• Home
  • Cisco Umbrella vs. Microsoft Defender for Cloud Apps

Cisco Umbrella vs Microsoft Defender for Cloud Apps comparison

Cancel
You must select at least 2 products to compare!
Lookout Logo
Lookout
Read 5 Lookout reviews
573 views|452 comparisons
71% willing to recommend
Cisco Logo
Cisco Umbrella
Read 108 Cisco Umbrella reviews
10,182 views|6,909 comparisons
97% willing to recommend
Microsoft Logo
Microsoft Defender for Cloud Apps
Read 30 Microsoft Defender for Cloud Apps reviews
9,654 views|7,399 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Cisco Umbrella vs. Microsoft Defender for Cloud Apps
March 2024
Executive Summary
Updated on Jun 26, 2023

We compared Cisco Umbrella and Microsoft Defender for Cloud Apps based on our users’ reviews in five categories. After reading the collected data, you can find our conclusion below.

  • Ease of Deployment: The deployment time for Microsoft Defender is uncertain, and it requires more effort to fine-tune policies. On the other hand, Cisco Umbrella is typically simple and easy to deploy with available implementation resources and user-friendly maintenance.
  • Features: Microsoft Defender provides threat detection, a defender for Identity, posture management, and integration with other Microsoft technologies. Cisco Umbrella offers secure DNS services, content filtering, and granular customization of DNS blocking.

  • What needs improvement: Microsoft Defender needs to work on scanning and policy application delays, detecting security threats, integration with third-party solutions, reporting capabilities, and automation features. On the other hand, Cisco Umbrella needs better integration, compatibility with endpoint response solutions, policy management, regionalized support, and reporting features.

  • Pricing: Some reviewers find Microsoft Defender to have reasonable pricing and appreciate that it is bundled with certain Microsoft licenses. In contrast, Cisco Umbrella's pricing model is often seen as expensive and not consistent, with the licensing fee being paid annually and vary based on the customer's needs. Users did mention that the pricing is open to negotiation. Additionally, Microsoft partners can receive discounted pricing.

  • ROI: Microsoft Defender can result in cost savings and greater availability, whereas Cisco Umbrella can enhance productivity and reduce risks.
  • Service and Support: Microsoft Defender offers different tiers with Premier support receiving high praise. However, their Pro support can be inconsistent. Meanwhile, Cisco Umbrella's technical support receives mixed reviews, with some stating it's great while others struggle with getting in touch.

Comparison Results: Microsoft Defender is a better option than Cisco Umbrella according to user reviews. It is highly regarded for its seamless integration with other Microsoft technologies, ease of use, and affordability for smaller businesses. Cisco Umbrella, on the other hand, is praised for its mature solution but is seen as expensive, which creates challenges for smaller corporations. Overall, Microsoft Defender is a better choice for businesses prioritizing integration with Microsoft technologies and cost-effectiveness.

To learn more, read our detailed Cisco Umbrella vs. Microsoft Defender for Cloud Apps Report (Updated: March 2024).
Download the complete report
771,157 professionals have used our research since 2012.
Featured Review
Anonymous User
User-focused design makes it easy to understand, and operations running in background provide peace of mind
All the operations that it handles happen in the background. It's not something that I have to continually use every single day. It offers a... Read more →
Grant Hagenberger
Very easy to accomplish content filtering, we don't need to do a lot of customization for it
It makes it really easy to accomplish content filtering. We don't have to do a lot of customization. You just click the box for the content... Read more →
Maymin Moe
It helps us discover shadow IT, but it isn't as effective on applications from non-Azure platforms
We only need one dashboard for all Microsoft security products. Sentinel acts as a central system for monitoring and investigating all security... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The solution is stable.""The most valuable features are the antivirus as a whole, the anti-malware, and all of the protection features that scan our enterprise devices.""On the outside, the main differentiation is because Lookout ingest. They have ingested basically all of the apps for the last ten years and all the versions of all the apps, and we have that in a corporate database that allows us to do very large-scale machine learning and analysis on that data set. That's not something that any of the competitors really have the capability to do because they don't have access to the data set. A lot of the apps you can no longer get them because that version of the app is five or six years old, and it just doesn't exist anywhere anymore, except within our infrastructure. So, the ability to have that very rich dataset and learn from that dataset is a real differentiator.""The protection offered by the product is the most valuable feature. It detects vulnerabilities or traps on our users' phones and then prompts them to clean up their devices. Tools we used previously would only discover, which required us to gather information on the backend, so Lookout is a welcome upgrade."

