We just raised a $30M Series A: Read our story

Microsoft Defender for Endpoint Room for Improvement

GH
Principal Consultant at a tech services company with 201-500 employees

There are a few caveats, things we have run into. It's not easy to create special allowances for certain groups of users. It can be a little heavy-handed in some areas where Microsoft has decided to lock a feature out, meaning they make it hard to make an exception. I'll give you two examples. One company we work with needed to use about 20 different thumb drives for about 20 users. To make that exception for them was very difficult. In fact, you can't really make an exception. But what you can do is allow them to use it and, while it will still alert, you can actually suppress those alerts. Another example was where a group needed to be able to go in and manipulate their PC ERP settings. To make an exception for them was also a difficult process. A lot of people have suggested that Microsoft should not, by default, make it so difficult by locking your ability to make exceptions.

Another issue is that when you implement this it is not a single solution in and of itself. You have to implement what are called security baselines for each platform. But Microsoft does not have security baselines, other than for its own products. That means that when you want to do a security baseline for say, iOS or Android, you have to depend on other security organizations' recommendations and set the security controls to create those security baselines for other platforms. You would typically use CIS. But when it comes to iOS, it's a real pain. iOS requires you to create a security baseline for every version of iOS. Android does not.

View full review »
BS
Systems Manager at SAI Systems

Its user interface (UI) can be improved. Currently, in the console, you have to dig down for certain things. They've got many different layers to get to things instead of having it all on the surface. You have to go three folds lower to get to specific functionality or click a particular option. It would be good if we can manage the console through menus and instead of three clicks, we can do things in one click. They need to change the UI and work on it in terms of a better user experience. For example, user management should be in one menu, license management should be in one menu, and backup management should be in one menu. Currently, if you click on a user, you will get some devices there, and some devices will be on the other menu. Its UI is complicated. In terms of functionality, everything is okay. We don't want anything to be changed in it.

View full review »
CEO at Sentree Systems, Corp.

The biggest thing that I would emphasize to Microsoft is that if they are confident in their solution, they should brag more about it. In other words, they should put more stuff out there to prove that they're just as good as the others. The biggest thing is that people still don't believe in it. When it comes to the IT world, they still don't believe in Microsoft Defender. It has been there for a while, and I know that I used to not trust it because it was free and I didn't know what it was doing and if I could trust it. If you go to comparison sites, you would hardly see it being compared to solutions like Norton, Bitdefender, Webroot, etc. Microsoft can do a better job of promoting it.

They should offer more telemetry or more information coming out of there for Syslog type of scenario so that a SOC could use the data that they have built into it. This would be useful.

It is not very scalable from the eyes of an MSP because there is no dashboard that you can use to see all of your devices that have Windows Defender unless you have your own dashboard or an RMM tool to actually look at it. So, you might not get to know that a particular computer of a client is doing something, and it might have got a virus. That person might know that, but unless you set it up to actually send you the information, you won't get to know that. That's one of the things that is hard with Microsoft Defender. It is not made for the MSP world where you have one pane of glass to see all of your clients with Microsoft Defender on it unless your RMM tool already has that built-in and it can see the telemetry from Microsoft Defender. 

View full review »
Learn what your peers think about Microsoft Defender for Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: November 2021.
555,358 professionals have used our research since 2012.
FB
Head of IT at a manufacturing company with 51-200 employees

The protection will always need improvement:

  • From a technical standpoint, I would like better artificial intelligence on how it does its stuff in the background. It will always be behind. However, at some point, it would be nice if it could get better. It is not bad, but it could always be better.
  • From an audit point of view, our auditors would like to have more reports on how things are used, if things go wrong, and how they went wrong. For example, if something got a warning, "Why?" So, we would like more versatility for tracing and reporting. That would improve the product, as long as the user interface doesn't get bogged down.
View full review »
Sr SOC Analyst at a security firm with 201-500 employees

Defender’s GUI can be optimized. The console needs to be more refined. After you have been using it for some time, you get used to it, and it is manageable. However, it should be a little bit more refined.

