Overview
Product Information on Microsoft Defender External Attack Surface Management
What is Microsoft Defender External Attack Surface Management?
Microsoft Defender External Attack Surface Management Pricing
Overall experience with Microsoft Defender External Attack Surface Management
“Comprehensive Asset Visibility Balanced By Need For Filtering And Custom Reporting”
“Effective Alerts and Notifications”
About Company
Company Description
Microsoft enables digital transformation for the era of an intelligent cloud and an intelligent edge. Its mission is to empower every person and every organization on the planet to achieve more. Microsoft is dedicated to advancing human and organizational achievement. Microsoft Security helps protect people and data against cyberthreats to give peace of mind.
Company Details
Do You Manage Peer Insights at Microsoft?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
Reviewer Insights for: Microsoft Defender External Attack Surface Management
Deciding Factors: Microsoft Defender External Attack Surface Management Vs. Market Average
Performance of Microsoft Defender External Attack Surface Management Across Market Features
Microsoft Defender External Attack Surface Management Likes & Dislikes
We selected Microsoft Defender EASM primarily because of the comprehensiveness of the external visibility the solution provides for assets (domains, IP blocks, and third-party dependencies) and the deep integration with the rest of our Microsoft technology landscape. For users of Defender for Cloud, Defender XDR, and Sentinel, which we use in our organization, this integration was relatively seamless and provided consolidation of our security workflows and observability.
I really appreciated and liked the alerts/updates it would give me to let me know my services are protected. There are far too many instances where I would get notifications from other places in time or they would build up over time.
What I really like the most about EASM is the automated discovery of unknown and unused assets in the system. It is now really common to have internet based assets in the organisation that we are unaware of like testing environments, old domains, This tool is really helpful in disclosing such assets which are not noticed in regular system check-ups. EASM also makes this process really fast and simple. Like recently one more case came where we established a testing environment a long time ago and it remained in the blind spot until EASM flagged it. Also the UI is really basic and easy to understand even for a beginner in admin task management.
Since Microsoft EASM provides a considerable amount of information about your security attack surface, we needed to train our end users to focus on the key metrics and weed out information about outdated / irrelevant assets that may not be vital to our security reporting, such as expired certificates. Additionally, as part of the information filtering process, we identified numerous areas where false positives were being reported by the tool, so we had to address those manually to ensure the data was correct and pertinent to our reporting needs. We also had to create some custom reports using Log Analytics which went into the level of specificity we were looking for around certain types of metrics, as the out-of-the-box dashboards lacked details that are important to our organization.
What I disliked most was that some of the settings were buried deeper in menus than I would have liked. It took much longer to be able to find some of the things I needed compared to other programs.
I haven't faced any issues as of now and there is no such major problem or any drawback. But it can be a bit tricky to set up filters.
Top Microsoft Defender External Attack Surface Management Alternatives
Peer Discussions
Microsoft Defender External Attack Surface Management Reviews and Ratings
- DIRECTOR OF IT INNOVATION50M-1B USDManufacturingReview Source
Comprehensive Asset Visibility Balanced By Need For Filtering And Custom Reporting
We've had a generally positive experience using Microsoft Defender EASM - we like the deep integration with the Microsoft security stack (including Defender for Cloud, Defender XDR, and Sentinel), the integrated dashboards that surface vulnerabilities, exposures, and compliance metrics, and the comprehensiveness of the solution. - Teamcenter Developer<50M USDIT ServicesReview Source
Microsoft Defender EASM Detects Forgotten Assets and Exposed Legacy Services Effectively
My experience with Microsoft Defender EASM is really good. It is really useful for finding unmanaged and unknown components in the system which can cause security issues. The feature that I use the most and which is really helpful is the tool’s ability to find unknown and shadow IT assets automatically. For example, in the very first EASM Scan on the system, it detected legacy services that are still publicly accessible which were already replaced by new services. These outdated and unused services discovered by EASM can be an easy attack point. - ENGINEER1B-10B USDEnergy and UtilitiesReview Source
Clear Dashboards Increase Visibility Despite Initial Complexity in Asset Classification
Microsoft Defender external attached surface management has given us much needed visibility into our organization's internet-facing assets. Within the first few weeks we identified multiple forgotten domains and misconfigured endpoints that posed potential risks. The tool's dashboards are clear and the integration with defender for cloud allows us to quickly prioritize remediation efforts. setup required some time and coordination across teams, but the outcome has been a significant reduction in unknown exposures. - CLOUD APPLICATION SECURITY ENGINEERGov't/PS/EdEducationReview Source
Asset Discovery Strong Yet Dashboard Can Slow With Larger Inventories And Noise
My experience with Microsoft Defender EASM has been positive overall. The tool has been useful primarily in understanding what endpoints I have that are available publically over the internet. This has helped support our security teams efforts to reduce and confirm internet-facing assets. - CLIENT SERVICE SPECIALIST50M-1B USDBankingReview Source
Microsoft Defender Efficiently Filters Complex Phishing Emails From Leaked Work Accounts
Overall, the Microsoft Defender External Attack Surface Management System has been very helpful in catching phishing emails as they come in. My work email has been leaked so over the past year with my company, I've gotten many phishing emails. While some were very obvious, others were more complex and seemed legit upon first glance. This program became very efficient in weeding out the harder-to-spot emails.