Microsoft Defender for Cloud vs Trellix Cloud Workload Security comparison

Microsoft Defender for Cloud vs. Trellix Cloud Workload Security

Download the complete report

Helped 850,671 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SentinelOne Singularity Clo...

Mindshare comparison

As of May 2025, in the Cloud Workload Protection Platforms (CWPP) category, the mindshare of SentinelOne Singularity Cloud Security is 2.8%, up from 0.9% compared to the previous year. The mindshare of Microsoft Defender for Cloud is 13.6%, down from 17.0% compared to the previous year. The mindshare of Trellix Cloud Workload Security is 0.3%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Workload Protection Platforms (CWPP)

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Vibhor Goel

Senior Cloud Platform Engineer at Deutsche Börse

A single tool for complete visibility and addressing security gaps

Currently, issues are structured in Microsoft Defender for Cloud at severity levels of high, critical, or warning, but these severity levels are not always right. For example, Microsoft might consider a port being open as critical, but that might not be the case for our company. Similarly, it might suggest closing some management ports, but you might need them to be able to log in, so the severity levels for certain things can be improved. Even though Microsoft Defender for Cloud provides a way to temporarily disable certain alerts or notifications without affecting our security score, it would be better to have more granularized control over these recommendations. Currently, we cannot even disable certain alerts or notifications. There should be an automated mechanism to design Azure policies based on the recommendations, possibly with AI integration. Instead of an engineer having to write a policy to fix security gaps, which is very time-consuming, there should be an inbuilt capability to auto-remediate everything and have proper control in place. Additionally, enabling Defender for Cloud at the resource group level, rather than only at the subscription level, would be beneficial.

Read full review

Madan Mohan

Director Operations at SOFTPRO PLUS

Easy policy designing and highly scalable solution

The customers really want protection against unauthorized applications running on their servers. They should avoid installing any unknown source and use Trellix Cloud Workload Security for the best solution in workload security. It includes DNS with ransomware protection. With this, they can have complete protection for their servers. Additionally, any solution working with the database should implement change control. So, if any changes are made on the database side, they should be resolved and verified to ensure they are not made by any unknown source. This is the best solution we suggest to customers who want granular control to protect their servers. It's easy to deploy with a single agent. Overall, I would rate the solution a nine out of ten because policy designing is very easy too. And the manageability is very easy. You can easily manage it through EPO and deploy policies within five to ten minutes. No issues with that.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"SentinelOne Singularity Cloud Security offers an intuitive user interface that lets us navigate quickly and easily."

"SentinelOne Singularity Cloud Security offers comprehensive security posture management."

"SentinelOne Singularity Cloud Security offers three key features: vulnerability management notifications, cloud configuration assistance, and security scanning."

"Singularity Cloud Workload Security provides us with better security detection and more visibility. It is another resource that we can use to detect vulnerabilities in our company's systems. For example, it can help us detect new file processes that we are not familiar with, which could be used by attackers to exploit our systems. Singularity Cloud Workload Security can also help us diagnose and analyze data to determine whether it is malicious or not. Singularity Cloud Workload Security is like another pair of eyes that can help us protect our systems from cyberattacks."

"They're responsive to feature requests. If I suggest a feature for Prisma, I will need to wait until the next release on their roadmap. Cloud Native Security will add it right away."

"It is pretty easy to integrate with this platform. When properly integrated, it monitors end-to-end."

"We're monitoring several cloud accounts with Singularity. It is convenient to identify issues or security failures in any account. It's nice to have all the details we need to solve these issues."

"SentinelOne Singularity Cloud Security's graph explorer is a valuable tool that lets us visualize all connected services."

More SentinelOne Singularity Cloud Security pros

"The most valuable feature is the hunting feature, which integrates well into the entire Microsoft ecosystem."

"The most valuable feature of Microsoft Defender for Cloud is its ability to assess an environment and give us a clear idea of what security components are lacking and which are not."

"Provides a very good view of the entire security setup of your organization."

"It's quite a good product. It helps to understand the infections and issues you are facing."

"The integration with Logic Apps allows for automated responses to incidents."

"The security policy is the most valuable feature for us. We can go into the environment settings and attach any globally recognized framework like ISO or any benchmark."

"Defender lets you orchestrate the roll-out from a single pane. Using the Azure portal, you can roll it out over all the servers covered by the entire subscription."

"Technical support is helpful."

More Microsoft Defender for Cloud pros

"The most valuable feature is the application control."

