Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Cloud vs Trellix Cloud Workload Security comparison

Microsoft and Trellix are both solutions in the Cloud Workload Protection Platforms (CWPP) category. Microsoft is ranked #2 with an average rating of 8.1, while Trellix is ranked #27. Microsoft holds a 13.4% mindshare in CWPP, compared to Trellix’s 0.4% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 100% of Trellix users who would recommend it.
Sponsored
SentinelOne Singularity Clo...
Read 114 SentinelOne Singularity Cloud Security reviews
  • 9,000 Views
  • 4,140 Comparison Views
99% willing to recommend
Microsoft Defender for Cloud
Read 78 Microsoft Defender for Cloud reviews
  • 22,132 Views
  • 9,295 Comparison Views
94% willing to recommend
Trellix Cloud Workload Secu...
Read 2 Trellix Cloud Workload Security reviews
  • 289 Views
  • 237 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Apr 6, 2025

Trellix Cloud Workload Security and Microsoft Defender for Cloud compete in the cloud security market. Microsoft Defender for Cloud is often seen as the superior product due to its comprehensive features, while Trellix Cloud Workload Security is valued for pricing and support.

Features: Trellix Cloud Workload Security includes robust threat intelligence, workload protection, and pricing advantages. Microsoft Defender for Cloud provides advanced threat detection, integration with Microsoft services, and automation capabilities.

Ease of Deployment and Customer Service: Trellix Cloud Workload Security is known for straightforward deployment and responsive support. Microsoft Defender for Cloud offers seamless deployment and extensive documentation within the Microsoft ecosystem, assisting users familiar with Microsoft technologies.

Pricing and ROI: Trellix Cloud Workload Security has competitive pricing and delivers solid ROI for cost-conscious companies. Microsoft Defender for Cloud, with potentially higher setup costs, provides greater long-term value from its features and integration benefits, appealing to those seeking comprehensive solutions.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Defender for Cloud vs. Trellix Cloud Workload Security Report (Updated: June 2025).
Buyer's Guide
Microsoft Defender for Cloud vs. Trellix Cloud Workload Security
June 2025
Download the complete report
Helped 860,825 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Cloud Workload Protection Platforms (CWPP)
4th
Average Rating
8.8
Reviews Sentiment
7.9
Number of Reviews
114
Ranking in other categories
Vulnerability Management (5th), Cloud and Data Center Security (3rd), Container Security (3rd), Cloud Security Posture Management (CSPM) (3rd), Cloud-Native Application Protection Platforms (CNAPP) (3rd), Compliance Management (1st)
Microsoft Defender for Cloud
Ranking in Cloud Workload Protection Platforms (CWPP)
2nd
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
78
Ranking in other categories
Vulnerability Management (7th), Container Management (8th), Container Security (7th), Cloud Security Posture Management (CSPM) (4th), Cloud-Native Application Protection Platforms (CNAPP) (4th), Data Security Posture Management (DSPM) (5th), Microsoft Security Suite (7th), Compliance Management (5th)
Trellix Cloud Workload Secu...
Ranking in Cloud Workload Protection Platforms (CWPP)
27th
Average Rating
9.0
Reviews Sentiment
7.5
Number of Reviews
2
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Cloud Workload Protection Platforms (CWPP) category, the mindshare of SentinelOne Singularity Cloud Security is 3.1%, up from 1.1% compared to the previous year. The mindshare of Microsoft Defender for Cloud is 13.4%, down from 16.7% compared to the previous year. The mindshare of Trellix Cloud Workload Security is 0.4%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud Workload Protection Platforms (CWPP)
 

