Microsoft Defender for Cloud vs SUSE NeuVector comparison

Microsoft and SUSE are both solutions in the Container Security category. Microsoft is ranked #4 with an average rating of 8.1, while SUSE is ranked #23 with an average rating of 8.0. Microsoft holds a 7.2% mindshare in Container Security, compared to SUSE’s 2.7% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 87% of SUSE users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 6, 2025

SUSE NeuVector and Microsoft Defender for Cloud are products competing in the cybersecurity landscape. SUSE NeuVector holds the upper hand in container security and deployment flexibility, whereas Microsoft Defender for Cloud stands out with its integration capabilities with Azure services and broader network security features.

Features: SUSE NeuVector provides robust container traffic control, real-time threat detection, and runtime security. Microsoft Defender for Cloud offers integration with Microsoft services, advanced threat protection, and a comprehensive security management dashboard.

Room for Improvement: SUSE NeuVector could enhance its non-container environment features, provide broader network security capabilities, and offer more integrations with other cloud providers. Microsoft Defender for Cloud can improve detailed container analytics, offer a more flexible pricing model, and strengthen customization options for non-Azure platforms.

Ease of Deployment and Customer Service: SUSE NeuVector offers flexible deployment options and strong support for Kubernetes platforms with straightforward setup. Microsoft Defender for Cloud provides seamless integration within Microsoft Azure, benefiting from robust customer support and extensive documentation.

Pricing and ROI: SUSE NeuVector is competitively priced, offering good ROI for specialized container management. Microsoft Defender for Cloud, despite higher setup costs, delivers significant ROI through its wide-ranging security offerings, providing comprehensive value for broader enterprise security needs.

To learn more, read our detailed Microsoft Defender for Cloud vs. SUSE NeuVector Report (Updated: April 2025).

Buyer's Guide

Microsoft Defender for Cloud vs. SUSE NeuVector

April 2025

Download the complete report

Helped 849,190 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SentinelOne Singularity Clo...

Mindshare comparison

As of April 2025, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.1%, up from 1.0% compared to the previous year. The mindshare of Microsoft Defender for Cloud is 7.2%, down from 8.3% compared to the previous year. The mindshare of SUSE NeuVector is 2.7%, down from 3.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Container Security

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Vibhor Goel

Senior Cloud Platform Engineer at Deutsche Börse

A single tool for complete visibility and addressing security gaps

Currently, issues are structured in Microsoft Defender for Cloud at severity levels of high, critical, or warning, but these severity levels are not always right. For example, Microsoft might consider a port being open as critical, but that might not be the case for our company. Similarly, it might suggest closing some management ports, but you might need them to be able to log in, so the severity levels for certain things can be improved. Even though Microsoft Defender for Cloud provides a way to temporarily disable certain alerts or notifications without affecting our security score, it would be better to have more granularized control over these recommendations. Currently, we cannot even disable certain alerts or notifications. There should be an automated mechanism to design Azure policies based on the recommendations, possibly with AI integration. Instead of an engineer having to write a policy to fix security gaps, which is very time-consuming, there should be an inbuilt capability to auto-remediate everything and have proper control in place. Additionally, enabling Defender for Cloud at the resource group level, rather than only at the subscription level, would be beneficial.

Read full review

Danie Joubert

Managing Director at ProQuanta

Good value for money; great for policy management

Our model of deployment for this solution is on-premises. For people looking into this solution and trying to use it for the first time, I'd say make your life easier by using the SUSE product as well on top of your community scale stack. That makes your integration points a lot easier and smoother. I would also say during your initial setup, make sure that your clusters are already in terms of the capabilities with the version required. I would rate this solution an eight, on a scale from one to 10, with one being the worst and 10 being the best. The reason for this rating is that what they offer is solid, but they could expand their service and add more features just to make more things integrated into an enterprise itself.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The cloud misconfiguration feature and Offensive Security Engine, as well as their alerting process, are valuable."

"The visibility PingSafe provides into the Cloud environment is a valuable feature."

"The key strength of Singularity Cloud Security lies in its ability to pinpoint vulnerabilities in our cloud accounts and identify suspicious activity that warrants further investigation."

"Cloud Native Security's best feature is its ability to identify hard-coded secrets during pull request reviews."

"It saves time, makes your environment more secure, and improves compliance. PingSafe helps with audits, ensuring that you are following best practices for cloud security. You don't need to be an expert to use it and improve your security."

"The Offensive Security Engine, powered by impressive AI/ML capabilities, seamlessly integrates with cloud infrastructure to analyze data and provide optimal security solutions."

"The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best features."

