We performed a comparison between Microsoft Defender for Office 365 and NetWitness Platform based on real PeerSpot user reviews.
Find out in this report how the two Email Security solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Threat Explorer is an invaluable tool for me, and it plays a crucial role in helping me discern the origins of various email campaigns, pinpointing where they emanate from, and identifying the individuals within our organization who are affected."
"The good part is that you don't have to configure it, which is very convenient."
"Defender for 365 is a comprehensive cloud-based solution. The value of the cloud is that you aren't alone. Threat intelligence and analytics are shared in the cloud. We don't have to find the solution alone. If you face an unknown threat with traditional solutions like Trend Micro and Symantec, you need to open a case and send your information to them to analyze forensically and identify the source of the attack."
"The basic features are okay and I'm satisfied with the Defender."
"Microsoft Defender for Office 365's most valuable feature is its performance."
"The most valuable feature is protection against malicious links, fishing, and impersonation. You can train people to be aware of these threats, but they're not always careful. When they're using their phones between meetings, they click on a link, and it's game over."
"Since we have started using the solution, there have been fewer compromises."
"It also gives me good visibility because, with Defender, I'm using a Microsoft product to defend Microsoft products. The integration was really seamless and I have wide visibility because it picks up almost everything. Literally, I can see almost every activity that happens, from the e-mail to the workstation itself."
"Their technical support responds quickly and are knowledgable."
"NetWitness can be highly beneficial for incident detection and response."
"The most valuable features are its ingestion of logs and raising of alerts based on those logs."
"What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder."
"The most valuable feature is the security that it provides."
"The most valuable features are the packet inspection and the automated incident response."
"The most valuable feature is the correlation. It can report in real-time and monitor the management."
"The product's initial setup phase was not at all difficult."
"The XDR dashboard has room for improvement."
"Microsoft Defender for Office 365 should be more proactive."
"Configuration requires going to a lot of places rather than just accessing one tab."
"We need to be able to whitelist data at the backend."
"The GUI is sometimes slow to fetch the device report and could be improved."
"We need a separate license and we don't know how to get the license that is required."
"The UI needs to be more user-friendly."
"Microsoft should provide more documentation for users so they can self-educate. I would like to see more documentation for advanced security features."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"The log system is a bit complex and has room for improvement."
"Technical support could be improved."
"The multi-tenant capabilities are lagging compared to IBM QRadar."
"The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too."
"It is not so easy to customize this product."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"The solution should have more integration capabilities with different platforms."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
Microsoft Defender for Office 365 is ranked 1st in Email Security with 41 reviews while NetWitness Platform is ranked 18th in Log Management with 36 reviews. Microsoft Defender for Office 365 is rated 8.4, while NetWitness Platform is rated 7.4. The top reviewer of Microsoft Defender for Office 365 writes "Allows for easy reporting of problems, valuable anti-phishing, and anti-malware support". On the other hand, the top reviewer of NetWitness Platform writes "Can find out if there is lateral movement, but integration and workflow need improvement". Microsoft Defender for Office 365 is most compared with Proofpoint Email Protection, Mimecast Email Security, Microsoft Exchange Online Protection (EOP), Cisco Secure Email and Barracuda Email Security Gateway, whereas NetWitness Platform is most compared with Splunk Enterprise Security, RSA enVision, IBM Security QRadar, Cisco Secure Network Analytics and Microsoft Sentinel. See our Microsoft Defender for Office 365 vs. NetWitness Platform report.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.