More Lookout Pros →

"It has certainly saved us time. If we go and look at what's rejected on the requests from the hospital itself, it has saved about 5% or 6% time.""The most valuable feature is the website protection capabilities because it prevents end-users from entering bad sites that potentially have malware or could be used for phishing.""The feature that we find most valuable is to be able to filter out those web requests that you don't want.""Provides dependable DNS monitoring of external devices.""The security and access control features.""Its simplicity is most valuable. I can install it and get it up and running, and it can be pervasive across my business within a business day. It is pretty simple and straightforward to install and configure. Its remit is reasonably clearly defined. When you look at solutions like Darktrace and Carbon Black, the mission objective isn't as clearly defined. Cisco Umbrella, Sophos Central, or some of the other solutions have a more standardized approach to antivirus, which includes enhanced response from the machine learning or deep learning perspective.""A single pane of glass saves time... This does have a lot of options available for us to see who's doing what, what trends, what errors. We can set up our alerting through it as well. It is definitely a great dashboard.""The single-pane-of-glass management is really important. In today's era, administration costs and operational expenses will cost you a lot, and it reduces that as well. You don't need extra resources to manage all your parameter firewalls, looking at every single device to allow resources internal access. By just introducing the single-pane-of-glass management, it has lifted the burden off of management, especially the network management."

More Cisco Umbrella Pros →

"Shadow IT discovery is the feature I like the most.""The ability to prevent users from using certain applications is one of the most valuable features. It doesn't require any configuration for implementation from the client perspective. It just works right away and gives you the information you need.""The general usability of the solution is very straightforward.""The product helps us with privileged identity management to control who has access to what and for how long.""The most valuable feature of this solution is its monitoring.""Defender's integration with our identity solutions is critical in our current setup.""It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notifications are pretty good.""All of the features are valuable because all of the features are related."

More Microsoft Defender for Cloud Apps Pros →

Cons
"The stability depends on the service from where you access it. Because sometimes, the place you are in, you have Gateway. You don't have Gateway. The gateway is overutilized. At the end, you need to go through their gateways. And this is the key point here. You have a tracking point. If it's not well orchestrated, and it scales up as you add more to the existing team, you will suffer""We just submitted an enhancement request reflecting the main area we want to see improvement in; the APIs. Currently, we're able to build dashboards, but it's somewhat backward because we use our MDM API to create them. Lookout should provide API to customers so we can query our data and use it in our cloud, and this is the only outstanding area for improvement with the product right now.""From the analysis that we've done, they do seem to be maybe a step behind in trying to enter the market with a new solution. But when they do pick up, they do come out with some good products.""Lookout was moving into the SSE space. And so their work on SecureWeb Gateway and SD-WAN is still sort of evolving."

