TrustRadius: an HG Insights company

Microsoft Defender XDR

Score8.9 out of 10

153 Reviews and Ratings

Free Trial

What is Microsoft Defender XDR?

Microsoft 365 Defender combines SIEM and XDR capabilities for Microsoft 365 environments, encompassing threat detection, post-breach detection, automated investigation, and response for endpoints. Additionally, it protects cloud apps, emails and documents, and employee identities.

Categories & Use Cases

Media

Screenshot of AH Advanced Mode
Screenshot of AH Guided mode
Screenshot of CD example
Screenshot of CD Supported actions

1 / 4

Screenshot of AH Advanced Mode

Most Frequent Users

Top 3 industries using Microsoft Defender XDR.
Based on HG Insights installation data
Powered by
View all Reviews
#1 most frequent

Professional, Scientific, and Technical Services

24.3%

281 installations of 1,158

#2 most frequent

Finance and Insurance

12.7%

147 installations of 1,158

#3 most frequent

Manufacturing

11.9%

138 installations of 1,158

Reviews

What users are saying about Microsoft Defender XDR.
View all reviews

My experience with Microsoft Defender XDR

Molka Kouki
vice prsidente de la Confdration at Designers Junior Entreprise (51-200 employees employees)

Use Cases and Deployment Scope

We replaced our previous XDR with Microsoft Defender XDR 4 years ago and we don't regret the decision we made. The software has provided us with centralised visibility, real time threat management and anomaly detection. It has also provided us with comprehensive protection against malware and other sophiscated attacks. The software has amazing detection efficiency and automation capabilities. Through implementation of the tool we are able to stay ahead of evolving modern day threats and keep our endpoints safe and secure.

Pros

  • The software has broad integration capabilities and powerful automation systems.
  • Microsoft Defender XDR is easy to use and has a very user-friendly interface.
  • It is fast and reliable in detecting attacks
  • Effectiveness of the product in vulnerability management and threat intelligence.

Cons

  • Support services of the software are very unreliable. The take so much time before responding to customer queries.
  • Cost of software premium services and advanced protection is expensive.
  • Software configuration is complex.

Return on Investment

  • The software has helped us in catching threat fast and in responding to anomalies in real-time before they cause operation inefficiencies.
  • Use of the product in our organisation has ensured automated threats response and remediation.
  • Microsoft Defender XDR has provided us with extensive and powerful defence against modern cyber threats.

Usability

Other Software Used

Google Analytics, Google Ads, GoTo Meeting

MS Defender XDR

Incentivized
John RobinsonView profile
Network Administrator in Information Technology at Children's Defense Fund (51-200 employees employees)

Use Cases and Deployment Scope

Microsoft Defender XDR actively monitors all our company endpoints for malicious software and URLS. It covers approx. 100 machines, and is accessed through our MS365 admin portal. It provides us with a real time view of any malicious activity, a break down of the chain of events lading up to it, the machines and user sinvolved and provides automated responses and recommendations on manual interventions.

Pros

  • Active/real time monitoring
  • dashboards
  • Automated responses

Cons

  • logs even informational incidents as active, even if there's no threat
  • little hard to navigate some of the consoles to find information sometimes
  • not always clear if action is needed

Return on Investment

  • No specific ROI, though has caught a small number of malicious attacks.
  • It's included with our MS365 Business Pro licenses, so the value is good as its essentially at no extra cost on top of the Office software and Azure AD we are using anyway.

Alternatives Considered

Trend Vision One Endpoint Security

Other Software Used

LogMeIn Central by GoTo, Smartsheet, OwnBackup

I recommend amazing

Gledson RodriguesView profile
Analista de Redes N2 Pleno in Professional Services at Aloo Telecom (501-1000 employees employees)

Use Cases and Deployment Scope

We use the full Microsoft 365 suite, so Microsoft Defender XDR is included and protects the corporate network.

Utilizamos todo o pacote Microsoft 365, portanto o Microsoft Defender XDR está incluído e protege a rede corporativa.

Pros

  • Antimalware
  • Web Protection
  • ID Monitoring

Cons

  • Improve resource usage when implemented. The slowness of the system is noticeable when the tool is scanning.

Return on Investment

  • The blocking action has been effective, avoiding many problems with personal and corporate data.

Alternatives Considered

Bitdefender Managed Detection and Response (MDR)

Other Software Used

Microsoft Teams, Trello, Infinera Transcend Network Management System (NMS)

Excellent all-in-one security solution for Microsoft users

Incentivized
Verified User
Analyst in Information Technology (501-1000 employees employees)

Use Cases and Deployment Scope

Microsoft Defender XDR is a must have solution if you rely on Microsoft products, especially in Azure. It provides excellent overview of the security posture in our company, represents valuable source of data, providing huge amount of information which can be used for different kinds of investigations and in conjunction with utilizing builtin/custom detections to detect different kinds suspicious events

Pros

  • Logging
  • Alerting
  • Detection
  • Prevention

Cons

  • improve customization of detection rules
  • improve automatic investigations speed
  • improve remediation scope (some emails from same sender in a phishing campaign are quarantined some are not)

Return on Investment

  • increased SOC efficiency
  • ROI negligible

Alternatives Considered

CrowdStrike Falcon

Other Software Used

CrowdStrike Falcon, Zscaler Internet Access, Microsoft Sentinel

Microsoft Defender XDR

Incentivized
Verified User
Employee in Information Technology (501-1000 employees employees)

Use Cases and Deployment Scope

This is used across our entire fleet of devices. It has allowed us to streamline the services we use as now most things are under the Microsoft umbrella.

This makes them much more worthwhile from a cost perspective as we're no longer paying for the functionality and another product for XDR.

Pros

  • Picks up issues that other products have not
  • Highlights vulnerabilities as well as live incidents

Cons

  • Speed of which the portal updates
  • Onboarding process
  • Visibility of all information needed to diagnose and resolve an incident

Return on Investment

  • Reduced costs
  • Additional functionality

Alternatives Considered

Sophos Intercept X

Other Software Used

Microsoft Sentinel

Related Products

Products similar to Microsoft Defender XDR that may also meet your needs.
All comparisons
Symantec Endpoint Security
CompareLearn more
Sophos Intercept X
CompareLearn more
CrowdStrike Falcon
CompareLearn more