They should come up with pre-built inner workflows. I would really like to see this. There need to be workflows with respect to notifications, remediations, or any actions that people want to take. They should come up with predefined or prebuilt hunting capabilities. Right now, we have to manually write queries. I would prefer if they could come up with something more automated.

This is with respect to a SOC analyst perspective. Other users, other administrators, other different roles might have different issues. For me, there are no major concerns. It is a good tool, out of the box.

View full review »
IT Administrator at DM-Drogerie Markt

We encountered some misbehavior between Microsoft Office Suite and Defender. We had issues of old macros being blocked and some stuff going around the usage of Win32 APIs. There is some improvement between the Office products and Defender, and there is a bunch of stuff that you can configure in your antivirus solutions, but you have several baselines, such as security baselines for Edge, security baselines for Defender, and security baselines for MDM. You have configuration profiles as well. So, there a lot of parts where we can configure our antivirus solution, and we're getting conflicting configurations. This is the major part with which we're struggling in this solution. We are having calls and calls with Microsoft for getting rid of all configuration conflicts that we have. That's really the part that needs to be improved. 

It would be cool to have just one interface or only one or two locations where you configure the stuff. Currently, they have three locations where you can configure your antivirus. Three locations are too much, and there is too much conflict. It is not a one-to-one configuration. There are some configuration settings that you can only do in SCCM. You don't find them in MDM. So, it's not always one-to-one. 

The last point of improvement is related to the quality of service that Microsoft provides. The quality of service that Microsoft provides should be improved.

View full review »
MD
Azure Engineer at a tech services company with 51-200 employees

What I've heard from the customers is that the anti-malware engine is not up to date. So, sometimes, it may not detect such threats. I, however, haven't got any data to show for this.

Its licensing can be better. Currently, customers with the E3 license cannot use many features, and they would like those features to be available. With Windows 10 E5, Microsoft is phasing out all the functionality. They have also made a lot of changes recently where you can also buy add-ons for Defender ATP, but for Office 365, ADT, and other stuff, you still require E5 licensing. If they can improve its licensing, it would definitely be helpful in implementing the features from the security point of view. E5 definitely has more features from the security point of view.

I would like Microsoft to have some kind of direct integration for USB controls. They have GPO and other controls to control the access of the USB drives on devices, but if there is something that can be directly implemented into the portal, it would be good. There should be a way to control via a cloud portal or something like that in a dynamic way. USB control for data exfiltration would be a good feature to implement. Currently, there are ways to do it, but it involves too many different things. You have to implement it via GPOs and other stuff, and then you move or copy those big files via Defender ATP. If there is a simple way of implementing those features, it would be great.

View full review »
Cyber Security Specialist at a healthcare company with 10,001+ employees

One area for improvement is that, because it comes out-of-the-box, it does not interact well with many applications we have developed in-house. There is no way to exclude them because it interacts with everything on the endpoint. One of the issues is lagging: the in-house-developed applications suffer from this and they become slow. For a big enterprise, it is important that they include a feature so that we can exclude these applications.

Another area where it could be improved is that, while it collects a lot of data, it misses some data, which is important, such as the hardware version of the endpoint and the AV signature version. I think this improvement is in the Microsoft pipeline already but it is not in the solution yet.

View full review »
TG
Security Consultant at a tech services company with 51-200 employees

Everything can always be improved. Improvements would depend on the client. 

Monitoring can always be better, onboarding can be a little bit faster, log collection could be easier, they could streamline the dashboard. They could maybe split it up into different workspaces and have the ability to segment groups a little bit more.

View full review »
RA
Assistant Manager IT at a educational organization with 1,001-5,000 employees

The file scanning has room for improvement. Many people use macros within their files, so there should be a mechanism that helps us to scan them for malicious payloads.

If there is a Word file then it is able to scan it, but if there is a malicious payload within its signature then it will not be detected. Deep packet scanning must be used to improve the overall product.

