Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Cloud vs Sweet Security comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 1, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Vulnerability Management
4th
Ranking in Cloud Workload Protection Platforms (CWPP)
4th
Ranking in Cloud Security Posture Management (CSPM)
3rd
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
3rd
Average Rating
8.6
Reviews Sentiment
7.5
Number of Reviews
118
Ranking in other categories
Cloud and Data Center Security (3rd), Container Security (3rd), Compliance Management (2nd), AI Observability (2nd)
Microsoft Defender for Cloud
Ranking in Vulnerability Management
7th
Ranking in Cloud Workload Protection Platforms (CWPP)
1st
Ranking in Cloud Security Posture Management (CSPM)
4th
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
4th
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
89
Ranking in other categories
Container Management (8th), Container Security (7th), Data Security Posture Management (DSPM) (5th), Microsoft Security Suite (7th), Compliance Management (4th), Cloud Detection and Response (CDR) (3rd)
Sweet Security
Ranking in Vulnerability Management
40th
Ranking in Cloud Workload Protection Platforms (CWPP)
19th
Ranking in Cloud Security Posture Management (CSPM)
25th
Ranking in Cloud-Native Application Protection Platforms (CNAPP)
17th
Average Rating
8.8
Reviews Sentiment
7.4
Number of Reviews
4
Ranking in other categories
Identity Threat Detection and Response (ITDR) (11th), Cloud Detection and Response (CDR) (7th)
 

Mindshare comparison

As of March 2026, in the Cloud-Native Application Protection Platforms (CNAPP) category, the mindshare of SentinelOne Singularity Cloud Security is 6.1%, up from 3.0% compared to the previous year. The mindshare of Microsoft Defender for Cloud is 8.9%, down from 11.8% compared to the previous year. The mindshare of Sweet Security is 1.3%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Cloud-Native Application Protection Platforms (CNAPP) Mindshare Distribution
ProductMindshare (%)
SentinelOne Singularity Cloud Security6.1%
Microsoft Defender for Cloud8.9%
Sweet Security1.3%
Other83.7%
Cloud-Native Application Protection Platforms (CNAPP)
 

