We compared SentinelOne Singularity Complete and Microsoft Defender for Endpoint based on our users' reviews across various parameters. After reading all of the collected data, you can find our conclusion below.
SentinelOne Singularity Complete offers a quick and smooth setup. The solution is praised for advanced threat detection, real-time monitoring, and comprehensive reporting, but users note room for improvement in UI, customization, and customer support. Users find Microsoft Defender's customer service excellent, with positive outcomes from utilizing the software, but suggest enhancements in system performance, UI, and threat detection capabilities. SentinelOne emphasizes protection and ease of use and Microsoft Defender highlights efficient threat prevention and seamless integration with Microsoft products.
Features: SentinelOne Singularity Complete excels in advanced threat detection, real-time monitoring, easy deployment, and comprehensive reporting. Microsoft Defender for Endpoint offers robust security measures, efficient threat detection, seamless integration, a user-friendly interface, and effective management tools.
Pricing and ROI: SentinelOne Singularity Complete users find its setup cost to be reasonable, with flexible licensing options for scalability. Microsoft Defender for Endpoint also offers competitive pricing and a straightforward setup process, making licensing hassle-free according to users. SentinelOne Singularity Complete offers higher ROI with comprehensive protection and ease of use, noted for better security measures. Microsoft Defender for Endpoint receives positive feedback but falls short in efficiency.
Room for Improvement: SentinelOne Singularity Complete could be improved with a more intuitive user interface, customizable options, enhanced reporting features, and better customer support. Microsoft Defender for Endpoint needs enhancements in system performance, UI, and threat detection for better scanning and threat removal.
Deployment and customer support: Users praise SentinelOne Singularity Complete for its quick and smooth setup. Microsoft Defender for Endpoint has varied implementation times, ranging from three months to a week, highlighting potential extensive time requirements., SentinelOne Singularity Complete offers efficient, responsive, and knowledgeable customer service, providing quick response times and helpful guidance. Microsoft Defender for Endpoint also receives high praise for prompt and effective assistance, with knowledgeable and responsive support.
The summary above is based on 534 interviews we conducted recently with SentinelOne Singularity Complete and Microsoft Defender for Endpoint users. To access the review's full transcripts, download our report.
"Fortinet has helped free up around 20 percent of our staff's time to help us out."
"Ability to get forensics details and also memory exfiltration."
"It notifies us if there's any suspicious file on any PC. If any execution or similar kind of thing is happening, it just alerts us. It doesn't only alert. It also blocks the execution until we allow it. We check whether the execution is legitimate or not, and then approve it or keep it blocked. This gives us a little bit of control over this mechanism. Fortinet FortiEDR is also very straightforward and easy to maintain."
"NGAV and EDR features are outstanding."
"Additionally, when it comes to EDR, there are more tools available to assist with client work."
"Fortinet FortiEDR's scalability is quite good, and you can add licenses to the solution."
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"he solution is an anti-malware product that integrates well with other vendor products such as firewalls, SIEM, etc. It captures threat intelligence and gives you better visibility. The product also has sandboxing features."
"We have very good visibility on our endpoints. The level of information it throws back is helpful."
"I like the simplicity of the portal and the integration with Microsoft Intune. Microsoft Defender for Endpoint is easy to use and implement."
"I find the vulnerability management section of Microsoft Defender for Endpoint to be very useful for organizations."
"The virus scanning capability is excellent, and it feeds all the logs into the Microsoft 365 Defender portal, making them easy to search for."
"The solution integrates very well with Windows applications and Microsoft endpoint products."
"Defender is stable enough and is competitive with the other products in the market."
"The threat hunting service is very useful for a security professional."
"I enjoy using the live response feature, which allows me to remotely access different endpoints and investigate malicious files, such as malware that people may have downloaded, and other related issues."
"Sentinel One has improved our organization by protecting the environment we are working in."
"The ability to quickly and easily identify threats on our machines is valuable. The fact that it protects the environment as a whole is also valuable. They have the ability to identify network nodes, and they have Ranger as a component of the solution that allows us to see the whole picture. We can see on what we have SentinelOne and on what we do not."
"The detection rate for Sentinel One has been excellent and we have been able to resolve many potential threats with zero client impact. The ability to deploy via our RMM allows us to quickly secure new clients and provides peace of mind."
"The hunting feature is most valuable for detecting malicious or suspicious activity."
