Try our new research platform with insights from 80,000+ expert users

Microsoft Defender Threat Intelligence vs Symantec Advanced Threat Protection comparison

Microsoft and Broadcom are both solutions in the Advanced Threat Protection (ATP) category. Microsoft is ranked #10 with an average rating of 8.4, while Broadcom is ranked #18 with an average rating of 8.5. Microsoft holds a 1.7% mindshare in ATP, compared to Broadcom’s 2.0% mindshare. Additionally, 93% of Microsoft users are willing to recommend the solution, compared to 91% of Broadcom users who would recommend it.
Microsoft Defender Threat I...
Read 32 Microsoft Defender Threat Intelligence reviews
  • 362 Views
  • 42 Comparison Views
93% willing to recommend
Symantec Advanced Threat Pr...
Read 16 Symantec Advanced Threat Protection reviews
  • 488 Views
  • 219 Comparison Views
91% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 1, 2024

Symantec Advanced Threat Protection and Microsoft Defender Threat Intelligence are key players in the threat protection market. Symantec offers broader external integration capabilities while Microsoft’s solution benefits from seamless integration within its ecosystem.

Features: Symantec Advanced Threat Protection provides robust end-to-end protection with features like real-time threat analysis, email security, and zero-day protection, all enhanced by a vast network that supports comprehensive threat insights. Microsoft Defender Threat Intelligence retains data within the user’s tenant, integrates seamlessly across Microsoft products like Office 365 and Azure, and offers collaborative threat intelligence sharing with extensive global threat insights.

Room for Improvement: Symantec Advanced Threat Protection needs enhancements in customization, improved storage and support for new operating systems, and better alert systems for network-based protections. Microsoft Defender Threat Intelligence could benefit from lower pricing for non-E5 users, improved support efficiency, better handling of false positives, and clearer licensing models.

Ease of Deployment and Customer Service: Symantec Advanced Threat Protection supports flexible deployments across on-premises, public cloud, and hybrid environments but has faced criticism for less reliable customer service post-Broadcom acquisition. Microsoft Defender Threat Intelligence offers similar deployment options with more consistent customer support, largely due to its integration within the Microsoft ecosystem.

Pricing and ROI: Symantec Advanced Threat Protection, while considered expensive by some, offers competitive pricing with flexible licenses and good ROI over time. Microsoft Defender Threat Intelligence, bundled with E5 licensing, provides integrated value for users within the Microsoft ecosystem though licensing costs can be high for SMEs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection Report (Updated: June 2025).
Buyer's Guide
Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection
June 2025
Download the complete report
Helped 860,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Defender Threat I...
Ranking in Advanced Threat Protection (ATP)
10th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
32
Ranking in other categories
Threat Intelligence Platforms (4th), Microsoft Security Suite (15th)
Symantec Advanced Threat Pr...
Ranking in Advanced Threat Protection (ATP)
18th
Average Rating
7.8
Reviews Sentiment
7.1
Number of Reviews
16
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Advanced Threat Protection (ATP) category, the mindshare of Microsoft Defender Threat Intelligence is 1.7%, up from 1.2% compared to the previous year. The mindshare of Symantec Advanced Threat Protection is 2.0%, down from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP)
 

Featured Reviews

TapabrataSamanta - PeerSpot reviewer
A cost-effective solution for monitoring and security but lacks supports for non-Microsoft products
There are weaknesses, and Microsoft is working on addressing them. Over the past three to four years, the ATP and other components have improved significantly, and the integration has also advanced. We are using third-party services. While we have Microsoft Threat Intelligence, which leverages Microsoft's facilities, we also utilize additional third-party threat intelligence. As of today, we don't completely rely on Microsoft for certain regions. This is an area where Microsoft needs to improve. Consequently, we use Anomali, a third-party threat intelligence provider. We integrate our product's intelligence with Anomali, from which we obtain threat insights. Microsoft products offer significant advantages, especially in the realm of threat intelligence. It works very well with Microsoft products. However, you might need additional services if you have non-Microsoft products in your environment. For instance, if you use Apple or Linux, Microsoft's solutions alone might not be sufficient. If they can work more effectively, especially with zero-day attack speed and other sophisticated threats, it will help us provide our customers with timely newsletters about new attacks.
Read full review
TapabrataSamanta - PeerSpot reviewer
Reliable platform with effective integration capabilities
Our primary use case for the product is to provide advanced threat protection to our clients, primarily in the banking and financial sectors Symantec ATP has been beneficial in ensuring robust security for our clients. Its effectiveness in detecting and mitigating threats has improved customer…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Microsoft Defender Threat Intelligence helps to make sure that our systems are intact and not vulnerable."
"The product is stable."
"The most valuable feature of the solution stems from the insight it provides."
"The tool can proactively detect potential incidents."
"The product is useful when the end user downloads malware files."
"They have a very transparent roadmap for the product."
"One of the best features is that it provides a certain level of customization, allowing us to set our spam confidence levels."
"The solution is well integrated with other Microsoft security products."
More Microsoft Defender Threat Intelligence pros
"They manage to solve detection quite nicely. There is some rather elaborate detection compared to other providers."
"Technical support has been helpful and responsive."
"Endpoint to network protects the line."
"Real-time threat analysis is quick and takes action on threats immediately."
"You don't have to buy a separate email security platform. You can enable that using their endpoint, and I like that. You don't have to have two agents running on the same box."
"Technical support is very responsive. You just have to open a ticket. They respond in a timely manner. Their response is good. I'm satisfied."
"All of the solution's features are quite valuable for us. We especially like the threat protection it provides."
"Currently we have 800-plus nodes connected with this solution, without any issues. The solution is scalable."
More Symantec Advanced Threat Protection pros
 