View full review »
IT Support Executive at a healthcare company with 51-200 employees

It is using a large space in your memory all the time. While an antivirus will use some of your memory, if they could reduce the load of the antivirus to some extent that would be good.

View full review »
OP
Security Architect at a comms service provider with 5,001-10,000 employees

The dashboards could be better. There's a suite of different products that play together and enhance security and receive signals from different parts of the product suites. When you are trying to look into that sort of depth on a dashboard, or across various dashboards, it can be difficult to obtain a comprehensive overview as it's so divided.

The initial setup can be a bit complex. 

Beyond that, I'm not involved in the day-to-day operation. There may be others that can offer more insights.

View full review »
Head, Information Security & Network Operations at a consumer goods company with 10,001+ employees

The alerting is something that needs to be improved. Alerts need to be sent immediately because as it is now, you see some of them without delay and others arrive perhaps 30 minutes later, and it leaves important gaps in terms of information gathering.

View full review »
Navision Consultant and user support at NCPD

The product should keep updating its software as to counter incoming threats since threats are becoming more advance with time. The product should be strong in all parts.

I would recommend if the product continues to be updated that the way it updates is faster for downloading and updating in our system. The stability is good and should continue to perform well in that way. 

With increase of cyber threats and cybersecurity issues, I would recommend that the product be developed like an AI product with more features which can counter any threat in the coming eras.

View full review »
KF
Technology Consultant at a computer software company with 51-200 employees

Overall, they're doing a much better job. However, recently, they added the Azure Defender. When you use the Azure Defender licenses, you're already enrolled. 

I prefer that they had the old interface that was not combined with compliance, and still, they've changed that to make it better. I would just like them to have more consistency, and that's a comment that's across the board with Microsoft. They change things a lot.

View full review »
Technical Team Lead at Alepo

Microsoft Defender protects the computer by using virus definitions that we download through regular updates but nowadays, cybersecurity attacks have become more intelligent. This solution needs to move beyond relying on virus definitions alone and protect the system using behavioral analysis of the processes that are running. These can be vulnerable points and if a process causes a glitch in the system, it should be quarantined. Moreover, enhancements of this type should not detract from system performance. There should be no slowdown on the laptop, for example.

View full review »
JC
Technical Support Engineer at a tech services company with 51-200 employees

The solution does not have deep protection. Sometimes you find that you have some virus attacks. Most times we're on the internet. As you search so many websites, chances are high you visit sites that are fraudulent. There could be cases like phishing, where software could be embedded in some websites or some other viruses could come into your PC under Windows Defender. The security is basically limited. It's not so strong, in my understanding. It could be more robust.

The solution could use improvement on the interface. Most different Defender software comes with a different graphical user interface and some tend to be a bit complex. They should work to make the interface more user-friendly for basic users. For myself, as an IT person, it's fine, however, for a layperson, the interface might be a bit confusing.

It would be nice if they would collect user ratings and feedback. It would help them find ways to better add features and add-ons in the future.

The dashboards always have room for improvement.

View full review »
Modern Workspace Solution (Technical Specialist - Managing Consultant) at GFI India

It would be helpful if they included XDR features, on top of the EDR functionality. It would improve the capabilities, as XDR solutions are doing better.

View full review »
AA
Delivery Practice Director at a computer software company with 201-500 employees

Integration with third-party vendors could be better. It would be better if it integrates with other protection solutions or other products outside of Microsoft. Nowadays, anti-virus protection doesn't really have to be planned as overall protection for your environment in terms of security. There are really different avenues that bad actors can take to wreak havoc on your machine. 

We don't just use anti-virus. That's really like a traditional way of doing it. We have different kinds of protections. We have our advanced threat protection for email, and we have advanced threats analytics for domain controllers for servers. We use all those. 

