization of that, being able to test things out on our infrastructure to make sure we can or can't hit this box could be interesting.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"iboss has significantly lowered the number of security incidents. It is crazy how much it blocks and how much it is aware of the outside danger."

"It was a very easy product to install. It can be deployed very fast."

"Because of iboss, I did not have to assign web filtering tasks to my techs on a daily basis."

"We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times."

"Its initial setup was straightforward."

"Our primary use case for this product is DLP,"

"The console is cloud-based, which is something I really appreciate."

"iboss is easy to use despite its complexity. Multiple engineers manage it, but it's significantly more straightforward to administer than traditional VPNs and web proxies."

More iboss pros

"One of the most valuable features is auditing. Some of the other protection services have issues with auditing. Microsoft Defender for Cloud has an excellent auditing technique that helps us avoid the risk of filtering or information loss. You can use different tools to guarantee these things. It allows you to conduct an in-depth exploration of applications, users, and files that are harmful or suspicious. You can also enhance your security setup by creating personalized rules or policies that help you better control traffic in the cloud."

"The ability to prevent users from using certain applications is one of the most valuable features. It doesn't require any configuration for implementation from the client perspective. It just works right away and gives you the information you need."

"Shadow IT discovery is the feature I like the most."

"The most valuable feature of this solution is its monitoring."

"On-demand scanning is the most valuable feature. In addition, it's a fairly fluid product. It syncs back to the cloud and provides metrics. It's pretty intelligent."

"It's very easy to install and it includes the Intune portal from Microsoft where I can control all the devices from one place."

"The impact of Microsoft Defender for Cloud Apps on our organization's ability to assess and manage app related risks has been significant because we have more visibility."

"All of the features are valuable because all of the features are related."

More Microsoft Defender for Cloud Apps pros

"An important feature of this solution is monitoring. Specifically, container monitoring."

"We're using it on container to see when activity involving executables happens, and that's great."

"It has been quite helpful to have the daily alerts coming to my email, as well as the Sev 1 Alerts... We just went through a SOX audit and those were pivotal."

"The most valuable feature is the SecOps because they have our back and they help us with the reports... It's like having an extension of your team. And then, it grows with you."

"There has been a measurable decrease in the meantime to remediation... because we have so many different tech verticals already collated in one place, our ability to respond is drastically different than it used to be."

"The rules are really great. They give us more visibility and control over what's being triggered. There's a large set of rules that come out-of-the-box. We can customize them and we can create our own rules based on the traffic patterns that we see."

"With Threat Stack, we quickly identified some AWS accounts which had services that would potentially be exposed and were able to remediate them prior to release of products."

"Every other security tool we've looked is good at containers, or at Kubernetes, is good at AWS, or at instance monitoring. But nobody is good at tying all of those things together, and that's really where Threat Stack shines."

More Threat Stack Cloud Security Platform [EOL] pros

Cons

"Our biggest problem with their service was it did not recognize the device and filtering did not always work correctly."

"I'd like to see them accelerate development on the security side, particularly around data loss prevention."

"Their on-premise hardware's network interface is capped at one gigabit, which is sort of a problem. If you stand a filter up where all traffic flows through that, according to them, in order to go above a gigabit, you have to have multiple devices, which in today's IT seems a little bit silly. They could easily put in an SFP port into their device that could accommodate 10 gigs or at least offer a box."

"Its pricing could be better."

"The area I would like to see improvement in is the ability with in the reporter to navigate directly to the content the user is traversing. It is kind of there, but it's not perfect. Quite frequently, I receive links that lead me to pages with error messages."

"I am currently doing a PoC of the zero trust aspect of it. Compared to other similar solutions, it is hard to get around each feature. It takes a while to get used to it."

"The reporting feature needs improvement. It doesn't give you the expected results. It is quite difficult to get the specific reports needed, and it is not as intuitive as the rest of the platform."

"The reporting feature needs improvement."

More iboss cons

"We are having trouble with our continuous reporting configuration and struggling with configuring the collector properly with our log parsing. We've also faced difficulties getting support for this issue. It's taken us months to figure this out after going through a couple of different support channels."

"The insights could be improved, especially in reporting. While it is possible for me to see the usage from different cloud apps, determining if critical data has been uploaded or if it is just normal transport data is difficult."

"I would prefer to have filtering options incorporated within the policies, enabling the solution to perform tasks beyond mere blocking or allowing."