Featured Reviews

SC
Information Security Engineer at DataVigilant Infotech
Enables us to prioritize and effectively address critical security issues
Evidence-based reporting helps us to prioritize and solve critical security issues. The new visualization feature demonstrates how an attacker can enter the system, highlighting the potential path that can be exploited and outlining all the steps the attacker could take. With that visibility, we can ensure the perimeter is strong and attackers cannot enter, thus reducing the risk. It has helped us prioritize issues. The visibility into how an attack could happen is valuable. For example, it highlights the system vulnerability and outlines where an attack could propagate. The visualization helps me to prioritize remediation, and if I don't know where to start, I can check to see the score that enables me to prioritize issues. I am using infrastructure-as-code scanning, and it's one of the useful features. In pre-production, it identifies embedded secrets and misconfigurations, including issues with Kubernetes or some privileged containers. This feature allows us to pass the audit and secure IaC code so that it isn't easily exploitable by attackers. We can more proactively work to identify and resolve vulnerabilities by using the dashboard and the alerting system that SentinelOne provides. It helps us with audits and compliance. We can show the compliance in percentage. We can confidently say that our company or infrastructure is very secure. It has improved our security posture by 30% to 35%. It has reduced our false positives by 30%. It has helped teams collaborate better. The security team manages SentinelOne Singularity Cloud Security, and when it flags vulnerabilities, they are forwarded to DevOps for remediation. Previously, we needed to identify and report the issues, but there would be lapses in communication. Now, there is a centralized dashboard that anyone can look at and see the open issues and work on them.
RW
Head Of IT at Cirrus Response
Cloud security has cut investigation time and now reveals threats faster but needs simpler oversight
When deploying AI applications, my key security concerns with Microsoft Defender for Cloud are data loss, leakage of data, and guardrails around the actual AI, and I am hoping that this is going to help me put those guardrails in place and identify data exfiltration. Microsoft Defender for Cloud has not helped me manage and secure multi-cloud environments, as we are 100 percent Microsoft and have not really got it in any other environment at all. I am not yet using the unified AI-powered security feature offered by Microsoft Defender for Cloud, but that is coming. I am not yet using the integrated XDR feature of Microsoft Defender for Cloud, but that is coming. I am not yet utilizing the GenAI threat protection features of Microsoft Defender for Cloud. That is also coming and a lot of that will come from learning it here. I have enabled the agentless scanning in my cloud environment with Microsoft Defender for Cloud. Assessing the impact on my workload protection without needing to install agents with Microsoft Defender for Cloud makes it a lot easier, but it also identifies a lot more, which puts more load on me sometimes. I would advise another organization considering Microsoft Defender for Cloud that it is the most logical route to follow if their whole ecosystem is Microsoft. It is easy to implement and it is very self-explanatory when doing it, making sense to just follow the steps as it is too simple, really. I would rate this review a 7.5 out of 10.
FM
Infrastructure & Dev Ops Lead at Babylon Labs
Continuous runtime security has improved visibility while the interface still needs refinement
One thing I think Sweet Security can definitely improve is that they have a lot of features, but the UI right now is not so well designed in my opinion. It's a bit difficult to navigate and get to the signal. There is a lot of signal there, but it's a bit difficult to get to the correct place and understand what I am seeing. It has a small learning curve that I don't think such a product should have. It should be very straightforward. Sweet Security has a mechanism where they initially show all the vulnerabilities that are in my infrastructure, which they show as a huge number, maybe around ten thousand, and they narrow it down to which of these could actually be exploited and are actually severe. It's nice that they are able to narrow it down to a few incidents. However, they don't really need to show this in the UI. Maybe they can just show the actual signal and not show that there is a lot of vulnerabilities, but indicate which are important. That's good that they can do it, but it's not so important to see it every time in the platform.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The tool identifies issues quickly."
"They're responsive to feature requests. If I suggest a feature for Prisma, I will need to wait until the next release on their roadmap. Cloud Native Security will add it right away."
"SentinelOne Singularity Cloud Security is better than other vendors because we get all the cloud-related, data center-related information."
"SentinelOne Singularity Cloud Security's most valuable feature is its unified console."
"SentinelOne Singularity Cloud Security's unified platform experience has helped streamline our security operations, as it has definitely allowed us to get more accurate information faster."
"The GUI is one of the best features. Audit reports and documentation for alerts are also valuable."
"SentinelOne Singularity Cloud Security offers an intuitive user interface that lets us navigate quickly and easily."
"We've seen a reduction in resources devoted to vulnerability monitoring. Before SentinelOne Singularity Cloud Security we spent a lot of time monitoring and fixing these issues. SentinelOne Singularity Cloud Security enabled us to divert more resources to the production environment."
"The notification process of Microsoft Defender for Cloud has been the most valuable feature. The notification process is effortless, as it can tell me right there and then locate issues pretty fast, saving us a lot of time by not having to dig through all the warnings."
"Everything is built into Azure, and if we go for cross-cloud development with Azure Arc, we can use most of the features. While it's possible to deploy and convert third-party applications, it is difficult to maintain, whereas Azure deployments to the cloud are always easier. Also, Microsoft is a big company, so they always provide enough support, and we trust the Microsoft brand."
"Microsoft Defender for Cloud has significantly enhanced our overall security posture by approximately 20 to 25 percent."
"I would rate Microsoft Defender for Cloud a ten."
"Microsoft Defender for Cloud has made our environment more secure."
"It alerts us to our vulnerabilities and ensures compliance by marking off a compliance tool checklist."
"It offers virus management and addresses threats such as viruses, worms, spyware, and other critical security concerns."
"The biggest benefit of Microsoft Defender for Cloud for us is specifically around being able to identify threats very quickly and being able to shut them down."
"The value of having real-time visibility in our cloud environment with Sweet Security changes everything because it differentiates between identifying and reacting to something that is not really a risk and something that is truly a risk that needs to be treated."
"Before we had Sweet Security, upon any type of detection of activity, we needed to conduct lots of investigations in different platforms and logs until we could build the larger picture, but once we inserted Sweet Security, we are able to actually see each and every request being made from the application level towards the infrastructure, making it much easier and reducing the time for an analyst to understand what's really happening."
"The value we see from having real-time visibility into our cloud environment is significant, as Sweet Security serves as our eyes and ears inside AWS, telling us what we are doing wrong so we can fix it."
"For the time I have been using Sweet Security, I feel a bit more safe in the sense that there is something that continuously scans my infrastructure for issues."
 