Cons

"The price of the solution is an area of concern where improvements are required. In general, the solution's price needs to be reduced."
"We encounter problems connecting the product deployed on the user endpoints with the servers."
"It would be beneficial to enhance the pricing structure and make it more affordable."
"It's a bit complicated to manage because you have many dependencies of servers, many dependencies in queue, and so on. Entries or different endpoints, and you make different configuration topics for each one. So that's a major problem."
"There could be AI functionality included for features like reporting and dashboard preparation."
"Microsoft itself is a major target for attacks and threats due to its size and popularity. That could be considered Microsoft's Achilles heel."
"It takes time for the support team to understand the issue, and they then respond with a delay at times, which causes a lot of trouble."
"Non-Microsoft products may not integrate as smoothly."
More Microsoft Defender Threat Intelligence cons
"Not ideal for advanced threat protection."
"They could enhance the solution to work across all devices, including Android, iOS, and Mac, and make it more user-friendly."
"The support has dropped down to a five out of ten."
"Symantec appliances need improvement. The whole appliance environment is a robust system and it needs a massive amount of storage space. If you have to increase or speed up the background storage it's a pretty complicated process. The scalability and sizing is critical, and if you do it wrong you run into issues pretty quickly."
"It should be able to collect information if the agent is disabled."
"One area for improvement could be the pricing model."
"The support for new OSs and older OSs could be a little tighter. They need to be more upfront about what protection services they're going to provide on new OSs. I haven't seen the Windows 11 version out yet. It is either already released in Beta, or the Beta will be released soon. There could be a little bit more advanced updates on what they're doing to help protect Windows 11 environments. They can let us know in advance so that we know it is going to be protected. We can't roll out the new OS without putting end-point protection on it. So, they should tell us what is their support model for that, and what are they doing to protect Windows 11. They're not telling me, and that's a criticism. The same issue is applicable to all the other antivirus tools. It is not just Symantec; all of them have this problem."
"The product's support services need improvement."
More Symantec Advanced Threat Protection cons
 

Pricing and Cost Advice

"There is a need to make yearly payments towards the licensing charges attached to the product."
"It is an expensive product."
"The product’s pricing is worth it."
"The product has multiple subscription models."
"The product is a part of my Microsoft 365 subscription, so there is no additional cost. It is cost-effective."
"The solution's pricing is reasonable and not very expensive."
"The tool is expensive as a stand-alone solution. However, it is not cheap when you purchase it as a bundle."
"The solution is relatively expensive; however, our status as a gold partner provides us with several complimentary licenses, which offsets the cost."
More Microsoft Defender Threat Intelligence pricing and cost advice
"The price is quite expensive."
"The pricing of this solution is inexpensive and affordable."
"Symantec Endpoint Protection has an average price."
"Symantec Advanced Threat Protection's pricing is comparable."
"Pricing is good. It is nice to have a great product at a fair price."
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
860,592 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
13%
Educational Organization
12%
Manufacturing Company
8%
Educational Organization
39%
Financial Services Firm
12%
Manufacturing Company
7%
Computer Software Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Microsoft Defender Threat Intelligence?
It just runs in the background. I don't have to worry about, making sure it's Intelligence. So, you know, this kind of makes it very easy, have to worry about installing. It is easy to use.
See all answers
What needs improvement with Microsoft Defender Threat Intelligence?
From the telemetry data standpoint, I would prefer Defender data to be more open in future updates.
See all answers
What is your primary use case for Microsoft Defender Threat Intelligence?
We have tried Microsoft Defender Threat Intelligence. I have expertise with Microsoft Defender products. I am not familiar with Microsoft Defender for IoT because we did not use that in our environ...
See all answers
What do you like most about Symantec Advanced Threat Protection?
Symantec Endpoint Protection provides end-to-end protection. Along with antivirus protection, it has a lot of key areas, including intrusive prevention, firewall features, and application and devic...
See all answers
What is your experience regarding pricing and costs for Symantec Advanced Threat Protection?
The price is quite expensive because a different entity has taken over the company.
See all answers
What needs improvement with Symantec Advanced Threat Protection?
One area for improvement could be the pricing model. Future releases could further enhance integration capabilities with other platforms and simplify the licensing model to compete more with Micros...
See all answers
 

