Microsoft Defender for Cloud vs Trellix Cloud Workload Security comparison

Microsoft and Trellix are both solutions in the Cloud Workload Protection Platforms (CWPP) category. Microsoft is ranked #2 with an average rating of 8.1, while Trellix is ranked #27. Microsoft holds a 13.3% mindshare in CWPP, compared to Trellix’s 0.3% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 100% of Trellix users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 6, 2025

Trellix Cloud Workload Security and Microsoft Defender for Cloud compete in the cloud security market. Microsoft Defender for Cloud is often seen as the superior product due to its comprehensive features, while Trellix Cloud Workload Security is valued for pricing and support.

Features: Trellix Cloud Workload Security includes robust threat intelligence, workload protection, and pricing advantages. Microsoft Defender for Cloud provides advanced threat detection, integration with Microsoft services, and automation capabilities.

Ease of Deployment and Customer Service: Trellix Cloud Workload Security is known for straightforward deployment and responsive support. Microsoft Defender for Cloud offers seamless deployment and extensive documentation within the Microsoft ecosystem, assisting users familiar with Microsoft technologies.

Pricing and ROI: Trellix Cloud Workload Security has competitive pricing and delivers solid ROI for cost-conscious companies. Microsoft Defender for Cloud, with potentially higher setup costs, provides greater long-term value from its features and integration benefits, appealing to those seeking comprehensive solutions.

To learn more, read our detailed Microsoft Defender for Cloud vs. Trellix Cloud Workload Security Report (Updated: April 2025).

Buyer's Guide

Microsoft Defender for Cloud vs. Trellix Cloud Workload Security

April 2025

Download the complete report

Helped 855,347 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SentinelOne Singularity Clo...

Mindshare comparison

As of June 2025, in the Cloud Workload Protection Platforms (CWPP) category, the mindshare of SentinelOne Singularity Cloud Security is 2.9%, up from 1.0% compared to the previous year. The mindshare of Microsoft Defender for Cloud is 13.3%, down from 16.8% compared to the previous year. The mindshare of Trellix Cloud Workload Security is 0.3%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Workload Protection Platforms (CWPP)

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Vibhor Goel

Senior Cloud Platform Engineer at Deutsche Börse

A single tool for complete visibility and addressing security gaps

Currently, issues are structured in Microsoft Defender for Cloud at severity levels of high, critical, or warning, but these severity levels are not always right. For example, Microsoft might consider a port being open as critical, but that might not be the case for our company. Similarly, it might suggest closing some management ports, but you might need them to be able to log in, so the severity levels for certain things can be improved. Even though Microsoft Defender for Cloud provides a way to temporarily disable certain alerts or notifications without affecting our security score, it would be better to have more granularized control over these recommendations. Currently, we cannot even disable certain alerts or notifications. There should be an automated mechanism to design Azure policies based on the recommendations, possibly with AI integration. Instead of an engineer having to write a policy to fix security gaps, which is very time-consuming, there should be an inbuilt capability to auto-remediate everything and have proper control in place. Additionally, enabling Defender for Cloud at the resource group level, rather than only at the subscription level, would be beneficial.

Read full review

Madan Mohan

Director Operations at SOFTPRO PLUS

Easy policy designing and highly scalable solution

The customers really want protection against unauthorized applications running on their servers. They should avoid installing any unknown source and use Trellix Cloud Workload Security for the best solution in workload security. It includes DNS with ransomware protection. With this, they can have complete protection for their servers. Additionally, any solution working with the database should implement change control. So, if any changes are made on the database side, they should be resolved and verified to ensure they are not made by any unknown source. This is the best solution we suggest to customers who want granular control to protect their servers. It's easy to deploy with a single agent. Overall, I would rate the solution a nine out of ten because policy designing is very easy too. And the manageability is very easy. You can easily manage it through EPO and deploy policies within five to ten minutes. No issues with that.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cloud Native Security's most valuable features include cloud misconfiguration detection and remediation, compliance monitoring, a robust authentication security engine, and cloud threat detection and response capabilities."