More Lookout Cons →

"I would like to see DLP integration in the next release of this solution.""Data reporting could be improved.""The product can be pretty expensive.""If you wish to inspect all the traffic and it's integrated with Cisco AnyConnect, all the traffic basically goes through Cisco AnyConnect, which is not a good idea. That means you need to have more internet capacity as a data sampler, so in the case of a split tunnel, we cannot inspect the traffic that is being migrated through the local internet. I'm not sure whether there is a possibility wherein Cisco Umbrella can also inspect the traffic that is outside the AnyConnect tunnel.""Its on-prem rollout is quite challenging. It needs better coordination with the Internet Service Provider. It is a cloud-based solution, and any endpoint that connects to it has to go through all the gateway ISPs, but some of the ISPs block HTTPS-based DNS. That's where the challenge occurs with Umbrella.""The firewall capabilities could be better. Cisco is starting to introduce some layer 7 capabilities now, but there's still some room to grow. They should continue with the development of Umbrella so that it is a full-blown cloud-managed firewall solution.""The only thing I can think of is that I'd like to see a little more flexibility in policy creation. The way that policy is currently structured is like a "first hit succeeds" kind of policy. It would be nice if it were more hierarchical.""Support for multiple domains is important to us."

More Cisco Umbrella Cons →

"There are some features, such as user navigation content filtering, that are disabled by default, and it probably makes sense to enable them by default.""Microsoft Defender for Cloud Apps' initial setup was quite technical but we were prepared. The time of the implementation depends on the job and how many users are being set up.""They need to improve the attack surface reduction (ASR) rules. In the latest version, you can implement ASR rules, which are quite useful, but you have to enable those because if they're not enabled, they flag false positives. In the Defender portal, it logs a block for WMI processes and PowerShell. Apparently, it's because ASR rules are not configured. So, you generally have to enable them to exclude, for example, WMI queries or PowerShell because they have a habit of blocking your security scanners. It's a bit weird that they have to be enabled to be configured, and it's not the other way around.""It doesn't actually decrease the time to respond. This has been an issue with Microsoft recently. Sometimes, there is a delay when it comes to getting an alert policy email... Sometimes it takes two or three hours for that email to be sent.""The technical support team has room for improvement.""Currently, reporting is not very straightforward and it needs to be enhanced. Specific reports are not included and you need to run a query, drill down, and then export it and share it. I would love to have reports with more fine-tuning or granularity, and more predefined reports.""Microsoft Defender for Cloud Apps’s technical support services needs improvement.""Defender for Cloud apps is primarily useful for Azure apps. It has limited capabilities for applications based on other cloud platforms."

More Microsoft Defender for Cloud Apps Cons →

Pricing and Cost Advice
  • "The pricing is fair; it's comparable to our previous solution, and we carried out multiple POCs and POVs (proof of value). The product is worth the money we pay for it."
  • "Lookout is definitely on the lower end when it comes to price point and that seems to be the only differentiator. The technology is in place in this space and it's really about who is coming in at the better price point now."
  • "In terms of feature performance versus cost, they're a good value."
  • "The licensing costs are good. Prisma has much more options and support for security, but it has a higher cost. For example, Lookout costs 2/3rd of Prisma's licensing price."

    • More Lookout Pricing and Cost Advice →

  • "​The pricing is fair."
  • "You can request an evaluation license​."
  • "It needs a better price point."
  • "The product is pricey compared to Cisco Firepower."
  • "The price could be lower."
  • "There is a one-time cost of approximately $800 USD per user, and then a yearly support fee of about $50 per user."
  • "Our costs were negotiated, and they are okay."
  • "Our licensing fees are on a yearly basis."

    • More Cisco Umbrella Pricing and Cost Advice →

  • "We have an educational licensing agreement. It's a customer agreement for multiple years."
  • "This product is not expensive."
  • "Our clients normally use the Microsoft E1 licensing, which is renewed yearly."
  • "The pricing is a little bit high but right now, we are okay with it because of the compatibility with Office 365, Teams, and Azure AD."
  • "I'm not totally involved in the pricing part, but I think its pricing is quite aggressive, and its price is quite similar to Netskope. Netskope has separate licensing fees or additional charges if you want to monitor certain SaaS services, whereas, with MCAS, you get 5,000 applications with their Office 365. It is all bundled, and there's no cost for using that. You only have the operational costs. In the country I am in, it is a bit difficult to get people with the required skill sets."
  • "Its pricing is on the higher side. Its price is definitely very high for a small-scale company. As an enterprise client, we do get benefits from Microsoft. We get a discounted price because of the number of users we have in our company. We have a premier package, and with that, we do get a lot of discounts. There are no additional costs. It only comes in the top-tier packages. Generally, the top-tier license is the best license that you can get for your organization. If you want, you can buy it separately, but that's not a good idea."
  • "The price could be better and should be reconsidered."
  • "It is a little bit expensive. When you want to have the complete package with Office 365, Defender, and everything else, it is expensive."