Cons

"The integration with Oracle has room for improvement."
"I have noticed that the dashboard occasionally gets stuck, potentially due to internet issues. It could benefit from enhancements to be more robust and smoother."
"I believe the UI/UX updates for SentinelOne Singularity Cloud Security have room for improvement."
"Sometimes the Storyline ID is a bit wacky."
"SentinelOne Singularity Cloud Security is an excellent CSPM tool, but the CWPP features need to improve, and there is a scope for more application security posture management features. There aren't many ASPM solutions on the market, and existing ones are costly. I would like to see SentinelOne Singularity Cloud Security develop into a single pane of glass for ASPM, CSPM, and CWPP. Another feature I'd like to see is runtime protection."
"A vulnerability alert would appear, and we'd fix it, but then the same alert would return the next day."
"While SentinelOne offers robust security features, its higher cost may present a challenge for budget-conscious organizations."
"We are getting reports only in a predefined form. I would like to have customized reports so that I can see how many issues are open or closed today or in two weeks."
"For Kubernetes, I was using Azure Kubernetes Service (AKS). To see that whatever is getting deployed into AKS goes through the correct checks and balances in terms of affinities and other similar aspects and follows all the policies, we had to use a product called Stackrox. At a granular level, the built-in policies were good for Kubernetes, but to protect our containers from a coding point of view, we had to use a few other products. For example, from a programming point of view, we were using Checkmarx for static code analysis. For CIS compliance, there are no CIS benchmarks for AKS. So, we had to use other plugins to see that the CIS benchmarks are compliant. There are CIS benchmarks for Kubernetes on AWS and GCP, but there are no CIS benchmarks for AKS. So, Azure Security Center fell short from the regulatory compliance point of view, and we had to use one more product. We ended up with two different dashboards. We had Azure Security Center, and we had Stackrox that had its own dashboard. The operations team and the security team had to look at two dashboards, and they couldn't get an integrated piece. That's a drawback of Azure Security Center. Azure Security Center should provide APIs so that we can integrate its dashboard within other enterprise dashboards, such as the PowerBI dashboard. We couldn't get through these aspects, and we ended up giving Reader security permission to too many people, which was okay to some extent, but when we had to administer the users for the Stackrox portal and Azure Security Center, it became painful."
"However, some Copilot features aren't available in the GCP environment. This is something we hope will be addressed in the future."
"Pricing could be improved. There are limited options based on pricing for the government."
"The vulnerabilities are duplicated many times."
"After getting a recommendation, it takes time for the solution to refresh properly to show that the problem has been eliminated."
"We haven't experienced issues with Microsoft Defender for Cloud for our company size of about five hundred people. However, I've heard there might be issues with scalability for larger enterprises."
"Early on, the lack of transparency is a challenge. Microsoft does not tell you the cost when they launch something."
"Microsoft Graph needs improvement."
"The option to run specific playbooks through Sweet Security platform would help us a lot, but these must be fully customizable."
"One area for improvement could be the alerts, as we have an issue with the alert time, the time it takes for the system to send the alert, but besides that, there is nothing special."
"There was something a year ago that caused a production issue in my company, but they fixed it within an hour."
"One thing I think Sweet Security can definitely improve is that they have a lot of features, but the UI right now is not so well designed in my opinion."
 

