Microsoft Defender for Endpoint Reviews

We use Microsoft Windows Defender for normal internet security. We use it to detect viruses. We have about 100 users.

We have liked the fact that it comes with Microsoft Windows 10 and it is constantly updated with all new virus definitions. It is also updated with new security features on a regular basis. We don't use any other third party products.

There is no behavior analytics for devices and endpoints. There is no behavior-based protection. It does not allow us to pull data from ransomware and zero-day attacks.

We have used Microsoft Windows Defender since 2010. We used Microsoft Essentials with Windows 7 then we upgraded to Windows 10. Since then we have used Microsoft Windows Defender.

Microsoft Windows Defender is stable.

We have had no issues with scalability.

We have not needed any support from Microsoft so far so there are not any complications with customer support so far.

Recently we tested another product that employs Endpoint Detection and Response and also behavior analysis protection. It also was able to filter activities or data. These are things that Microsoft Windows Defender does not do. We stayed with Windows Defender because of the cost.

Microsoft Windows Defender is easy to set up and easy to manage.

We were able to set it up in-house. We have two people in-house that manage Windows Defender.

If you require Endpoint Detection and Response or Behavior Analysis and you can afford it then go with those products. I would rate Microsoft Windows Defender a seven out of ten.

I use Defender for protection.

The most valuable features are that Defender is user-friendly and part of Microsoft Windows.

Defender's cloud integration could be improved.

Defender is stable, I haven't had any problems with viruses when using it, and it's easy to update.

The initial setup was easy.

I would recommend Defender to anyone thinking of using it, and I rate it as eight out of ten.

Microsoft Defender for Endpoint is integrated into Microsoft Windows and is used for system protection.

Microsoft Defender for Endpoint has been secure and there is zero maintenance required because it updates with Microsoft Windows.

The solution can be more user-friendly.

I have been using Microsoft Defender for Endpoint for a few years.

Microsoft Defender for Endpoint is stable.

The solution is scalable.

We have 30 users using the solution in my organization.

The solution has no installation as it comes with Microsoft Windows.

I do not have to purchase antivirus solutions anymore because Microsoft Defender for Endpoint is integrated into Windows and comes free.

I would recommend this solution to others.

I rate Microsoft Defender for Endpoint a ten out of ten.

Defender's endpoint protection is good.

I've been using Defender for less than one year. Defender is free for one year. Once that year is over, we will switch to Kaspersky.

Defender is stable. The performance is good.

In terms of scalability, I rate Defender 10 out of 10. 

I haven't dealt with Microsoft support for this product.

It's easy. Defender came pre-loaded on our computers.

I rate Microsoft Defender for Endpoint eight out 10. I would recommend it to others.

Our primary use for the solution is threat detection and response.

It's basically for security implementation, response planning capabilities and other security functions. Obviously, auditing, HR, requirements, legals, auditing, banking, and financial services all require a lot of the data that are generated and reported out of the platform.

The features that are most valuable for us are cloud analytics from the APT (Advanced Threat Protection) engine or quarantine, deletion, and removal. Basically, they work by web engine. Simply, it is proactive in resolving potential issues.

There are certain features that do have room for improvement. I think with the analytics engine they're looking at it from the desktop and the server perspective. I think the desktop engine should also include the script analytics — what executed, what's the power shelf or UI commands, or some form of Splunk regex. I know we don't have that functionality with a run-time analytics platform, but it's a JS (JavaScript) based one. So it would be good if they had a regex to JS converter.

The biggest problem is they need to take things out of preview. I know that they're developing on the platform service with the analytics engine, but so many services still rate it as a preview after 12 to 18 months, which is stopping adoption with businesses knowing that that solution could be filled and redirected at any time. So that delay is limiting technology to be able to be updated because they don't have to release all production support.

In the last 12 months, we've moved up to the Gartner Magic Quadrant report as a leading form of threat analysis. Obviously, the more clients that migrate to Cloud Services the more analytics platforms are picking it up. There are auto-resolutions and it's getting more cross-correlations between tendency. So we're getting a lot more APT (Applied Predictive Technologies) and IOC (Indicators of Compromise) data through which you can get a better response, better response times, automatic remediation tasks, reduce the amount of the alerts and false positives — that sort of thing. It's all really useful. It's scaling out on its own.

We get direct support. They're literally across the road from us. We've got multiple Microsoft engineers assigned to our contract as well, so we deal directly with their engineering teams.

The setup was simple and straightforward.

Here we SCOM (System Center Operations Manager) SCCM (System Center Configuration Manager) deployment for pushing out the agent's, done the deployment for the AIP (Azure Information Protection) scanners and load that unified data locally.

We consulted with Microsoft, but we're a full IT workhouse so we have qualified engineers that were coming off a three-year capability program to deliver all of those services.

As far as the amount of staff we use to support the solution, we have a lot of managed providers and different international SOC (Security Operations Center) teams and different agencies that manage a lot of the services. I would say that globally we would have probably about close to a hundred engineers working on the solutions full-time with cloud app development and Kubernetis and things like that.

