Microsoft Defender for Cloud vs SentinelOne Singularity Identity comparison

Microsoft and SentinelOne are both solutions in the Vulnerability Management category. Microsoft is ranked #7 with an average rating of 8.1, while SentinelOne is ranked #13 with an average rating of 8.9. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 95% of SentinelOne users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jan 5, 2025

Microsoft Defender for Cloud and SentinelOne Singularity Identity are competitive solutions in the cybersecurity space, each excelling in distinct areas. Microsoft Defender for Cloud has the upper hand in integration with Microsoft products and multi-cloud environment support, while SentinelOne Singularity Identity is noted for its behavioral threat detection and identity protection.

Features: Microsoft Defender for Cloud provides AI and ML-based detections, offers a holistic view of security setups, and gives multi-cloud environment support. SentinelOne Singularity Identity focuses on behavior-based threat detection, offers efficient threat prevention, and provides strong identity protection.

Room for Improvement: Microsoft Defender for Cloud users report issues with complex hierarchies, false positives, and limited alert customizations. Suggestions include enhancing real-time alerting and AI-based false alert reduction. SentinelOne Singularity Identity could improve with better CPU utilization transparency, more user-friendly features, and faster customer service. Exclusion management and reporting need refinement.

Ease of Deployment and Customer Service: Microsoft Defender for Cloud is compatible with public and hybrid clouds, benefiting from Microsoft's support network, though support quality is mixed. SentinelOne Singularity Identity supports public and on-premises environments and is rated well for customer service, despite potential console management complexity.

Pricing and ROI: Microsoft Defender for Cloud is integrated within the Azure ecosystem with flexible pricing, though users find certain features costly and pricing complex. SentinelOne Singularity Identity is considered cost-effective, offering good value against competitors like CrowdStrike, though caution is advised regarding potential price increments.

To learn more, read our detailed Microsoft Defender for Cloud vs. SentinelOne Singularity Identity Report (Updated: January 2025).

Buyer's Guide

Microsoft Defender for Cloud vs. SentinelOne Singularity Identity

January 2025

Download the complete report

Helped 839,319 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Zafran Security

Featured Reviews

Israel Cavazos Landini

Associate Director IT Security Operations at Novartis

Weekly insights and risk analysis facilitate informed security decisions

I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.

Read full review

Vibhor Goel

Senior Cloud Platform Engineer at Deutsche Börse

A single tool for complete visibility and addressing security gaps

Currently, issues are structured in Microsoft Defender for Cloud at severity levels of high, critical, or warning, but these severity levels are not always right. For example, Microsoft might consider a port being open as critical, but that might not be the case for our company. Similarly, it might suggest closing some management ports, but you might need them to be able to log in, so the severity levels for certain things can be improved. Even though Microsoft Defender for Cloud provides a way to temporarily disable certain alerts or notifications without affecting our security score, it would be better to have more granularized control over these recommendations. Currently, we cannot even disable certain alerts or notifications. There should be an automated mechanism to design Azure policies based on the recommendations, possibly with AI integration. Instead of an engineer having to write a policy to fix security gaps, which is very time-consuming, there should be an inbuilt capability to auto-remediate everything and have proper control in place. Additionally, enabling Defender for Cloud at the resource group level, rather than only at the subscription level, would be beneficial.

Read full review

Roftiel Constantine

Global Chief Information Security Officer at Barry-Wehmiller

Provides proactive threat remediation, reduces alert volume, and enhances incident response capabilities

During our pre-purchase evaluation of SentinelOne's EDR capabilities three years ago, we were consistently impressed by the positive relationships customers reported having with SentinelOne's engineers, sales teams, and customer success managers. These strong relationships, evident in the customers' unsolicited feedback, highlighted the "soft skills" and intangible qualities that SentinelOne possessed. This positive customer experience has been mirrored in our own interactions with them. Their responsiveness to our needs, particularly when addressing a couple of challenges we faced, has been excellent. They proactively scheduled weekly meetings to demonstrate their commitment to resolving our issues, a customer-centric approach I admire. SentinelOne's dedication to customer service, including their rapid technology updates and responsiveness to our suggestions, has been crucial to our success in protecting our organization. Their ability to quickly incorporate our needs into new releases is truly impressive and sets them apart. Overall, I highly recommend SentinelOne based on our positive interactions across all levels of their organization.

