Microsoft Defender Threat Intelligence Reviews

We primarily use the solution not necessarily from a user point of view. Rather, we use it from an admin point of view. For example, the Log4j vulnerability. Last year, they released threat intelligence information on that vulnerability, put out the protections quickly, and updated their TVM module. It can easily identify what things are vulnerable and what assets you have that are vulnerable to attacks.

They seem to be pretty up to date with the latest threats in the world. That's a pretty good aspect.

The threat intelligence piece is pretty good.

The user interface is pretty user-friendly.

The integration integrates across the whole Defender suite, so that's pretty good.

It's very straightforward to set up.

The product scales well. 

I cannot recall any issues we've encountered or areas that need improvement.

Technical support could be a bit better. 

Clients might prefer a lowering of the price. 

I've used the solution for probably over four years. 

The stability has been pretty good. I'd rate it nine out of ten in terms of its reliability. The performance has been great. 

It's very easy to scale as needed. 

We're across the Defender Suite. In terms of analysts that use it, there are five of us.

Technical support is okay. It could be better. 

Neutral

We pretty much use all Microsoft, so not much else is used. We use 

Defender for everything, so Defender for the cloud app, Defender for Cloud, Defender for Android and Defender for IOS, Defender for Identity, and others. We also use Microsoft Sentinel. It's all Microsoft stuff.

The solution is very straightforward. It's easy to set up. 

It's bundled into an E5 license, so it comes with a bunch of other things as well. I'd say it's fairly well-priced.

We did compare Microsoft Defender Threat Intelligence with ESET and Kaspersky, among others. Defender is not necessarily better. However, it just suits our security strategy and risk appetite.

We have a partnership with Microsoft.

I'd rate the solution a nine out of ten. 

We use Defender Threat Intelligence for threat detection. 

The most valuable aspect is that it just runs in the background. I don't have to worry about its intelligence. It is easy to use. 

I would like for there to be extra confirmation that there aren't viruses. Even if the virus detection software is always running there could be hidden applications that are using the computer. 

I have been using Microsoft Defender Threat Intelligence for three years. 

It is a stable solution. I rate the stability nine out of ten. 

The technical support is good. They are good at fixing any issues we have.

The initial setup is easy. 

The pricing of the solution is good. 

Overall I would rate the solution a nine out of ten. 

We use the product as a defender for Office 365, endpoints, and security-dependable cloud apps.

The product provides efficient email security for sending links and file attachments. It has valuable features for anti-spam and antivirus. It integrates well with Microsoft Sentinel as well.

We encounter problems connecting the product deployed on the user endpoints with the servers. Additionally, the license model for the servers needs improvement.

We have been using Microsoft Defender Threat Intelligence for two years.

It is a very stable product.

Microsoft Defender Threat Intelligence is scalable.

The initial setup is simple. However, it takes a lot of bandwidth to scan the device. It is challenging to deploy backups of thousands of computers. We have to configure the integration between the Defender for the endpoint and the server. The deployment and maintenance process requires one technical engineer to troubleshoot issues by reviewing PCs and setups.

They offer two license plans: Microsoft Defender for endpoints and Microsoft Defender for businesses.

I have evaluated Kaspersky.

I advise others to develop a good infrastructure and a vision for security before deploying any product. I rate Microsoft Defender Threat Intelligence a nine out of ten.

The solution is one suite covering everything from email protection to threat intelligence and vulnerability scanning. Microsoft keeps adding more features to the tool, and through one interface, you can see the whole attack path, the assets involved, and the users involved. It's a very good product if you're using mainly Microsoft products. Most of our machines are Microsoft Windows and Microsoft Windows servers.

I would like to see more frequent updates, which is always better for security because of daily threats.

Since it's cloud-based, the tool is mostly available. If an on-premises solution goes down, it only affects a few people, but if a cloud solution is down, it affects most customers. So, Microsoft is investing a lot in the stability and resilience of the solution. Microsoft Defender Threat Intelligence is a very stable solution.

Microsoft Defender Threat Intelligence is a scalable solution. You just keep installing agents on the extra new machines in your network, and it automatically starts working. Around 100 users are using the solution in our organization.

We have a support structure not directly with Microsoft but with one local vendor who has partnered with Microsoft. Their knowledge base, information, and training are all very good.

I have previously worked with Sophos.

The solution's initial setup is straightforward.

On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a six or seven out of ten.

Since the solution is more linked with Microsoft products, it gives you notifications of vulnerabilities, threats, or attacks happening currently. It flags them, and you can break them down to learn which asset or process started it. You can configure the product to report the same situation or similar alerts as false positives and not flag them. They are part of the business application

You can apply these rules to all the machines in the network because you would have similar users on other machines doing the same thing. If you see a threat or suspicious action, you can configure the tool to block the whole thing and apply the same rule on all the machines.

Microsoft is the market leader, and it's already innovating, adding more features, and integrating everything with its other products. The solution provides value for money. Microsoft had a different version for small licenses and introduced a new licensing structure so that small companies could have additional features at less cost. Otherwise, they would have to buy a really expensive license for big organizations.