Featured Reviews

Andrew W - PeerSpot reviewer
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Read full review
Vibhor Goel - PeerSpot reviewer
A single tool for complete visibility and addressing security gaps
Currently, issues are structured in Microsoft Defender for Cloud at severity levels of high, critical, or warning, but these severity levels are not always right. For example, Microsoft might consider a port being open as critical, but that might not be the case for our company. Similarly, it might suggest closing some management ports, but you might need them to be able to log in, so the severity levels for certain things can be improved. Even though Microsoft Defender for Cloud provides a way to temporarily disable certain alerts or notifications without affecting our security score, it would be better to have more granularized control over these recommendations. Currently, we cannot even disable certain alerts or notifications. There should be an automated mechanism to design Azure policies based on the recommendations, possibly with AI integration. Instead of an engineer having to write a policy to fix security gaps, which is very time-consuming, there should be an inbuilt capability to auto-remediate everything and have proper control in place. Additionally, enabling Defender for Cloud at the resource group level, rather than only at the subscription level, would be beneficial.
Read full review
Madan Mohan - PeerSpot reviewer
Easy policy designing and highly scalable solution
The customers really want protection against unauthorized applications running on their servers. They should avoid installing any unknown source and use Trellix Cloud Workload Security for the best solution in workload security. It includes DNS with ransomware protection. With this, they can have complete protection for their servers. Additionally, any solution working with the database should implement change control. So, if any changes are made on the database side, they should be resolved and verified to ensure they are not made by any unknown source. This is the best solution we suggest to customers who want granular control to protect their servers. It's easy to deploy with a single agent. Overall, I would rate the solution a nine out of ten because policy designing is very easy too. And the manageability is very easy. You can easily manage it through EPO and deploy policies within five to ten minutes. No issues with that.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It gives me the information I need."
"It is very straightforward. It is not complicated. For the information that it provides, it does a pretty good job."
"SentinelOne Singularity Cloud Security offers valuable features like runtime notifications. These alerts come to my account, ensuring that if any port or component within my infrastructure is opened or compromised, I am informed immediately. It highlights issues within minutes or even seconds."
"The UI is very good."
"All the features we use are equal and get the job done."
"The offensive security feature is valuable because it publicly detects the offensive and vulnerable things present in our domain or applications. It checks any applications with public access. Some of the applications give public access to certain files or are present over a particular domain. It detects and lets us know with evidence. That is quite good. It is protecting our infrastructure quite well."
"The mean time to detect has been reduced."
"The SentinelOne Singularity Cloud Security has substantially affected my risk posture, as it was the first tool that notified me of the public exposure of a repository by a developer, allowing me to resolve the issue within minutes."
More SentinelOne Singularity Cloud Security pros
"The pricing is good."
"Technical support is helpful."
"This is a platform as a service provided by Azure. We don't need to install or maintain Azure Security Center. It is a ready-made service available in Azure. This is one of the main things that we like. If you look at similar tools, we have to install, maintain, and update services. Whereas, Azure Security Center manages what we are using. This is a good feature that has helped us a lot."
"It has seamless integration with any of the services I mentioned, on Azure, such as IaaS platforms, virtual machines, applications, or databases, because it's an in-house product from Microsoft within the Azure ecosystem."
"Microsoft Defender for Cloud has made our environment more secure."
"The most valuable feature is that it's intuitive. It's very intuitive."
"Microsoft Defender for Cloud has significantly enhanced our overall security posture by approximately 20 to 25 percent."
"The valuable features include the ability to manage devices and the fact that Defender can replace other security tools like SCCM."
More Microsoft Defender for Cloud pros
"The most valuable feature is the application control."
"The discovery feature is the most valuable. After you integrate your cloud environment, maybe an Azure or AWS, or a private environment hosted on VMware, it automatically starts discovering the number of servers that are running on that cloud and the number of services that you have done. It is a beautiful feature because, from a security standpoint, it is difficult to identify which VM is compliant or not when you keep on provisioning a number of VMs in the cloud. It also checks for compliance. It checks whether a system is compliant and whether antivirus is installed on a VM. If an antivirus is installed, it checks whether the antivirus is updated to the latest signature package or not. All these things are beautifully done by McAfee Cloud Workload Security. For communicating with the McAfee server, you need to install an agent on the VM. McAfee Cloud Workload Security gives you a direct opportunity to install an agent on a Windows machine. If you have a Windows cloud, you can directly push that agent onto the VM through your McAfee portal. It provides you a single dashboard view of all servers present in the cloud. It shows the servers on which the antivirus is already installed as well as the servers for which the antivirus installation is still pending. This dashboard view is a much-needed thing. It also has a centralized management, which makes it easy to use."
 

