We compared Microsoft Defender for Endpoint and Microsoft Exchange Online Protection based on users' reviews in six categories. We reviewed all of the data and you can find the conclusion below.
Features: Microsoft Defender for Endpoint excels in file protection, encryption, and ransomware defense. It integrates seamlessly with other Microsoft security products. Users appreciate its user-friendly interface and scalability. Microsoft Exchange Online Protection offers seamless integration with Windows, a central alert console, and real-time monitoring of suspicious URLs.
Room for Improvement: Users say Microsoft Defender for Endpoint should improve its central console and auto-recovery feature. Users also requested better reporting capabilities and integration with third-party platforms. Microsoft Exchange Online Protection could offer more training and enhance its security features. Users also requested better encryption, gray email management, and integration with non-Microsoft platforms.
Service and Support: Microsoft customer service garnered mixed feedback. Some praised the fast response times and expertise of the support engineers, while others were dissatisfied with slow replies and a lack of coordination among the support teams. While some users found MEOP support to be helpful and responsive, others experienced slower response times.
Ease of Deployment: Microsoft Defender for Endpoint's setup is straightforward. While it can be more complex for larger organizations, it is generally considered simple, particularly for smaller companies or those familiar with Microsoft environments. Users had varied experiences setting up Microsoft Exchange Online Protection, ranging from easy to difficult. It may necessitate dedicated personnel for maintenance.
Pricing: Reviewers say Microsoft Defender for Endpoint is fairly priced, noting that it is typically included for free with Windows or Microsoft Office 365 subscriptions. However, some users believe that Microsoft's pricing could be more affordable, and others noted that their licensing models can be complex. Some users said Microsoft Exchange Online Protection is expensive, but others considered it reasonable.
ROI: Microsoft Defender for Endpoint delivers cost savings, enhanced efficiency, and heightened threat management. Microsoft Exchange Online Protection has proven to be a solid investment.
Comparison Results: Microsoft Defender for Endpoint offers sophisticated protection against ransomware, easy deployment, and smooth integration with Microsoft solutions. However, Microsoft’s customer support has received middling reviews, and users would like better compatibility with third-party solutions. Microsoft Exchange Online Protection is praised for its seamless integration with Windows and useful features like URL holding and threat management. At the same time, users say it could improve in areas such as pricing, documentation, and security features.
"This product is flexible, and it is very easy to get updates from the Microsoft website."
"The features I have found most valuable are the ransomware and malware protection. The solution detects malware live and whenever it detects suspicious activity, it quarantines it."
"It shows us the risky sign-ins, and if a user's password has been compromised."
"In my opinion, the most valuable aspects are the reporting analytics and integration with Sentinel. Defender does an excellent job of correlating the different entities that comprise threat analysis, analytics data, and log analytics. It helps to piece together investigations into any exploit or malicious activity within a specific tenant. AI and analytics tools are probably the most valuable components."
"The whole bundle of the product, which is similar to other Microsoft products, is valuable. Ten years ago, you had third-party stuff for different things. You had one solution for email archiving and another third-party one for something else. Nowadays, Microsoft Office covers all the stuff that was formerly covered by third-party solutions. It is the same with antivirus. The functionality is just basic. You have the scanning, and then you also have a kind of cloud-based protection and reporting about your environment. With Microsoft Security Center, you have a complete overview of your environment. You know the software inventory, and you have security recommendations. You can not only see that the antivirus is up to date; you can also see where are the vulnerabilities in your system. Microsoft Security Center tells you where you have old, deprecated software and what kind of CVEs are addressed. It's really cool stuff."
"The folders and files protection are its most valuable features. These have been valuable because of the increase in ransomware attacks. With these two features, I can ensure that no changes have been made to our system or endpoint folders and files without the user being aware."
"The virus scanning capability is excellent, and it feeds all the logs into the Microsoft 365 Defender portal, making them easy to search for."
"In terms of the installation, ease of use, and user interface, Defender has been great so far."
