Microsoft Defender for Endpoint Reviews

Microsoft Defender for Endpoint is used for protection against threats.

The reporting in Microsoft Defender for Endpoint should improve. The solution has limited features.

I have been using Microsoft Defender for Endpoint for approximately three years.

Microsoft Defender for Endpoint is stable.

The scalability is good.

My team did the implementation of the solution.

This solution is part of an enterprise license we have.

There are a lot of other products on the market that have better features.

If you have a mid-sized organization, the solution works well. However, in a large size organization, there are challenges.

I rate Microsoft Defender for Endpoint a seven out of ten.

We primarily use the solution for cloud security. It was used for threat detection and endpoint to endpoint.

The product can be used for organizations that use Microsoft as their primary security defender and need zero-day threat protection. It's good for companies that want to make sure there are no threats or attacks on their information.

It's one of the best antiviruses on the market.

The solution could be even more secure and provide an even higher level of security.

I've been using the solution for more than two months at this point.

We have a team of up to four or five people that use the solution.

I've never contacted technical support or worked with them on any issues. 

The installation is very straightforward and the deployment is quick as well. 

While I recall the deployment not taking too much time, I don't remember the exact amount, as it was already installed by my team here. It was likely less than ten minutes.

You only need roughly four people, at a maximum, to install the solution. You need one good manager and four or five engineers.

I can handle the installation process myself. 

In order to use the solution, a base subscription is required.

We are always using the latest version of the solution.

I'd rate the solution at an eight out of ten.

I would recommend the solution to other users and organizations.

We use this solution to protect and blocks any threats. We use it for protection.

This solution is not secure, which is why I have moved to Linux.

Microsoft Defender for Endpoint could be more secure.

I have been using Microsoft Defender for Endpoint for two years.

I have not yet used technical support.

It comes preinstalled with the OS. There is no need for any deployment. There is no installation or any other steps needed.

The installation of the host OS was easy.

I installed the OS myself.

There is no licensing fee. It comes included with the Windows license.

I don't recommend this solution.

I would rate Microsoft Defender for Endpoint a five out of ten.

Our primary use case centers around blocking viruses on my personal laptop.

I'm working as a private contractor. In this regard, you can say this tool ensures I'm working with a product that gets updated regularly without me having to remember to do it. Since it's a Microsoft product, I'm confident that it requires a low use of system resources. The benefit of that being that my computer isn't constantly being drained.

One of the most valuable features of this product is the ability to "set it and forget it." I don't go in and make any changes to the settings. Another value add is the size of the user base, which is fairly large because it's a free MS product. I would imagine that it would be quite competitive since a blacklisting solution such as this is only as good as the threat intelligence it receives. I'm pretty sure that if the tool discovers something foreign and malicious it will upload that information back to Microsoft. The value of the tool is inherent within the size of the user base, which is fairly large because it's a free product by a trusted company.

I'm sure the premium product has extra features, like listing questionable websites. Defender is just an antivirus product. It would be nice to have a paid upgrade that would provide additional screening of the day-to-day activities.

I haven't had any noticeable issues with it. It's quite stable.

It's very easy to set up. With admin rights, it really is very straightforward. All you need to do is install the tool and then download the definitions. 

Deployment was just basically downloading from Microsoft. It was very straightforward.

I'm currently evaluating the performance of Defender against third-party antivirus software products to see if I should continue with third-party products or just use Windows Defender.

My additional advice would be to create a test user group, deploy the software to those test users and then monitor those users as part of a log management operations center and run comparisons over several months. Comparing those users, against other users perhaps using a third-party product, like Symantec, would allow for calculation of performance and progress metrics. Based on that, a decision can be made as to whether to deploy the software across the organization or not.

I'd give this tool a rating of 8 out of 10. It's got good detection rates, low on system resources, doesn't interfere or hamper workflows, and it's easy to use.

The solution is used to protect the endpoint. Also, there's an antivirus and then advanced threat protection. It's also detecting threats and sending that to the cloud and correlating that without the events from other parts of the EMS suites. That's primarily what we are using it for. It is also capable of doing some attack surface reduction that you can configure on the endpoint. It's basic protection plus surveillance. It's also an EDR, however, we are not using that.

It's always very difficult to measure, however, it integrates very well with the other Microsoft products. It's easy to handle them. That's an important point when you want to achieve a higher security level that it's easy to manage. You can be sure that it's up to date and it's managed and the alarms are taking care of and so on. It's not only the technical capabilities, that are important. How it plays together with the rest of your products is also key.

It's not really visible for the user - which is a benefit. 

We know it's pretty good in terms of detecting threats against our platform and attacks. We have seen that.

There's privileged escalation or lateral movements for attacks.

The solution is stable.

The scalability is good.

The dashboards could be better. There's a suite of different products that play together and enhance security and receive signals from different parts of the product suites. When you are trying to look into that sort of depth on a dashboard, or across various dashboards, it can be difficult to obtain a comprehensive overview as it's so divided.

The initial setup can be a bit complex. 

Beyond that, I'm not involved in the day-to-day operation. There may be others that can offer more insights.

We started using it when we started to migrate to Windows 10 and that was likely four years ago. However, that was the Microsoft basic version. Recently, we also enabled the ATP path.

It's my understanding that the solution is very stable. It's a pretty mature solution.

In terms of scalability, we have not encountered any issues. We have around 7,000 end points.