We compared extensively between multiple services, everything from Azure, cloud service providers, identity providers, platform SaaS providers — we did all that before we sort of consolidated on certain technologies in different areas.

We're utilizing a lot of the services. There will be some future state planning goals, but we're taking a risk-averse assessment on the product. We're more controlled about how things like our customer member data protections, cryptography and those types of things are working. So we're doing still doing a little bit of assessment. I know it's got the ASD clearance rating and certain services, but that's based off the tenancy agreements.

I'd say the product rates about an eight out of ten as it currently stands.

You have to implement the product — there's no choice. You can't use the exchange online protection or the advanced analytics or obscure identity IP protection without the APT being installed on the endpoint. Otherwise you're not getting into threat intelligence or the actions. You're not going to get the full response plan or activities that occurred. You cannot deploy without APT being installed on the desktops and have a full, defined solution for unified labeling. That has to be deployed and tested for unstructured data for at least six months with the AIP (Azure Information Protection) scan that's deployed with APT.

Our primary use case for Windows Defender is to prevent malware and viruses. Security is the main purpose that it is used for by our organization.

We are no longer buying a separate antivirus with Windows 10 Server Enterprise. We are no longer buying antivirus solutions where there is no compatibility with Windows 10.

The malware features are most valuable for us because if you have an application that attacks, it is defended. It gives you a prompt and doesn't allow you to launch that app. 

If there's an application that has suspicious malware you downloaded from the internet, it gives you a prompt to prevent the application from launching.

Microsoft Windows Defender moves it to the recycle bin automatically.

Microsoft Windows Defender doesn't have a game mode. Other antivirus software (like BitDefender) have something known as a game mode. 

If you want to play a game, just enable the game mode to allow certain traffic without needing to configure it. Windows Defender doesn't have that.

There's no Windows Server edition for Windows Defender as part of the distribution.

In my experience, Microsoft Windows Defender has never caused any issues in operation. It is very stable. It doesn't affect the system.

Since it's a Microsoft product, scalability is top-notch. This shouldn't be an issue.

I have never had a problem with technical support. I didn't use it. I have never had any performance issues with it.

We used Bitdefender, McAfee, and Norton antivirus software previously. Those are the main experiences that we have. We used all of those at various times.

Microsoft Windows Defender installs automatically. There's no setup procedure. When you install Windows Suite or Enterprise on your machine, it installs quickly. 

There's nothing that might disturb it being activated. It installs with the operating system.

It's free because it comes with Windows. It's a free solution. We're not paying any license.

That's why it's better than Bitdefender, McAfee, or Norton. It's free.

For Windows Defender, there's no server edition for it. It's free. There is no additional cost. It's part of Windows, i.e. if you have issues with compatibility using other products. 

If you paid for Windows, it already comes with Windows Pro and Windows Enterprise automatically. It's better to go with it than pay the additional expense of deploying other solutions.

On a scale from 1 to 10, I would rate this product a nine. It doesn't have all the features that it needs to be perfect.

Just as the name states, we use this solution to defend endpoints. 

We're actually in the process of moving away from this solution. We are beginning to use SentinelOne.

For me, It's just a standard malware and antivirus solution — nothing more, nothing less. 

I personally haven't experienced any pain points, but some of my coworkers feel that it isn't secure enough.

It would be nice if they could guarantee that we'll always be safe and secure with them. 

I have been using Microsoft Defender for Endpoint for roughly four years. 

For me, this solution is both reliable and stable. 

I have never had to contact their technical support. 

The initial setup was straightforward. 

Microsoft Defender for Endpoint is quite good. We haven't really experienced any issues with it.

I would recommend Microsoft Defender for Endpoint to other users. Overall, on a scale from one to ten, I would give this solution a rating of eight. 

I'm a consultant and I don't use these solutions. We sell them and we do research for sales purposes.

I don't use it explicitly. Rather, it's there on my laptop filtering viruses. It's there to protect my laptop.

I have had a few minor issues on my laptop but nothing really big.

I would like to see fewer pop messages and alerts. 

It's disturbing when you have that many alerts. 

Even though it shows you it's working, I don't really need to see it. If it was running in the background and never showing that would be perfect for me.

It's been a part of my laptop by default for two to three years.

I am probably not using the latest version. I don't follow the best practices in terms of updates. I may have an outdated product.

It's stable. There are no issues that I know of. 

My laptop has been working.

As it is for my personal use, this is an area that is not necessary for me to explore.

I am the only person using it.

I am a part of a tiny organization with a tiny team that is autonomous.

I have not contacted technical support.

I have used Symantec Endpoint Protection. It was the standard choice in my previous company.

From what I remember, the initial setup was transparent. I haven't had to deal with it.

I would say that the initial setup was straightforward.

It's included with the Windows Operating System, I don't pay for any licensing fees.

I would recommend using this solution. I haven't had any issues and it's been working fine for me.

I plan to continue using this product as long as it is not causing any problems.

I would rate this solution an eight out of ten.