No more typing reviews! Try our Samantha, our new voice AI agent.
Microsoft Defender for Endpoint Logo

Microsoft Defender for Endpoint pros and cons

Vendor: Microsoft
4.1 out of 5
Badge Ranked 1
Leave a review

Pros & Cons summary

Microsoft Defender for Endpoint offers advanced threat protection and excellent real-time security. It integrates seamlessly with Microsoft platforms and can scale from small organizations to large enterprises. Comprehensive threat intelligence enhances cybersecurity, and automation improves efficiency. However, customer service is challenging, updates are slow, and memory issues cause system freezes. The lack of device behavior analytics and limited third-party integration also hinder its overall effectiveness.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Microsoft Defender for Endpoint offers advanced threat protection and integrates effectively with Windows and other Microsoft platforms.
It provides excellent real-time security features, including ransomware and malware protection.
Its scalability is impressive, accommodating both small organizations and large enterprises with ease.
Microsoft Defender for Endpoint includes comprehensive threat intelligence for superior cybersecurity defense.
Its automation capabilities significantly improve operational efficiency and reduce resource demands.

CONS

Microsoft Defender for Endpoint's customer service is difficult.
Updates take too long to move out of preview, delaying development.
There are ongoing memory issues causing system freezes during scans.
There is no behavior analytics for devices and endpoints.
Integration with third-party tools and platforms is lacking.
 

Microsoft Defender for Endpoint Pros review quotes

Robert Arbuckle - PeerSpot reviewer
Robert Arbuckle
Security Analyst III at a healthcare company with 10,001+ employees
Nov 19, 2025
I find the entire Microsoft Defender for Endpoint valuable because it finds not just definition-based threats but also behaviors.
Read full review
JT
Jason Twaddle
Solutions Architect at Marco
Nov 19, 2025
The main thing I like about Microsoft Defender for Endpoint is that you can integrate it with or deploy it with Intune, so it's really easy to deploy without needing to bring in any third-party solution.
Read full review
UsmanFarooqi - PeerSpot reviewer
UsmanFarooqi
Assistant Director, Hybrid Infrastructure & Operations at a insurance company with 501-1,000 employees
Nov 18, 2025
Microsoft Defender for Endpoint has helped free up our SOC team to work on other projects or tasks.
Read full review
Buyer's Guide
Microsoft Defender for Endpoint
May 2026
Free Report: Microsoft Defender for Endpoint Reviews and More
Learn what your peers think about Microsoft Defender for Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
896,467 professionals have used our research since 2012.
MM
MichaelMiller7
Security Architect at a insurance company with 5,001-10,000 employees
Mar 25, 2026
Microsoft Defender for Endpoint has helped free up my SOC team to work on other projects or tasks because it has automated some things and allowed them to use that time to focus on other areas.
Read full review
Riccardo Benetazzo Pagnin - PeerSpot reviewer
Riccardo Benetazzo Pagnin
Cybersecurity Operation Manager at Arsenalia
Nov 18, 2025
Integration is my favorite feature because it is easy to have all insights and all alerts in one platform.
Read full review
SC
Scott Cooper
Principal Consultant - Cloud Security at a outsourcing company with 201-500 employees
Nov 18, 2025
The attack surface reduction capabilities stand out as the feature I appreciate most, particularly the manner in which they can be customized to organizational functions, such as having separate policy elements and provisions for finance versus IT versus standard end users.
Read full review
reviewer2778771 - PeerSpot reviewer
reviewer2778771
Director, Network & Cloud Infrastructure at a legal firm with 501-1,000 employees
Nov 20, 2025
Microsoft Defender for Endpoint has been leading the field in EDR, and there are so many benefits to how that is managed versus the traditional products; that's huge.
Read full review
Christopher Hippensteel - PeerSpot reviewer
Christopher Hippensteel
Director, Information Technology at New Resources Consulting
Nov 18, 2025
The features of Microsoft Defender for Endpoint that I like the most are that it is not a very intrusive product, so it is not using up a lot of compute.
Read full review
reviewer2811318 - PeerSpot reviewer
reviewer2811318
Vice President, Sales, Cybersecurity at a computer software company with 51-200 employees
Mar 24, 2026
The quantitative impact this has had on my organization's security is that definitely the secure score has improved, which obviously helps on the insurance side as well as showing our customers that their data is secured with us.
Read full review
Matthew Pearon - PeerSpot reviewer
Matthew Pearon
Server & , Cis 2 Cloud Infrastructure Specialist at a financial services firm with 1,001-5,000 employees
Nov 20, 2025
Microsoft Defender for Endpoint has helped free up my SOC team to work on other projects and tasks, and the automated reporting and dashboarding has saved them a lot of time, amounting to several man-hours.
Read full review
Show 10 more reviews (out of 211)
 

