2021-02-26T19:10:55Z

What do you like most about Microsoft 365 Defender?

Julia Miller - PeerSpot reviewer
  • 0
  • 8
PeerSpot user
38

38 Answers

Sear Mahmood - PeerSpot reviewer
Real User
Top 20
2024-03-11T19:24:00Z
Mar 11, 2024

I like Defender XDR's automation capabilities. XDR isn't automated by default, but you can automate it to respond. If an attack is performed anywhere within the organization, you can isolate that instance from the network. This is what I can figure out for it. When integrated with Sentinel, you can set up playbooks to automate all the alerts gathered on Sentinel from different Microsoft solutions. Sentinel has a wider range of capabilities than XDR.

Search for a product comparison
DL
Reseller
Top 20
2024-03-01T11:28:00Z
Mar 1, 2024

My clients like Defender's file integrity monitoring. They're monitoring Windows and Linux system files.

Dinesh Jaisankar - PeerSpot reviewer
Real User
Top 10
2024-02-19T14:04:00Z
Feb 19, 2024

Scanning, vulnerability reporting, and the dashboard are the most valuable features.

EA
Real User
Top 20
2024-02-13T13:17:00Z
Feb 13, 2024

Defender XDR has a feature called the timeline that lets you track all activities. It helps a lot with investigations.

Mustafa Al-Shawwa - PeerSpot reviewer
Real User
Top 20
2024-02-13T11:33:00Z
Feb 13, 2024

The advantage of Microsoft Defender XDR has over other XDRs in the market is that it's easy to use. You can quickly differentiate between alerts, incidents, devices, software, etc. It's easier to investigate an incident, and you have so many options. You can automate investigations and use playbooks. There's also the live response session, which is something you can't find in any other XDR.

DM
Reseller
Top 20
2024-02-13T08:59:00Z
Feb 13, 2024

Defender is easy to use. It has a nice console, and everything is all in one place.

Learn what your peers think about Microsoft Defender XDR. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
767,496 professionals have used our research since 2012.
MY
Real User
Top 5
2023-12-27T10:54:00Z
Dec 27, 2023

The integration with other Microsoft solutions is the most valuable feature.

IlanHamoy - PeerSpot reviewer
Real User
Top 20
2023-12-04T15:53:00Z
Dec 4, 2023

Microsoft Defender XDR is scalable.

AM
Real User
Top 20
2023-12-04T11:53:00Z
Dec 4, 2023

The threat intelligence is excellent.

Dan Penning - PeerSpot reviewer
Real User
Top 10
2023-11-28T11:19:00Z
Nov 28, 2023

The product integrates security into one tool instead of having third-party security tools.

NK
Real User
Top 20
2023-11-28T10:49:00Z
Nov 28, 2023

The summarization of emails is a valuable feature.

MM
Real User
Top 20
2023-11-28T09:44:00Z
Nov 28, 2023

The most valuable feature is probably the aggregation and correlation of the different telemetry points with Defender for Identity, Defender for Endpoint, and Defender for Cloud Apps. All of these various things are part of that portal. We've wanted that single pane of glass for years.

Michael Wurz - PeerSpot reviewer
Reseller
Top 10
2023-11-22T20:23:00Z
Nov 22, 2023

From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave.

IP
Real User
Top 5
2023-11-20T13:31:00Z
Nov 20, 2023

The most valuable features are spam filtering, attachment filtering, and antivirus protection.

Eusebiu Ciorobatca - PeerSpot reviewer
Real User
Top 10
2023-11-09T15:51:00Z
Nov 9, 2023

We are connected to Microsoft and have every laptop enrolled. This acts as an endpoint. The tool helps me check security and compliance. I can also check what a device is doing.

Yusuf Buhari - PeerSpot reviewer
Real User
Top 20
2023-08-14T17:51:00Z
Aug 14, 2023

The comprehensiveness of Microsoft's threat detection is good.

Benjamin Van Der Westhuyzen - PeerSpot reviewer
Reseller
Top 10
2023-07-28T08:41:00Z
Jul 28, 2023

It's a great threat intelligence source for us, providing alerts for things it detects on the network and on the machines. We've used it often when there is a potential incident to see what was done on a computer. That works quite nicely because you can see everything that the user has done...

NY
Real User
Top 20
2023-07-26T10:42:00Z
Jul 26, 2023

The 'Incidents and Alerts' tab is a valuable feature where we can find triggered alerts.

DO
Real User
Top 20
2023-05-17T15:09:00Z
May 17, 2023

Another noteworthy feature that I find appealing in Microsoft Defender is the credit-backed simulation. This feature enables organizations to train their users on effectively responding to phishing emails through a simulated training environment.

PD
Real User
Top 20
2023-05-17T11:22:00Z
May 17, 2023

For me, the advanced hunting capabilities have been really great. It allowed querying the dataset with their own language, which is KQL or Kusto Query Language. That has allowed me to get much more insight into the events that have occurred. The whole power of 365 Defender is that you can get the whole story. It allows you to query an email-based activity and then correlate it with an endpoint-based activity.