"There have been instances where the alerts generated have been false positives."

"I would like more customization of notifications. Currently, you either get everything or you get limited information. I would like to have something in between where we can customize the data that is included in notifications."

"It doesn't actually decrease the time to respond. This has been an issue with Microsoft recently. Sometimes, there is a delay when it comes to getting an alert policy email... Sometimes it takes two or three hours for that email to be sent."

"We would like to get more information from the endpoint. I don't get enough detailed information right now on why something failed. There is not enough visibility."

"The areas of Microsoft Defender for Cloud Apps that need improvement are related to IAM, as they do not provide much support for local users."

More Microsoft Defender for Cloud Apps cons

"I would like further support of Windows endpoint agents or the introduction of support for Windows endpoint agents."

"They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter."

"The API - which has grown quite a bit, so we're still learning it and I can't say whether it still needs improvement - was an area that had been needing it."

"The reports aren't very good. We've automated the report generation via the API and replaced almost all the reports that they generate for us using API calls instead."

"The one thing that we know they're working on, but we don't have through the tool, is the application layer. As we move to a serverless environment, with AWS Fargate or direct Lambda, that's where Threat Stack does not have the capacity to provide feed. Those are areas that it's blind to now..."

"The solution’s ability to consume alerts and data in third-party tools (via APIs and export into S3 buckets) is moderate. They have some work to do in that area... The API does not mimic the features of the UI as far as reporting and pulling data out go. There's a big discrepancy there."

"It shoots back a lot of alerts."

"Some features do not work as expected."

More Threat Stack Cloud Security Platform [EOL] cons

Pricing and Cost Advice

"The overall pricing for iboss is very competitive and transparent."

"We have not priced the solution recently, but they were competitive with other vendors in the past."

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."

"It is expensive compared to one of its competitors."

"It is probably in line with other solutions, but I do not deal with the financial side."

"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."

"We utilize the Microsoft E5 licensing, which encompasses the entire Microsoft suite; however, it is costly."

"The pricing is a little bit high but right now, we are okay with it because of the compatibility with Office 365, Teams, and Azure AD."

"I'm not totally involved in the pricing part, but I think its pricing is quite aggressive, and its price is quite similar to Netskope. Netskope has separate licensing fees or additional charges if you want to monitor certain SaaS services, whereas, with MCAS, you get 5,000 applications with their Office 365. It is all bundled, and there's no cost for using that. You only have the operational costs. In the country I am in, it is a bit difficult to get people with the required skill sets."

"The product's pricing seems fair."

"It has fair pricing. You pay for what you get. As far as I know, there are no costs in addition to the standard licensing fee."

"The price could be better and should be reconsidered."

"Where we are right now, this is an acceptable pricing. I would like to see more transparency given to the end user. The end user given to us is via the cloud service provider. There are different programs and license models. Some include this, and some include that. It is all over the place. There can be a little more consistency or simplification in the pricing so that your parts list is not ten pages long, and you are not trying to determine, "If I have an E3, does this cover that?", or "Do I need to pay separately for the license?" Simplification would probably be better."

"The pricing is in the middle. It isn't too cheap or expensive compared to other antivirus or security products. It is priced according to industry standards."

More Microsoft Defender for Cloud Apps pricing and cost advice

"Pricing seems to be in line with the market structure. It's fine."

"We find the licensing and pricing very easy to understand and a good value for the services provided."

"What we're paying now is somewhere around $15 to $20 per agent per month, if I recall correctly. The other cost we have is SecOps."

"It came in cheaper than Trend Micro when we purchased it a few years ago."

"It is very expensive compared to some other products. The pricing is definitely high."

"I'm happy with the amount that we spend for the product that we get and the overall service that we get. It's not cheap, but I'm still happy with the spend."

"It is a cost-effective choice versus other solutions on the market."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.

See recommendations

881,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

11%

Computer Software Company

10%

Manufacturing Company

Comms Service Provider

Financial Services Firm

11%

Computer Software Company

11%

Manufacturing Company

Government

Performing Arts

16%

Manufacturing Company

Comms Service Provider

Marketing Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	6
Large Enterprise	5

By reviewers
Company Size	Count
Small Business	15
Midsize Enterprise	10
Large Enterprise	19

By reviewers
Company Size	Count
Small Business	2
Midsize Enterprise	5
Large Enterprise	2

Questions from the Community

What needs improvement with iboss?

