We performed a comparison between CrowdStrike Falcon Cloud Security and Microsoft Defender for Cloud based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: CrowdStrike Falcon Cloud Security was lauded for its strong adherence to security best practices. It particularly excels in endpoint protection and its ability to leverage machine learning and AI. Microsoft Defender for Cloud stands out for its automation, threat analysis, and security coverage. CrowdStrike Falcon Cloud Security could improve its Kubernetes and GCP support. Microsoft Defender for Cloud could be better integrated with non-Microsoft solutions.
Service and Support: CrowdStrike Falcon Cloud Security users are generally content with the support team's assistance and promptness. Microsoft Defender users generally found the support team responsive and knowledgeable, but others said outsourced support lacked technical expertise and reported longer response times in certain regions.
Ease of Deployment: The setup for CrowdStrike Falcon Cloud Security was deemed easy, but some users struggled with the Kubernetes implementation. Setting up Microsoft Defender for Cloud is straightforward. The solution requires minimal maintenance and seamlessly integrates with other Microsoft services.
Pricing: Users consider the pricing of CrowdStrike Falcon Cloud Security to be fair, but it may be pricier than on-premises alternatives. Microsoft Defender for Cloud is seen as a good deal by some users, who consider it to be cost-effective, especially when bundled with other Microsoft products.
ROI: Users have provided limited feedback about the return on investment for CrowdStrike Falcon Cloud Security. Microsoft Defender for Cloud has demonstrated a potentially high ROI by automating tasks and improving security posture.
"PingSafe's most valuable feature is its unified console."
"PingSafe offers security solutions for both Kubernetes and CI/CD pipelines."
"The remediation process is good."
"PingSafe offers three key features: vulnerability management notifications, cloud configuration assistance, and security scanning."
"It's positively affected the communication between cloud security, application developers, and AppSec teams."
"We use the infrastructure as code scanning, which is good."
"PingSafe offers comprehensive security posture management."
"There's real-time threat detection. It can show threats and find issues based on their severity and helps us with real-time monitoring."
"The immediate mitigation of potential threats and instant alerts are valuable."
"The most valuable feature of Falcon Cloud Security is its comprehensive threat-hunting ability."
"It is fully cloud-based, so we don't need to invest in third-party agents repeatedly."
"The most significant benefit is how quickly malware and other malicious attacks are detected."
"Cloud security posture management (CSPM) is most valuable."
"There is a lot that it can do, but endpoint protection is the main thing about it. The fact that it uses machine learning and artificial intelligence to monitor and remediate the issues in real-time is probably the bread and butter of the product."
"The most valuable feature of CrowdStrike Falcon Cloud Security is its lightweight sensor, taking minimal space and not impacting server performance."
"The initial setup is easy ."
"With respect to improving our security posture, it helps us to understand where we are in terms of compliance. We can easily know when we are below the standard because of the scores it calculates."
"The solution is very easy to deploy."
"Defender is user-friendly and provides decent visibility into threats."
"It takes very little effort to integrate it. It also gives very good visibility into what exactly is happening."
"The main feature is the security posture assessment through the security score. I find that to be very helpful because it gives us guidance on what needs to be secured and recommendations on how to secure the workloads that have been onboarded."
"The entire Defender Suite is tightly coupled, integrated, and collaborative."
"Threat protection is comprehensive and simple."
"The most valuable features are ransomware protection and access controls. The solution has helped us secure some folders on our systems from unauthorized modifications."
"It does not bring much threat intel from the outside world. All it does is scan. If it can also correlate things, it will be better."
"We are getting reports only in a predefined form. I would like to have customized reports so that I can see how many issues are open or closed today or in two weeks."
"There's an array of upcoming versions with numerous features to be incorporated into the roadmap. Customers particularly appreciate the service's emphasis on intensive security, especially the secret scanning aspect. During the proof of concept (POC) phase, the system is required to gather logs from the customer's environment. This process entails obtaining specific permissions, especially in terms of gateway access. While most permissions for POC are manageable, the need for various permissions may need improvement, especially in the context of security."
