• Home
  • Cisco Umbrella vs. Microsoft Defender for Cloud Apps

Cisco Umbrella vs Microsoft Defender for Cloud Apps comparison

Cancel
You must select at least 2 products to compare!
Lookout Logo

Lookout

Read 5 Lookout reviews
575 views|450 comparisons
71% willing to recommend
Cisco Logo

Cisco Umbrella

Read 108 Cisco Umbrella reviews
10,399 views|7,114 comparisons
97% willing to recommend
Microsoft Logo

Microsoft Defender for Cloud Apps

Read 30 Microsoft Defender for Cloud Apps reviews
9,918 views|7,615 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Cisco Umbrella vs. Microsoft Defender for Cloud Apps
March 2024
Executive Summary
Updated on Jun 26, 2023

We compared Cisco Umbrella and Microsoft Defender for Cloud Apps based on our users’ reviews in five categories. After reading the collected data, you can find our conclusion below.

  • Ease of Deployment: The deployment time for Microsoft Defender is uncertain, and it requires more effort to fine-tune policies. On the other hand, Cisco Umbrella is typically simple and easy to deploy with available implementation resources and user-friendly maintenance.
  • Features: Microsoft Defender provides threat detection, a defender for Identity, posture management, and integration with other Microsoft technologies. Cisco Umbrella offers secure DNS services, content filtering, and granular customization of DNS blocking.

  • What needs improvement: Microsoft Defender needs to work on scanning and policy application delays, detecting security threats, integration with third-party solutions, reporting capabilities, and automation features. On the other hand, Cisco Umbrella needs better integration, compatibility with endpoint response solutions, policy management, regionalized support, and reporting features.

  • Pricing: Some reviewers find Microsoft Defender to have reasonable pricing and appreciate that it is bundled with certain Microsoft licenses. In contrast, Cisco Umbrella's pricing model is often seen as expensive and not consistent, with the licensing fee being paid annually and vary based on the customer's needs. Users did mention that the pricing is open to negotiation. Additionally, Microsoft partners can receive discounted pricing.

  • ROI: Microsoft Defender can result in cost savings and greater availability, whereas Cisco Umbrella can enhance productivity and reduce risks.
  • Service and Support: Microsoft Defender offers different tiers with Premier support receiving high praise. However, their Pro support can be inconsistent. Meanwhile, Cisco Umbrella's technical support receives mixed reviews, with some stating it's great while others struggle with getting in touch.

Comparison Results: Microsoft Defender is a better option than Cisco Umbrella according to user reviews. It is highly regarded for its seamless integration with other Microsoft technologies, ease of use, and affordability for smaller businesses. Cisco Umbrella, on the other hand, is praised for its mature solution but is seen as expensive, which creates challenges for smaller corporations. Overall, Microsoft Defender is a better choice for businesses prioritizing integration with Microsoft technologies and cost-effectiveness.

To learn more, read our detailed Cisco Umbrella vs. Microsoft Defender for Cloud Apps Report (Updated: March 2024).
Download the complete report
767,667 professionals have used our research since 2012.
Featured Review
Anonymous User
User-focused design makes it easy to understand, and operations running in background provide peace of mind
All the operations that it handles happen in the background. It's not something that I have to continually use every single day. It offers a... Read more →
Brian Long
Helps enable us to effectively detect and remediate threats, free up IT staff time, and improve cybersecurity...
Cisco Umbrella is transparent to my users; they are unaware of its presence. The documentation they use is solely for the IT staff. It is... Read more →
Edward-Walton
It helps us control which applications are used and gain more security insight into remote and hybrid users based on...
Defender helps us control which applications are being used and gain more security insight into remote and hybrid users based on user identity and... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The protection offered by the product is the most valuable feature. It detects vulnerabilities or traps on our users' phones and then prompts them to clean up their devices. Tools we used previously would only discover, which required us to gather information on the backend, so Lookout is a welcome upgrade.""On the outside, the main differentiation is because Lookout ingest. They have ingested basically all of the apps for the last ten years and all the versions of all the apps, and we have that in a corporate database that allows us to do very large-scale machine learning and analysis on that data set. That's not something that any of the competitors really have the capability to do because they don't have access to the data set. A lot of the apps you can no longer get them because that version of the app is five or six years old, and it just doesn't exist anywhere anymore, except within our infrastructure. So, the ability to have that very rich dataset and learn from that dataset is a real differentiator.""The most valuable features are the antivirus as a whole, the anti-malware, and all of the protection features that scan our enterprise devices.""The solution is stable."

