We performed a comparison between Microsoft Defender XDR and Microsoft Purview Information Protection based on real PeerSpot user reviews.
Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."For me, the advanced hunting capabilities have been really great. It allowed querying the dataset with their own language, which is KQL or Kusto Query Language. That has allowed me to get much more insight into the events that have occurred. The whole power of 365 Defender is that you can get the whole story. It allows you to query an email-based activity and then correlate it with an endpoint-based activity."
"Among the most valuable features are the alert timeline, the alert story, which is pretty detailed. It gives us complete insight into what exactly happened on the endpoint. It doesn't just say, "Malware detected." It tells us what caused that malware to be detected and how it was detected. It gives us a complete timeline from beginning to end."
"The comprehensiveness of Microsoft's threat detection is good."
"In Microsoft 365 vendor products, monitoring and connectivity across all Microsoft and third-party connectors enable viewing of all activity within those environments."
"The solution is well integrated with applications. It is easy to maintain and administer."
"The timeline feature is excellent. I also like the phishing simulation. We have phishing campaigns to educate employees and warn them about these threats."
"Advanced hunting is good. I like that. We can drill down to lots of details."
"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."
"Before using it, we had a lot of unlabeled data, and the tool helped us quickly and accurately label a large number of documents."
"It ensures that sensitive data is automatically safeguarded, even for email attachments, regardless of the user or device."
"The UI is user-friendly, and I have observed that it improves further each year."
"We can restrict access or specify who can see sensitivity labels, which can be based on the classification level. We can encrypt restricted content and limit who can see that from an internal view, too, so Purview is a powerful tool."
"Incorporating data loss prevention capabilities built into the Microsoft platform to endpoints, such as Windows 10 and Windows 11 computers, can also help prevent data loss and is highly advantageous."
"Automated playbooks and automated dashboards would be preferable to the way the data is currently being presented."
"Microsoft Defender XDR is not a full-fledged EDR or XDR."
"The interface could be improved. For example, if you want to do a phishing simulation for your employees, it can take a while to figure out what to do. The interface is a bit messy and could be updated. It isn't too bad, but doing some things can be a long process."
"I would like more of the features in Defender for 365 to be included in the smaller licenses. Even if I buy a small license and don't need everything, security shouldn't be a question. Security is one of the main aspects of all projects from our side, so it would be nice to have more features in the smaller licenses."
"Microsoft frequently changes the names of its products, sometimes even renaming entire portals or features."
"It would be beneficial to have a more seamless experience with everything consolidated in one place, particularly when dealing with aspects related to the Exchange console."
"The abundance of sub-dashboards and sub-areas within the main dashboard can be confusing, even if it all technically makes sense."
"Offboarding latency should be reduced. Even after a device has been successfully offboarded using a particular offboarding script, it still shows up as onboarded."
"There is potential for more integration in the use of AI."
"Microsoft can improve the affordability of Purview Information Protection by offering it at a lower cost."
"Our primary concern is third-party application visibility. Many people choose other DLP tools, as they can search the Office 365 suite and detect sensitive information across thousands of other apps. The product is weak compared to the competitors on the DLP front, but the classification is good; the tool needs a bit more maturation."
"There is room for improvement with the policy tips feature."
"Microsoft Purview Information Protection can improve in terms of scan concurrency and scan processing time."
More Microsoft Purview Information Protection Pricing and Cost Advice →
Microsoft Defender XDR is ranked 1st in Microsoft Security Suite with 78 reviews while Microsoft Purview Information Protection is ranked 21st in Microsoft Security Suite with 5 reviews. Microsoft Defender XDR is rated 8.4, while Microsoft Purview Information Protection is rated 7.8. The top reviewer of Microsoft Defender XDR writes "Includes four services and four products, which can help organizations a lot". On the other hand, the top reviewer of Microsoft Purview Information Protection writes "Provides protection across multiple environments, can classify data and represent it graphically, and has the option for customer-managed teams to encrypt and manage data". Microsoft Defender XDR is most compared with CrowdStrike Falcon, Microsoft Defender for Cloud, Microsoft Purview Compliance Manager, Wazuh and Cisco SecureX, whereas Microsoft Purview Information Protection is most compared with Microsoft Purview Data Governance, Varonis Platform, Informatica Axon, BigID and Securiti. See our Microsoft Defender XDR vs. Microsoft Purview Information Protection report.
See our list of best Microsoft Security Suite vendors.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.