Cons

"I would like SentinelOne Singularity Cloud Security to add real-time detection of vulnerabilities and cloud misconfigurations."
"We wanted it to provide us with something like Claroty Hub in AWS for lateral movement. For example, if an EC2 instance or a virtual machine is compromised in a public subnet based on a particular vulnerability, such as Log4j, we want it to not be able to reach some of our databases. This kind of feature is not supported in SentinelOne Singularity Cloud Security."
"For vulnerabilities, they are showing CVE ID. The naming convention should be better so that it indicates the container where a vulnerability is present. Currently, they are only showing CVE ID, but the same CVE ID might be present in multiple containers. We would like to have the container name so that we can easily fix the issue."
"Sometimes the Storyline ID is a bit wacky."
"There is scope for more application security posture management features. Additionally, the runtime protection needs attention."
"The reporting works well, but sometimes the severity classifications are inaccurate. Sometimes, it flags an issue as high-impact, but it should be a lower severity."
"While the future roadmap presented by SentinelOne appears promising, I hope the envisioned advancements are realistically achievable and that the gap between current offerings and long-term goals is not too significant."
"If I had to pick a complaint, it would be the way the hosts are listed in the tool. You have different columns separated by endpoint name, Cloud Account, and Cloud Instances ID. I wish there was something where we could change the endpoint name and not use just the IP address. We would like to have custom names or our own names for the instances. If I had a complaint, that would be it, but so far, it meets all the needs that we have."
More SentinelOne Singularity Cloud Security cons
"I would suggest building a single product that addresses endpoint server protection, attack surface, and everything else in one solution. That is the main disadvantage with the product. If we are incorporating some features, we end up in a situation where this solution is for the server, and that one is for the client, or this is for identity, and that is for our application. They're not bundling it. Commercially, we can charge for different licenses, but on the implementation side, it's tough to help our end-customer understand which product they're getting."
"An area where Microsoft Defender for Cloud could be improved is in getting away from having multiple menus that do the same thing, which seems imposing when looking at it."
"The pricing could be better."
"I would like to see better automation when it comes to pushing out security features to the recommendations, and better documentation on the step-by-step procedures for enabling certain features."
"The product must improve its UI."
"Most customer teams need more training on this type of product."
"Another thing is that Defender for Cloud uses more resources than CrowdStrike, which my current company uses. Defender for Cloud has two or three processes running simultaneously that consume memory and processor time. I had the chance to compare that with CrowdStrike a few days ago, which was significantly less. It would be nice if Defender were a little lighter. It's a relatively large installation that consumes more resources than competitors do."
"It's hard to reach someone who understands my problems. I haven't had many issues, so I haven't called them."
More Microsoft Defender for Cloud cons
"Its vulnerability assessment is not the best. We cannot identify the vulnerabilities that are related to the operating system by using McAfee Cloud Workload Security. I wish McAfee would add a vulnerability assessment tool that will not only identify the vulnerability but will also be able to generate a report so that the required patching can be done for the servers. Currently, McAfee Cloud Workload Security only integrates with AWS and Azure. If it can also integrate with GCP, Alibaba, and other cloud services available in the market, it would be good because not all people are using Azure and AWS."
"There is room for improvement in the pricing model."
 

Pricing and Cost Advice

"We have an enterprise license. It is affordable. I'm not sure, but I think we pay 150,000 rupees per month."
"Its pricing was a little less than other providers."
"I understand that SentinelOne is a market leader, but the bill we received was astronomical."
"Singularity Cloud Workload Security's pricing is good."
"It was reasonable pricing for me."
"The cost for PingSafe is average when compared to other CSPM tools."
"PingSafe is affordable."
"While SentinelOne Singularity Cloud Security offers robust protection, its high cost may be prohibitive for small and medium-sized businesses."
More SentinelOne Singularity Cloud Security pricing and cost advice
"This is a worldwide service and depending on the country, there will be different prices."
"Microsoft's licensing and pricing are sometimes complicated. If someone is new to Microsoft's licensing, they might have difficulty with it."
"It is bundled with our enterprise subscription, which makes it easy to go for it. It is available by default, and there is no extra cost for using the standard features."
"I am not involved in this area. However, I believe its price is okay because even small customers are using Azure Security Center. I don't think it is very expensive."
"This solution is more cost-effective than some competing products. My understanding is that it is based on the number of integrations that you have, so if you have fewer subscriptions then you pay less for the service."
"Defender's basic version is free, which is good. Many of our teams are evaluating the paid version against third-party products."
"I am not involved much with the pricing but the bundle offering is good."
"The pricing and licensing of Microsoft Defender for Cloud have been good for us. We appreciate the licensing approach based on employee count rather than a big enterprise license."
More Microsoft Defender for Cloud pricing and cost advice
"It is not an expensive product. I am in the Indian market, and it is one of the most reliable and cost-effective solutions."
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Workload Protection Platforms (CWPP) solutions are best for your needs.
See recommendations
860,825 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
15%
Manufacturing Company
9%
Government
6%
Computer Software Company
14%
Financial Services Firm
13%
Manufacturing Company
9%
Government
7%
Computer Software Company
15%
Comms Service Provider
14%
Government
13%
Manufacturing Company
11%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
See all answers
What is your experience regarding pricing and costs for PingSafe?
I don't handle the price part, but it isn't more expensive than Palo Alto Prisma Cloud. It's not cheap, but it is wor...
See all answers
What needs improvement with PingSafe?
There is scope for more application security posture management features. Additionally, the runtime protection needs ...
See all answers
How is Prisma Cloud vs Azure Security Center for security?
Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening acros...
See all answers
What do you like most about Microsoft Defender for Cloud?
The entire Defender Suite is tightly coupled, integrated, and collaborative.
See all answers
What is your experience regarding pricing and costs for Microsoft Defender for Cloud?
The pricing is pretty standard.
See all answers
Ask a question
Earn 20 points
 