More Lookout Pros →

"The documentation is good, and we have been able to resolve any issues ourselves.""I think recently with many people working from home, Cisco Umbrella has been very useful. For example, we can manage the device and the network when the employee is not working on the local host. Cisco Umbrella is very valuable for this kind of infrastructure.""One of the most important features is the security posture check which Umbrella offers when a user accesses any website. That is one of the most unique features that it offers.""The security and access control features.""Some clients only want DNS security, while others want more of the advanced features that it has available.""We can have a full overview and a quick overview of all the DNS requests. For us, it's quite important.""It has certainly saved us time. If we go and look at what's rejected on the requests from the hospital itself, it has saved about 5% or 6% time.""The insight into what our users are doing via Cisco Umbrella is valuable. Knowing that we're protecting our users as they leave our network is also valuable now because we've got more hybrid working."

More Cisco Umbrella Pros →

"It's very easy to install and it includes the Intune portal from Microsoft where I can control all the devices from one place.""One of the most valuable features is auditing. Some of the other protection services have issues with auditing. Microsoft Defender for Cloud has an excellent auditing technique that helps us avoid the risk of filtering or information loss. You can use different tools to guarantee these things. It allows you to conduct an in-depth exploration of applications, users, and files that are harmful or suspicious. You can also enhance your security setup by creating personalized rules or policies that help you better control traffic in the cloud.""It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notifications are pretty good.""I like the web GUI/the management interface. I also like the security of Microsoft. As compared to other manufacturers, it's less complex and easy to understand and work with.""The product’s most valuable feature is SQL database.""The product helps us with privileged identity management to control who has access to what and for how long.""Everything from Microsoft is integrated. You receive regular reports on them all. You can push your reports, logs, and security alerts, which are all integrated. It is crucial that these solutions work natively together to deliver coordinated detection and response across our environment.""There are a lot of features with benefits, including discovery, investigation, and putting controls around things. You can't say that you like the investigation part but not the discovery. Everything is correlated; that's how the tool works."

More Microsoft Defender for Cloud Apps Pros →

Cons
"Lookout was moving into the SSE space. And so their work on SecureWeb Gateway and SD-WAN is still sort of evolving.""We just submitted an enhancement request reflecting the main area we want to see improvement in; the APIs. Currently, we're able to build dashboards, but it's somewhat backward because we use our MDM API to create them. Lookout should provide API to customers so we can query our data and use it in our cloud, and this is the only outstanding area for improvement with the product right now.""From the analysis that we've done, they do seem to be maybe a step behind in trying to enter the market with a new solution. But when they do pick up, they do come out with some good products.""The stability depends on the service from where you access it. Because sometimes, the place you are in, you have Gateway. You don't have Gateway. The gateway is overutilized. At the end, you need to go through their gateways. And this is the key point here. You have a tracking point. If it's not well orchestrated, and it scales up as you add more to the existing team, you will suffer"

More Lookout Cons →

"The design of the screens could be improved. Sometimes you're trying to look for information, for what you think is critical that should be on that first screen of the dashboard so that you can quickly take screenshots to have people help out, but you have to hop between screens to find little pieces of evidence.""Looking at the full umbrella suite in the light of SASE, Secure Access Service Edge, they are clearly lacking in the inline CASB.""iOS devices and mobiles are huge in my environment right now, and I cannot run them on Cisco Umbrella 24/7.""It would be better if there was a little bit of flexibility for organizations that don't have SD One in their environment. Because of the complexity of the environment, it's not easy to actually turn on the feature of the secure internet gateway for our users. We have not been able to explore that option yet.""Overall, I'm quite happy with Cisco products, but there could be one place where you can check what's going on. There could be one place where you get all the information about these products so that you don't need to look around. You get the status, information about what lately happened, and if there was anything on the machine in one single place.""I would like them to make some videos, practical videos, the kind with steps that people can use to learn and deploy""I feel that the application needs other characteristics that are available with other applications in the market.""The solution's technical support is not very good."

