Microsoft Defender XDR vs Symantec XDR comparison

"As a reseller and partner, the advantages of Microsoft Defender XDR are numerous; I have stopped many threats for many organizations using Defender alone, and I have saved significant IT management time by avoiding manual updates and manual work."

"It has been great for us. Previously, we didn't have a solution to protect us, especially from malware, whereas now, we are getting protection up front, especially from the malware attacks coming through emails or endpoints."

"We are connected to Microsoft and have every laptop enrolled. This acts as an endpoint. The tool helps me check security and compliance. I can also check what a device is doing."

"The ability to hunt that IM data set or the identity data set at the same time is valuable. As incident response professionals, we are very used to EDRs and having device process registry telemetry, but a lot of times, we do not have that identity data right there with us, so we have to go search for it in some other silo. Being able to cross-correlate via both datasets at the same time is something that we can only do in Def"

"It has great stability."

"The attack simulation is excellent; initially, this feature wasn't very robust, but Microsoft improved what we could achieve with it. We can now customize our practice phishing emails and include our company logo, for example. Attack simulation also helps integrate with third-party solutions where applicable and provides an overview of our security architecture through testing. The summary includes areas for improvement in our protection and what steps we need to take to get there."

"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."

"What I like most about the product is its all-in-one solution. With Microsoft Defender XDR, we get coverage for various aspects like endpoint security, cloud security, and image-related cases, all within a single platform. This eliminates the need for multiple products or technical controls to address incidents. The main benefit became evident immediately after deployment, especially in its ability to analyze files and phishing emails quickly. By submitting suspicious files or emails, we receive quick results on whether they are legitimate, suspicious, or malicious, saving time."

"You can advise the solution and protect your environment."

"Microsoft Defender XDR is not a full-fledged EDR or XDR."

"There are a few technical issues with Defender XDR that can be improved. Sometimes, the endpoint devices are not reporting properly to the Defender 365 portal. When you're getting all the information from the Microsoft portal, the devices are sometimes not in sync. We have hundreds of endpoint devices, some needing to be onboarded again."

"At times, when we have an incident email and we click on the link for that incident, it opens a pop-up, but there is nothing. It has happened a couple of times."

"Microsoft could improve on threat hunting and build more on threat detection and handling."

"Advanced attacks could use an improvement."

"There's still some more work to be done there. Additionally, the limited terminal live access an analyst has is very restricted."

"My client would like the solution to be more customizable without using code. You can only build on the default console, but we're not allowed to change it."

"There is no comprehensive visibility, making it less user-friendly."

"The solution should have better reporting."

"The solution is affordable, and we haven't been hit with any hidden costs. The subscription model is straightforward, and it's easy to understand how much additional features cost. If we need to cancel a license or feature, we do that well in advance to avoid being charged for it, but overall, the pricing and licensing are simple and easy."

"It has consistently offered highly appealing academic pricing, with distinct rates for higher education and general educational purposes."

"While Microsoft Defender XDR carries a higher cost, its ease of use compared to Defender may justify the investment."

"The pricing of Microsoft 365 Defender is definitely on the costly side, but with the features and services that Microsoft provides, such as the seamless integration of all the Defender tools, while the price is on the higher side, there is no alternative."

"Microsoft Defender falls within a mid-tier price range compared to other security solutions."

"The licensing fee for Microsoft 365 Defender is fair."

"The bundling of software makes it easier to manage our setup, but Microsoft purposefully obfuscates this through marketing ploys to hide costs."

"I believe that the pricing of the licensing is fair."