View full review »
SA
Cloud Consultant at Brio Technologies Private Limited

The GUI is very complex, particularly for normal users who work on it. It could be more user friendly. For future improvements, I'd be looking at internet security which we don't have as Microsoft does not distinguish whether a site is malicious or not. Kaspersky is very good at that but not Microsoft. It would be a big advantage for them if they were to include it. 

View full review »
AA
Delivery Practice Director at a computer software company with 201-500 employees

I would like to see better integration with their other security products to give better visibility from a higher level. Integrating with email, Azure, identity management, and other security applications, putting them all together, would be very good.

The first level of technical support is not very useful and it sometimes takes time to escalate to somebody more knowledgeable.

View full review »
PT
Head Of Information Technology at a financial services firm with 1,001-5,000 employees

As I've only used the product for three months, I haven't really had time to explore the entire solution. However, I haven't found anything that is lacking just yet. Currently, we're actually behind on the current feature offerings and need to explore the system quite a bit more. It fits our needs so far.

The pricing could be a bit better.

View full review »
Application Manager at Huntington Bancshares Incorporated

Improvements could be made via:

  • Clicks. There's a poor user experience with lots of optimizable opportunities of user interface particularly on the newly improved portal (https://security.microsoft.com/). Features like device inventory continue to lack essential workstation drill-downs showing the entire device information with the least effort.
  • De-centralized console features. Discrepancies with enabling core features at the click of a button within the MDE portal is mostly due to prerequisites that are tied to the functionality or partial enforcement requirements from other Microsoft tools (Group policy, Azure, Sentinel, SCCM, Intune). EDR in block mode requires Intune security baselines and tamper protection requires MAPS enabled. Web content filtering also has security baseline dependencies
  • No single pane of glass. There are too many loose ends with tiny bits and pieces to enforce essential security policies compared to other EDR solutions within the same caliber. A typical example is having to create exclusions in different locations for entirely different functionalities, such as: automation folder exclusion, group policy exclusions (per tenant), Controlled Folder Access (ASR) Allowed application, and Attack Surface Reduction (ASR).
  • Service Requests. Noncritical cases with MDE technical support teams tend to be queued for over a week before the first customer engagement. Most of these tickets also end up in the hands of temporary or contracted non-Microsoft employees who are scripted and offer little attention to unique incidents.

Suggested additional features that should be included in the next release include:

  • Digestible interface/filter for crown-jewel capabilities like ASR, CFA and Exploit mitigation occurrences.
  • Restoration of an always visible search bar from the previous console view (https://securitycenter.windows.com).
  • A definitive action plan for Secure Score recommendations and deduplicate of controls.
View full review »
CRM & IT Head at a computer software company with 201-500 employees

I would like to see online updates for patches for this solution. I would also like to see online information about what is trending in the market in terms of spams, viruses, or trojans.

It takes some time to understand how this solution works. A few things are unclear at the beginning, such as whether it actually restricts the virus or spam at the initial stage, or when there is a security update, how will we come to know and how will it get synchronized. It would be really helpful if there is some kind of knowledge base in the form of video, audio, or document that can explain in a user-friendly way the setup, features, risks, and process to mitigate the risks.

Currently, I have installed endpoint security for every individual system. I could not install it like other endpoint solutions where we have a server and a client. It would be really helpful if Microsoft Windows Defender has a server-client based model so that I can save some bandwidth when it downloads or uploads features. It will be helpful if we have a LAN-based or WAN-based controlling system.

View full review »
AB
Senior Manager at RP Sanjiv Goenka Group

From a general user perspective, I don't see any further improvements needed. 

The price, in general, could always be a little bit cheaper.

View full review »
Chief Executive Officer at Apollo Asset Management Company

I wish they would extend the use of the Security Central portal, even for the free option of Defender. Because, as companies grow, it is labor intensive to manage the AV and detection part of it. For companies already subscribed to Office 365, I think this would be a good enhancement.

View full review »
PT
Product Manager at a comms service provider with 501-1,000 employees

They have to improve the email scanning where email is coming from somewhere other than our private network. The scanning is slow when it is working with incoming emails. Often, I can see the email but the scanning process is not finished and I cannot open the attachment. In general, the scanning has to be faster.