More Cisco Umbrella Cons →

"Currently, reporting is not very straightforward and it needs to be enhanced. Specific reports are not included and you need to run a query, drill down, and then export it and share it. I would love to have reports with more fine-tuning or granularity, and more predefined reports.""It doesn't actually decrease the time to respond. This has been an issue with Microsoft recently. Sometimes, there is a delay when it comes to getting an alert policy email... Sometimes it takes two or three hours for that email to be sent.""Generally, the pricing can always be improved along with the management system.""There are challenges with detection and there are challenges with false-positive rates.""They need to improve the attack surface reduction (ASR) rules. In the latest version, you can implement ASR rules, which are quite useful, but you have to enable those because if they're not enabled, they flag false positives. In the Defender portal, it logs a block for WMI processes and PowerShell. Apparently, it's because ASR rules are not configured. So, you generally have to enable them to exclude, for example, WMI queries or PowerShell because they have a habit of blocking your security scanners. It's a bit weird that they have to be enabled to be configured, and it's not the other way around.""It takes some time to scan and apply the policies when there is some sensitive information. After it applies the policies, it works, but there is a delay. This is something for which we are working with Microsoft.""I would like for it to be available on Mac and for it to support all of the features of Microsoft financing products. It is really for Windows.""Microsoft Defender for Cloud Apps’s technical support services needs improvement."

More Microsoft Defender for Cloud Apps Cons →

Pricing and Cost Advice
  • "The pricing is fair; it's comparable to our previous solution, and we carried out multiple POCs and POVs (proof of value). The product is worth the money we pay for it."
  • "Lookout is definitely on the lower end when it comes to price point and that seems to be the only differentiator. The technology is in place in this space and it's really about who is coming in at the better price point now."
  • "In terms of feature performance versus cost, they're a good value."
  • "The licensing costs are good. Prisma has much more options and support for security, but it has a higher cost. For example, Lookout costs 2/3rd of Prisma's licensing price."

    • More Lookout Pricing and Cost Advice →

  • "​The pricing is fair."
  • "You can request an evaluation license​."
  • "It needs a better price point."
  • "The product is pricey compared to Cisco Firepower."
  • "The price could be lower."
  • "There is a one-time cost of approximately $800 USD per user, and then a yearly support fee of about $50 per user."
  • "Our costs were negotiated, and they are okay."
  • "Our licensing fees are on a yearly basis."

    • More Cisco Umbrella Pricing and Cost Advice →

  • "We have an educational licensing agreement. It's a customer agreement for multiple years."
  • "This product is not expensive."
  • "Our clients normally use the Microsoft E1 licensing, which is renewed yearly."
  • "The pricing is a little bit high but right now, we are okay with it because of the compatibility with Office 365, Teams, and Azure AD."
  • "I'm not totally involved in the pricing part, but I think its pricing is quite aggressive, and its price is quite similar to Netskope. Netskope has separate licensing fees or additional charges if you want to monitor certain SaaS services, whereas, with MCAS, you get 5,000 applications with their Office 365. It is all bundled, and there's no cost for using that. You only have the operational costs. In the country I am in, it is a bit difficult to get people with the required skill sets."
  • "Its pricing is on the higher side. Its price is definitely very high for a small-scale company. As an enterprise client, we do get benefits from Microsoft. We get a discounted price because of the number of users we have in our company. We have a premier package, and with that, we do get a lot of discounts. There are no additional costs. It only comes in the top-tier packages. Generally, the top-tier license is the best license that you can get for your organization. If you want, you can buy it separately, but that's not a good idea."
  • "The price could be better and should be reconsidered."
  • "It is a little bit expensive. When you want to have the complete package with Office 365, Defender, and everything else, it is expensive."