"I did a lot of research before signing up and doing the demo. They have a good reputation as far as catching threats early on."

"With SentinelOne Singularity Cloud Security, it's easy to onboard new accounts."

"I would definitely recommend this product to other members, vendors, or users, as it covers security posture management, auditing, documentation, and compliance management."

"SentinelOne Singularity Cloud Security's graph explorer is a valuable tool that lets us visualize all connected services."

"Overall, I would rate SentinelOne Singularity Cloud Security a ten out of ten."

"The most valuable features of SentinelOne Singularity Cloud Security are the asset inventory and issue indexing."

"I would rate SentinelOne Singularity Cloud Security a ten out of ten."

More SentinelOne Singularity Cloud Security pros

"The most valuable feature is the recommendations provided on how to improve security. It has made the cloud environment more secure, thanks to all the recommendations we can get."

"The entire Defender Suite is tightly coupled, integrated, and collaborative."

"It isn't a highly complex solution. It's something that a lot of analysts can use. Defender gives you a broad overview of what's happening in your environment, and it's a great solution if you're a Microsoft shop."

"Microsoft Defender for Cloud is a valuable tool that integrates seamlessly with Azure Policy and our Security SIEM, simplifying implementation and enhancing security posture."

"DSPM is the most valuable feature."

"The technical support is very good."

"I've seen benefits since implementing Microsoft Defender for Cloud. It's easy to manage for our large organization as an endpoint security solution. It integrates well with Office 365 and Windows 11, which is better than before. Patching, updates, and threat protection are all handled together now. Its AI features help predict threats."

"It alerts us to our vulnerabilities and ensures compliance by marking off a compliance tool checklist."

More Microsoft Defender for Cloud pros

"The most valuable feature is the application control."

"The discovery feature is the most valuable. After you integrate your cloud environment, maybe an Azure or AWS, or a private environment hosted on VMware, it automatically starts discovering the number of servers that are running on that cloud and the number of services that you have done. It is a beautiful feature because, from a security standpoint, it is difficult to identify which VM is compliant or not when you keep on provisioning a number of VMs in the cloud. It also checks for compliance. It checks whether a system is compliant and whether antivirus is installed on a VM. If an antivirus is installed, it checks whether the antivirus is updated to the latest signature package or not. All these things are beautifully done by McAfee Cloud Workload Security. For communicating with the McAfee server, you need to install an agent on the VM. McAfee Cloud Workload Security gives you a direct opportunity to install an agent on a Windows machine. If you have a Windows cloud, you can directly push that agent onto the VM through your McAfee portal. It provides you a single dashboard view of all servers present in the cloud. It shows the servers on which the antivirus is already installed as well as the servers for which the antivirus installation is still pending. This dashboard view is a much-needed thing. It also has a centralized management, which makes it easy to use."

Cons

"SentinelOne Singularity Cloud Security is an excellent CSPM tool, but its CWPP features need improvement, and there is scope for more application security posture management features."

"There is scope for more application security posture management features. Additionally, the runtime protection needs attention."

"While it is good, I think the solution's console could be improved."

"The cloud-based operations might pose challenges in areas with limited or unavailable internet connectivity. Desktop features might be useful for smaller organizations with less complex security needs."

"If I had to pick a complaint, it would be the way the hosts are listed in the tool. You have different columns separated by endpoint name, Cloud Account, and Cloud Instances ID. I wish there was something where we could change the endpoint name and not use just the IP address. We would like to have custom names or our own names for the instances. If I had a complaint, that would be it, but so far, it meets all the needs that we have."

"While SentinelOne Singularity Cloud Security offers real-time response, there is room for improvement in alert accuracy."

"Cloud Native Security's reporting could be better. We are unable to see which images are impacted. Several thousand images have been deployed, so if we can see some application-specific information in the dashboard, we can directly send that report to the team that owns the application. We'd also like the option to download the report from the portal instead of waiting for the report to be sent to our email."