View full review »
HL
Cyber Security Consultant at a consultancy with 11-50 employees

Microsoft Defender could be improved with features more like the McAfee ePO. It would be better if I had a console to get all the information for my endpoints. Maybe this is too much for it, but it would be better if it could handle those non-signature-based malicious codes or viruses. In the future, more and more non-signature-based activities or viruses will appear, which you can see in the market with software like CrowdStrike or other products that target non-signature-based attacks. 

There are two groups: one is signature, which means that people know it, and the other is non-signature, which means that these are abnormal activities unknown to people. If Defender could also handle those non-signature-based attacks or abnormal activities, it would be better. 

View full review »
OC
IT Manager at a financial services firm with 1,001-5,000 employees

At times, the other antivirus products are now doing AI, in terms of understanding the behavior of the system and determining when there's an anomaly. This is something that Defender can improve on.

View full review »
CG
Team Lead at a tech services company with 1-10 employees

The anti-ransomware features need to be improved upon.

View full review »
MM
Project Director at a tech services company with 1,001-5,000 employees

Windows Firewall is integrated with Windows Defender. Over the last few days, I have had a problem with defining a wildcard on Windows Firewall. For example, I wanted to pull out the connection of my program and install a software package with a lot of executable files. I wanted to prevent it from accessing the internet. I could not select executables by using a wildcard. I had to select a single executable with its full name.

View full review »
JN
Manager of Information Systems at a engineering company with 51-200 employees

The frequency of the patching, and the frequency of the updates, are not included with the free version. 

The platform I used in the past would check every hour and deploy every two hours down to the client, every patch that came through. 

It was actively looking for updates, the latest threats, which is something that the Microsoft Defender product did not have in the free version.

The Enterprise version that we had, didn't have visibility. If somebody were to uninstall it or turn it off, I'd have trouble seeing that easily. There are tools that I can install, but from a reporting standpoint who has it on and off is included with the Enterprise package that you pay for, or it comes included with Office 365 Enterprise, but not in the free version.

View full review »
Consultor Senior at a consultancy with 51-200 employees

They could improve the information about how they are dealing with people who could attack minors. This is my main concern. 

Another concern is ransomware, whether people can penetrate and encrypt my data or steal my credit card/banking information. 

View full review »
MH
Managing Director at FORESEC

Auto recovery is the most important feature that we would need from this solution. For decryption, similar to Malwarebytes, there should be something to be able to recover the data up to the last normal status. Its ability to recover data to the last normal copy must not exceed 5 to 10 minutes.

View full review »
KM
Owner at a tech services company with 1-10 employees

Some integration components for Mac should be added. We use both Windows 10 desktops and Mac desktops, but presently, the Mac component is still lagging a bit behind. However, I think this is a temporary case.

View full review »
VS
Specialist Consultant in Microsoft Security at a tech services company with 501-1,000 employees

It needs to improve the cybersecurity for lateral movements. For example, when a hacker tries to enter a machine, they try to get the password by doing a lateral movement. 

With Windows 10, version 18.0.3, I couldn't see the documentation to open the ports. If you don't open the ports, then the machine can't communicate with the console.

View full review »
Solution Architect at KIAN company

The central management console should be improved because it provides limited options to configure Windows Defender. It should provide a lot of options and features, in the same way, that Symantec does, or the Kaspersky Central Management Console does. Essentially, we should have a central management console on Azure that can be used to manage Windows Defender on all of our machines.

View full review »
NK
Senior IT Manager at a pharma/biotech company with 501-1,000 employees

The integration of the defense features is something that they are working on but it still needs improvement.

In the next release, I would like to have additional features integrated with DNS security and DNS resolution. It will add to the solution and work more like a firewall.

If they integrate with the EDR then it will benefit this solution. 

I would like ATP to be integrated with the EDR as one single license.

