Microsoft Defender Threat Intelligence vs Symantec Advanced Threat Protection comparison

Microsoft and Broadcom are both solutions in the Advanced Threat Protection (ATP) category. Microsoft is ranked #10 with an average rating of 8.4, while Broadcom is ranked #20 with an average rating of 8.5. Microsoft holds a 1.7% mindshare in ATP, compared to Broadcom’s 2.1% mindshare. Additionally, 93% of Microsoft users are willing to recommend the solution, compared to 91% of Broadcom users who would recommend it.

Microsoft Defender Threat I...

Read 32 Microsoft Defender Threat Intelligence reviews

1,419 Views
369 Comparison Views

93% willing to recommend

Symantec Advanced Threat Pr...

Read 16 Symantec Advanced Threat Protection reviews

520 Views
411 Comparison Views

91% willing to recommend

Microsoft Defender Threat I...

Symantec Advanced Threat Pr...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 1, 2024

Symantec Advanced Threat Protection and Microsoft Defender Threat Intelligence are key players in the threat protection market. Symantec offers broader external integration capabilities while Microsoft’s solution benefits from seamless integration within its ecosystem.

Features: Symantec Advanced Threat Protection provides robust end-to-end protection with features like real-time threat analysis, email security, and zero-day protection, all enhanced by a vast network that supports comprehensive threat insights. Microsoft Defender Threat Intelligence retains data within the user’s tenant, integrates seamlessly across Microsoft products like Office 365 and Azure, and offers collaborative threat intelligence sharing with extensive global threat insights.

Room for Improvement: Symantec Advanced Threat Protection needs enhancements in customization, improved storage and support for new operating systems, and better alert systems for network-based protections. Microsoft Defender Threat Intelligence could benefit from lower pricing for non-E5 users, improved support efficiency, better handling of false positives, and clearer licensing models.

Ease of Deployment and Customer Service: Symantec Advanced Threat Protection supports flexible deployments across on-premises, public cloud, and hybrid environments but has faced criticism for less reliable customer service post-Broadcom acquisition. Microsoft Defender Threat Intelligence offers similar deployment options with more consistent customer support, largely due to its integration within the Microsoft ecosystem.

Pricing and ROI: Symantec Advanced Threat Protection, while considered expensive by some, offers competitive pricing with flexible licenses and good ROI over time. Microsoft Defender Threat Intelligence, bundled with E5 licensing, provides integrated value for users within the Microsoft ecosystem though licensing costs can be high for SMEs.

To learn more, read our detailed Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection Report (Updated: July 2025).

Buyer's Guide

Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Defender Threat I...

Ranking in Advanced Threat Protection (ATP)

10th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Threat Intelligence Platforms (4th), Microsoft Security Suite (15th)

Symantec Advanced Threat Pr...

Ranking in Advanced Threat Protection (ATP)

20th

Average Rating

7.8

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of August 2025, in the Advanced Threat Protection (ATP) category, the mindshare of Microsoft Defender Threat Intelligence is 1.7%, up from 1.2% compared to the previous year. The mindshare of Symantec Advanced Threat Protection is 2.1%, down from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Advanced Threat Protection (ATP)

Featured Reviews

TapabrataSamanta

Lead Architect at Zones

A cost-effective solution for monitoring and security but lacks supports for non-Microsoft products

There are weaknesses, and Microsoft is working on addressing them. Over the past three to four years, the ATP and other components have improved significantly, and the integration has also advanced. We are using third-party services. While we have Microsoft Threat Intelligence, which leverages Microsoft's facilities, we also utilize additional third-party threat intelligence. As of today, we don't completely rely on Microsoft for certain regions. This is an area where Microsoft needs to improve. Consequently, we use Anomali, a third-party threat intelligence provider. We integrate our product's intelligence with Anomali, from which we obtain threat insights. Microsoft products offer significant advantages, especially in the realm of threat intelligence. It works very well with Microsoft products. However, you might need additional services if you have non-Microsoft products in your environment. For instance, if you use Apple or Linux, Microsoft's solutions alone might not be sufficient. If they can work more effectively, especially with zero-day attack speed and other sophisticated threats, it will help us provide our customers with timely newsletters about new attacks.