"One potential drawback is the cost of SentinelOne Singularity Cloud Security, which may be prohibitive for smaller businesses or startups, particularly those in regions with lower average incomes, such as India."

More SentinelOne Singularity Cloud Security cons

"The range of workloads is broad, but we'd love to add more workloads and make it a single security solution that covers all those workloads. Covering more would allow us to see and protect more workloads from a single pane of glass. Additional features should include protection for more AI workloads as it currently focuses primarily on OpenAI."

"Azure's system could be more on point like AWS support. For example, if I have an issue with AWS, I create a support ticket, then I get a call or a message. With Azure support, you raise a ticket, and somebody calls back depending on their availability and the priority, which might not align with your business priority."

"The product must improve its UI."

"The cost is always a concern, but overall, it's not too bad because it is easy to use and pretty friendly."

"The customer service at Microsoft has room for improvement. The first line of support is not technically adept and often requires engaging higher-level technicians to resolve issues."

"The product was a bit complex to set up earlier, however, it is a bit streamlined now."

"The documentation and implementation guides could be improved."

"If they had an easier way to display all the vulnerabilities of the machines affected and remediation steps on one screen rather than having to dive deep into each of them, that would be a lot easier."

More Microsoft Defender for Cloud cons

"Its vulnerability assessment is not the best. We cannot identify the vulnerabilities that are related to the operating system by using McAfee Cloud Workload Security. I wish McAfee would add a vulnerability assessment tool that will not only identify the vulnerability but will also be able to generate a report so that the required patching can be done for the servers. Currently, McAfee Cloud Workload Security only integrates with AWS and Azure. If it can also integrate with GCP, Alibaba, and other cloud services available in the market, it would be good because not all people are using Azure and AWS."

"There is room for improvement in the pricing model."

Pricing and Cost Advice

"It is a little expensive. I would rate it a four out of ten for pricing."

"Pricing is based on modules, which was ideal for us."

"The licensing is easy to understand and implement, with some flexibility to accommodate dynamic environments."

"The pricing for PingSafe in India was more reasonable than other competitors."

"The features included in PingSafe justify its price point."

"SentinelOne Singularity Cloud Security is costly."

"The price depends on the extension of the solution that you want to buy. If you want to buy just EDR, the price is less. XDR is a little bit more expensive. There are going to be different add-ons for Singularity."

"PingSafe is fairly priced."

More SentinelOne Singularity Cloud Security pricing and cost advice

"While we pay for any additional features, the pricing seems competitive, though I am not involved in the specific cost details."

"Microsoft's licensing and pricing are sometimes complicated. If someone is new to Microsoft's licensing, they might have difficulty with it."

"Pricing depends on your workload size, but it is very cheap. If you're talking about virtual machines, it is $5 or something for each machine, which is minimal. If you go for some agent-based solution for every virtual machine, then you need to pay the same thing or more than that. For an on-premises solution like this, we were paying around $30 to $50 based on size. With Defender, Microsoft doesn't bother about the size. You pay based on the number of machines. So, if you have 10 virtual machines, and 10 virtual machines are being monitored, you are paying based on that rather than the size of the virtual machine. Thus, you are paying for the number of units rather than paying for the size of your units."

"Security Center charges $15 per resource for any workload that you onboard into it. They charge per VM or per data-base server or per application. It's not like Microsoft 365 licensing, where there are levels like E3 and E5. Security Center is pretty straightforward."

"It is bundled with our enterprise subscription, which makes it easy to go for it. It is available by default, and there is no extra cost for using the standard features."

"Understanding the costs of cloud services can be complicated at first. As with a lot of things in the cloud, it can be quite hard to understand the end cost, but it becomes clearer over time. Early on, the lack of transparency is a challenge. Microsoft does not tell you the cost when they launch something. It is clever marketing, and there is room for improvement there. There should be clarity from the start."

"I'm not privy to that information, but I know it's probably close to a million dollars a year."

"We are using the free version of the Azure Security Center."