We don't have too many physical people dealing with the solution. We have some people in operations and then some architects and so on, however, they are not involved on a day-to-day basis.

The initial setup is somewhat complex, however, that's not only due to the product. It's also the environment that it is going to be implemented into. Also, when you have a company with a lot of legacy products and all the setups and so on there may be difficulties in terms of getting everything to work together.

The deployment can take up to a couple of months, however, it's dependant on the environment that it needs to be implemented into. For instance, if other kinds of agents are writing on the computer, you need to make sure that it is not consuming too much CPU capacity and so on. If you have a good system, it would be very quick to install.

We have a deployment plan and we have taken advice from Microsoft Learning from their onboarding Planning information. There isn't anything that is very special, as, when you roll out new software on an endpoint, you must make sure that it's not disturbing the day-to-day operation. You start with a small group of test users and then do it in bigger and bigger waves and always be ready to go back. It's good to have that preparedness so that you can roll back and you can investigate what's gone wrong and so on, however that's not special to a different endpoint. That's a normal deployment strategy.

It has been possible to reduce the use of other agents. Beyond that, we have not made any financial calculations in relation to ROI. We have been using McAfee, for example, among others, and it's been possible to scale down. Microsoft is more integrated, more comprehensive, and Defender is part of the Microsoft operating system.

We are customers and end-users.

This Microsoft security platform is very much a SAS platform. It's playing together with all the other security products from Microsoft and the company is using the Azure platform to collect the information and to work on the main refine security findings. It's working very well together with the Microsoft Cloud solution for security.

It's my understanding that they call it the security graph. It's quite important that they are communicating together. Windows Defender, ATP is delivering a lot of telemetry to that form and correlating it with telemetries.

The reason why we have implemented DHCP part is due to the fact that we bought a Microsoft E5 license with a lot of security enhancements.

I've only seen it in the implementation and design phase, however, it's pretty good. That said, it's also within the environment of a large company where the processes can be a bit difficult.

I'd advise users to integrate it into their security operations center so that they can have the full benefit of the product.

I'd rate the solution at an eight out of ten.

I am using the solution for personal data protection.

The main features of this solution are that it handles everything by itself and is well integrated.

There could be an increase in security for the solution.

I have been using this solution for a couple of years.

The solution has been stable.

In my experience, the solution has been scalable.

There is no license needed, the solution comes with Microsoft Windows.

I would recommend this solution to others.

I rate Microsoft Defender Antivirus a nine out of ten.

I'm a consultant and I don't use these solutions. We sell them and we do research for sales purposes.

I don't use it explicitly. Rather, it's there on my laptop filtering viruses. It's there to protect my laptop.

I have had a few minor issues on my laptop but nothing really big.

I would like to see fewer pop messages and alerts. 

It's disturbing when you have that many alerts. 

Even though it shows you it's working, I don't really need to see it. If it was running in the background and never showing that would be perfect for me.

It's been a part of my laptop by default for two to three years.

I am probably not using the latest version. I don't follow the best practices in terms of updates. I may have an outdated product.

It's stable. There are no issues that I know of. 

My laptop has been working.

As it is for my personal use, this is an area that is not necessary for me to explore.

I am the only person using it.

I am a part of a tiny organization with a tiny team that is autonomous.

I have not contacted technical support.

I have used Symantec Endpoint Protection. It was the standard choice in my previous company.

From what I remember, the initial setup was transparent. I haven't had to deal with it.

I would say that the initial setup was straightforward.

It's included with the Windows Operating System, I don't pay for any licensing fees.

I would recommend using this solution. I haven't had any issues and it's been working fine for me.

I plan to continue using this product as long as it is not causing any problems.

I would rate this solution an eight out of ten.

We primarily use it due to the fact that it comes with the Windows 10 bundle and is free. We use it for security purposes. It scans for viruses and malware for us.

The solution was highly ranked in the Gartner Report.

It's absolutely free to use.

The anti-malware features are great.

It doesn't use up a lot of resources on my laptop, so it's not slowing anything down.

The product is very easy to use.

The anti-ransomware features need to be improved upon.

I've been using the solution for about a year. I switched over when I updated my computer to Windows 10.

The solution is very stable. So far I haven't had any issues on my laptop. It uses very little resources. It doesn't crash or freeze. There aren't bugs or glitches that I have noticed.  It's reliable.

I'm currently only using it on my laptop. I'm not sure if the solution can scale per se.

I will continue to use the solution, regardless of its scalability potential.

I've never had a reason to reach out to technical support, as the solution runs very well. As I've never contacted them, I can't speak to the quality of their service at this time.

I did previously try to use the free version of Avast. It's not really user friendly like Defender and it used to use a lot of my laptop's resources. I switched to Defender as it was also free and came with my Windows 10.

The initial setup is not complex. It's very straightforward. When you download Windows 10 it comes pre-loaded and ready to go. It's a default now. Previously, it was a little more difficult.

The solution is free. Once a user downloads Windows 10, they automatically get the product.

I'd recommend the solution. Why not, after all? It's already there within Windows 10 and is part of a user's Microsoft bundle. 

Overall, I'd rate the product eight out of ten. If it had more ransomware protection, I'd rate it higher. As it is, the solution offers great malware features, is ranked pretty highly in Gartner and is easy to implement and use. Plus, it doesn't drain a lot of your machine's resources, which is a bonus.