    • More Microsoft Defender for Cloud Apps Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Cloud Access Security Brokers (CASB) solutions are best for your needs.
    See Recommendations
    767,667 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Lookout?
    Top Answer:The solution is stable.
    Read all 4 answers   →
    What is your experience regarding pricing and costs for Lookout?
    Top Answer:The licensing costs are good. Prisma has much more options and support for security, but it has a higher cost. For… more »
    Read all 4 answers   →
    What needs improvement with Lookout?
    Top Answer:The solution could improve identity integration as well. Zero trust, it's a good start as a zero-trust solution… more »
    Read all 4 answers   →
    Which is the better security solution - Cisco Umbrella or Zscaler?
    Top Answer: Cisco Umbrella and Zscaler Internet Access are two broad-spectrum Internet security solutions that I have tried.… more »
    Read all 3 answers   →
    Which is the better security solution - Cisco Umbrella or Microsoft Cloud...
    Top Answer:Cisco Umbrella is an integral component of the Cisco SASE architecture. It integrates security in a single, cloud-native… more »
    What do you like most about Cisco Umbrella?
    Top Answer:Cisco Umbrella is easy to monitor, manage, and deploy.
    Read all 58 answers   →
    What do you like most about Microsoft Cloud App Security?
    Top Answer:It does a great job of monitoring and maintaining a security baseline. For us, that is a key element. The notifications… more »
    Read all 25 answers   →
    What is your experience regarding pricing and costs for Microsoft Cloud A...
    Top Answer:Where we are right now, this is an acceptable pricing. I would like to see more transparency given to the end user. The… more »
    Read all 24 answers   →
    What needs improvement with Microsoft Cloud App Security?
    Top Answer:I would like more customization of notifications. Currently, you either get everything or you get limited information. I… more »
    Read all 25 answers   →
    Comparisons
    Also Known As
    CipherCloud
    OpenDNS
    MS Cloud App Security, Microsoft Cloud App Security
    Learn More
    Lookout
    Cisco
    Microsoft
    Overview

    Lookout is a well-established and powerful secure web gateway (SWG) solution that protects more than 200 million users from threats that can result from the penetration of unsecured web traffic into their networks. Lookout is designed to enable organizations to work remotely while maintaining a tight blanket of security over their confidential business data. It provides administrators with security that extends from their endpoints to the cloud service that they are using to run their organization’s network. 

    Users of Lookout are able to proactively detect threats and keep themselves secure from a field of threats that constantly evolves. IT teams can protect their organizations without having to rely on any other security solutions. This singular solution can run on multiple kinds of mobile devices. The privacy of individuals is preserved while keeping compliance rules intact. Additionally, users gain access to a number of tools that enable them to prevent security breaches from taking place.

    Lookout Benefits

    Some of the ways that organizations can benefit by deploying Lookout include:

    • Ease of deployment. Lookout is a solution whose design makes it easy for users to deploy it. It provides users with simple, step-by-step instructions that remove the need for organizations to devote extensive amounts of time to make sure that it is properly set up. Anyone can quickly set up the solution without undergoing technical training. 
    • Built-in support. Users of the Lookout application have access to built-in demos that can teach them how to use various solution features. Instead of spending time trying to figure out the application, users can watch the demo that is most relevant to them and see for themselves how that particular feature is used.
    • Easy-to-use user interface. Lookout’s user interface is laid out in an intuitive way that makes it easy for administrators to navigate. This interface is present in both the mobile and desktop versions of this solution. 
    • Settings customization. Lookout has a built-in settings customization menu. This makes it possible for administrators to easily customize their settings so that they best conform to their needs. 

