We performed a comparison between Microsoft Defender for Cloud and Sysdig Monitor based on real PeerSpot user reviews.
Find out what your peers are saying about Palo Alto Networks, Wiz, Microsoft and others in Cloud-Native Application Protection Platforms (CNAPP)."The real-time detection and response capabilities overall are great."
"Cloud Native Security's most valuable features include cloud misconfiguration detection and remediation, compliance monitoring, a robust authentication security engine, and cloud threat detection and response capabilities."
"The solution helped free other staff to work on other projects or other tasks. We basically just had to do a bunch of upfront configuring. With it, we do not have to spend as much time in the console."
"The user interface is well-designed and easy to navigate."
"The solution is a good alerting tool."
"The most valuable feature of the solution is its storyline, which helps trace an event back to its source, like an email or someone clicking on a link."
"It's positively affected the communication between cloud security, application developers, and AppSec teams."
"Cloud Native Security's best feature is its ability to identify hard-coded secrets during pull request reviews."
"The integration with Logic Apps allows for automated responses to incidents."
"The solution's robust security posture is the most valuable feature."
"One of the features that I like about the solution is it is both a hybrid cloud and also multi-cloud. We never know what company we're going to buy, and therefore we are ready to go. If they have GCP or AWS, we have support for that as well. It offers a single-panel blast across multiple clouds."
"With respect to improving our security posture, it helps us to understand where we are in terms of compliance. We can easily know when we are below the standard because of the scores it calculates."
"Good compliance policies."
"We saw improvement from a regulatory compliance perspective due to having a single dashboard."
"The security alerts and correlated alerts are most valuable. It correlates the logs and gives us correlated alerts, which can be fed into any security information and event management (SIEM) tool. It is an analyzed correlation tool for monitoring security. It gives us alerts when there is any kind of unauthorized access, or when there is any malfunctioning in multifactor authentication (MFA). If our Azure is connected with Azure Security Center, we get to know what types of authentication are happening in our infra."
"Technical support is helpful."
"The ability to stop/pause and capture logs when something happens is the most valuable feature."
"Docker containers are completely supported, kind of like "first class citizens"."
"The Kubernetes scanning on the Oracle Cloud needs to be improved. It's on the roadmap. AWS has this capability, but it's unavailable for Oracle Cloud."
"Maybe container runtime security could be improved."
"There's room for improvement in the graphic explorer."
"Cloud Native Security's reporting could be better. We are unable to see which images are impacted. Several thousand images have been deployed, so if we can see some application-specific information in the dashboard, we can directly send that report to the team that owns the application. We'd also like the option to download the report from the portal instead of waiting for the report to be sent to our email."
"There is a bit of a learning curve for new users."
"It would be really helpful if the solution improves its agent deployment process."
"We wanted it to provide us with something like Claroty Hub in AWS for lateral movement. For example, if an EC2 instance or a virtual machine is compromised in a public subnet based on a particular vulnerability, such as Log4j, we want it to not be able to reach some of our databases. This kind of feature is not supported in PingSafe."
"For vulnerabilities, they are showing CVE ID. The naming convention should be better so that it indicates the container where a vulnerability is present. Currently, they are only showing CVE ID, but the same CVE ID might be present in multiple containers. We would like to have the container name so that we can easily fix the issue."
"The documentation could be much clearer."
"The solution could extend its capabilities to other cloud providers. Right now, if you want to monitor a virtual machine on another cloud, you can do that. However, this cannot be done with other cloud platform services. I hope once that is available then Defender for Cloud will be a unified solution for all cloud platform services."
"The remediation process could be improved."
"Sometimes it's very difficult to determine when I need Microsoft Defender for Cloud for a special resource group or a special kind of product."
"Microsoft Defender could be more centralized. For example, I still need to go to another console to do policy management."
"From my own perspective, they just need a product that is tailored to micro-segmentation so I can configure rules for multiple systems at once and manage it."
"I would like to see better automation when it comes to pushing out security features to the recommendations, and better documentation on the step-by-step procedures for enabling certain features."
"You cannot create custom use cases."
""Events" reporting (errors, crashes, etc.) is not clear at all in a Mesos environment (i.e., it's not clear what specific container is the one that went down). In a Docker Compose environment, it may be way better."
"It is needs to automate the actions to take when an alert is triggered."
More Singularity Cloud Security by SentinelOne Pricing and Cost Advice →
Earn 20 points
Microsoft Defender for Cloud is ranked 3rd in Cloud-Native Application Protection Platforms (CNAPP) with 46 reviews while Sysdig Monitor is ranked 21st in Cloud-Native Application Protection Platforms (CNAPP). Microsoft Defender for Cloud is rated 8.0, while Sysdig Monitor is rated 7.6. The top reviewer of Microsoft Defender for Cloud writes "Provides multi-cloud capability, is plug-and-play, and improves our security posture". On the other hand, the top reviewer of Sysdig Monitor writes "The ability to stop and capture logs when something happens is the most valuable feature". Microsoft Defender for Cloud is most compared with AWS GuardDuty, Prisma Cloud by Palo Alto Networks, Microsoft Defender XDR, Wiz and Microsoft Defender for Endpoint, whereas Sysdig Monitor is most compared with CrowdStrike Falcon Cloud Security, Prisma Cloud by Palo Alto Networks and Dynatrace.
See our list of best Cloud-Native Application Protection Platforms (CNAPP) vendors.
We monitor all Cloud-Native Application Protection Platforms (CNAPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.