"The discovery feature is the most valuable. After you integrate your cloud environment, maybe an Azure or AWS, or a private environment hosted on VMware, it automatically starts discovering the number of servers that are running on that cloud and the number of services that you have done. It is a beautiful feature because, from a security standpoint, it is difficult to identify which VM is compliant or not when you keep on provisioning a number of VMs in the cloud. It also checks for compliance. It checks whether a system is compliant and whether antivirus is installed on a VM. If an antivirus is installed, it checks whether the antivirus is updated to the latest signature package or not. All these things are beautifully done by McAfee Cloud Workload Security. For communicating with the McAfee server, you need to install an agent on the VM. McAfee Cloud Workload Security gives you a direct opportunity to install an agent on a Windows machine. If you have a Windows cloud, you can directly push that agent onto the VM through your McAfee portal. It provides you a single dashboard view of all servers present in the cloud. It shows the servers on which the antivirus is already installed as well as the servers for which the antivirus installation is still pending. This dashboard view is a much-needed thing. It also has a centralized management, which makes it easy to use."

Cons

"For SentinelOne, improvements could be made in managing Internet dependency as cloud-based operations can pose challenges in environments with limited connectivity."

"The documentation could be better."

"It took us a while to configure the software to work well in this type of environment, as the support documents were not always clear."

"We are experiencing problems with Cloud Native Security reporting."

"SentinelOne Singularity Cloud Security is an excellent CSPM tool, but its CWPP features need improvement, and there is scope for more application security posture management features."

"In version 2, a lot of rules have been deployed for Kubernetes security and CDR, which makes a lot of issues of critical severity, whereas they are not critical or of high severity. There is a mismatch of severities. They need to work on severity management."

"The areas with room for improvement include the cost, which is higher compared to other security platforms. The dashboard can also be laggy."

"They can add more widgets to its dashboard. A centralized dashboard with numerous metrics would improve user understanding."

More SentinelOne Singularity Cloud Security cons

"There is no perfect product in the world and there are always features that can be added."

"However, some Copilot features aren't available in the GCP environment. This is something we hope will be addressed in the future."

"Sometimes, it's very difficult to determine when I need Microsoft Defender for Cloud for a special resource group or certain kinds of products. That's not an issue directly with the product, though."

"As an analyst, there is no way to configure or create a playbook to automate the process of flagging suspicious domains."

"We haven't experienced issues with Microsoft Defender for Cloud for our company size of about five hundred people. However, I've heard there might be issues with scalability for larger enterprises."

"Defender could improve how data is represented. It can be unstructured or slow to load."

"My experience with Microsoft Defender for Cloud has been largely negative due to a poor user experience."

"Azure Security Center takes a long time to update, compared to the on-premises version of Microsoft Defender."

More Microsoft Defender for Cloud cons

"There is room for improvement in the pricing model."

"Its vulnerability assessment is not the best. We cannot identify the vulnerabilities that are related to the operating system by using McAfee Cloud Workload Security. I wish McAfee would add a vulnerability assessment tool that will not only identify the vulnerability but will also be able to generate a report so that the required patching can be done for the servers. Currently, McAfee Cloud Workload Security only integrates with AWS and Azure. If it can also integrate with GCP, Alibaba, and other cloud services available in the market, it would be good because not all people are using Azure and AWS."

Pricing and Cost Advice

"For pricing, it currently seems to be in line with market rates."

"PingSafe is priced reasonably for our workload."

"PingSafe is affordable."

"It is not that expensive. There are some tools that are double the cost of PingSafe. It is good on the pricing side."

"PingSafe's primary advantage is its ability to consolidate multiple tools into a single user interface, but, beyond this convenience, it may not offer significant additional benefits to justify its price."

"It's a fair price for what you get. We are happy with the price as it stands."

"Its pricing is constant. It has been constant over the previous year, so I am happy with it. However, price distribution can be better explained. That is the only area I am worried about. Otherwise, the pricing is very reasonable."

"I am not involved in the pricing, but it is cost-effective."

More SentinelOne Singularity Cloud Security pricing and cost advice

"Defender's basic version is free, which is good. Many of our teams are evaluating the paid version against third-party products."

"I rate Microsoft Defender a three out of ten for affordability. The price could be a little lower."

"Defender for Cloud is pretty costly for a single line. It's incredibly high to pay monthly for security per server. The cost is considerable for an enterprise with 500-plus virtual machines, and the monthly bill can spike."

"Currently, Microsoft offers only one plan at the enterprise level which is $15 per machine."

"The solution is expensive, and I rate it a five to six out of ten."

