This content is currently locked.

Your current McLean & Company subscription does not include access to this content. Contact your account representative to gain access to Premium SoftwareReviews.

Contact Your Representative

Or Call Us:
+1-877-281-0480 (US/CAN) or
+1-703-544-9513 (International)

Microsoft Corporation

Microsoft Defender XDR

Composite Score

7.6 /10

CX Score

7.7 /10

27 Reviews Write a Review

What is Microsoft Defender XDR?

Coordinate cyberthreat response across your entire digital estate and quickly stop cyberattacks with Microsoft Defender XDR (formerly Microsoft 365 Defender), a unified, AI-powered XDR solution. Accelerate security operations center (SOC) response with incident-level visibility and automatic cyberattack disruption with extended detection and response (XDR). Remediate cyberthreats efficiently with a complete view of the cyberattack chain informed by 65 trillion daily signals and prioritized investigation and response at the incident level.

Company Details

Need Assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Get Assistance

Microsoft Defender XDR Ratings

Real user data aggregated to summarize the product performance and customer experience.
Download the entire Product Scorecard to access more information on Microsoft Defender XDR.

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

87 Likeliness to Recommend

5
Since last award

96 Plan to Renew

4
Since last award

79 Satisfaction of Cost Relative to Value

3
Since last award

{y}

{name}

Emotional Footprint Overview

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

+81 Net Emotional Footprint

The emotional sentiment held by end users of the software based on their experience with the vendor. Responses are captured on an eight-point scale.

How much do users love Microsoft Defender XDR?

3% Negative

12% Neutral

85% Positive

Pros

Helps Innovate
Efficient Service
Continually Improving Product
Inspires Innovation

Feature Ratings

Average 76

Real-Time Threat and Anomaly Detection

Risk Scoring & Remediation Act

Use of the MITRE ATT&CK Framework

24/7/365 Security Monitoring

Incident Management

Prevention

Threat Intelligence

Compliance Reporting and Archival Mechanisms

Simplified Automation and Integration

Vulnerability Management

Technology Management

Vendor Capability Ratings

Average 77

Quality of Features

Ease of IT Administration

Breadth of Features

Business Value Created

Usability and Intuitiveness

Ease of Implementation

Ease of Data Integration

Ease of Customization

Availability and Quality of Training

Product Strategy and Rate of Improvement

Vendor Support

Microsoft Defender XDR Reviews

Muhammad Waseem A.

Role: Information Technology
Industry: Construction
Involvement: IT Development, Integration, and Administration

Validated Review

Verified Reviewer

Submitted Oct 2023

MS EDR, a good EDR sol for clients protection

Likeliness to Recommend

8 /10

What differentiates Microsoft Defender XDR from other similar products?

Microsoft XDR provides some good features in the product and integrating its features with OS makes it more powerful product. Its better and more appropriate to have a complete suite of Microsoft products to enjoy it's full benefits. Microsoft Intune along with Entra ID are recommended along with it so that remote clients are in complete comtrol of the technical team & centrally monitored for any problems and all of the threat landscape is montored & controlable with the same central team. COntroling the EDR features using Microsoft Intune and ENtra ID make it more powerful product and monitored centrally.

What is your favorite aspect of this product?

Microsoft XDR is evolving product providing many features but with integation of Microsoft Intune it has the real control.

What do you dislike most about this product?

Stability & consistency of features are the things that can be improved to make this product more powerful.

What recommendations would you give to someone considering this product?

If you are switching from another product, do it gradually & don't go for a bing bnag approach.

Pros

Helps Innovate
Continually Improving Product
Reliable
Performance Enhancing

Role: Information Technology
Industry: Banking
Involvement: IT Leader or Manager

Validated Review

Anonymous Reviewer

Submitted Oct 2023

Easy to use, still not mature

Likeliness to Recommend

8 /10

Pros

Helps Innovate
Reliable
Performance Enhancing
Enables Productivity

Yash S.

Role: Information Technology
Industry: Engineering
Involvement: IT Leader or Manager

Validated Review

Verified Reviewer

Submitted Oct 2023

Unmasking Threats with Microsoft XDR

Likeliness to Recommend

8 /10

What differentiates Microsoft Defender XDR from other similar products?

Microsoft XDR differentiates itself from other similar products through its deep integration with the Microsoft ecosystem, providing seamless security management for organizations using Microsoft solutions. It leverages cloud-native architecture, machine learning, and AI for advanced threat detection and response, with a strong focus on endpoint security across multiple platforms. Its automated response capabilities, centralized security console, and integration with threat intelligence feeds enhance its effectiveness in identifying and mitigating threats.

What is your favorite aspect of this product?

Microsoft XDR is its robust integration with the Microsoft ecosystem, which simplifies security management for organizations using Microsoft solutions. This seamless integration streamlines threat detection and response processes and enhances overall cybersecurity posture.

What do you dislike most about this product?

Some common criticisms of XDR solutions, including Microsoft XDR, include their relatively high cost, complexity in setup and configuration, the potential for generating a high number of false positives leading to alert fatigue, resource-intensive nature impacting system performance, challenges in integrating with third-party tools, a steep learning curve for new users, scalability issues, and limitations in providing comprehensive coverage for cloud-native environments. These concerns should be weighed against the benefits and specific needs of an organization when considering the adoption of XDR solutions.