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.

See recommendations

839,319 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

13%

Computer Software Company

12%

University

Retailer

Computer Software Company

15%

Financial Services Firm

13%

Manufacturing Company

Government

Computer Software Company

17%

Financial Services Firm

13%

Manufacturing Company

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Ask a question

Earn 20 points

How is Prisma Cloud vs Azure Security Center for security?

Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening acros...

See all answers

What do you like most about Microsoft Defender for Cloud?

The entire Defender Suite is tightly coupled, integrated, and collaborative.

See all answers

What is your experience regarding pricing and costs for Microsoft Defender for Cloud?

The licensing is straightforward but can become expensive if you cover everything. You must balance the cost against ...

See all answers

Does SentinelOne have a Virtual Patching functionality?

Yes -- SentinelOne has a Virtual Patching functionality called Virtual Patching and Exploit Shield. This preventive s...

See all answers

What do you like most about SentinelOne Singularity Identity?

The XDR capabilities are very good.

See all answers

What is your experience regarding pricing and costs for SentinelOne Singularity Identity?

I have no visibility into pricing, setup costs, or licensing as the government handles these aspects directly with Se...

See all answers

Comparisons

Dazz.io vs Zafran Security

Compared 48% of the time

Vulcan Cyber vs Zafran Security

Compared 22% of the time

ServiceNow Security Operations vs Zafran Security

Compared 20% of the time

Tenable Vulnerability Management vs Zafran Security

Compared 9% of the time

More Zafran Security Competitors

AWS GuardDuty vs Microsoft Defender for Cloud

Compared 21% of the time

Cortex Cloud by Palo Alto Networks vs Microsoft Defender for Cloud

Compared 12% of the time

Wiz vs Microsoft Defender for Cloud

Compared 12% of the time

Microsoft Defender XDR vs Microsoft Defender for Cloud

Compared 4% of the time

Orca Security vs Microsoft Defender for Cloud

Compared 3% of the time

More Microsoft Defender for Cloud Competitors

Microsoft Defender for Identity vs SentinelOne Singularity Identity

Compared 17% of the time

Tenable Vulnerability Management vs SentinelOne Singularity Identity

Compared 14% of the time

SailPoint Identity Security Cloud vs SentinelOne Singularity Identity

Compared 10% of the time

Qualys VMDR vs SentinelOne Singularity Identity

Compared 8% of the time

Microsoft Defender for Office 365 vs SentinelOne Singularity Identity

Compared 8% of the time

More SentinelOne Singularity Identity Competitors

Product Reports

Buyer's Guide

Vulnerability Management

March 2025

Download Zafran Security product report

Buyer's Guide

Microsoft Defender for Cloud

February 2025

Download Microsoft Defender for Cloud product report

Buyer's Guide

SentinelOne Singularity Identity

February 2025

Download SentinelOne Singularity Identity product report

Also Known As

No data available

Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender

No data available

Interactive Demo

Demo not available

Zafran Security

Microsoft

Demo not available

SentinelOne

Overview

Zafran Security integrates with existing security tools to identify and mitigate vulnerabilities effectively, proving that most critical vulnerabilities are not exploitable, optimizing threat management.

Zafran Security introduces an innovative operating model for managing security threats and vulnerabilities. By leveraging the threat exposure management platform, it pinpoints and prioritizes exploitable vulnerabilities, reducing risk through immediate remediation. This platform enhances your hybrid cloud security by normalizing vulnerability signals and integrating specific IT context data, such as CVE runtime presence and internet asset reachability, into its analysis. No longer reliant on patch windows, Zafran Security allows you to manage risks actively.