View full review »
Director at Darknext

One area of improvement for this solution is to have a faster turnaround time on updating definition files. Since there are usually various ransomware variants, this solution may not pick it up in time like other commercial antivirus solutions. However, we have not encountered an issue like this yet with definition updates.

With regards to the interface, a challenge I found was that there was not enough documentation on how to tune it. I had to read multiple sources on the internet to learn how to configure the tool appropriately.

In the next release, I would like to see the solution have a backup feature were my data could be saved to a Microsoft OneDrive account or an equivalent cloud platform so that, in the event of a ransomware or malware attack, I can easily retrieve my data.

View full review »
PT
Head Of Information Technology at a financial services firm with 1,001-5,000 employees

Its price could be better.

View full review »
PR
Consulting Director at a tech services company with 5,001-10,000 employees

I have had a few minor issues on my laptop but nothing really big.

I would like to see fewer pop messages and alerts. 

It's disturbing when you have that many alerts. 

Even though it shows you it's working, I don't really need to see it. If it was running in the background and never showing that would be perfect for me.

View full review »
FF
Engineer at a educational organization with 5,001-10,000 employees

Microsoft Defender in the basic form is not very useful for managing the security environment. The free version is not capable of covering the needs of centralized management, EDR, and behavioral analysis. If you don't have the commercial version, you can't have centralized management and set up the policies and other things. Each client is a standalone installation, which is not useful for security in an enterprise model.

View full review »
MS
VMware and Windows Server Team Lead with 1,001-5,000 employees

Its interface can be improved a little bit. We would like to have some sort of centralization. It should have something like a central server that is managing all the other clients. There are solutions from Kaspersky or ESET NOD32 that are really doing this kind of thing currently. We would like to see something similar from Microsoft.

View full review »
TP
IT Engineer at a real estate/law firm with 201-500 employees

Microsoft Defender for Endpoint can improve by making the reporting faster. It takes some time to reflect back to the administration portal of what has been updated. For example, out of 100 Computers, approximately 90 computers received updates, but when you check the administration portal over one or two days, you will only see 75, even though 90 were updated.

View full review »
JS
Manager Cyber Defense Operations Centre at a tech services company with 201-500 employees

I do not find that there is very much about it that needs to be improved. Everything can be cheaper I am sure. So, it could be less expansive.  

View full review »
AC
Technical Director at Systex Software

The central console needs improvement. Both McAfee and Symantec antivirus have dashboards. These integrate with a server and work on my antivirus or some other product. However, with Microsoft Defender, you use Microsoft Group Policy Object. Defender does not provide a central console. Therefore, if you implement Defender, then maybe use another tool for the central view.

View full review »
Professional Prospect List Building Service Provider, Email Sourcer, Virtual Assistant at Freelance

Lowering the price would be an improvement.

View full review »
Manager-Information System & Product Management at a tech services company with 1-10 employees

There is no behavior analytics for devices and endpoints. There is no behavior-based protection. It does not allow us to pull data from ransomware and zero-day attacks.

View full review »
Cyber Security Specialist at a healthcare company with 10,001+ employees

It is currently more suitable for end-users rather than enterprises with lots of other processes and third-party tools. It needs improvement on that front. We had many issues while integrating it with our enterprise solutions, such as Splunk, and third-party tools. It provides everything via APIs. Other vendors provide integration with third-party tools, but Microsoft doesn't do that.

It is also logging too much and is not serialized from the process aspect. It has all the data, but it is not in a proper format or not properly indexed, which doesn't make it easier for enterprises to use this data.

Other vendors provide troubleshooting information that can be used to troubleshoot issues, but Microsoft doesn't provide anything like that.

View full review »
NA
Assistant Manager – IT Infrastructure at a manufacturing company with 201-500 employees

While have been using this solution for two years, I am not completely knowledgable. 

Due to license restrictions, we cannot use all of the features that are offered.

I am not sure if I will be using this product in the future because of the price.

I would like to see better pricing for this solution in the future.