Microsoft Defender for Endpoint Cons review quotes

Robert Arbuckle - PeerSpot reviewer
Robert Arbuckle
Security Analyst III at a healthcare company with 10,001+ employees
Nov 19, 2025
We have had issues where the urgency level of the Microsoft support is not as high as ours, especially during a data breach or potential data breach situation.
Read full review
JT
Jason Twaddle
Solutions Architect at Marco
Nov 19, 2025
When you get the right person that knows what you are asking the first time, it is excellent. However, when you get someone who may be new or just switched into that role, it can be less effective.
Read full review
UsmanFarooqi - PeerSpot reviewer
UsmanFarooqi
Assistant Director, Hybrid Infrastructure & Operations at a insurance company with 501-1,000 employees
Nov 18, 2025
We were not happy that Microsoft Defender for Endpoint, as a Microsoft product, along with Intune to manage devices, charges this much and still does not provide the information that we are looking for.
Read full review
Buyer's Guide
Microsoft Defender for Endpoint
May 2026
Free Report: Microsoft Defender for Endpoint Reviews and More
Learn what your peers think about Microsoft Defender for Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
896,467 professionals have used our research since 2012.
MM
MichaelMiller7
Security Architect at a insurance company with 5,001-10,000 employees
Mar 25, 2026
For us, Microsoft Defender for Endpoint can be improved by providing better visibility into our developers' environments, especially as we try to integrate a lot of the AI coding environments, such as Windows Services for Linux v2.
Read full review
Riccardo Benetazzo Pagnin - PeerSpot reviewer
Riccardo Benetazzo Pagnin
Cybersecurity Operation Manager at Arsenalia
Nov 18, 2025
I would appreciate agentic protection as an additional feature in the next release to protect the agents that the business creates.
Read full review
SC
Scott Cooper
Principal Consultant - Cloud Security at a outsourcing company with 201-500 employees
Nov 18, 2025
There is some functionality that is not quite there yet.
Read full review
reviewer2778771 - PeerSpot reviewer
reviewer2778771
Director, Network & Cloud Infrastructure at a legal firm with 501-1,000 employees
Nov 20, 2025
What I think can be improved on Microsoft Defender for Endpoint is that the whitelisting abilities are pitiful, and the understanding of how you go about doing that by the support techs that you speak with is really bad, so that I think is an area where Microsoft Defender for Endpoint needs improvement; the understanding and support of that and what actually works is pretty buggy.
Read full review
Christopher Hippensteel - PeerSpot reviewer
Christopher Hippensteel
Director, Information Technology at New Resources Consulting
Nov 18, 2025
Sometimes it is a little lacking, but for the most part, they are able to provide exactly what I need.
Read full review
reviewer2811318 - PeerSpot reviewer
reviewer2811318
Vice President, Sales, Cybersecurity at a computer software company with 51-200 employees
Mar 24, 2026
From an improvement standpoint, the only thing I will mention is the cost.
Read full review
Matthew Pearon - PeerSpot reviewer
Matthew Pearon
Server & , Cis 2 Cloud Infrastructure Specialist at a financial services firm with 1,001-5,000 employees
Nov 20, 2025
More hooks and more reporting would be beneficial. More proactive reporting would be ideal.
Read full review
Show 10 more reviews (out of 211)

Product Categories

Product Categories
Endpoint Protection Platform (EPP)
Advanced Threat Protection (ATP)
Anti-Malware Tools
Endpoint Detection and Response (EDR)
Microsoft Security Suite

