Microsoft Defender for Endpoint Reviews

I lead a delivery team. I have a team of about 20 technology specialists and we do the deployment for Microsoft Defender.

Instead of having a third-party antivirus, then you can have a Microsoft ecosystem for your entire endpoint protection. 

This solution has its own sensors, which is its best feature. It senses the behavior of your endpoints, whether it is logged in from a particular location or external of that location. 

It captures data through machine learning, which is built-in on the back-end. It also provides built-in analytics and a threat intelligence feature. It is a one-stop solution that doesn't require an antivirus because it comes prebuilt into Windows 10.

Sometimes, there are different skews. In a basic skew, they should have basic log analysis without the need to integrate with any third-party or SIEM solutions, like Sentinel. This would make it so much easier for users who don't have log collection or log analysis.

We have been using it for a year.

This solution is very much stable.

This solution is scalable. It is a cloud solution.

If you have the Microsoft Azure ecosystem, you can collect logs and view them through Sentinel. You can also onboard your devices within Intune. 

You can integrate Microsoft Defender for Endpoint with different Microsoft solutions, e.g., Defender for Cloud, Sentinel, Endpoint Manager for onboarding of Intune, and Defender for Office 365.

We have a large number of customers.

Premium support is okay. Professional support is not as good because it is free. You must wait because you are not paying.

The initial setup was straightforward. There was nothing rocket science to it. It didn't take much time as we just enrolled the device and assigned the licenses, then it was done.

You just prepare it, doing a license evaluation licensing and some network configuration, then you can onboard your device.

We do the implementation ourselves. We find it easy to deploy. We help customers adopt the solution and get better ROI.

They have to pay for the Defender license. There are different licenses and skews, such as Plan 1, Plan 2, or the trial.

You do not need to pay any additional costs for antivirus and anti-malware solutions for endpoint protection. 

Anyone on Windows 10 Enterprise should choose this solution.

It really depends on the volume. You need one senior architect who can just define the entire thing: the device, network configuration, etc. You will also need some Level 1 engineers who need to keep on monitoring the devices and do onboarding. If they are using the latest version of Windows 10, then you can do the onboarding via Intune, Endpoint, etc. 

My rating for this solution is an eight out of 10.

We use Microsoft Defender for Endpoint as an antivirus and antimalware solution. We also use it for endpoint management.

What I'd like included in the next release of Microsoft Defender for Endpoint is more integration with different platforms.

We've been using Microsoft Defender for Endpoint for four years.

Microsoft Defender for Endpoint is stable, except for occasional internet connection issues, but it's stable.

We contact the technical support team for this solution whenever we have an issue, and once you open a ticket, they respond as quickly as possible, though it would still depend on the severity level that you define.

The initial setup for Microsoft Defender for Endpoint was straightforward. It wasn't complicated.

We pay for our Microsoft Defender for Endpoint subscription yearly.

We've been working with various Microsoft solutions, e.g. Microsoft Defender for Endpoint, Microsoft Azure, etc.

Microsoft Defender for Endpoint has been awesome, so far.

I wasn't around during the setup of the solution, so I have no idea on how long setting it up took.

We have 6,000 end users of Microsoft Defender for Endpoint within the company, and it's being used on workstations, servers, and mobile devices.

I'm rating Microsoft Defender for Endpoint nine out of ten. I found it to be a good product. It's a fine product.

We use Microsoft Defender for Endpoint for network and endpoint protection.

Microsoft Defender for Endpoint could improve by making the reporting better.

I have been using Microsoft Defender for Endpoint for approximately three years.

Microsoft Defender for Endpoint is stable in my usage.

I have found Microsoft Defender for Endpoint to be scalable.

We have approximately 700 people using this solution and we plan to increase usage.

The technical support from Microsoft is very good. We are part of the Microsoft Suite, and from being part of this we have consistent news regarding Microsoft Defender for Endpoint.

I have previously used ESET.

The initial setup of Microsoft Defender for Endpoint was straightforward. 

We have two engineers that do the implementation and maintenance of Microsoft Defender for Endpoint.

Microsoft Defender for Endpoint has improved a lot over the years and it is a lot better now.

I would recommend this solution to others.

I rate Microsoft Defender for Endpoint an eight out of ten.

We use it for our endpoint detection and response capability.

The EDR feature is most valuable.

It is currently more suitable for end-users rather than enterprises with lots of other processes and third-party tools. It needs improvement on that front. We had many issues while integrating it with our enterprise solutions, such as Splunk, and third-party tools. It provides everything via APIs. Other vendors provide integration with third-party tools, but Microsoft doesn't do that.