"SentinelOne Singularity Cloud Security offers valuable features like runtime notifications. These alerts come to my account, ensuring that if any port or component within my infrastructure is opened or compromised, I am informed immediately. It highlights issues within minutes or even seconds."

More SentinelOne Singularity Cloud Security pros

"Most importantly, it's an integrated solution. We not only have Defender for Cloud, but we also have Defender for Endpoint, Defender for Office 365, and Defender for Identity. It's an integrated, holistic solution."

"It isn't a highly complex solution. It's something that a lot of analysts can use. Defender gives you a broad overview of what's happening in your environment, and it's a great solution if you're a Microsoft shop."

"The solution is used for risks, vulnerabilities, and compliance."

"Microsoft Defender for Cloud monitors our entire cloud environment. It enables conditional access and incorporates features like number matching and single sign-on for all our cloud apps. It is great for protecting against ransomware and various security threats."

"This is a platform as a service provided by Azure. We don't need to install or maintain Azure Security Center. It is a ready-made service available in Azure. This is one of the main things that we like. If you look at similar tools, we have to install, maintain, and update services. Whereas, Azure Security Center manages what we are using. This is a good feature that has helped us a lot."

"We saw improvement from a regulatory compliance perspective due to having a single dashboard."

"Microsoft Defender for Cloud is a valuable tool that integrates seamlessly with Azure Policy and our Security SIEM, simplifying implementation and enhancing security posture."

"The most valuable feature is the recommendations provided on how to improve security. It has made the cloud environment more secure, thanks to all the recommendations we can get."

More Microsoft Defender for Cloud pros

"The most valuable feature of SUSE NeuVector is its run-time security."

"The tool's deployment is simple. Also, I am impressed with its risk capabilities."

"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."

"The most valuable feature of SUSE NeuVector is the performance, deployment, and cost."

"The features of image scanning and anti-malware are really valuable."

"The UI has a lot of features."

"The solution includes many features, not only for container and client security but also for scanning nodes, networks, and vulnerabilities."

"When it comes to the price, we got a really good deal from the vendor instantly."

More SUSE NeuVector pros

Cons

"The application module focuses on the different codes and libraries that can be run on the machines. It is very important for Singularity EDR to detect what type of codes and what type of libraries can run in the machine. If they can implement a white list or a black list of codes or libraries that can be used in the machine, it would be very helpful. They can focus more on the application module."

"The could improve their mean time to detect."

"In version 2, a lot of rules have been deployed for Kubernetes security and CDR, which makes a lot of issues of critical severity, whereas they are not critical or of high severity. There is a mismatch of severities. They need to work on severity management."

"I want PingSafe to integrate additional third-party resources. For example, PingSafe is compatible with Azure and AWS, but Azure AD isn't integrated with AWS. If PingSafe had that ability, it would enrich the data because how users interact with our AWS environment is crucial. All the identity-related features require improvement."

"There is no break-glass account feature. They should implement this as soon as possible because we can't implement SSO without a break-glass feature."

"Bugs need to be disclosed quickly."

"PingSafe is an excellent CSPM tool, but the CWPP features need to improve, and there is a scope for more application security posture management features. There aren't many ASPM solutions on the market, and existing ones are costly. I would like to see PingSafe develop into a single pane of glass for ASPM, CSPM, and CWPP. Another feature I'd like to see is runtime protection."

"The cloud-based operations might pose challenges in areas with limited or unavailable internet connectivity."

More SentinelOne Singularity Cloud Security cons

"I would suggest building a single product that addresses endpoint server protection, attack surface, and everything else in one solution. That is the main disadvantage with the product. If we are incorporating some features, we end up in a situation where this solution is for the server, and that one is for the client, or this is for identity, and that is for our application. They're not bundling it. Commercially, we can charge for different licenses, but on the implementation side, it's tough to help our end-customer understand which product they're getting."

"I rate Microsoft support five out of 10. It gets better once you're escalated past the first and second levels. It's difficult to get the necessary support when tickets are first opened."

"Microsoft Defender could be more centralized. For example, I still need to go to another console to do policy management."

"The documentation could be much clearer."

"For improvements, I'd like to see more use cases integrated with Microsoft Sentinel and support for multi-cloud environments beyond just Azure."

"There are challenges with the licensing policies, which are quite complicated."

"There should be an automated mechanism to design Azure policies based on the recommendations, possibly with AI integration. Instead of an engineer having to write a policy to fix security gaps, which is very time-consuming, there should be an inbuilt capability to auto-remediate everything and have proper control in place."

"If they had an easier way to display all the vulnerabilities of the machines affected and remediation steps on one screen rather than having to dive deep into each of them, that would be a lot easier."

More Microsoft Defender for Cloud cons

"I would say that this solution should improve monitoring and reporting. I would also like to see more integrations so that we could essentially make it a part of a developing pipeline."

