When it comes to protecting your corporate infrastructure from viruses and malware, there are many solutions, such as Kaspersky, Symantec, and Bitdefender. At risual, we work with many companies about how best to secure their devices, using Microsoft Defender for Endpoint.
What is Microsoft 365 Defender?
Microsoft 365 Defender is a unified pre- and post-breach enterprise defence suite that natively coordinates detection, prevention, investigation, and response across the following services: Microsoft Defender for Endpoint, Microsoft Defender Vulnerability Management, Microsoft Defender for Office 365, Microsoft Defender for Identity, Microsoft Defender for Cloud Apps
Microsoft have just announced MDE Plan 1 and MDE Plan 2. MDE Plan 2 is a rebadge of the original Microsoft Defender for Endpoint. The new MDE Plan 1 has a smaller subset of the capabilities from Plan 2.
Microsoft Defender for Endpoint Plan 1
MDE Plan 1 contains Next-generation protection (including antivirus and anti-malware protection). This provides behaviour-based, heuristic, and real-time antivirus protection; cloud-delivered protection of new and emerging threats, and dedicated protection and product updates, including updates related to Microsoft Defender Antivirus
MDE Plan 1 also includes response actions to be taken if a device is potentially compromised or has suspicious content. Administrators can also run response actions on files detected as threats
Attack surface reduction allows an organisation to reduce possible attack vectors, such as ransomware or remote USB drives,
MDE Plan 1 also includes the Microsoft 365 Defender portal, which allows organisations to view information about detected threats, take action to mitigate threats, and centrally manage the threat protection settings.
This is supported across Windows 10, iOS, Android OS, and macOS devices; as well as using fully-featured APIs to allow the organisation to integrate with additional services such as SIEM appliances.
So What Next?
So now organisations can secure their devices against viruses and malware. On the other hand, if they are looking device on-boarding, threat analytics, automated investigation, or Microsoft Threat Experts; risual can help in designing and implementing a full MDE Plan 2 solution.