Comparisons

Wiz vs SentinelOne Singularity Cloud Security Logo
Wiz vs SentinelOne Singularity Cloud Security
Compared 20% of the time
Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security Logo
Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security
Compared 16% of the time
AWS GuardDuty vs SentinelOne Singularity Cloud Security Logo
AWS GuardDuty vs SentinelOne Singularity Cloud Security
Compared 7% of the time
Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security Logo
Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security
Compared 5% of the time
Orca Security vs SentinelOne Singularity Cloud Security Logo
Orca Security vs SentinelOne Singularity Cloud Security
Compared 4% of the time
More SentinelOne Singularity Cloud Security Competitors
AWS GuardDuty vs Microsoft Defender for Cloud Logo
AWS GuardDuty vs Microsoft Defender for Cloud
Compared 21% of the time
Wiz vs Microsoft Defender for Cloud Logo
Wiz vs Microsoft Defender for Cloud
Compared 12% of the time
Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud Logo
Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud
Compared 10% of the time
Microsoft Defender XDR vs Microsoft Defender for Cloud Logo
Microsoft Defender XDR vs Microsoft Defender for Cloud
Compared 5% of the time
Azure Firewall vs Microsoft Defender for Cloud Logo
Azure Firewall vs Microsoft Defender for Cloud
Compared 1% of the time
More Microsoft Defender for Cloud Competitors
AWS GuardDuty vs Trellix Cloud Workload Security Logo
AWS GuardDuty vs Trellix Cloud Workload Security
Compared 42% of the time
More Trellix Cloud Workload Security Competitors
 

Product Reports

Buyer's Guide
SentinelOne Singularity Cloud Security
June 2025
SentinelOne Singularity Cloud Security reportDownload SentinelOne Singularity Cloud Security product report
Buyer's Guide
Microsoft Defender for Cloud
June 2025
Microsoft Defender for Cloud reportDownload Microsoft Defender for Cloud product report
Buyer's Guide
Cloud Workload Protection Platforms (CWPP)
June 2025
Trellix Cloud Workload Security reportDownload Trellix Cloud Workload Security product report
 

Also Known As

PingSafe
Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender
McAfee Cloud Workload Security
 

Interactive Demo

Demo not available
SentinelOne
Microsoft
Demo not available
Trellix
 

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?
  • Real-time Threat Detection: Identifies and mitigates threats as they occur.
  • Automated Response: Automatically responds to threats to minimize impact.
  • Ease of Deployment: Simple setup process with scalable options.
  • Machine Learning Insights: AI-driven insights enhance threat prevention.
  • Seamless Integration: Integrates with cloud environments for unified security management.
What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?
  • Enhanced Threat Mitigation: Improved security against real-time threats.
  • Reduced Manual Intervention: Automated processes save time and resources.
  • Scalability: Easily adapts to growing security requirements.
  • Centralized Management: Manage security across platforms from a single console.
  • Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

SentinelOne

Microsoft Defender for Cloud is a comprehensive security solution that provides advanced threat protection for cloud workloads. It offers real-time visibility into the security posture of cloud environments, enabling organizations to quickly identify and respond to potential threats. With its advanced machine learning capabilities, Microsoft Defender for Cloud can detect and block sophisticated attacks, including zero-day exploits and fileless malware.

The solution also provides automated remediation capabilities, allowing security teams to quickly and easily respond to security incidents. With Microsoft Defender for Cloud, organizations can ensure the security and compliance of their cloud workloads, while reducing the burden on their security teams.

Microsoft

Trellix Cloud Workload Security is a comprehensive security solution designed to protect cloud workloads from advanced threats. It provides real-time visibility and control over cloud workloads, enabling organizations to quickly detect and respond to threats. 

The most useful functionality of the solution includes automated threat detection, continuous compliance monitoring, and workload protection. With these features, organizations can ensure their cloud workloads are secure and compliant with industry regulations. Trellix Cloud Workload Security helps organizations reduce the risk of data breaches, protect sensitive data, and ensure compliance with regulatory requirements.

Trellix
 

Sample Customers

Information Not Available
Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.
Information Not Available
Buyer's Guide
Microsoft Defender for Cloud vs. Trellix Cloud Workload Security
June 2025
Free Report: Microsoft Defender for Cloud vs. Trellix Cloud Workload Security
Find out what your peers are saying about Microsoft Defender for Cloud vs. Trellix Cloud Workload Security and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,825 professionals have used our research since 2012.
See our Microsoft Defender for Cloud vs. Trellix Cloud Workload Security report.
See our list of best Cloud Workload Protection Platforms (CWPP) vendors.

We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.