Mikael Nordby - PeerSpot reviewer
Real User
Top 5
2023-05-17T09:30:00Z
May 17, 2023

The visibility into threats that 365 Defender provides is really good. You get a full review of your security system and what can be improved. In the Microsoft 365 Defender portal the first page gives you a really big summary of which security policies you are following and what can be improved.

BS
Real User
Top 20
2023-05-17T09:28:00Z
May 17, 2023

Microsoft Defender's most critical component is its CASB solution. It has many built-in policies that can improve your organization's cloud security posture. It's effective regardless of where your users are, which is critical because most users are working from home. It's cloud-based, so nothing is on-premise.

Axel Viloria - PeerSpot reviewer
Real User
Top 20
2023-04-16T15:49:00Z
Apr 16, 2023

The visibility into threats is also very impressive because Microsoft helps you predict things and provides analytics to help you really improve your security. And all of this technology works across the domain, so it is pretty helpful in terms of threat analytics.

AkashGupta2 - PeerSpot reviewer
Reseller
Top 10
2023-03-24T20:13:00Z
Mar 24, 2023

The most valuable feature depends on the scenario. For compliance, I like Microsoft Purview Information Protection and Data Loss Prevention. Sentinel is the most helpful feature for security. 365 Defender helps us prioritize threats across an enterprise. It's a crucial feature for the managed services team.

MP
Real User
Top 20
2022-11-15T23:00:00Z
Nov 15, 2022

Within advanced threat hunting, the tables that have already been defined by Microsoft are helpful. In the advanced threat hunting tab, there were different tables, and one of the tables was related to device info, device alert, and device events. That was very helpful. Another feature that I liked but didn't have access to was deep analysis.

Lukasz Rutkowski - PeerSpot reviewer
Real User
Top 10
2022-10-26T20:22:00Z
Oct 26, 2022

There is also one dashboard that shows us the status of many controls at once and the details I can get... It gives a great overview of many areas, such as files, emails, chats, and links. Even with the apps, it gives you a great overview. In one place you can see where you should look into things more deeply...

Florian Stamer - PeerSpot reviewer
Real User
Top 10
2022-09-13T22:50:00Z
Sep 13, 2022

I like the easy integration and advanced possibilities. We can implement it at customer sites in a few clicks, but we can also dive deep and drill down to extended features. There's a very good starting point to get into this product and all the features from Defender.

HB
Real User
Top 10
2022-08-23T07:23:00Z
Aug 23, 2022

The EDR features are valuable. By getting the EDR features, we have more control over the device. We have information about events in real-time and more protection against zero-day threats and zero-day vulnerabilities. We can monitor every event or action that a device is going through. We can get an idea if it is something malicious or if we have to take any actions.

Tochukwu Josiah Okafor - PeerSpot reviewer
Real User
Top 10
2022-07-28T15:30:00Z
Jul 28, 2022

Many people don't realize that Microsoft Azure, Exchange Online, and the security and compliance portal all sync together. For instance, within the Azure portal you can set security restrictions and policies to help secure your tenants... The good part of it is that these products have already been integrated. When you sign on as an admin you have global admin rights and that gives you access to all these features.

Hande Tarhan - PeerSpot reviewer
Consultant
2022-03-31T19:16:55Z
Mar 31, 2022

Setting up Microsoft 365 Defender is easy. It's a user-friendly solution that provides threat protection. It has good stability and scalability.

Alejandro Bartolomeo - PeerSpot reviewer
Real User
2022-03-29T19:54:44Z
Mar 29, 2022

Microsoft 365 Defender is a good solution and easy to use.

WG
Real User
2022-02-23T12:58:37Z
Feb 23, 2022

Microsoft 365 Defender is simple to upgrade.

NP
Real User
2021-11-17T18:11:00Z
Nov 17, 2021

It gives a lot of flexibility in terms of configuration and customization as per the business requirements.

DS
Consultant
2021-11-15T19:38:57Z
Nov 15, 2021

Microsoft 365 Defender is a stable solution.

PD
Real User
2021-08-17T15:34:57Z
Aug 17, 2021

I have found the ability to delete unwanted threats beneficial.

GV
Real User
2021-04-08T21:04:51Z
Apr 8, 2021

I like that it's stable. It's been stable for a long time, and Microsoft Defender has done a good job there.

Ramprasad Yalavarthi - PeerSpot reviewer
Real User
Top 10
2021-03-15T17:58:21Z
Mar 15, 2021

The solution is well integrated with applications. It is easy to maintain and administer.

PT
Reseller
2021-02-26T19:10:55Z
Feb 26, 2021

The product is very easy to use.

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.  It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.  Users have found it effective in detecting and preventing various types of attacks, such as...
Download Microsoft Defender XDR ReportRead more