Microsoft Defender XDR vs Symantec XDR comparison

"The advantage of Microsoft Defender XDR has over other XDRs in the market is that it's easy to use. You can quickly differentiate between alerts, incidents, devices, software, etc. It's easier to investigate an incident, and you have so many options. You can automate investigations and use playbooks. There's also the live response session, which is something you can't find in any other XDR."

"Microsoft 365 Defender is a stable solution."

"The comprehensiveness of Microsoft's threat detection is good."

"Vulnerability assessment and just-in-time access are some valuable features of Defender for server plans."

"Its most significant advantage lies in its affordability."

"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."

"Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise."

"Scanning, vulnerability reporting, and the dashboard are the most valuable features."

"You can advise the solution and protect your environment."

"The support team is not competent or responsive."

"The only problem I find is that the use cases are built-in. There is no template available that you can modify according to your organization's standards. What they give is very generic, the market standard, but that might not be applicable to every organization."

"In the beginning, it's difficult to navigate the system because it is quite large. Just trying to find your way and understand how the system works can be hard. After spending quite a lot of time searching it's a lot easier, but I wish it were a bit more user-friendly when you're trying to find things."

"The automation response being slow is the main concern; when an incident occurs or if I run a remediation, it takes significant time to complete the remediation."

"There could be a way to proactively monitor unusual activity ."

"Troubleshooting in Microsoft 365 Defender can be inefficient."

"The onboarding and offboarding need improvement. I work with other vendors as well, and they have an option to add a device or remove a device from the portal, whereas with Microsoft 365 Defender, we need to do that manually. However, once you do that, everything can be controlled through the portal, but getting the device onboarded and offboarded is currently manual. If we have an option to simply remove a device from the portal or get a device added from the portal, it would be more convenient. The rest of the features are similar. This is the only area where I found it different from others. I would also like to be able to simply filter with a few of the queries that are already there."

"I haven't really come across the incident Q assistant helping improve the efficiency of my SOC workflow."

"The solution should have better reporting."

"It can be complex to navigate since customers have varying licensing agreements across Microsoft. If they go straightforward with E5 for all users, it's simple, but combinations based on budget constraints can complicate things."

"The solution is affordable, and we haven't been hit with any hidden costs. The subscription model is straightforward, and it's easy to understand how much additional features cost. If we need to cancel a license or feature, we do that well in advance to avoid being charged for it, but overall, the pricing and licensing are simple and easy."

"365 Defender can get expensive because you pay per gigabyte of data ingested. On the other hand, much of the data available in the other Microsoft security solutions are made available relatively cheaply—sometimes at cost or for free. Integrating only a limited set of third-party solutions with Sentinel would be cost-effective. It's much more affordable if companies only have Microsoft stuff."

"I find the pricing to be quite competitive, especially considering its inclusion in our E5 subscription, which provides a comprehensive set of functionalities."

"I believe the pricing is fair and acceptable. I consider it to be reasonable and satisfactory."

"The licensing fee for Microsoft 365 Defender is fair."

"Understanding the subscription model has been a bit challenging, as every feature or requirement comes with an additional cost."

"The functionality is fantastic, but for medium and small-sized companies it's overpriced. It would be better if it were a little bit cheaper."