Microsoft brought additional features into a small license for small and medium businesses. Microsoft keeps adding value to its products.

With Microsoft Defender Threat Intelligence, you have one product and one console to see everything. You don't have to buy multiple products to look at different security aspects. Microsoft keeps adding features to the product that are more than enough to monitor your entire suite.

Users have to learn the product and get free training and certification. It's always better to have training provided by the vendor. Very few market leaders invest in providing training.

Overall, I rate the solution a nine out of ten.

We use it for Cloud Security and Endpoint Protection. We have offices in each country on the planet. And so we have many, many, many external people who work with this solution. 

It's a bit complicated to manage because you have many dependencies of servers, many dependencies in queue, and so on. Entries or different endpoints, and you make different configuration topics for each one. So that's a major problem.

I would like to see a feature that would allow us to easily manage our Defender configurations.

It needs high-level administration.

We have been using it for about six months.

It is a very stable product.

It is very scalable. There are approximately 2,000 endpoints and up to 200 servers in our company.

I used Trend Micro. Trend Micro has an easier grid, but the functions are the same.

The advantage is to have only one vendor, which provides Office tickets, communication, storage, and cloud. It's just one solution from one end, from one provider.

We have our documents and processes in the cloud, in the Microsoft cloud.

The maintenance is done by Microsoft. We are on-premises, and our configuration allows access outside the company's local data center.

I would recommend using this solution. It works. We have no problems with it.

Overall, I would rate the solution an eight out of ten. 

Threat Intelligence is a modern antivirus XDR solution that we use to protect the environment, identities, data, and endpoints from attacks.

It was an excellent tool for its covered area and protected data, applications and controlled user access remotely.

I value how Threat Intelligence integrates with the different platforms in Microsoft.

I would like to see more AI features and capabilities.

I've been providing the solution to customers for a little over two years.

I rate Microsoft Defender Threat Intelligence's stability a ten out of ten.

I rate Microsoft Defender Threat Intelligence's scalability a ten out of ten. We have about 50 customers using the solution.

The technical support for Threat Intelligence is very good.

We have previously tried Trend Micro Palo Alto CrowdStrike and several others. We chose Microsoft Defender Threat Intelligence because it has more features and functionalities, is more effective with attacks, and integrates better with different platforms, especially Sentinel, which helped us build a SOC. Threat Intelligence has better reactivity, too, so this solution was what we needed. The other solutions were a bit more complicated and had limitations.

Another interesting thing was how the solution had other data applications, not only endpoints but also identity and so on.

The initial setup is not complicated at all. Threat Intelligence is something engineers can develop and deploy properly. However, the initial setup's difficulty depends on the experience the engineers have with the cases that they need to deploy for, and this is where the skills come into play.

The time taken to deploy the solution depends really on the scenarios. And besides this company, we deployed the solution for small projects, which took less than ten days. There is also integration with Sentinel and third-party tools, so the time to deploy Threat Intelligence depends on what's needed. The deployment, when compared to other solutions, Is not complicated and does not take much time.

The solution can be licensed, but most users would already have it in their Office 365 license. They just need to use it. The solution is very cost-effective and not expensive compared to what other vendors provide. Since the solution is part of a bigger bundle, customers would not have to pay extra.

I rate Microsoft Defender Threat Intelligence a ten out of ten. People planning to implement this solution can confidently choose it. I wouldn't hesitate a minute to renew my license because it's very cost-effective and rich in functionalities. It has more features than other vendors' applications.

We use the product to capture the logs, collect data, and understand patterns.

The product provides smooth functioning for our service desk and the technical team. It helps in efficiently generating reports to update the management.

There could be AI functionality included for features like reporting and dashboard preparation.

We have been using Microsoft Defender Threat Intelligence for more than a year.

The product has high stability.

The product has high scalability.

The technical support services are excellent.

The initial setup process is straightforward. It took us three months to deploy.

We implemented the product with the help of an integrator.

Microsoft Defender Threat Intelligence generates a good return on investment.

The product’s pricing is worth it.

I recommend Microsoft Defender Threat Intelligence to others and rate it a nine out of ten.

We use the software to scan malware for email attachments by identifying and blocking phishing emails.

The product's anti-spam and malware-scanning features are useful. We scan email attachments, documents, and malicious codes.

The software is expensive.

We have been using Microsoft Defender Threat Intelligence for almost a year now.

The software is stable, similar to Office 365.

We have 400 Microsoft Defender Threat Intelligence users. It is a scalable product. However, the cost increases as we increase the number of users.

We receive technical support services via the integrator as well as the vendor.

The software is deployed on the cloud. The setup requires technical knowledge or assistance from the integrators.

The product generates ROI for securing the company resources at minimum cost. We don't need to employ two to three analysts for this purpose.

It is an expensive product. We purchase its yearly license.

We evaluated a few products before.

I rate Microsoft Defender Threat Intelligence a ten out of ten.