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Microsoft Intune vs Microsoft Defender for Endpoint Logo
Microsoft Intune vs Microsoft Defender for Endpoint
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Microsoft Entra ID vs Microsoft Defender for Endpoint Logo
Microsoft Entra ID vs Microsoft Defender for Endpoint
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint
SentinelOne Singularity Endpoint vs Microsoft Defender for Endpoint Logo
SentinelOne Singularity Endpoint vs Microsoft Defender for Endpoint
IBM Security QRadar vs Microsoft Defender for Endpoint Logo
IBM Security QRadar vs Microsoft Defender for Endpoint
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint
Microsoft Sentinel vs Microsoft Defender for Endpoint Logo
Microsoft Sentinel vs Microsoft Defender for Endpoint
Elastic Security vs Microsoft Defender for Endpoint Logo
Elastic Security vs Microsoft Defender for Endpoint
Huntress Managed EDR vs Microsoft Defender for Endpoint Logo
Huntress Managed EDR vs Microsoft Defender for Endpoint
Tanium vs Microsoft Defender for Endpoint Logo
Tanium vs Microsoft Defender for Endpoint
HP Wolf Security vs Microsoft Defender for Endpoint Logo
HP Wolf Security vs Microsoft Defender for Endpoint
Trellix Endpoint Security Platform vs Microsoft Defender for Endpoint Logo
Trellix Endpoint Security Platform vs Microsoft Defender for Endpoint
WatchGuard Firebox vs Microsoft Defender for Endpoint Logo
WatchGuard Firebox vs Microsoft Defender for Endpoint
See all alternatives

Product Categories

Product Categories
Endpoint Protection Platform (EPP)
Advanced Threat Protection (ATP)
Anti-Malware Tools
Endpoint Detection and Response (EDR)
Microsoft Security Suite

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Microsoft Intune vs Microsoft Defender for Endpoint Logo
Microsoft Intune vs Microsoft Defender for Endpoint
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Microsoft Entra ID vs Microsoft Defender for Endpoint Logo
Microsoft Entra ID vs Microsoft Defender for Endpoint
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint
SentinelOne Singularity Endpoint vs Microsoft Defender for Endpoint Logo
SentinelOne Singularity Endpoint vs Microsoft Defender for Endpoint
IBM Security QRadar vs Microsoft Defender for Endpoint Logo
IBM Security QRadar vs Microsoft Defender for Endpoint
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint
Microsoft Sentinel vs Microsoft Defender for Endpoint Logo
Microsoft Sentinel vs Microsoft Defender for Endpoint
Elastic Security vs Microsoft Defender for Endpoint Logo
Elastic Security vs Microsoft Defender for Endpoint
Huntress Managed EDR vs Microsoft Defender for Endpoint Logo
Huntress Managed EDR vs Microsoft Defender for Endpoint
Tanium vs Microsoft Defender for Endpoint Logo
Tanium vs Microsoft Defender for Endpoint
HP Wolf Security vs Microsoft Defender for Endpoint Logo
HP Wolf Security vs Microsoft Defender for Endpoint
Trellix Endpoint Security Platform vs Microsoft Defender for Endpoint Logo
Trellix Endpoint Security Platform vs Microsoft Defender for Endpoint
WatchGuard Firebox vs Microsoft Defender for Endpoint Logo
WatchGuard Firebox vs Microsoft Defender for Endpoint
See all alternatives
Related questions
  • 63
Compare Microsoft Windows Defender and Symantec Endpoint Protection. How Do I Choose?
  • 134
Which product would you choose: Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks?
  • 216
What do you think of the integration of Azure AD Services, Defender for Endpoint, and Intune as comprehensive security solutions?
  • 114
CrowdStrike Falcon vs Microsoft Defender ATP: Comparison of features and performance
  • 203
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
  • 99
Running Carbon Black Defense Along with Windows Defender
  • 162
How is Cortex XDR compared with Microsoft Defender?
  • 125
Which offers better endpoint security - Symantec or Microsoft Defender?
  • 88
How does Microsoft Defender for Endpoint compare with Carbon Black CB Defense?
  • 67
How would you compare between Microsoft Defender for Endpoint and Tanium EDR?