More Microsoft Defender for Cloud pricing and cost advice

"It is not an expensive product. I am in the Indian market, and it is one of the most reliable and cost-effective solutions."

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Workload Protection Platforms (CWPP) solutions are best for your needs.

See recommendations

855,347 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

15%

Manufacturing Company

Government

Computer Software Company

14%

Financial Services Firm

13%

Manufacturing Company

Government

Computer Software Company

16%

Comms Service Provider

14%

Government

13%

Manufacturing Company

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

I don't handle the price part, but it isn't more expensive than Palo Alto Prisma Cloud. It's not cheap, but it is wor...

See all answers

What needs improvement with PingSafe?

There is scope for more application security posture management features. Additionally, the runtime protection needs ...

See all answers

How is Prisma Cloud vs Azure Security Center for security?

Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening acros...

See all answers

What do you like most about Microsoft Defender for Cloud?

The entire Defender Suite is tightly coupled, integrated, and collaborative.

See all answers

What is your experience regarding pricing and costs for Microsoft Defender for Cloud?

The pricing is pretty standard.

See all answers

Ask a question

Earn 20 points

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 21% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 18% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Check Point CloudGuard CNAPP vs SentinelOne Singularity Cloud Security

Compared 5% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 4% of the time

More SentinelOne Singularity Cloud Security Competitors

AWS GuardDuty vs Microsoft Defender for Cloud

Compared 20% of the time

Wiz vs Microsoft Defender for Cloud

Compared 14% of the time

Prisma Cloud by Palo Alto Networks vs Microsoft Defender for Cloud

Compared 10% of the time

Microsoft Defender XDR vs Microsoft Defender for Cloud

Compared 5% of the time

More Microsoft Defender for Cloud Competitors

AWS GuardDuty vs Trellix Cloud Workload Security

Compared 40% of the time

More Trellix Cloud Workload Security Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

May 2025

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Microsoft Defender for Cloud

May 2025

Download Microsoft Defender for Cloud product report

Buyer's Guide

Cloud Workload Protection Platforms (CWPP)

May 2025

Download Trellix Cloud Workload Security product report

Also Known As

PingSafe

Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender

McAfee Cloud Workload Security

Interactive Demo

Demo not available

SentinelOne

Microsoft

Demo not available

Trellix

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

SentinelOne

Microsoft Defender for Cloud is a comprehensive security solution that provides advanced threat protection for cloud workloads. It offers real-time visibility into the security posture of cloud environments, enabling organizations to quickly identify and respond to potential threats. With its advanced machine learning capabilities, Microsoft Defender for Cloud can detect and block sophisticated attacks, including zero-day exploits and fileless malware.

The solution also provides automated remediation capabilities, allowing security teams to quickly and easily respond to security incidents. With Microsoft Defender for Cloud, organizations can ensure the security and compliance of their cloud workloads, while reducing the burden on their security teams.

Microsoft

Trellix Cloud Workload Security is a comprehensive security solution designed to protect cloud workloads from advanced threats. It provides real-time visibility and control over cloud workloads, enabling organizations to quickly detect and respond to threats.

The most useful functionality of the solution includes automated threat detection, continuous compliance monitoring, and workload protection. With these features, organizations can ensure their cloud workloads are secure and compliant with industry regulations. Trellix Cloud Workload Security helps organizations reduce the risk of data breaches, protect sensitive data, and ensure compliance with regulatory requirements.

Trellix

Sample Customers

Information Not Available

Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.

Information Not Available

Buyer's Guide

Microsoft Defender for Cloud vs. Trellix Cloud Workload Security

April 2025

Free Report: Microsoft Defender for Cloud vs. Trellix Cloud Workload Security

Find out what your peers are saying about Microsoft Defender for Cloud vs. Trellix Cloud Workload Security and other solutions. Updated: April 2025.

DOWNLOAD NOW

855,347 professionals have used our research since 2012.

See our Microsoft Defender for Cloud vs. Trellix Cloud Workload Security report.

See our list of best Cloud Workload Protection Platforms (CWPP) vendors.

We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.