We performed a comparison between Cloudflare and Microsoft Defender for Cloud based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Microsoft Defender for Cloud focuses on regulatory compliance, ransomware protection, access controls, incident alerts, collaborative services, UEBA features, and a single pane of glass view. On the other hand, Cloudflare provides good load balancing, DDoS protection, a user-friendly GUI, and a proxy for hiding servers. Microsoft Defender for Cloud needs work on consistency, customization, integration, collaboration, and resource coverage. Cloudflare could use improvements in reporting, support response time, traffic routing, and on-premise solutions.
Service and Support: Microsoft Defender for Cloud's customer service has received a combination of positive and negative feedback, with some customers reporting satisfactory experiences, while others have encountered difficulties with outsourced support and slow response times. On the other hand, Cloudflare's support is generally considered good, although some users have suggested that it could be enhanced, particularly for those who are new to the service.
Ease of Deployment: Microsoft Defender for Cloud's setup requires prior knowledge and policy creation while Cloudflare's setup is easy and comes with configuration instructions. Deploying Cloudflare may take a few days if many pieces of equipment are needed.
Pricing: Microsoft Defender for Cloud is seen as a fair and cost-effective option, despite complex licensing. In contrast, Cloudflare is generally considered expensive, although some users don't pay for licensing. Both solutions are viewed as cost-effective, but Cloudflare may benefit from a customized pricing model for enterprise customers.
ROI: Microsoft Defender for Cloud provides basic security features and facilitates the management of security service providers, while Cloudflare specializes in website protection and server overload prevention.
Comparison Results: Microsoft Defender for Cloud is the preferred option when compared to Cloudflare. It has a lot more security features, such as regulatory compliance, access controls, and ransomware protection. Despite Cloudflare's decent load balancing and DDoS protection, it falls short in terms of regulatory compliance and ransomware protection.
"Cloudflare is a security SaaS provider that provides security and protects us from any application layer attack."
"The most valuable feature is the web application firewall."
"Generally, I am satisfied with this product."
"The solution offers the flexibility to control configuration rules."
"Easier http to https redirect using page rules"
"I like Cloudflare's application gateway and DDoS protection."
"The technical support is good."
"The most valuable feature of Cloudflare is that it has a free version. They give us the free version with the anti-DDoS features and also the load balancing solution."
"Technical support is helpful."
"The product has given us more insight into potential avenues for attack paths."
"Defender for Cloud is a plug-and-play solution that provides continuous posture management once enabled."
"It helps you to identify the gaps in your solution and remediate them. It produces a compliance checklist against known standards such as ISO 27001, HIPAA, iTrust, etc."
"The vulnerability reporting is helpful. When we initially deployed Defender, it reported many more threats than we currently see. It gave us insight into areas we had not previously considered, so we knew where we needed to act."
"It's quite a good product. It helps to understand the infections and issues you are facing."
"The most valuable feature is that it's intuitive. It's very intuitive."
"The technical support is very good."
"I think the APIs are a little bit hard for us to work with. The APIs could be more open so that we could integrate better with our SolarWinds or our monitoring solution."
"Sometimes their more advanced caching tools can cause higher first-byte times and problems with JavaScript."
"The solution could use more analytics on the backend to give us more insights into everything. More reports would be helpful."
"It should have easier documentation for the configuration. It's very technical and people who aren't technical should also be able to do the configuration."
"It should be easier to collect the logs with companies like Sumo. However, based on my discussions with the salespeople, I understand that's how they make their money. With the enterprise product, they want people doing those kinds of enterprise features to do the logging. They want them to pay a lot of money, and that's where I have an issue with them. That should be a default. You should be able to get the log no matter what. The logging should be universal."
"It would be good if Cloudflare could have more servers for better traffic routing or an increase in the traffic routed. This is what I'd like to improve in Cloudflare."
"The product support needs to be accessible from more places, a wider area of coverage."
"The pricing could be improved."
"The product must improve its UI."
"Azure is a complex solution. You have so many moving parts."
"From my own perspective, they just need a product that is tailored to micro-segmentation so I can configure rules for multiple systems at once and manage it."
"If a customer is already using Okta as an SSO in its entire environment, they will want to continue with it. But Security Center doesn't understand that and keeps making recommendations. It would help if it let us resolve a recommendation, even if it is not implemented."
"No possibility to write or edit any capability."
"We would like to have better transparency as to how the security score is calculated because as it is now, it is difficult to understand."
"The overview provides you with good information, but if you want more details, there is a lot more customization to do, which requires knowledge of the other supporting solutions."
"For Kubernetes, I was using Azure Kubernetes Service (AKS). To see that whatever is getting deployed into AKS goes through the correct checks and balances in terms of affinities and other similar aspects and follows all the policies, we had to use a product called Stackrox. At a granular level, the built-in policies were good for Kubernetes, but to protect our containers from a coding point of view, we had to use a few other products. For example, from a programming point of view, we were using Checkmarx for static code analysis. For CIS compliance, there are no CIS benchmarks for AKS. So, we had to use other plugins to see that the CIS benchmarks are compliant. There are CIS benchmarks for Kubernetes on AWS and GCP, but there are no CIS benchmarks for AKS. So, Azure Security Center fell short from the regulatory compliance point of view, and we had to use one more product. We ended up with two different dashboards. We had Azure Security Center, and we had Stackrox that had its own dashboard. The operations team and the security team had to look at two dashboards, and they couldn't get an integrated piece. That's a drawback of Azure Security Center. Azure Security Center should provide APIs so that we can integrate its dashboard within other enterprise dashboards, such as the PowerBI dashboard. We couldn't get through these aspects, and we ended up giving Reader security permission to too many people, which was okay to some extent, but when we had to administer the users for the Stackrox portal and Azure Security Center, it became painful."
Cloudflare is ranked 11th in Cloud Security Posture Management (CSPM) with 57 reviews while Microsoft Defender for Cloud is ranked 3rd in Cloud Security Posture Management (CSPM) with 46 reviews. Cloudflare is rated 8.4, while Microsoft Defender for Cloud is rated 8.0. The top reviewer of Cloudflare writes "It's easy to set up because you point the DNS to it, and it's working in under 15 minutes". On the other hand, the top reviewer of Microsoft Defender for Cloud writes "Provides multi-cloud capability, is plug-and-play, and improves our security posture". Cloudflare is most compared with Akamai, Azure Front Door, Imperva DDoS, AWS Shield and Microsoft Azure Application Gateway, whereas Microsoft Defender for Cloud is most compared with AWS GuardDuty, Prisma Cloud by Palo Alto Networks, Microsoft Defender XDR, Wiz and Microsoft Defender for Endpoint. See our Cloudflare vs. Microsoft Defender for Cloud report.
See our list of best Cloud Security Posture Management (CSPM) vendors.
We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.