Pricing and Cost Advice

"The pricing is fair. It is not inexpensive, and it is also not expensive. When managing a large organization, it is going to be costly, but it meets the business needs. In terms of what is out there on the market, it is fair and comparable to what I have seen, so I do not have any complaints about the cost"
"For pricing, it currently seems to be in line with market rates."
"The pricing tends to be high."
"The tool is cost-effective."
"PingSafe is fairly priced."
"PingSafe is priced reasonably for our workload."
"The cost for PingSafe is average when compared to other CSPM tools."
"PingSafe is less expensive than other options."
"Understanding the costs of cloud services can be complicated at first. As with a lot of things in the cloud, it can be quite hard to understand the end cost, but it becomes clearer over time. Early on, the lack of transparency is a challenge. Microsoft does not tell you the cost when they launch something. It is clever marketing, and there is room for improvement there. There should be clarity from the start."
"The cost is fair. There aren't any costs in addition to the standard licensing fee."
"Pricing is a consideration, but we strive to keep costs low by enabling only necessary services."
"Our clients complain about the cost of Microsoft Defender for Cloud."
"It has global licensing. It comes with multiple licenses since there are around 50,000 people (in our organization) who look at it."
"Defender for Cloud is pretty costly for a single line. It's incredibly high to pay monthly for security per server. The cost is considerable for an enterprise with 500-plus virtual machines, and the monthly bill can spike."
"Defender's basic version is free, which is good. Many of our teams are evaluating the paid version against third-party products."
"I'm not privy to that information, but I know it's probably close to a million dollars a year."
Information not available
report
Use our free recommendation engine to learn which Cloud-Native Application Protection Platforms (CNAPP) solutions are best for your needs.
884,873 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
14%
Computer Software Company
12%
Manufacturing Company
10%
Government
6%
Financial Services Firm
13%
Computer Software Company
11%
Manufacturing Company
9%
Government
7%
Wellness & Fitness Company
12%
Healthcare Company
10%
Manufacturing Company
9%
Outsourcing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business49
Midsize Enterprise22
Large Enterprise55
By reviewers
Company SizeCount
Small Business29
Midsize Enterprise10
Large Enterprise49
No data available
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
Regarding the pricing for SentinelOne Singularity Cloud Security, I do not think it is something I can compare.
What needs improvement with PingSafe?
I do not see room for improvement in SentinelOne Singularity Cloud Security. In the future, I would like to see the i...
How is Prisma Cloud vs Azure Security Center for security?
Azure Security Center is very easy to use, integrates well, and gives very good visibility on what is happening acros...
What is your experience regarding pricing and costs for Microsoft Defender for Cloud?
My experience with pricing, setup cost, and licensing for Microsoft Defender for Cloud was pretty straightforward. We...
What needs improvement with Microsoft Defender for Cloud?
Microsoft Defender for Cloud can be improved. An additional feature that should be included in the next release is Ze...
What is your experience regarding pricing and costs for Sweet Security?
One very strong point of Sweet Security is their pricing. It's really good. Also, their team is very good, very respo...
What needs improvement with Sweet Security?
One thing I think Sweet Security can definitely improve is that they have a lot of features, but the UI right now is ...
What is your primary use case for Sweet Security?
I'm mostly using Sweet Security for real-time infrastructure security. If there is any threat, I want to detect it in...
 

Also Known As

PingSafe
Microsoft Azure Security Center, Azure Security Center, Microsoft ASC, Azure Defender
No data available
 

Interactive Demo

Demo not available
Demo not available
 

Overview

 

Sample Customers

Information Not Available
Microsoft Defender for Cloud is trusted by companies such as ASOS, Vatenfall, SWC Technology Partners, and more.
Information Not Available
Find out what your peers are saying about Microsoft Defender for Cloud vs. Sweet Security and other solutions. Updated: February 2026.
884,873 professionals have used our research since 2012.