    • More Microsoft Defender for Cloud Apps Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.
    See Recommendations
    771,157 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Lookout?
    Top Answer:The solution is stable.
    Read all 4 answers   →
    What is your experience regarding pricing and costs for Lookout?
    Top Answer:The licensing costs are good. Prisma has much more options and support for security, but it has a higher cost. For… more »
    Read all 4 answers   →
    What needs improvement with Lookout?
    Top Answer:The solution could improve identity integration as well. Zero trust, it's a good start as a zero-trust solution… more »
    Read all 4 answers   →
    Which is the better security solution - Cisco Umbrella or Zscaler?
    Top Answer: Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried.… more »
    Read all 3 answers   →
    Which is the better security solution - Cisco Umbrella or Microsoft Cloud...
    Top Answer:Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-native… more »
    What do you like most about Cisco Umbrella?
    Top Answer:Cisco Umbrella is easy to monitor, manage, and deploy.
    Read all 58 answers   →
    What do you like most about Microsoft Cloud App Security?
    Top Answer:It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notifications… more »
    Read all 25 answers   →
    What is your experience regarding pricing and costs for Microsoft Cloud A...
    Top Answer:Where we are right now, this is an acceptable pricing. I would like to see more transparency given to the end user. The… more »
    Read all 24 answers   →
    What needs improvement with Microsoft Cloud App Security?
    Top Answer:I would like more customization of notifications. Currently, you either get everything or you get limited information. I… more »
    Read all 25 answers   →
    Comparisons
    Also Known As
    CipherCloud
    OpenDNS
    MS Cloud App Security, Microsoft Cloud App Security
    Learn More
    Lookout
    Cisco
    Microsoft
    Overview

    Lookout is a well-established and powerful secure web gateway (SWG) solution that protects more than 200 million users from threats that can result from the penetration of unsecured web traffic into their networks. Lookout is designed to enable organizations to work remotely while maintaining a tight blanket of security over their confidential business data. It provides administrators with security that extends from their endpoints to the cloud service that they are using to run their organization’s network. 

    Users of Lookout are able to proactively detect threats and keep themselves secure from a field of threats that constantly evolves. IT teams can protect their organizations without having to rely on any other security solutions. This singular solution can run on multiple kinds of mobile devices. The privacy of individuals is preserved while keeping compliance rules intact. Additionally, users gain access to a number of tools that enable them to prevent security breaches from taking place.

    Lookout Benefits

    Some of the ways that organizations can benefit by deploying Lookout include:

    • Ease of deployment. Lookout is a solution whose design makes it easy for users to deploy it. It provides users with simple, step-by-step instructions that remove the need for organizations to devote extensive amounts of time to make sure that it is properly set up. Anyone can quickly set up the solution without undergoing technical training. 
    • Built-in support. Users of the Lookout application have access to built-in demos that can teach them how to use various solution features. Instead of spending time trying to figure out the application, users can watch the demo that is most relevant to them and see for themselves how that particular feature is used.
    • Easy-to-use user interface. Lookout’s user interface is laid out in an intuitive way that makes it easy for administrators to navigate. This interface is present in both the mobile and desktop versions of this solution. 
    • Settings customization. Lookout has a built-in settings customization menu. This makes it possible for administrators to easily customize their settings so that they best conform to their needs. 