    Lookout Features

    • Activity monitoring and activity tracking. Lookout’s activity monitoring and activity tracking capabilities enable users to keep a close eye on the activities that are taking place in their networks. IT teams and administrators have the ability to watch their networks for any unusual activity. These features ensure that organizations can keep ahead of any potential threats. They provide the kinds of insights and warnings that make the jobs of those IT teams and administrators much easier and more streamlined. 
    • Encryption. Organizations that employ Lookout can encrypt their networks and keep crucial business data from being read by unauthorized parties. This feature keeps the secrets organizations are trying to keep out of the wrong hands.
    • Anti-virus tools. Lookout provides users with tools to block threats from harming their networks. These tools can successfully block 99.6 percent of threats without raising false alarms. 

    Cisco Umbrella offers flexible, cloud-delivered security according to users’ requirements Cisco Umbrella includes secure web gateway, firewall, and cloud access security broker (CASB) functionality all delivered from a single cloud security service. Cisco Umbrella’s protection is extended to devices, remote users, and distributed locations anywhere. As company employees work from many locations and devices, Cisco Umbrella is the easiest way to effectively protect users everywhere in minutes.

    Cisco Umbrella uses machine learning to search for, identify, and even predict malicious domains. By learning from internet activity patterns, this DNS-layer security solution can automatically identify attacker infrastructure being staged for the next threat. These domains are then proactively blocked, protecting networks from potential compromise. Cisco Umbrella analyzes terabytes of data in real time across all markets, geographies, and protocols.

    Cisco Umbrella works with leading IT companies to integrate its security enforcement and intelligence. Built with a bidirectional API, Cisco Umbrella makes it easy to extend protection from on-premises security appliances to cloud controlled devices and sites.

    Cisco Umbrella is suitable for small businesses without dedicated security professionals, as well as for multinational enterprises with complex environments.

    Why use Cisco Umbrella?

    • Simplify security management: Cisco Umbrella is the fastest and easiest way to protect all users within minutes and reduces the number of infections and alerts sent from other security products by stopping threats at the earliest point. With no hardware to install and no software to manually update, ongoing management is simple

    • Reliable reporting: Cisco Umbrella reports show activity for each device or network in the system. Users gain a more complete picture of the security risks facing their organization and can take action to remedy them.

    • Manage and control cloud apps: Umbrella provides visibility into sanctioned and unsanctioned cloud services in use across the enterprise. Users can uncover new services being used, see who is using them, identify potential risk, and block specific applications easily.

    Reviews from Real Users

    Cisco Umbrella stands out among its competitors for a number of reasons. Some of the major ones are its DNS-based protection, ability to protect users no matter where they are located, stability, and high performance.

    Daniel B., a network specialist at Syswind Kft, writes, “We primarily use the solution as cloud security for our branches. It protects us from direct internet outbreaks. It makes for good flexibility. The solution is very easy to manage. We found the initial setup, for example, to be quite simple. Efficient protection on the DNS level and even higher. The sandboxing feature analyses and handles the complicated security risks.”

    Victor M., SOC & Security Services Director at BEST, notes, “It provides security for the remote workers and it helps to improve enterprise security in a very easy way. We mainly enjoy web software protection capabilities. It prevents the end-users from getting into bad sites or sites that potentially could have malware or could be phishing. It helps end-users avoid the wrong sites. The solution works very smoothly. The user interface is good.”

    OpenDNS is a part of Cisco providing a suite of consumer products aimed at making the internet faster, safer, and more reliable.

    Microsoft Defender for Cloud Apps is a comprehensive security solution that provides protection for cloud-based applications and services. It offers real-time threat detection and response, as well as advanced analytics and reporting capabilities. With Defender for Cloud Apps, organizations can ensure the security of their cloud environments and safeguard against cyber threats. Whether you're running SaaS applications, IaaS workloads, or PaaS services, Microsoft Defender for Cloud Apps can help you secure your cloud environment and protect your business from cyber threats.