"When you find a vulnerability and resolve it, the same issue will not occur again. I want PingSafe to block the same vulnerability from appearing again. I want something like a playbook where the steps that we take to resolve an issue are repeated when that issue happens again."
"Bugs need to be disclosed quickly."
"When we get a new finding from PingSafe, I wish we could get an alert in the console, so we can work on it before we see it in the report. It would be very useful for the team that is actively working on the PingSafe platform, so we can close the issue the same day before it appears in the daily report."
"A beneficial improvement for PingSafe would be integration with Jira, allowing for a more streamlined ticketing system."
"Customized queries should be made easier to improve PingSafe."
"The log scale or Humio side of it where it collects the data and expands into the XDR world still needs time to develop in terms of the way it combines the data and metadata that flows into the platform. I know they're working on it."
"The threat intelligence and user behavioral analysis could be more comprehensive."
"The only suggestion for improvement would be the pricing."
"It would be more convenient if there was an easier way to install CrowdStrike, perhaps through better integration with Active Directory."
"CrowdStrike Falcon Cloud Security is expensive."
"The CrowdStrike dashboard currently lacks a username field."
"There should be cloud storage scanning. We would like to have cloud storage vulnerability and threat management on any cloud storage."
"One area for improvement in Falcon Cloud Security is the support portal."
"Customizing some of the compliance requirements based on individual needs seems like the biggest area of improvement. There should be an option to turn specific controls on and off based on how your solution is configured."
"If a customer is already using Okta as an SSO in its entire environment, they will want to continue with it. But Security Center doesn't understand that and keeps making recommendations. It would help if it let us resolve a recommendation, even if it is not implemented."
"Azure's system could be more on point like AWS support. For example, if I have an issue with AWS, I create a support ticket, then I get a call or a message. With Azure support, you raise a ticket, and somebody calls back depending on their availability and the priority, which might not align with your business priority."
"As an analyst, there is no way to configure or create a playbook to automate the process of flagging suspicious domains."
"Microsoft Defender could be more centralized. For example, I still need to go to another console to do policy management."
"The documentation and implementation guides could be improved."
"One of the main challenges that we have been facing with Azure Security Center is the cost. The costs are really a complex calculation, e.g., to calculate the monthly costs. Azure is calculating on an hourly basis for use of the resource. Because of this, we found it really complex to promote what will be our costs for the next couple of months. I think if Azure could reduce the complex calculation and come up with straightforward cost mapping that would be very useful from a product point of view."
"It needs to be simplified and made more user-friendly for a non-technical person."
More SentinelOne Singularity Cloud Security Pricing and Cost Advice →
More CrowdStrike Falcon Cloud Security Pricing and Cost Advice →
CrowdStrike Falcon Cloud Security is ranked 8th in Cloud Workload Protection Platforms (CWPP) with 13 reviews while Microsoft Defender for Cloud is ranked 3rd in Cloud Workload Protection Platforms (CWPP) with 46 reviews. CrowdStrike Falcon Cloud Security is rated 8.8, while Microsoft Defender for Cloud is rated 8.0. The top reviewer of CrowdStrike Falcon Cloud Security writes "Enhances the overall safety of our company's environment from cyber threats". On the other hand, the top reviewer of Microsoft Defender for Cloud writes "Provides multi-cloud capability, is plug-and-play, and improves our security posture". CrowdStrike Falcon Cloud Security is most compared with Prisma Cloud by Palo Alto Networks, AWS GuardDuty, Wiz, Qualys VMDR and Sysdig Falco, whereas Microsoft Defender for Cloud is most compared with AWS GuardDuty, Prisma Cloud by Palo Alto Networks, Microsoft Defender XDR, Wiz and Microsoft Defender for Endpoint. See our CrowdStrike Falcon Cloud Security vs. Microsoft Defender for Cloud report.
See our list of best Cloud Workload Protection Platforms (CWPP) vendors, best Container Security vendors, and best Cloud Security Posture Management (CSPM) vendors.
We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.