For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company Exxon...

See all answers

What is your primary use case for iboss?

Previously when I used iboss, we did the POC for iboss for ExxonMobil. Four or five people wanted to move from our ol...

See all answers

What is your experience regarding pricing and costs for iboss?

Regarding pricing, setup costs, and licensing, iboss is not cheap, and that's my only concern. There are cheaper alte...

See all answers

Which is the better security solution - Cisco Umbrella or Microsoft Cloud App Security?

Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-nat...

See all answers

What is your experience regarding pricing and costs for Microsoft Cloud App Security?

At the time of implementation, when the size of our organization was small, it was a more affordable product. Since a...

See all answers

What needs improvement with Microsoft Cloud App Security?

The fidelity of the signal in Microsoft Defender for Cloud Apps has been a challenge in some areas. There have been i...

See all answers

Ask a question

Earn 20 points

Comparisons

Netskope vs iboss

Compared 12% of the time

Prisma Access by Palo Alto Networks vs iboss

Compared 11% of the time

Cisco Umbrella vs iboss

Compared 8% of the time

FortiSASE vs iboss

Compared 8% of the time

Zscaler Internet Access vs iboss

Compared 7% of the time

More iboss Competitors

Zscaler Internet Access vs Microsoft Defender for Cloud Apps

Compared 13% of the time

Cisco Umbrella vs Microsoft Defender for Cloud Apps

Compared 12% of the time

Netskope vs Microsoft Defender for Cloud Apps

Compared 10% of the time

Prisma Access by Palo Alto Networks vs Microsoft Defender for Cloud Apps

Compared 7% of the time

Skyhigh Security vs Microsoft Defender for Cloud Apps

Compared 5% of the time

More Microsoft Defender for Cloud Apps Competitors

Check Point CloudGuard CNAPP vs Threat Stack Cloud Security Platform [EOL]

Compared 9% of the time

FortiCNAPP vs Threat Stack Cloud Security Platform [EOL]

Compared 9% of the time

Microsoft Defender for Cloud vs Threat Stack Cloud Security Platform [EOL]

Compared 7% of the time

BMC Helix Cloud Security vs Threat Stack Cloud Security Platform [EOL]

Compared 7% of the time

Qualys VMDR vs Threat Stack Cloud Security Platform [EOL]

Compared 5% of the time

More Threat Stack Cloud Security Platform [EOL] Competitors

Product Reports

Buyer's Guide

iboss

January 2026

Download iboss product report

Buyer's Guide

Microsoft Defender for Cloud Apps

January 2026

Microsoft Defender for Cloud Apps report

Download Microsoft Defender for Cloud Apps product report

Buyer's Guide

Threat Stack Cloud Security Platform [EOL]

January 2026

Threat Stack Cloud Security Platform [EOL] report

Download Threat Stack Cloud Security Platform [EOL] product report

Also Known As

iBoss Cloud Platform

MS Cloud App Security, Microsoft Cloud App Security

Threat Stack, CSP,

Overview

Iboss offers a comprehensive cloud-based security platform valued for its scalability and autonomous features, ensuring robust security with easy deployment and management capabilities.

Renowned for its robust security architecture, Iboss integrates seamlessly within diverse networks, delivering efficient granular filtering and advanced content categorization. Its single pane of glass console provides ease of management, allowing rapid scalability suitable for rapidly deploying environments. Operates in BYOD setups due to inline filtering without device installation. Integration with cloud-based applications enhances user control, and features like SASE, SSL inspection, and ChatGPT risk protection stand as highlights. Despite its strengths, users have pointed out areas for enhancement like direct navigation in reports, SSL decryption, and better cloud integration while having room to improve data loss prevention.

What are the most important features of Iboss?

Scalability: Supports rapid deployment across diverse networks.
SASE: A consolidated approach to secure access.
SSL Inspection: Ensures safe data transmission.
Granular Filtering: Detailed control over accessible content.
Single Pane Management: Unifies control through a centralized console.

What benefits should users consider in reviews?

Cost-effectiveness: Offers competitive pricing with robust features.
Autonomous Operation: Reduces management overhead.
Responsive Support: Provides assistance when needed.
Flexible Deployment: Available for both cloud and on-premises environments.