    Lookout Features

    • Activity monitoring and activity tracking. Lookout’s activity monitoring and activity tracking capabilities enable users to keep a close eye on the activities that are taking place in their networks. IT teams and administrators have the ability to watch their networks for any unusual activity. These features ensure that organizations can keep ahead of any potential threats. They provide the kinds of insights and warnings that make the jobs of those IT teams and administrators much easier and more streamlined. 
    • Encryption. Organizations that employ Lookout can encrypt their networks and keep crucial business data from being read by unauthorized parties. This feature keeps the secrets organizations are trying to keep out of the wrong hands.
    • Anti-virus tools. Lookout provides users with tools to block threats from harming their networks. These tools can successfully block 99.6 percent of threats without raising false alarms. 

    Cisco Umbrella offers flexible, cloud-delivered security according to users’ requirements Cisco Umbrella includes secure web gateway, firewall, and cloud access security broker (CASB) functionality all delivered from a single cloud security service. Cisco Umbrella’s protection is extended to devices, remote users, and distributed locations anywhere. As company employees work from many locations and devices, Cisco Umbrella is the easiest way to effectively protect users everywhere in minutes.

    Cisco Umbrella uses machine learning to search for, identify, and even predict malicious domains. By learning from internet activity patterns, this DNS-layer security solution can automatically identify attacker infrastructure being staged for the next threat. These domains are then proactively blocked, protecting networks from potential compromise. Cisco Umbrella analyzes terabytes of data in real time across all markets, geographies, and protocols.

    Cisco Umbrella works with leading IT companies to integrate its security enforcement and intelligence. Built with a bidirectional API, Cisco Umbrella makes it easy to extend protection from on-premises security appliances to cloud controlled devices and sites.

    Cisco Umbrella is suitable for small businesses without dedicated security professionals, as well as for multinational enterprises with complex environments.

    Why use Cisco Umbrella?

    • Simplify security management: Cisco Umbrella is the fastest and easiest way to protect all users within minutes and reduces the number of infections and alerts sent from other security products by stopping threats at the earliest point. With no hardware to install and no software to manually update, ongoing management is simple

    • Reliable reporting: Cisco Umbrella reports show activity for each device or network in the system. Users gain a more complete picture of the security risks facing their organization and can take action to remedy them.

    • Manage and control cloud apps: Umbrella provides visibility into sanctioned and unsanctioned cloud services in use across the enterprise. Users can uncover new services being used, see who is using them, identify potential risk, and block specific applications easily.

    Reviews from Real Users

    Cisco Umbrella stands out among its competitors for a number of reasons. Some of the major ones are its DNS-based protection, ability to protect users no matter where they are located, stability, and high performance.

    Daniel B., a network specialist at Syswind Kft, writes, “We primarily use the solution as cloud security for our branches. It protects us from direct internet outbreaks. It makes for good flexibility. The solution is very easy to manage. We found the initial setup, for example, to be quite simple. Efficient protection on the DNS level and even higher. The sandboxing feature analyses and handles the complicated security risks.”

    Victor M., SOC & Security Services Director at BEST, notes, “It provides security for the remote workers and it helps to improve enterprise security in a very easy way. We mainly enjoy web software protection capabilities. It prevents the end-users from getting into bad sites or sites that potentially could have malware or could be phishing. It helps end-users avoid the wrong sites. The solution works very smoothly. The user interface is good.”

    OpenDNS is a part of Cisco providing a suite of consumer products aimed at making the internet faster, safer, and more reliable.

    Microsoft Defender for Cloud Apps is a comprehensive security solution that provides protection for cloud-based applications and services. It offers real-time threat detection and response, as well as advanced analytics and reporting capabilities. With Defender for Cloud Apps, organizations can ensure the security of their cloud environments and safeguard against cyber threats. Whether you're running SaaS applications, IaaS workloads, or PaaS services, Microsoft Defender for Cloud Apps can help you secure your cloud environment and protect your business from cyber threats.