Read full review

TapabrataSamanta

Lead Architect at Zones

Reliable platform with effective integration capabilities

Our primary use case for the product is to provide advanced threat protection to our clients, primarily in the banking and financial sectors Symantec ATP has been beneficial in ensuring robust security for our clients. Its effectiveness in detecting and mitigating threats has improved customer…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"You can use it to monitor third parties and ensure they are not under threat attacks. It is beneficial in the GRC model."

"It just runs in the background. I don't have to worry about, making sure it's Intelligence. So, you know, this kind of makes it very easy, have to worry about installing. It is easy to use."

"I value how Threat Intelligence integrates with the different platforms in Microsoft."

"Its user-friendliness is its most valuable aspect."

"The product's initial setup phase was straightforward."

"They have a very transparent roadmap for the product."

"The technical support services are excellent."

"The most valuable feature of the solution stems from the insight it provides."

More Microsoft Defender Threat Intelligence pros

"Endpoint to network protects the line."

"The Application Control code and the easy integration are valuable features."

"You don't have to buy a separate email security platform. You can enable that using their endpoint, and I like that. You don't have to have two agents running on the same box."

"It has certainly helped out our audit efforts because we each stay compliant in terms of various security standards."

"Symantec Endpoint Protection provides end-to-end protection. Along with antivirus protection, it has a lot of key areas, including intrusive prevention, firewall features, and application and device control."

"Currently we have 800-plus nodes connected with this solution, without any issues. The solution is scalable."

"Real-time threat analysis is quick and takes action on threats immediately."

"The most valuable feature is NetFlow threat protection."

More Symantec Advanced Threat Protection pros

Cons

"Non-Microsoft products may not integrate as smoothly."

"I would like to see more AI features and capabilities."

"From the telemetry data standpoint, I would prefer Defender data to be more open in future updates."

"There could be AI functionality included for features like reporting and dashboard preparation."

"The product's dashboard and incident reports functionality needs enhancement."

"A stable licensing model is absent"

"The price could be improved."

"Some of the customization features could be improved by providing a portion of it as open source."

More Microsoft Defender Threat Intelligence cons

"It also needs network-based threat protection for shared folders and files."

"An improvement could be made on the reporting because then it would be easier to collect information and submit it for compliance."

"It should be able to collect information if the agent is disabled."

"The security features need to be improved."

"Scalability could be better."

"There are some ‎features that would add value to this product. One of them would be a graphical presentation of threats that the system has encountered."

"The cloud platform needs to have improvement in terms of the user interface and the different capabilities it has available. It needs to match the other leading next-gen EDR products that are available in the market. That's the reason why we are stepping away from Symantec. Their cloud environment is just generally lacking in comparison to others."

"It's a strange situation where the infrastructure of the consumer or customer is behind some kind of firewall and they have always used some kind of customized proxy. In this situation, the ATP has a very tough time to pass the information to the cloud and back. To fix, it requires a more elaborate and complex configuration for that particular case."

More Symantec Advanced Threat Protection cons

Pricing and Cost Advice

"Microsoft's pricing structure involves annual fees."

"The solution can be licensed, but most users would already have it in their Office 365 license."

"The solution's pricing is reasonable and not very expensive."

"Considering Microsoft is constantly changing licensing, I would give it a seven out of ten. It can be difficult to get your head around it, especially for small to medium-sized enterprises (SMEs)."

"They offer two license plans: Microsoft Defender for endpoints and Microsoft Defender for businesses."

"The product’s pricing is worth it."

"I use the product's default version, which is a free one and not the licensed version."

"The product is a part of my Microsoft 365 subscription, so there is no additional cost. It is cost-effective."

More Microsoft Defender Threat Intelligence pricing and cost advice

"Symantec Advanced Threat Protection's pricing is comparable."

"Symantec Endpoint Protection has an average price."

"Pricing is good. It is nice to have a great product at a fair price."

"The pricing of this solution is inexpensive and affordable."

"The price is quite expensive."

See which vendors are best for you

Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

15%

Computer Software Company

15%

Educational Organization

12%

Manufacturing Company

Financial Services Firm

13%

Manufacturing Company

12%

University

10%

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Microsoft Defender Threat Intelligence?

It just runs in the background. I don't have to worry about, making sure it's Intelligence. So, you know, this kind of makes it very easy, have to worry about installing. It is easy to use.

See all answers

What needs improvement with Microsoft Defender Threat Intelligence?