View full review »
CG
Director, IT at a financial services firm with 201-500 employees

I would like to have additional features such as DNS lookup, which would help for detecting malicious sites. This is a key part that I would like to have, and other products already have it implemented.

View full review »
EG
Information Security Engineer at a financial services firm with 1,001-5,000 employees

In terms of improvement, they update the platform it seems quite a bit. Every month something is in a new spot or something changed somewhere. There should be less of that.

View full review »
CM
Chief Executive Officer at a tech services company with 1,001-5,000 employees

The solution could be even more secure and provide an even higher level of security.

View full review »
JL
Managing Director at a financial services firm with 10,001+ employees

The interface could be improved.

View full review »
Subject Matter Expert at a comms service provider with 10,001+ employees

I would like to see the next generation of the tool improved to work with other operating systems, like Linux.

View full review »
Systems Administrator at a transportation company with 201-500 employees

We encountered some issues when we were trying to enable automatic updates from our group policy.

View full review »
KR
Information Technology Administrator at a tech services company with 51-200 employees

The user interface could use some improvement.

View full review »
MK
Cyber Security BA/BSA at a financial services firm with 10,001+ employees

There are likely some technical improvements or features that could be added, however, I cannot say, off the top of my head, what they would be.

View full review »
FZ
Network Administrator at a tech services company with 51-200 employees

It could be easier when it comes to managing exceptions.

In the future, I would like to see better integration with web browsers.

View full review »
CD
Security Specialist at a energy/utilities company with 1,001-5,000 employees

I would like the solution to be able to prevent unauthorized programs from installing and to block unauthorised URLs which is similar to web filtering product. 

View full review »
Systeem beheerder at a healthcare company with 1,001-5,000 employees

I personally haven't experienced any pain points, but some of my coworkers feel that it isn't secure enough.

It would be nice if they could guarantee that we'll always be safe and secure with them. 

View full review »
KC
CEO South East Asia at a engineering company with 10,001+ employees

Notifications are always popping up — I hate that. It could also be easier to use and more robust, overall. 

View full review »
JA
Technical Manager at a comms service provider with 11-50 employees

There is room to improve the security of the solution.

We have plans to add an email security solution because this solution does not provide us with what we want.

View full review »
WC
Head of Information Security with 51-200 employees

Its detection is not as quick. There should also be more frequent updates.

View full review »
OK
Consultant at a tech services company with 1,001-5,000 employees

I think Microsoft needs to improve some of the security aspects of Defender. 
The email part, in particular, needs to be improved in terms of security effectiveness.

View full review »
PJ
Head - IT Operations & Enterprise Systems Support at a financial services firm with 1,001-5,000 employees

I would like to have a dashboard that shows an overview of the results for the enterprise.

View full review »
Sales Director at CLoud3 Solutions Pte Ltd

The solution can be more user-friendly.

View full review »
JV
Cyber Security Engineer at a manufacturing company with 5,001-10,000 employees

This solution is not secure, which is why I have moved to Linux.

Microsoft Defender for Endpoint could be more secure.

View full review »
SV
QA Test Lead at a insurance company with 501-1,000 employees

I think the solution needs to be more on par with other antivirus products in the market. It should be able to deal with any threats so additional security would be helpful. 

View full review »
WG
Technology Consultant at a computer software company with 10,001+ employees

The deployment of Microsoft Defender for Endpoint on Windows 10 is not quite so straightforward. This could be made easier.

View full review »
Senior System Administrator at Debre Markos University

The solution could improve by providing more integration.

View full review »
AK
Co-Founder at a tech services company with 1-10 employees

It can be more secure.

View full review »
AL
Technical Project Manager at a computer software company with 10,001+ employees

There could be an increase in security for the solution.

View full review »
‪G
IT Manager at a pharma/biotech company with 201-500 employees

I would like to see improvements made to how it secures activities on web pages.

Web security in general should be improved.

View full review »
Learn what your peers think about Microsoft Defender for Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: November 2021.
555,358 professionals have used our research since 2012.