"We are also working with IaaS VMS, but NeuVector doesn't support virtual machines."

"SUSE NeuVector could improve by increasing its visibility into other elements of the DevSecOps pipeline. Additionally, scanning around infrastructure would be helpful."

"The tool should offer seamless integration of other security tools while in a hybrid environment."

"Using a node port instead of a cluster IP is less ideal when implementing federation features between two clusters and could be improved."

"The image-scanning features need improvement."

"SUSE NeuVector should provide more security protection rules and better container image scanning."

"However, I found that the support in Egypt was not very qualified, and there was a need to upgrade to a higher support layer to solve my issues."

More SUSE NeuVector cons

Pricing and Cost Advice

"Its pricing was a little less than other providers."

"Their pricing appears to be based simply on the number of accounts we have, which is common for cloud-based products."

"I would rate the cost a seven out of ten with ten being the most costly."

"PingSafe's pricing is good because it provides us with a solution."

"We found it to be fine for us. Its price was competitive. It was something we were happy with. We are not a Fortune 500 company, so I do not know how pricing scales at the top end, but for our cloud environment, it works very well."

"I wasn't sure what to expect from the pricing, but I was pleasantly surprised to find that it was a little less than I thought."

"I understand that SentinelOne is a market leader, but the bill we received was astronomical."

"It's not expensive. The product is in its initial growth stages and appears more competitive compared to others. It comes in different variants, and I believe the enterprise version costs around $55 per user per year. I would rate it a five, somewhere fairly moderate."

More SentinelOne Singularity Cloud Security pricing and cost advice

"I am not involved in this area. However, I believe its price is okay because even small customers are using Azure Security Center. I don't think it is very expensive."

"We are using the free version of the Azure Security Center."

"There are improvements that have to be made to the licensing. Currently, for servers, it has to be done by grouping the servers on a single subscription... We don't have an option whereby, if all those resources are in one subscription, we can have each of the individual servers subject to different planning."

"The product's pricing policy is generally favorable."

"The price of the solution is good for the features we receive and there is an additional cost for Microsoft premier support. However, some of my potential customers have found it to be expensive and have gone on to choose another solution."

"Microsoft's licensing and pricing are sometimes complicated. If someone is new to Microsoft's licensing, they might have difficulty with it."

"Security Center charges $15 per resource for any workload that you onboard into it. They charge per VM or per data-base server or per application. It's not like Microsoft 365 licensing, where there are levels like E3 and E5. Security Center is pretty straightforward."

"I am not involved much with the pricing but the bundle offering is good."

More Microsoft Defender for Cloud pricing and cost advice

"The price of SUSE NeuVector is low. There is an additional cost for support."

"Licensing fees are paid yearly."

"The solution's pricing could be better. The cost of a subscription is calculated on the basis of work."

"SUSE NeuVector is an open-source solution."

See which vendors are best for you

Use our free recommendation engine to learn which Container Security solutions are best for your needs.

See recommendations

849,190 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

16%

Manufacturing Company

Government

Computer Software Company

14%

Financial Services Firm

13%

Manufacturing Company

Government

Computer Software Company

19%

Financial Services Firm

14%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

It is cost-effective compared to other solutions in the market.

See all answers

What needs improvement with PingSafe?

SentinelOne Singularity Cloud Security is an excellent CSPM tool, but its CWPP features need improvement, and there i...

See all answers

How is Prisma Cloud vs Azure Security Center for security?

Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening acros...

See all answers

What do you like most about Microsoft Defender for Cloud?

The entire Defender Suite is tightly coupled, integrated, and collaborative.

See all answers

What is your experience regarding pricing and costs for Microsoft Defender for Cloud?

Initially, the cost was reasonable, but additional services from Microsoft sometimes incur extra expenses that seem h...

See all answers

What do you like most about NeuVector?

The most valuable feature of SUSE NeuVector is its run-time security.

See all answers

What is your experience regarding pricing and costs for NeuVector?

SUSE NeuVector is an open-source solution. You have to pay for the support.

See all answers

What needs improvement with NeuVector?

One area for improvement is NeuVector's ability to import CVEs from different sources. Additionally, using a node por...

