Overview
Product Information on Microsoft Defender for Cloud Apps
What is Microsoft Defender for Cloud Apps?
Microsoft Defender for Cloud Apps Pricing
Overall experience with Microsoft Defender for Cloud Apps
“Challenges Found in User Search, Automation, and Alerts in Cloud App Governance”
“A good security solution in its early phase”
About Company
Company Description
Microsoft enables digital transformation for the era of an intelligent cloud and an intelligent edge. Its mission is to empower every person and every organization on the planet to achieve more. Microsoft is dedicated to advancing human and organizational achievement. Microsoft Security helps protect people and data against cyberthreats to give peace of mind.
Company Details
Do You Manage Peer Insights at Microsoft?
Access Vendor Portal to update and manage your profile.
Key Insights
A Snapshot of What Matters - Based on Validated User Reviews
User Sentiment About Microsoft Defender for Cloud Apps
Reviewer Insights for: Microsoft Defender for Cloud Apps
Deciding Factors: Microsoft Defender for Cloud Apps Vs. Market Average
Performance of Microsoft Defender for Cloud Apps Across Market Features
Microsoft Defender for Cloud Apps Likes & Dislikes
Being able to search for a particular application and simply just unsanction an application, knowing that it will block the IPs and hostnames associated with the service so that I don't have to manage a blocklist for these.
What I like most about Defender for Cloud Apps is how it brings all the elements of cloud security together into one place to make sense of them all. The visibility it provides into our company's SaaS usage, Shadow IT and risky OAuth applications is incredibly useful and the suggested insights are usually actionable immediately. Another great element is the integrations with EntraID, conditional access, Defender XDR and DLP modules. The policies work seamlessly across the board rather than the increasingly common disjointed feeling of working with multiple products in isolation. Features like real-time session control, user activity monitoring and automated app governance paired with Defender for Endpoint filtering make our day-to-day security tasks much easier, highlighting issues in our IT ecosystem we may have otherwise missed.
Great integration within the Microsoft ecosystem. Ease of use even by non-technical users. Friendly interface
On the side of App Governance, I do wish that they would allow for better tools to search for users. Every now and again, I will see a user that gave consent to an application and I will have to clear it out and disable the app, and it can be difficult to just simply search for a user alone. It will show the top 100 users, but I would like a better search method for these. Also, many times, the Disable App button simply doesn't load and I will always have to open in a new browser. I have scripts to revoke all permissions and remove users from an application, but there currently doesn't seem to be a way to call on the API to disable the app as well, which would help with automation. The one other thing that is just slightly annoying is that when you unsanction an application, it sends the IPs and domains to your Indicator list. My worry in the future is that since this list is capped at 15k indicators, it might fill up. Even more importantly, if moving to Global Secure Access (Zero Trust), the indicator list becomes your main org blocklist on devices, which makes this 15k limit even more limited. I would love to see these applications fall into their own indicator list, or open it up to have more than 15k in your indicator list. Lastly, the alerts/incidents that we get from Defender for Cloud apps on the Defender portal are often lacking information and requires you to dig around to find the app that is part of the incident. I wish there was a way that I was able to see what the analytic rule was set up like on the backend, since it seems that it is just not bringing in the entities in a way that displays all of the information that one might need.
What I dislike the most about Defender for Cloud Apps is that the experience can feel quite fragmented at times, especially when switching between portals to configure policies, review alerts or investigate activity. Some features live in Defender XDR, others in EntraID, and a few still remain in the classic portal, which can make tasks feel like they take longer than they need to. The UI can often feel slow or inconsistent when working with large datasets, particularly in activity logs or governance actions. Whilst the platform is certainly powerful, some of the policy types could be more intuitive and easier to customise.
Price. Highly dependent on Microsoft produces. False positives can take some time to tune.
Top Microsoft Defender for Cloud Apps Alternatives
Peer Discussions
Microsoft Defender for Cloud Apps Reviews and Ratings
- MANAGER, IT SECURITY AND RISK MANAGEMENT50M-1B USDManufacturingReview Source
Challenges Found in User Search, Automation, and Alerts in Cloud App Governance
Defender for Cloud Apps is a great addition to lock down unsanctioned apps by blocking access altogether. It is also a good way to track through all of the user consent that users in your organization have handed out that might need to be revoked. - IT Security & Risk Management Associate<50M USDEnergy and UtilitiesReview Source
A good security solution in its early phase
My overall experience has been generally positive, especially with how it brings together visibility, governance and security controls across an extremely chaotic SaaS landscape. There are still some moments of immaturity within Defender for Cloud Apps, where the navigation feels fragmented and certain settings you would expect to be available are not quite there yet. - It Security & Risk Management Associate<50M USDIT ServicesReview Source
Product Monitors Behavior and Data Sharing in Cloud Applications Without Intrusive Alerts
Defender for Cloud Apps comes across less like a traditional security tool and more like a quiet guardian that watches how cloud services are being used across your organization. As a regular user, you don't really "use" it in the hands-on sense. Instead, you notice its presence when something you try to do in a cloud app gets stopped or when you're told that a certain action isn't allowed because it might expose sensitive information. It's not intrusive, but it does make you more aware that your company's data is being protected behind the scenes. What makes it feel different from other security tools is that it focuses on behavior rather than just files or emails. If something seems off, like signing in from an unusual location or trying to share a document in a risky way, it steps in. Most of the time, you only see a brief message explaining why something was blocked and then you move on with your work. Overall, Defender for Cloud Apps gives you the sense that someone is keeping an eye on the cloud environment as a whole, not just individual files or messages. It doesn't get in your way unless it really needs to, and when it does, it's usually for a good reason. For everyday users, it adds a layer of confidence that the tools you rely on are being monitored and protected without you having to think about it. - INFORMATION SECURITY GOVERNANCE10B+ USDManufacturingReview Source
Cloud App Security Features Expose Shadow IT Risks And SaaS Configuration Issues
Thanks to the use of Microsoft Defender for Cloud Apps, it allowed our organization to increase visibility into security gaps between our organization and SaaS applications used by our employees. - It Security Engineer10B+ USDIT ServicesReview Source
Microsoft Defender for Cloud Apps Detects Unauthorized Use and Monitors Real-Time Sessions
Microsoft Defender for Cloud Apps is very useful to oversee the SaaS usage in the org. It helps us to identify suspicious configs in cloud apps in the org. It also identifies risk behavior and unusual access patterns in the cloud apps.