It is also logging too much and is not serialized from the process aspect. It has all the data, but it is not in a proper format or not properly indexed, which doesn't make it easier for enterprises to use this data.

Other vendors provide troubleshooting information that can be used to troubleshoot issues, but Microsoft doesn't provide anything like that.

I have been using this solution for six months.

It is still a new product, and there are many reported bugs in terms of stability and impact on the endpoints.

We have around 80,000 users.

They are good. They take a little bit of time, but they are good.

It was very complex. We had many issues in integrating it with our enterprise solutions, such as Splunk, and third-party tools.

We have seven or eight engineers for its maintenance.

I would recommend this solution to others if they don't have many third-party tools. It is a very good solution.

I would rate Microsoft Defender for Endpoint a seven out of ten.

We are using this solution for threat detection.

It shows us the risky sign-ins, and if a user's password has been compromised.

While have been using this solution for two years, I am not completely knowledgable. 

Due to license restrictions, we cannot use all of the features that are offered.

I am not sure if I will be using this product in the future because of the price.

I would like to see better pricing for this solution in the future.

I have been working with Microsoft Defender ATP for two years.

We are always using the latest version because it's on the cloud.

With what we have seen, it's a stable solution.

We are not using it widely because of the licensing limits.

We have three users only for Defender ATP, and if we are using the Microsoft ATA it applies to 500 users.

Technical support is good.

We did not use another solution previous to Microsoft Defender ATP.

The initial setup is straightforward. It's included with the Windows 10 Operating System.

There is no time taken for deployment as it is included with the operating system.

We completed the installation ourselves.

We have 15 administrators to deploy and maintain this solution.

Microsoft Defender ATP is expensive.

Because of my lack of knowledge or experience with the solutions full capacity, I cannot recommend this solution or offer any advice.

I would rate this solution a five out of ten.

The solution is really fast. I have never experienced any viruses since I've been using it.

I think the console can be better.

The end-user also cannot do some advanced actions on it. It's a little bit complicated for our end-user, so it needs to be simplified.

I think the solution is complicated. This one is one of the concerns that I like to talk about because some end-users do not know how to navigate through the console and how to work with them. I think this is not such a big deal, but I know that there will be other things that may be important to us like, how we can centrally manage users and reports are really important for us. For example, in Kaspersky, we had a problem where we couldn't detect the attacks that we had in some of our zones in our data center. I think if Microsoft Windows Defender can report these things, it's going to be great.

It's really stable. I've used a lot of products, like ESET and Kaspersky. None of them are comparable with this one. This one is much better.

To scale the solution, I think you need more licenses but I'm not sure. We have 100 to 1,000 users. We just use it for some end users, not for all the users. The users are mainly end-users and a few admins. We plan to increase users annually.

We used other solutions, like ESET and Kaspersky. We had to change at first due to user complaints, especially about Kaspersky, because it used a lot of the resources. So we switched to ESET but after some time we just switched to Windows Defender. 

The initial setup was really easy, a no brainer.

I installed the solution on my own.

I would recommend the solution because I can confidently tell everyone that this product is working very well and it's stable. You are always sure that they are able to deal with a virus or something else that may interrupt your work.

I would rate this solution nine out of 10.

Microsoft Defender for Endpoint provides visibility into our workstations at SOC. 

We can react to threats faster and stop them from spreading from one machine to another. It protects from suspicious email attachment downloads. It will lock down the SOC and the workstations. 

It is an EDR product that offers much more information into what's happening at our workstations. 

Microsoft Defender for Endpoint's licensing is confusing. It has conflicting information on the website. We also faced integration issues with other systems. It makes laptops slower than traditional antivirus systems. 

I have been working with the product for a year. 

Microsoft Defender for Endpoint is stable. 

The tool's scalability is good, but we must consider the cost. 

We get good ROI with the product's use. 

The product's threat intelligence prepares us for potential threats and helps us take proactive steps. Its vulnerability management feature is important to us. 

Microsoft Defender for Endpoint has improved our security posture by giving visibility to our endpoints and vulnerabilities. 

The tool helps us save months per year. It also helps us save money in manhours.

 Microsoft Defender for Endpoint has reduced our time to respond and time to detect by a large margin. 

We chose the product because we already use Microsoft products, and it better integrates with them. 

I rate it an eight out of ten. 

The most valuable feature is its ability to effectively detect threats. It has the EDR feature, endpoint detection and response, and that is very good.

The management console is something that can be improved.

I have been using Microsoft Defender for Endpoint for about two years.

It is stable.

It is scalable.

The initial setup is quite simple because it is built into the operating system.

Microsoft Defender has more granular capabilities because of the native operating system that it is built into. It is better integrated into the operating system because both the product and the OS are from Microsoft. That is an advantage.