"The best thing is it has a secure shell command that you can use to get into any endpoint and do some jobs."
"The tool's most valuable feature is Vigilance Respond Pro monitoring. You don't have to have a dedicated SOC and worry about staffing."
"The protection and management provided by SentinelOne is good."
"The most valuable feature is the ability to drill down into individual sequences of processes."
"The solution is not stable."
"Making the portal mobile friendly would be helpful when I am out of office."
"We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."
"The EDR console should have more extensive reporting. You shouldn't need to purchase FortiAnalyzer. It should be included in the EDR part. The security adviser cloud platform could be improved with more options for exclusive or intensive rules for devices."
"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"
"ZTNA can improve latency."
"The support needs improvement."
"They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller."
"There's scanning going on that occasionally topples the memory, causing everything to freeze. This should be fixed."
"It's not easy to create special allowances for certain groups of users. It can be a little heavy-handed in some areas where Microsoft has decided to lock a feature out, meaning they make it hard to make an exception... One company we work with needed to use about 20 different thumb drives for about 20 users. To make that exception for them was very difficult. In fact, you can't really make an exception. But what you can do is allow them to use it and, while it will still alert, you can actually suppress those alerts."
"They should bring back the feature of a dedicated proxy device for communication to the cloud. As of now, all the agents are required to send the logs directly to the cloud. There should be a solution where you can put a proxy and all the logs are consolidated, like a forwarder."
"In terms of improvement, they update the platform it seems quite a bit. Every month something is in a new spot or something changed somewhere. There should be less of that."
"In the next release, I would like to see better management reporting."
"There are likely some technical improvements or features that could be added, however, I cannot say, off the top of my head, what they would be."
"Notifications are always popping up — I hate that."
"If they integrate with the EDR then it will benefit this solution."
"SentinelOne's customer service has room for improvement."
"I would appreciate it if they would consider providing a comprehensive vulnerability assessment report that goes beyond just application vulnerabilities."
"We'd like SentinelOne to upgrade automatically. It doesn't automatically update the agent if some system has an older version of the SentinelOne. It has to be triggered from the console."
"We have had one or two occasions when we had to roll back off our Windows machine. Then, we had an issue with SentinelOne where we couldn't let the client make contact with the cloud service anymore. Therefore, the integration with the Windows Service Recovery could be improved in the future."
"There aren't enough reporting capabilities for decision-makers."
"We'd like to have a network map or scan to cover network security."
"SentinelOne is causing a problem with the data service that causes one of our applications to crash randomly. We're still looking for a permanent fix, but we have implemented a temporary workaround that excludes that application from the scan."
"The agent update is not the most intuitive process, but I understand why they do it. We have a pretty vertical 64-bit environment for Windows. That is pretty much all we have, but we get alerts for things like the new Linux endpoint or things that do not apply to us. That is probably the only thing that I do not like. There may be some way to turn that off so that I do not get endpoint update alerts from platforms that are not applicable to our system, enterprise, or network."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
More SentinelOne Singularity Complete Pricing and Cost Advice →
Microsoft Defender for Endpoint is ranked 1st in Endpoint Protection Platform (EPP) with 182 reviews while SentinelOne Singularity Complete is ranked 2nd in Endpoint Protection Platform (EPP) with 177 reviews. Microsoft Defender for Endpoint is rated 8.0, while SentinelOne Singularity Complete is rated 8.8. The top reviewer of Microsoft Defender for Endpoint writes "Eliminates the need to look at multiple dashboards by automatically providing one XDR dashboard to show the security score of each subscription". On the other hand, the top reviewer of SentinelOne Singularity Complete writes "Provides peace of mind and is good at ingesting data and correlating". Microsoft Defender for Endpoint is most compared with Symantec Endpoint Security, Intercept X Endpoint, CrowdStrike Falcon, Cortex XDR by Palo Alto Networks and ESET Endpoint Protection Platform, whereas SentinelOne Singularity Complete is most compared with CrowdStrike Falcon, Darktrace, ThreatLocker Protect, Datto Endpoint Detection and Response (EDR) and Wazuh. See our Microsoft Defender for Endpoint vs. SentinelOne Singularity Complete report.
See our list of best Endpoint Protection Platform (EPP) vendors, best Anti-Malware Tools vendors, and best Endpoint Detection and Response (EDR) vendors.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.