"The initial setup is just a standard process."
"What I like most about Microsoft Exchange Online Protection is its integration with Windows, so we have one central view for all alerts and incidents."
"Microsoft EOP's most valuable feature is a shared mailbox."
"We use the solution to receive emails. We do not use the calendar function as our clients are slow adaptors to the latest features."
"We use the solution in all our environments. We use it for remedy tickets and give them updates. It was our main communication point."
"In general, my company is happy with Microsoft support...My company hasn't faced any stability issues with the solution."
"The most valuable feature is the ease of administration. Other solutions require complex administration, but Microsoft Exchange Online Protection is easier."
"It provides security to both on-premises and Azure infrastructures."
"The price, in general, could always be a little bit cheaper."
"At times, the other antivirus products are now doing AI, in terms of understanding the behavior of the system and determining when there's an anomaly. This is something that Defender can improve on."
"It would be helpful if they included XDR features, on top of the EDR functionality."
"Monitoring can always be better, onboarding can be a little bit faster, log collection could be easier, they could streamline the dashboard. They could maybe split it up into different workspaces and have the ability to segment groups a little bit more."
"The pricing could be a bit better."
"Cortex... has good investigation capabilities, out-of-the-box, in case there is an event that you'd like to investigate. It's quite convenient. Microsoft has those capabilities as well, but you need a bit more training on the product to get the basic information that you can get out-of-the-box with Cortex."
"Sometimes, there are different skews. In a basic skew, they should have basic log analysis without the need to integrate with any third-party or SIEM solutions, like Sentinel. This would make it so much easier for users who don't have log collection or log analysis."
"In terms of the architecture of the management infrastructure, we found that other technologies are more simple. Microsoft Defender could be simpler too."
"They should specify the difference between Defender for Office 365 and Exchange Online Protection."
"The price of Microsoft Exchange Online Protection could be reduced to make it more competitive."
"Our company faces difficulty with Microsoft Exchange Online Protection (EOP) because it's too big, clunky, and difficult for a small client to implement quickly and easily."
"If a company wants to put in line back-to-back anti-spam solutions, they need to work on that part because Microsoft recommends either you use EOP as a front line or you don't use it."
"Having orchestration features added to Microsoft Exchange Online Protection, particularly automation and remediation, would be quite useful."
"It would be helpful for customers if Plan 1 features were included with EOP."
"We would like the solution to have more in-built intelligence in the way that it reviews potential security risks, rather than our team constantly having to update the policies."
"We have experienced issues while migrating from on-prem to the cloud. The tool needs to improve its stability."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
More Microsoft Exchange Online Protection (EOP) Pricing and Cost Advice →
Microsoft Defender for Endpoint is ranked 1st in Anti-Malware Tools with 182 reviews while Microsoft Exchange Online Protection (EOP) is ranked 11th in Anti-Malware Tools with 34 reviews. Microsoft Defender for Endpoint is rated 8.0, while Microsoft Exchange Online Protection (EOP) is rated 8.2. The top reviewer of Microsoft Defender for Endpoint writes "Eliminates the need to look at multiple dashboards by automatically providing one XDR dashboard to show the security score of each subscription". On the other hand, the top reviewer of Microsoft Exchange Online Protection (EOP) writes "An effective email security solution that provides DLP, Safe Attachment, and Safe Links". Microsoft Defender for Endpoint is most compared with Symantec Endpoint Security, Intercept X Endpoint, Cortex XDR by Palo Alto Networks, Trellix Endpoint Security and SentinelOne Singularity Complete, whereas Microsoft Exchange Online Protection (EOP) is most compared with Microsoft Defender for Office 365, Proofpoint Email Protection, Cisco Secure Email, Fortinet FortiMail and Mimecast Email Security. See our Microsoft Defender for Endpoint vs. Microsoft Exchange Online Protection (EOP) report.
See our list of best Anti-Malware Tools vendors.
We monitor all Anti-Malware Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.