What are the key features of Zafran Security?

Threat Exposure Management: Utilizes existing tools to prioritize vulnerabilities and manage threats.
Integrative Analysis: Combines security data with IT context for precise vulnerability management.
Real-time Risk Reduction: Enables immediate risk management without waiting for patches.
Hybrid Cloud Compatibility: Functions across diverse cloud environments for comprehensive security.

What benefits can users expect from Zafran Security?

Improved Security: Enhances protection by efficiently identifying and mitigating risks.
Cost Efficiency: Reduces unnecessary patching expenses by confirming non-exploitable vulnerabilities.
Time Savings: Frees developers to focus on root causes by handling immediate threats.
Comprehensive Insight: Offers a holistic view of security threats and vulnerabilities.

In industries where security is paramount, such as finance and healthcare, Zafran Security provides invaluable protection by ensuring that only exploitable vulnerabilities are addressed. It allows entities to maintain robust security measures while allocating resources efficiently, fitting seamlessly into existing security strategies.

Zafran Security

Microsoft Defender for Cloud is a comprehensive security solution that provides advanced threat protection for cloud workloads. It offers real-time visibility into the security posture of cloud environments, enabling organizations to quickly identify and respond to potential threats. With its advanced machine learning capabilities, Microsoft Defender for Cloud can detect and block sophisticated attacks, including zero-day exploits and fileless malware.

The solution also provides automated remediation capabilities, allowing security teams to quickly and easily respond to security incidents. With Microsoft Defender for Cloud, organizations can ensure the security and compliance of their cloud workloads, while reducing the burden on their security teams.

Microsoft

Singularity Identity, a component of the Singularity platform, provides threat detection & response (ITDR) capabilities to defend Active Directory and domain-joined endpoints in real-time from adversaries aiming to gain persistent, elevated privilege and move covertly. Singularity Identity provides actionable, high-fidelity insight as attacks emerge from managed and unmanaged devices. It detects identity misuse and reconnaissance activity happening within endpoint processes targeting critical domain servers, service accounts, local credentials, local data, network data, and cloud data. On-agent cloaking and deception techniques slow the adversary down while providing situational awareness and halting adversarial attempts at lateral movement. Singularity Identity helps you detect and respond to identity-based attacks, providing early warning while misdirecting them away from production assets.

Singularity Identity’s primary use case is to protect credential data and disrupt identity-based attacks. The most valuable function of Singularity Identity is its ability to misdirect attackers by providing deceptive data to identity-based recon attacks. Additionally, it can hide and deny access to locally stored credentials or identity data on Active Directory domain controllers.

Singularity Identity also provides rapid detection and respond to identity attacks, capturing attack activity and feeding it directly to the Singularity platform’s Security DataLake for enterprise-wide analysis and response.

By implementing Singularity Identity, organizations benefit from enhanced security, reduced credential-related risks, and improved user productivity. It detects and responds to identity-based attacks, ensuring only authorized individuals can access critical identity data. With its cloaking capabilities to hide identity stored locally on endpoints or in the identity infrastructure and it’s ability to provide decoy results to identity-based attacks, organizations can effectively secure their sensitive or privileged identities, resulting in improved overall identity security.

SentinelOne

Sample Customers

Information Not Available

Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.

Information Not Available

Buyer's Guide

Microsoft Defender for Cloud vs. SentinelOne Singularity Identity

January 2025

Free Report: Microsoft Defender for Cloud vs. SentinelOne Singularity Identity

Find out what your peers are saying about Microsoft Defender for Cloud vs. SentinelOne Singularity Identity and other solutions. Updated: January 2025.

DOWNLOAD NOW

839,319 professionals have used our research since 2012.

See our Microsoft Defender for Cloud vs. SentinelOne Singularity Identity report.

See our list of best Vulnerability Management vendors.

We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.