    Microsoft Defender for Cloud Apps Benefits:
    • Provides comprehensive security for cloud applications
    • Integrates with other Microsoft security tools
    • Easy to use and deploy
    • Provides real-time threat detection and response
    • Strong protection against phishing attacks and other common threats
    • Highly customizable to meet specific needs of different organizations
    Microsoft Defender for Cloud Apps Use Cases:
    • Governance, authentication, security, and compliance. 
    • Detects shadow IT and anomalous user behavior
    • Controls access to applications
    • Provides auditing and filtering setups
    • Used for end-user compute devices, file monitoring, user investigation, and activity
    • Used for data governance, threat detection, and getting visibility over cloud applications
    • Used to identify information about applications beyond organizational boundaries
    • Prevent exfiltration and data filtration of corporate data
    • Used to deal with spam emails and detect shadow IT

    Reviews from Real Users

    Ram-Krish, Cloud Security & Governance at a financial services firm, says that Microsoft Defender for Cloud Apps "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need".

    PeerSpot user, Senior Cloud & Security Consultant at a tech services, writes that Microsoft Defender for Cloud Apps "Great for monitoring user activity and protecting data while integrating well with other applications".

    Simon Burgess,Infrastructure Engineer at SBITSC, states that Microsoft Defender for Cloud Apps is "A fluid, intelligent product for great visibility, centralized management, and increased uptime".

    Sample Customers
    Chart Industries, City of Aspen, Eastern Mountain Sports, FLEXcon, George Washington University, Jackson Municipal Airport Authority, Ohio Public Library Information Network, PTC, Richland Community College, Smart Motors, Tulane University, VeriClaim
    Customers for Microsoft Defender for Cloud Apps include Accenture, St. Luke’s University Health Network, Ansell, and Nakilat.
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company19%
    Financial Services Firm10%
    Manufacturing Company10%
    Government7%
    REVIEWERS
    Financial Services Firm14%
    Comms Service Provider11%
    Computer Software Company9%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Educational Organization16%
    Financial Services Firm8%
    Manufacturing Company7%
    REVIEWERS
    Educational Organization27%
    Financial Services Firm18%
    Government9%
    Energy/Utilities Company9%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm12%
    Manufacturing Company8%
    Government7%
    Company Size
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise16%
    Large Enterprise62%
    REVIEWERS
    Small Business38%
    Midsize Enterprise23%
    Large Enterprise39%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise26%
    Large Enterprise55%
    REVIEWERS
    Small Business27%
    Midsize Enterprise27%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise14%
    Large Enterprise65%
    Buyer's Guide
    Cisco Umbrella vs. Microsoft Defender for Cloud Apps
    March 2024
    Free Report: Cisco Umbrella vs. Microsoft Defender for Cloud Apps
    Find out what your peers are saying about Cisco Umbrella vs. Microsoft Defender for Cloud Apps and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    767,667 professionals have used our research since 2012.

    Cisco Umbrella is ranked 1st in Cloud Access Security Brokers (CASB) with 108 reviews while Microsoft Defender for Cloud Apps is ranked 2nd in Cloud Access Security Brokers (CASB) with 30 reviews. Cisco Umbrella is rated 8.8, while Microsoft Defender for Cloud Apps is rated 8.4. The top reviewer of Cisco Umbrella writes "Protects endpoints wherever they are, always pushing people to the right locations to avoid malicious intent". On the other hand, the top reviewer of Microsoft Defender for Cloud Apps writes "Integrates well and helps us in protecting sensitive information, but takes time to scan and apply the policies and cannot detect everything we need". Cisco Umbrella is most compared with Zscaler Internet Access, Prisma Access by Palo Alto Networks, Palo Alto Networks DNS Security, Fortinet FortiGate SWG and Infoblox Advanced DNS Protection, whereas Microsoft Defender for Cloud Apps is most compared with Zscaler Internet Access, Netskope , Prisma Access by Palo Alto Networks, Qualys VMDR and Forcepoint CASB. See our Cisco Umbrella vs. Microsoft Defender for Cloud Apps report.

    See our list of best Cloud Access Security Brokers (CASB) vendors.

    We monitor all Cloud Access Security Brokers (CASB) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.