What recommendations would you give to someone considering this product?

When considering Microsoft XDR or a similar Extended Detection and Response solution, it's crucial to begin with a thorough assessment of your organization's cybersecurity needs and budget constraints. Evaluate the integration benefits with your existing technology stack, conduct pilot testing to assess performance, and prioritize ongoing training and skill development for your security team. Continuously monitor and fine-tune the solution for optimal threat detection and mitigation, while also staying informed about cybersecurity best practices.

Pros

Respectful
Fair
Security Protects
Continually Improving Product

Cons

Less Efficient Service
Wastes Time
Less Caring

How We Deliver

Events

Microsoft Defender XDR

What is Microsoft Defender XDR?

Company Details

Need Assistance?

Awards & Recognition

Microsoft Defender XDR Ratings

87 Likeliness to Recommend

5 Since last award

96 Plan to Renew

4 Since last award

79 Satisfaction of Cost Relative to Value

3 Since last award

Emotional Footprint Overview

+81 Net Emotional Footprint

How much do users love Microsoft Defender XDR?

Pros

Feature Ratings Average rating of all product features, some of which may not be shown below

Real-Time Threat and Anomaly Detection Real-time or near real time threat detection of attacks and anomalous behavior.

Risk Scoring & Remediation Act Actionable risk mitigation suggestions for each vulnerability discovered.​

Use of the MITRE ATT&CK Framework Threat modeling capabilities and allows for mapping use cases to established TTPs, in order to facilitate rapid incident response.

24/7/365 Security Monitoring MDR provider should include a team of experienced security analysts monitoring the network 24/7 to identify abnormal activity and mitigate against threats.

Incident Management Includes incident diagnosis, escalation, investigation, resolution and recovery, and closure.

Prevention Offers capable next-gen AV (NGAV) and host protection.

Threat Intelligence Security threat intelligence feed integration with ability to update multiple uses and control updating behaviors.

Compliance Reporting and Archival Mechanisms System archives incidents and produces comprehensive reports to stakeholders about current vulnerabilities and past vulnerabilities and remediation efforts.

Simplified Automation and Integration XDR simplifies automations and integrations, out of the box functionality without heavy lifting, SIEM+SOAR without the burden of cost and resources.

Vulnerability Management Discover and fix vulnerabilities in the system.

Technology Management Continuously manages and monitors systems and technology. Integrates with existing technology.

Vendor Capability Ratings Average rating of all vendor capabilities, some of which may not be shown below

Quality of Features Feature quality is just as important as quantity. Use this data to determine if this product will do what you're purchasing it to do, easily, intuitively, reliably, and effectively.

Ease of IT Administration This data indicates whether IT personnel will be able to resolve issues and perform configurations efficiently and effectively.

Breadth of Features Users prefer feature rich software that enables them to perform diverse series of tasks. This data expresses user satisfaction with the product's breadth of features.

Business Value Created Software needs to create value for employees, customers, partners, and, ultimately, shareholders. This data expresses user satisfaction - or lack thereof - with the product's business value.

Usability and Intuitiveness End user learning curves cost the organization money. Pay attention to your end users' technical ability to determine how important UX is in your purchase.

Ease of Implementation Successfully implementing new software is necessary to realize its full value and promote end user adoption. This data indicates whether or not the product is easy to implement.

Ease of Data Integration Use this data to determine whether the product will cause headaches or make data integration easy.

Ease of Customization Don't get bogged down in a difficult customization; use this data to make sure you can easily achieve the functionality you need for your particular situation.

Availability and Quality of Training Effective and readily available training enables users to get the most out of the software you've chosen. Use this section to make sure your vendor's training programs and materials measure up.

Product Strategy and Rate of Improvement Vendors who don't stay on top of emerging needs and trends won't enable you to meet your business goals. Use this data to separate innovators from imposters.

Vendor Support The importance of vendor support will vary for each organization depending on internal capabilities, but there will always be issues that only the vendor can resolve.

Microsoft Defender XDR Reviews

Muhammad Waseem A.

MS EDR, a good EDR sol for clients protection

Likeliness to Recommend

Pros

Easy to use, still not mature

Likeliness to Recommend

Pros

Yash S.

Unmasking Threats with Microsoft XDR

Likeliness to Recommend

Pros

Cons

Most Popular Microsoft Defender XDR Comparisons

Palo Alto Cortex XDR

Crowdstrike Falcon Platform

Cynet 360

Trend Vision One

Acronis Cyber Protect Cloud

eSentire

Schedule Your Call

5
Since last award

4
Since last award

3
Since last award

Feature Ratings

Real-Time Threat and Anomaly Detection

Risk Scoring & Remediation Act

Use of the MITRE ATT&CK Framework

24/7/365 Security Monitoring

Incident Management

Prevention

Threat Intelligence

Compliance Reporting and Archival Mechanisms

Simplified Automation and Integration

Vulnerability Management

Technology Management

Vendor Capability Ratings

Quality of Features

Ease of IT Administration

Breadth of Features

Business Value Created

Usability and Intuitiveness

Ease of Implementation

Ease of Data Integration

Ease of Customization

Availability and Quality of Training

Product Strategy and Rate of Improvement

Vendor Support