Comparisons

Recorded Future vs Microsoft Defender Threat Intelligence Logo
Recorded Future vs Microsoft Defender Threat Intelligence
Compared 24% of the time
VirusTotal vs Microsoft Defender Threat Intelligence Logo
VirusTotal vs Microsoft Defender Threat Intelligence
Compared 20% of the time
Anomali vs Microsoft Defender Threat Intelligence Logo
Anomali vs Microsoft Defender Threat Intelligence
Compared 15% of the time
Cisco Threat Grid vs Microsoft Defender Threat Intelligence Logo
Cisco Threat Grid vs Microsoft Defender Threat Intelligence
Compared 15% of the time
Microsoft Sentinel vs Microsoft Defender Threat Intelligence Logo
Microsoft Sentinel vs Microsoft Defender Threat Intelligence
Compared 11% of the time
More Microsoft Defender Threat Intelligence Competitors
Palo Alto Networks WildFire vs Symantec Advanced Threat Protection Logo
Palo Alto Networks WildFire vs Symantec Advanced Threat Protection
Compared 42% of the time
Trellix Network Detection and Response vs Symantec Advanced Threat Protection Logo
Trellix Network Detection and Response vs Symantec Advanced Threat Protection
Compared 26% of the time
Check Point SandBlast Network vs Symantec Advanced Threat Protection Logo
Check Point SandBlast Network vs Symantec Advanced Threat Protection
Compared 17% of the time
CyberArk Privileged Access Manager vs Symantec Advanced Threat Protection Logo
CyberArk Privileged Access Manager vs Symantec Advanced Threat Protection
Compared 16% of the time
More Symantec Advanced Threat Protection Competitors
 

Product Reports

Buyer's Guide
Microsoft Defender Threat Intelligence
June 2025
Microsoft Defender Threat Intelligence reportDownload Microsoft Defender Threat Intelligence product report
Buyer's Guide
Symantec Advanced Threat Protection
June 2025
Symantec Advanced Threat Protection reportDownload Symantec Advanced Threat Protection product report
 

Overview

Microsoft Defender Threat Intelligence is a comprehensive security solution that provides organizations with real-time insights into the latest cyber threats. Leveraging advanced machine learning and artificial intelligence capabilities, it offers proactive threat detection and response, enabling businesses to stay one step ahead of attackers. With Microsoft Defender Threat Intelligence, organizations gain access to a vast array of threat intelligence data, including indicators of compromise (IOCs), security incidents, and emerging threats. This data is collected from a wide range of sources, such as Microsoft's global sensor network, industry partners, and security researchers, ensuring comprehensive coverage and accuracy. The solution's advanced analytics and machine learning algorithms analyze this threat intelligence data in real-time, identifying patterns, trends, and anomalies that may indicate a potential security breach. By continuously monitoring the network and endpoints, Microsoft Defender Threat Intelligence can quickly detect and respond to threats, minimizing the impact of attacks and reducing the time to remediation. 

Microsoft

Symantec Advanced Threat Protection is a single unified solution that uncovers, prioritizes, and remediates advanced attacks. The product fuses intelligence from endpoint, network, and email control points, as well as Symantec’s massive global sensor network, to stop threats that evade individual security products. It leverages your existing Symantec Endpoint Protection and Symantec Email Security.cloud investments, so it does not require the deployment of any new agents. You can deploy a new installation of Symantec Advanced Threat Protection and start to discover suspicious activity in under an hour. Using the proven technology in Symantec Insight reputation based detection, Symantec SONAR behavioral analysis with the new Symantec Cynic sandbox and file analysis platform, Symantec Advanced Threat Protection provides better detection and prioritization than other vendors, allowing security analysts to “zero in” on just those specific security events of importance.

Broadcom
 

Sample Customers

Information Not Available
ECI
Buyer's Guide
Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection
June 2025
Free Report: Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection
Find out what your peers are saying about Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,592 professionals have used our research since 2012.
See our Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection report.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.