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 24% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 20% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 5% of the time

Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security

Compared 5% of the time

More SentinelOne Singularity Cloud Security Competitors

AWS GuardDuty vs Microsoft Defender for Cloud

Compared 20% of the time

Wiz vs Microsoft Defender for Cloud

Compared 13% of the time

Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud

Compared 11% of the time

Microsoft Defender XDR vs Microsoft Defender for Cloud

Compared 4% of the time

Orca Security vs Microsoft Defender for Cloud

Compared 3% of the time

More Microsoft Defender for Cloud Competitors

Trivy vs SUSE NeuVector

Compared 13% of the time

Prisma Cloud by Palo Alto Networks vs SUSE NeuVector

Compared 12% of the time

Red Hat Advanced Cluster Security for Kubernetes vs SUSE NeuVector

Compared 11% of the time

Sysdig Falco vs SUSE NeuVector

Compared 11% of the time

Check Point CloudGuard CNAPP vs SUSE NeuVector

Compared 2% of the time

More SUSE NeuVector Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

March 2025

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Microsoft Defender for Cloud

April 2025

Download Microsoft Defender for Cloud product report

Buyer's Guide

Container Security

April 2025

Download SUSE NeuVector product report

Also Known As

PingSafe

Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender

NeuVector

Interactive Demo

Demo not available

SentinelOne

Microsoft

Demo not available

SUSE

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

SentinelOne

Microsoft Defender for Cloud is a comprehensive security solution that provides advanced threat protection for cloud workloads. It offers real-time visibility into the security posture of cloud environments, enabling organizations to quickly identify and respond to potential threats. With its advanced machine learning capabilities, Microsoft Defender for Cloud can detect and block sophisticated attacks, including zero-day exploits and fileless malware.

The solution also provides automated remediation capabilities, allowing security teams to quickly and easily respond to security incidents. With Microsoft Defender for Cloud, organizations can ensure the security and compliance of their cloud workloads, while reducing the burden on their security teams.

Microsoft

SUSE NeuVector is a full lifecycle container security solution that helps your organization secure its container infrastructures, manage Kubernetes security risks, and block threats. The NeuVector continuous container security and compliance platform simplifies data protection from pipeline to production, enforces compliance, and provides complete visibility and automated controls for protection against known and unknown threats. In addition, NeuVector is the only Kubernetes-native container security solution that offers a comprehensive risk profile of known vulnerabilities and also delivers immediate protection from all vulnerabilities.

SUSE NeuVector Features

SUSE NueVector has many valuable key features. Some of the most useful ones include:

Container incident detection and prevention
Network security
Runtime security
Supply chain security
Container firewall
Host and platform security
Cloud-native automation and integration
Resource monitoring
Visualization and reporting
High availability
Security
Vulnerability management
Compliance and auditing
Alerting
Logging and Response

SUSE NeuVector Benefits

There are many benefits to implementing NeuVector. Some of the biggest advantages the solution offers include:

Deep packet inspection (DPI): NeuVector applies DPI to identify attacks, detect sensitive data, or verify application access to further reduce the attack surface. Only network layer analysis enables security to detect and verify the allowed protocols, helping security teams enforce business policy.

Real-time protection: NeuVector provides inspection, segmentation, and protection of all traffic into and out of a container. This includes container to container traffic, and ingress from external sources to containers, as well as egress from containers to external applications and the internet. The solution aims to protect your applications from internal application level attacks such as DDoS and DNS.

Capture packets for debugging and threat investigation: WIth NeuVector, you can view summary connection data and drill down into actual packet details for each container, as they scale up and down. When a threat is detected, NeuVector is able to automatically capture and display the packet info, making it easy for you to investigate.

Automated security policies: The NeuVector solution allows you to automate the creation of security policies to protect application workloads in production. The solution also enables you to automate and maintain run-time security policies using Kubernetes custom resource definitions (CRDs), and gives you the option to declare an application security policy at any stage in the pipeline.

Compliance: NeuVector offers detection capabilities and security policy enforcement that prevent PHI and PII exposure, exceed requirements, and simplify reporting for PCI-DSS, GDPR, HIPAA, and more. The solution helps you track critical vulnerabilities and compliance violations so you can quickly identify any that require immediate patching or followup alerts. It also makes it possible for you to manage vulnerability and compliance scan results, with no required integration to external workflow tools.

Reviews from Real Users

A Platform Solution Architect at a tech services company says, “The solution is feature-rich, easy to set up, and has good support.”

SUSE

Sample Customers

Information Not Available

Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.

Figo, Clear Review, Arvato Bertelsmann, Experian, Chime

Buyer's Guide

Microsoft Defender for Cloud vs. SUSE NeuVector

April 2025

Free Report: Microsoft Defender for Cloud vs. SUSE NeuVector

Find out what your peers are saying about Microsoft Defender for Cloud vs. SUSE NeuVector and other solutions. Updated: April 2025.

DOWNLOAD NOW

849,190 professionals have used our research since 2012.

See our Microsoft Defender for Cloud vs. SUSE NeuVector report.

See our list of best Container Security vendors and best Cloud Workload Protection Platforms (CWPP) vendors.

We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.