From the telemetry data standpoint, I would prefer Defender data to be more open in future updates.

See all answers

What is your primary use case for Microsoft Defender Threat Intelligence?

We have tried Microsoft Defender Threat Intelligence. I have expertise with Microsoft Defender products. I am not familiar with Microsoft Defender for IoT because we did not use that in our environ...

See all answers

What do you like most about Symantec Advanced Threat Protection?

Symantec Endpoint Protection provides end-to-end protection. Along with antivirus protection, it has a lot of key areas, including intrusive prevention, firewall features, and application and devic...

See all answers

What is your experience regarding pricing and costs for Symantec Advanced Threat Protection?

The price is quite expensive because a different entity has taken over the company.

See all answers

What needs improvement with Symantec Advanced Threat Protection?

One area for improvement could be the pricing model. Future releases could further enhance integration capabilities with other platforms and simplify the licensing model to compete more with Micros...

See all answers

Comparisons

Recorded Future vs Microsoft Defender Threat Intelligence

Compared 21% of the time

VirusTotal vs Microsoft Defender Threat Intelligence

Compared 17% of the time

Cisco Threat Grid vs Microsoft Defender Threat Intelligence

Compared 12% of the time

Microsoft Defender for Endpoint vs Microsoft Defender Threat Intelligence

Compared 11% of the time

Anomali vs Microsoft Defender Threat Intelligence

Compared 11% of the time

More Microsoft Defender Threat Intelligence Competitors

Palo Alto Networks WildFire vs Symantec Advanced Threat Protection

Compared 33% of the time

Trellix Network Detection and Response vs Symantec Advanced Threat Protection

Compared 19% of the time

CyberArk Privileged Access Manager vs Symantec Advanced Threat Protection

Compared 13% of the time

Check Point SandBlast Network vs Symantec Advanced Threat Protection

Compared 12% of the time

Fortinet FortiSandbox vs Symantec Advanced Threat Protection

Compared 11% of the time

More Symantec Advanced Threat Protection Competitors

Product Reports

Buyer's Guide

Microsoft Defender Threat Intelligence

August 2025

Microsoft Defender Threat Intelligence report

Download Microsoft Defender Threat Intelligence product report

Buyer's Guide

Symantec Advanced Threat Protection

July 2025

Symantec Advanced Threat Protection report

Download Symantec Advanced Threat Protection product report

Overview

Microsoft Defender Threat Intelligence is a comprehensive security solution that provides organizations with real-time insights into the latest cyber threats. Leveraging advanced machine learning and artificial intelligence capabilities, it offers proactive threat detection and response, enabling businesses to stay one step ahead of attackers. With Microsoft Defender Threat Intelligence, organizations gain access to a vast array of threat intelligence data, including indicators of compromise (IOCs), security incidents, and emerging threats. This data is collected from a wide range of sources, such as Microsoft's global sensor network, industry partners, and security researchers, ensuring comprehensive coverage and accuracy. The solution's advanced analytics and machine learning algorithms analyze this threat intelligence data in real-time, identifying patterns, trends, and anomalies that may indicate a potential security breach. By continuously monitoring the network and endpoints, Microsoft Defender Threat Intelligence can quickly detect and respond to threats, minimizing the impact of attacks and reducing the time to remediation.

Microsoft

Symantec Advanced Threat Protection is a single unified solution that uncovers, prioritizes, and remediates advanced attacks. The product fuses intelligence from endpoint, network, and email control points, as well as Symantec’s massive global sensor network, to stop threats that evade individual security products. It leverages your existing Symantec Endpoint Protection and Symantec Email Security.cloud investments, so it does not require the deployment of any new agents. You can deploy a new installation of Symantec Advanced Threat Protection and start to discover suspicious activity in under an hour. Using the proven technology in Symantec Insight reputation based detection, Symantec SONAR behavioral analysis with the new Symantec Cynic sandbox and file analysis platform, Symantec Advanced Threat Protection provides better detection and prioritization than other vendors, allowing security analysts to “zero in” on just those specific security events of importance.

Broadcom

Sample Customers

Information Not Available

ECI

Buyer's Guide

Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection

July 2025

Free Report: Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection

Find out what your peers are saying about Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Microsoft Defender Threat Intelligence vs. Symantec Advanced Threat Protection report.

See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.