"There are improvements that have to be made to the licensing. Currently, for servers, it has to be done by grouping the servers on a single subscription... We don't have an option whereby, if all those resources are in one subscription, we can have each of the individual servers subject to different planning."

"Understanding the costs of cloud services can be complicated at first. As with a lot of things in the cloud, it can be quite hard to understand the end cost, but it becomes clearer over time. Early on, the lack of transparency is a challenge. Microsoft does not tell you the cost when they launch something. It is clever marketing, and there is room for improvement there. There should be clarity from the start."

"Our clients complain about the cost of Microsoft Defender for Cloud."

More Microsoft Defender for Cloud pricing and cost advice

"It is not an expensive product. I am in the Indian market, and it is one of the most reliable and cost-effective solutions."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Workload Protection Platforms (CWPP) solutions are best for your needs.

See recommendations

850,671 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

15%

Manufacturing Company

Government

Computer Software Company

14%

Financial Services Firm

13%

Manufacturing Company

Government

Computer Software Company

14%

Government

14%

Comms Service Provider

14%

Manufacturing Company

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

What is your experience regarding pricing and costs for PingSafe?

It is cost-effective compared to other solutions in the market.

What needs improvement with PingSafe?

SentinelOne Singularity Cloud Security is an excellent CSPM tool, but its CWPP features need improvement, and there i...

How is Prisma Cloud vs Azure Security Center for security?

Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening acros...

What do you like most about Microsoft Defender for Cloud?

The entire Defender Suite is tightly coupled, integrated, and collaborative.

What is your experience regarding pricing and costs for Microsoft Defender for Cloud?

The cost is generally reasonable. Microsoft Defender for Cloud Plan 2 costs $15 per server, per month. For a normal c...

What do you like most about McAfee Cloud Workload Security?

The most valuable feature is the application control.

What is your experience regarding pricing and costs for McAfee Cloud Workload Security?

I would rate it a seven out of ten, where one is a low price, and ten is a high price. Trellix doesn't charge any add...

What needs improvement with McAfee Cloud Workload Security?

There is room for improvement in the pricing model. The price could be a bit lower.

Wiz vs SentinelOne Singularity Cloud Security

Comparisons

Compared 23% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 18% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 5% of the time

Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security

Compared 4% of the time

More SentinelOne Singularity Cloud Security Competitors

AWS GuardDuty vs Microsoft Defender for Cloud

Compared 20% of the time

Wiz vs Microsoft Defender for Cloud

Compared 14% of the time

Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud

Compared 11% of the time

Microsoft Defender XDR vs Microsoft Defender for Cloud

Compared 5% of the time

More Microsoft Defender for Cloud Competitors

AWS GuardDuty vs Trellix Cloud Workload Security

Compared 40% of the time

More Trellix Cloud Workload Security Competitors

Product Reports

SentinelOne Singularity Cloud Security

Download SentinelOne Singularity Cloud Security product report

SentinelOne Singularity Cloud Security report

Microsoft Defender for Cloud

Download Microsoft Defender for Cloud product report

Cloud Workload Protection Platforms (CWPP)

Download Trellix Cloud Workload Security product report

Also Known As

PingSafe

Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender

McAfee Cloud Workload Security

Interactive Demo

Demo not available

SentinelOne

Microsoft

Demo not available

Trellix

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

SentinelOne

Microsoft Defender for Cloud is a comprehensive security solution that provides advanced threat protection for cloud workloads. It offers real-time visibility into the security posture of cloud environments, enabling organizations to quickly identify and respond to potential threats. With its advanced machine learning capabilities, Microsoft Defender for Cloud can detect and block sophisticated attacks, including zero-day exploits and fileless malware.

The solution also provides automated remediation capabilities, allowing security teams to quickly and easily respond to security incidents. With Microsoft Defender for Cloud, organizations can ensure the security and compliance of their cloud workloads, while reducing the burden on their security teams.

Microsoft

Trellix Cloud Workload Security is a comprehensive security solution designed to protect cloud workloads from advanced threats. It provides real-time visibility and control over cloud workloads, enabling organizations to quickly detect and respond to threats.

The most useful functionality of the solution includes automated threat detection, continuous compliance monitoring, and workload protection. With these features, organizations can ensure their cloud workloads are secure and compliant with industry regulations. Trellix Cloud Workload Security helps organizations reduce the risk of data breaches, protect sensitive data, and ensure compliance with regulatory requirements.

Trellix

Sample Customers

Information Not Available

Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.

Information Not Available

Microsoft Defender for Cloud vs. Trellix Cloud Workload Security