    Microsoft Defender for Cloud Apps Benefits:
    • Provides comprehensive security for cloud applications
    • Integrates with other Microsoft security tools
    • Easy to use and deploy
    • Provides real-time threat detection and response
    • Strong protection against phishing attacks and other common threats
    • Highly customizable to meet specific needs of different organizations
    Microsoft Defender for Cloud Apps Use Cases:
    • Governance, authentication, security, and compliance. 
    • Detects shadow IT and anomalous user behavior
    • Controls access to applications
    • Provides auditing and filtering setups
    • Used for end-user compute devices, file monitoring, user investigation, and activity
    • Used for data governance, threat detection, and getting visibility over cloud applications
    • Used to identify information about applications beyond organizational boundaries
    • Prevent exfiltration and data filtration of corporate data
    • Used to deal with spam emails and detect shadow IT

    Reviews from Real Users

    Ram-Krish, Cloud Security & Governance at a financial services firm, says that Microsoft Defender for Cloud Apps "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need".

    PeerSpot user, Senior Cloud & Security Consultant at a tech services, writes that Microsoft Defender for Cloud Apps "Great for monitoring user activity and protecting data while integrating well with other applications".

    Simon Burgess,Infrastructure Engineer at SBITSC, states that Microsoft Defender for Cloud Apps is "A fluid, intelligent product for great visibility, centralized management, and increased uptime".

    Sample Customers
    Chart Industries, City of Aspen, Eastern Mountain Sports, FLEXcon, George Washington University, Jackson Municipal Airport Authority, Ohio Public Library Information Network, PTC, Richland Community College, Smart Motors, Tulane University, VeriClaim
    Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company19%
    Financial Services Firm10%
    Manufacturing Company10%
    Government6%
    REVIEWERS
    Financial Services Firm14%
    Comms Service Provider11%
    Computer Software Company9%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Educational Organization17%
    Financial Services Firm8%
    Manufacturing Company7%
    REVIEWERS
    Educational Organization27%
    Financial Services Firm18%
    Government9%
    Energy/Utilities Company9%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm11%
    Manufacturing Company8%
    Government7%
    Company Size
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise16%
    Large Enterprise61%
    REVIEWERS
    Small Business38%
    Midsize Enterprise23%
    Large Enterprise39%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise27%
    Large Enterprise54%
    REVIEWERS
    Small Business27%
    Midsize Enterprise27%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise14%
    Large Enterprise65%
    Buyer's Guide
    Cisco Umbrella vs. Microsoft Defender for Cloud Apps
    March 2024
    Free Report: Cisco Umbrella vs. Microsoft Defender for Cloud Apps
    Find out what your peers are saying about Cisco Umbrella vs. Microsoft Defender for Cloud Apps and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    771,157 professionals have used our research since 2012.

    Cisco Umbrella is ranked 1st in Cloud Access Security Brokers (CASB) with 108 reviews while Microsoft Defender for Cloud Apps is ranked 2nd in Cloud Access Security Brokers (CASB) with 30 reviews. Cisco Umbrella is rated 8.8, while Microsoft Defender for Cloud Apps is rated 8.4. The top reviewer of Cisco Umbrella writes "Protects endpoints wherever they are, always pushing people to the right locations to avoid malicious intent". On the other hand, the top reviewer of Microsoft Defender for Cloud Apps writes "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need". Cisco Umbrella is most compared with Zscaler Internet Access, Prisma Access by Palo Alto Networks, Palo Alto Networks DNS Security, Fortinet FortiGate SWG and Infoblox Advanced DNS Protection, whereas Microsoft Defender for Cloud Apps is most compared with Zscaler Internet Access, Netskope , Prisma Access by Palo Alto Networks, Qualys VMDR and Microsoft Defender for Identity. See our Cisco Umbrella vs. Microsoft Defender for Cloud Apps report.

    See our list of best Cloud Access Security Brokers (CASB) vendors.

    We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.