Cynet vs Microsoft Defender for Identity comparison


Comparison Buyer's Guide

Executive Summary

Categories and Ranking

Average Rating
Number of Reviews
Ranking in other categories
Endpoint Protection Platform (EPP) (16th), User Entity Behavior Analytics (UEBA) (4th), Endpoint Detection and Response (EDR) (14th), Threat Deception Platforms (3rd), Network Detection and Response (NDR) (4th), Extended Detection and Response (XDR) (9th), Ransomware Protection (5th)
Microsoft Defender for Iden...
Average Rating
Number of Reviews
Ranking in other categories
Advanced Threat Protection (ATP) (6th), Microsoft Security Suite (8th), Identity Threat Detection and Response (ITDR) (1st)

Mindshare comparison

As of July 2024, in the Endpoint Detection and Response (EDR) category, the mindshare of Cynet is 1.5%, down from 1.7% compared to the previous year. The mindshare of Microsoft Defender for Identity is 0.5%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
Unique Categories:
Endpoint Protection Platform (EPP)
User Entity Behavior Analytics (UEBA)
Advanced Threat Protection (ATP)
Microsoft Security Suite

Featured Reviews

Cesare Vitali - PeerSpot reviewer
Feb 5, 2024
Provides streamlined deployment, intuitive usability, quick response times, high scalability, excellent stability and responsive support making it a comprehensive and reliable cybersecurity option
I like Cynet because, in my experience, it's incredibly fast and intuitive. The interface is exceptionally clear and easy to understand. The most critical function of the product for maintaining our cybersecurity environment is the rapid deployment of policies to the agents. This is particularly crucial considering our diverse workforce, with many employees working remotely or directly at customer sites. Unlike other solutions that might not be as cloud-based or easy to manage, Cynet excels in swiftly and accurately sending policies to the agents. This capability has been immensely valuable, especially during times when our developers are heavily engaged across multiple customer projects. With Cynet, we've experienced minimal issues with agents failing to receive or apply policies, ensuring that our security measures are consistently and promptly implemented across the board.
Mar 31, 2023
Offers robust protection from insider threats, but the customer support is poor
The complexity of the initial deployment depends on the scenario; it can be straightforward, but it can also be complex, especially if it involves removing the agents from a previous solution. The setup typically takes 45 minutes to an hour if there are no issues, but if you run into problems, it can take a day or two. We implemented the solution using a team of five staff. We have another team of 15-20 employees working on customer projects. It took six to eight months from the time of deployment to realize the benefits of the solution. From an endpoint and identity perspective, it took that long because the data needed to be recorded and captured.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:


"The product is very easy to use. Customers really appreciate that."
"The interface is exceptionally clear and easy to understand."
"The feature I find most valuable, is the reality graphical user interface."
"The visibility it gives is excellent."
"The dashboard is beautiful, overall easy of use, and the UBA and NBA features are valued."
"Its ability to revert back from a previous state is quite notable. This feature is particularly valuable because, for maintaining integrity, it can inspect the socket for any firewall modifications. In practice, it allows us to return to a previous configuration when everything was functioning correctly."
"It can be deployed in autonomous mode, and then it automatically blocks malware threats."
"The most valuable feature is the monitored support behind it."
"This solution has advanced a lot over the last few years."
"The solution offers excellent visibility into threats."
"All the integration it has with different Microsoft packages, like Teams and Office, is good."
"It automates routine testing and helps automate the finding of high-value alerts."
"Microsoft Defender for Identity provides excellent visibility into threats by leveraging real-time analytics and data intelligence."
"The feature I like the most about Defender for Identity is the entity tags. They give you the ability to identify sensitive accounts, devices, and groups. You also have honeytoken entities, which are devices that are identified as "bait" for fraudulent actors."
"One of our users had the same password for every personal and company account. That was a problem because she started receiving phishing emails that could compromise all of her accounts. Defender told us that the user was not changing their password."
"The basic security monitoring at its core feature is the most valuable aspect. But also the investigative parts, the historical logging of events over the network are extremely interesting because it gives an in-depth insight into the history of account activity that is really easy to read, easy to follow, and easy to export."


