The automated remediations can be more specific. However, the score and recommendation aspects are good. Currently, I do not see any significant challenges.
The constant changes in the product configuration or the console setup can sometimes be challenging. They can be disruptive because we need to adjust to these changes, which can interfere with ongoing tasks.
My company works closely with Microsoft, and we have requested a few additional features to be incorporated into the product since there are some shortcomings in the product. The setup phase of the product is not that easy and needs a person to have a certain level of expertise. The aforementioned area can be considered for improvement.
Integration can be improved. A substantial percentage of users operate on Windows 10, and Microsoft is urging the transition to Windows 11. Applications like Teams and Security CoPilot are stable on both platforms, but the full potential may be realized on Windows 11, which becomes more relevant as more users adopt it in the coming years.
Learn what your peers think about Microsoft Defender Vulnerability Management. Get advice and tips from experienced pros sharing their opinions. Updated: February 2025.
Principal Consultant Cyber Security at a computer software company with 501-1,000 employees
Consultant
Top 10
2023-08-02T02:53:00Z
Aug 2, 2023
A few false positives demand legitimate customer mail requests, but the Defender flags them as vulnerabilities. They should be reduced. Along with it, small and medium enterprises should have customized environmental query features to help them save time. It will benefit organizations that don't have a large team with more technical experience. Additionally, it is challenging to extract and customize reports from the system. Customers typically seek reports that provide information on assets, vulnerabilities, CVSS scores, remediation, priority, and effort. Combining all this data into a single report is difficult because it requires merging information extracted from standard queries. To simplify this process, we should be able to create one customized query that concatenates all the relevant queries and make it accessible through GUI on the platform.
Microsoft Defender Vulnerability Management enables organizations to identify vulnerabilities, manage patches, and fortify threat detection. It offers endpoint assessments, cloud incident management, and dynamic security through Microsoft's Security Scorecard integration.Organizations leverage Microsoft Defender Vulnerability Management for advanced threat detection and response. It provides robust tools for vulnerability assessment and cloud incident management, integrated with Microsoft's...
Probably my only criticism would be the cost. It is expensive.
The automated remediations can be more specific. However, the score and recommendation aspects are good. Currently, I do not see any significant challenges.
The constant changes in the product configuration or the console setup can sometimes be challenging. They can be disruptive because we need to adjust to these changes, which can interfere with ongoing tasks.
The product must be a little bit more precise in identifying vulnerabilities.
My company works closely with Microsoft, and we have requested a few additional features to be incorporated into the product since there are some shortcomings in the product. The setup phase of the product is not that easy and needs a person to have a certain level of expertise. The aforementioned area can be considered for improvement.
Integration can be improved. A substantial percentage of users operate on Windows 10, and Microsoft is urging the transition to Windows 11. Applications like Teams and Security CoPilot are stable on both platforms, but the full potential may be realized on Windows 11, which becomes more relevant as more users adopt it in the coming years.
The general support could be improved.
A few false positives demand legitimate customer mail requests, but the Defender flags them as vulnerabilities. They should be reduced. Along with it, small and medium enterprises should have customized environmental query features to help them save time. It will benefit organizations that don't have a large team with more technical experience. Additionally, it is challenging to extract and customize reports from the system. Customers typically seek reports that provide information on assets, vulnerabilities, CVSS scores, remediation, priority, and effort. Combining all this data into a single report is difficult because it requires merging information extracted from standard queries. To simplify this process, we should be able to create one customized query that concatenates all the relevant queries and make it accessible through GUI on the platform.