The usage of Iboss spans educational institutions, specifically K-12, to enforce internet policies, protect data, and support remote work environments. It provides web filtering and security frameworks to ensure safe browsing. Its platform-as-a-service model offers flexibility for both cloud-based and on-premises requirements, integrating seamlessly to deliver enhanced security features suitable for various deployment needs including zero trust, CASB, and network security for work-from-home setups.

iboss

Microsoft Defender for Cloud Apps is a comprehensive security solution that provides protection for cloud-based applications and services. It offers real-time threat detection and response, as well as advanced analytics and reporting capabilities. With Defender for Cloud Apps, organizations can ensure the security of their cloud environments and safeguard against cyber threats. Whether you're running SaaS applications, IaaS workloads, or PaaS services, Microsoft Defender for Cloud Apps can help you secure your cloud environment and protect your business from cyber threats.

Microsoft Defender for Cloud Apps Benefits:

Provides comprehensive security for cloud applications
Integrates with other Microsoft security tools
Easy to use and deploy
Provides real-time threat detection and response
Strong protection against phishing attacks and other common threats
Highly customizable to meet specific needs of different organizations

Microsoft Defender for Cloud Apps Use Cases:

Governance, authentication, security, and compliance.
Detects shadow IT and anomalous user behavior
Controls access to applications
Provides auditing and filtering setups
Used for end-user compute devices, file monitoring, user investigation, and activity
Used for data governance, threat detection, and getting visibility over cloud applications
Used to identify information about applications beyond organizational boundaries
Prevent exfiltration and data filtration of corporate data
Used to deal with spam emails and detect shadow IT

Reviews from Real Users

Ram-Krish, Cloud Security & Governance at a financial services firm, says that Microsoft Defender for Cloud Apps "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need".

PeerSpot user, Senior Cloud & Security Consultant at a tech services, writes that Microsoft Defender for Cloud Apps "Great for monitoring user activity and protecting data while integrating well with other applications".

Simon Burgess,Infrastructure Engineer at SBITSC, states that Microsoft Defender for Cloud Apps is "A fluid, intelligent product for great visibility, centralized management, and increased uptime".

Microsoft

Threat Stack Cloud Security Platform [EOL] offers robust security features including endpoint monitoring, rule customization, and integration capabilities, with easy connectivity to cloud services like Docker and AWS.

Threat Stack Cloud Security Platform [EOL] provides tools for enhancing security visibility across cloud infrastructure. It supports AWS and Docker integration, facilitating efficient threat detection and management. Users appreciate its capability to configure customizable alerts and monitor endpoints, sessions, API interactions, and cloud services. However, there are areas needing improvement, such as better serverless environment support and reduced alert frequency. The platform services smaller organizations by compensating for limited security resources with its comprehensive monitoring and auditing tools.

What are the key features?

Easy Cloud Service Integration: Streamlined connectivity with Docker and AWS for efficient monitoring.
Customizable Rule Sets: Tailor security rules to meet specific organizational needs.
Email Alerts: Receive timely notifications about security events and threats.
Interactive Session Monitoring: Track live sessions for suspicious activities.
API Integration: Connect effortlessly with third-party tools for an enhanced security posture.
SecOps Support: Assistance for organizations lacking dedicated security teams.

What are the benefits and ROI features?

Streamlined Threat Detection: Effective process monitoring to identify potential threats.
Cost Efficiency: Serves companies with limited resources by providing essential security functions.
Comprehensive Audits: Helps in regular examinations of cloud infrastructure, enhancing compliance.
Visibility into Cloud Operations: Offers a detailed dashboard for threat visibility and monthly vulnerability assessments.

In specific industries, Threat Stack Cloud Security Platform [EOL] is utilized for its strength in monitoring cloud infrastructure and preventing unauthorized access. Organizations in fields where cloud operations are critical use it for regular audits and monitoring. Its capabilities in threat management are leveraged to maintain secure operations and compliance, especially where there is no dedicated security team.

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.

Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.

StatusPage.io, Walkbase, Spanning, DNAnexus, Jobcase, Nextcapital, Smartling, Veracode, 6sense

Buyer's Guide

Cloud Access Security Brokers (CASB)

January 2026

Download Free Report

Find out what your peers are saying about Palo Alto Networks, Cisco, Netskope and others in Cloud Access Security Brokers (CASB). Updated: January 2026.

DOWNLOAD NOW

881,384 professionals have used our research since 2012.

We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.