"Sometimes, it is necessary for me to make important changes to a hard drive of a computer, and because Cynet does not allow me to do that, I have to go to the console and remove the computer from the security group just for Cynet. After that, I have to wait for 10 or 15 minutes for that to take effect. I would like to be able to disable Cynet locally. I shouldn’t have to go to the console to find the PC and then take it out of the group and then add it again to the group. I should locally be able to disable Cynet on a computer with a password or something like that, but it is currently not possible."
"Increased application for SOAR abilities across interconnected devices would be a welcome improvement."
"The reporting is a little weak and could be improved. The other downside is that Cynet does not use the local time zone. It's based off of Greenwich Mean Time."
"Management of the console could be simplified and made more user-friendly because right now it's not very easy to use."
"I think the technical support could be better."
"The inability to add contact information inside the Cynet is also an issue because it makes things more complicated. I would like to have a simple feature to enter a contact name and number for the person taking care of that unit or that server."
"There could be more customization options and detailed information provided in the reports."
"The solution lacks URL filtering."
"There is no option to remedy an issue directly from the console. If we see an alert, we can't fix it from the console. Instead, we must depend on other Microsoft products, such as MDE. That is a significant drawback. It simply works as a scanner, which can sometimes put enough load on the sensors. Immediate actions should be possible from the dashboard because. It can prevent issues from spreading further."
"We observe a lot of false positives. Sometimes, when we go for a coffee break, we lock our screens. Locking the screen has a separate Windows event ID and sometimes I see it is detected as a failed login."
"One potential area for improvement could be exploring flexibility in the installation of Microsoft Defender for Identity agents."
"The solution could be better at using group-managed access and they could replace it with broad-based access controls."
"The technical support needs significant improvement. Documentation for more minor issues in the form of guides or walkthroughs could help to resolve this issue. The number of tickets raised would decrease, removing some pressure from the support team and making it easier to clear the remaining tickets."
"The tracking instance needs to be configured appropriately."
"Microsoft should look at what competing vendors like CrowdStrike and Broadcom are doing and incorporate those features into Sentinel and Defender. At the same time, I think the intelligence inside the product is improving fast. They should incorporate more zero-trust and hybrid trust approaches. They need to build up threat intelligence based on threats and methods used in attacks on other companies."
"The impact of the sensors on the domain controllers can be quite high depending on your loads. I don't know if there's any room for improvement there, but that's one of the things that might be improved."

Pricing and Cost Advice

"There is an extra cost if you want the support of Cynet."
"Cynet is very affordable."
"Cynet is cheaper than other solutions in the market."
"The pricing was good."
"Our billing is on a quarterly basis, but they have monthly or annual billing availability."
"I don't have specific information about integration capabilities or licensing costs."
"My company's customers have to make yearly payments towards the licensing costs of the solution. Cynet is not expensive."
"It costs 18,000 per year, but we have the whole package with not only Cynet but also the Perception Point for emails. There are also some small security courses for our users."
"It is very affordable considering that other SIEM solutions are much more expensive and have many more licensing restrictions and fees."
"Defender for Identity is a little more expensive than other Microsoft products. Identity and Microsoft Defender for Cloud are both a bit costly."
"The product is costly, and we had multiple discussions with accounting to receive a discounted rate. However, on the open market, the tool is expensive."
"You won't be able to change your tenants from where you deploy them. For example, if you select Canada, they will charge you based on Canadian pricing. If you are also in London, when you deploy in Canada, the pound is higher than Canadian dollars, but your platform resources are billable in Canadian dollars. Using your pounds to pay for any of these things will be cheaper. Or, if you deploy in London, they will charge you based on your local currency."
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
792,694 professionals have used our research since 2012.

Top Industries

By visitors reading reviews
Computer Software Company
Financial Services Firm
Manufacturing Company
Comms Service Provider
Computer Software Company
Financial Services Firm
Manufacturing Company

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business

Questions from the Community

When evaluating User Activity Monitoring, what aspect do you think is the most important to look for?
The support team that stands behind the detection and response. Is there adequate expertise and are they behind you 24x7x365? Cynet CyOps has been there for us.
What do you like most about Cynet?
In terms of incident response, Cynet can contain attacks, offer a trial period to customers, and uninstall if not continued. The most valuable aspect is its integration capabilities, covering endpo...
What is your experience regarding pricing and costs for Cynet?
I don't have specific information about integration capabilities or licensing costs.
What do you like most about Microsoft Defender for Identity?
Microsoft Defender for Identity provides excellent visibility into threats by leveraging real-time analytics and data intelligence.
What needs improvement with Microsoft Defender for Identity?
One potential area for improvement could be exploring flexibility in the installation of Microsoft Defender for Identity agents. Currently, it is mandatory to install the agent on the on-premises e...
What is your primary use case for Microsoft Defender for Identity?
Microsoft Defender for Identity is like a personal security guard for our organization's identity. It keeps a close eye on how we use our identities across both on-premises and Azure Active Directo...

Also Known As

No data available
Azure Advanced Threat Protection, Azure ATP, MS Defender for Identity

Learn More




Sample Customers

Meuhedet, East Boston Neighborhood Health Center
Microsoft Defender for Identity is trusted by companies such as St. Luke’s University Health Network, Ansell, and more.
Find out what your peers are saying about Cynet vs. Microsoft Defender for Identity and other solutions. Updated: July 2023.
792,694 professionals have used our research since 2012.