Updated: July 6, 2024 (July 6, 2024)

  Sidebar

XDR, Microsoft Defender XDR, and Microsoft Defender for Cloud

My Atlas / Sidebar

395 wordsTime to read: 2 min
Wes Miller by
Wes Miller

Wes Miller analyzes and writes about Microsoft’s security, identity management, and systems management technologies. Before joining Directions on Microsoft, Wes... more

Customers are likely to see the terms “XDR,” “Microsoft Defender XDR,” and “Microsoft Defender for Cloud,” but what do these terms mean? XDR (eXtended detection and response) is a term used by analysts and industry to describe inputs across a range of traditionally stand-alone security tools, surfaced together in a usable form that is likely to be more powerful than the sum of its parts. 

Microsoft uses XDR to describe Microsoft Defender XDR, an umbrella brand that unifies the existing Microsoft Defender services (Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Office 365, and Microsoft Defender for Cloud Apps) within one console, the Microsoft 365 Security Center. Microsoft Defender XDR is intended to combine related threat information into incidents and allows one service in the suite to inform other related services of actions that should be taken.

Note that Microsoft Defender XDR was named Microsoft 365 Defender prior to Nov. 2023, at which time Microsoft added initial support for inclusion of signals from Microsoft Sentinel (the company’s SIEM) and Microsoft Defender for Cloud (the cloud defense platform for Azure and select other cloud hosting services).

Atlas Members have full access

Get access to this and thousands of other unbiased analyses, roadmaps, decision kits, infographics, reference guides, and more, all included with membership. Comprehensive access to the most in-depth and unbiased expertise for Microsoft enterprise decision-making is waiting.

Membership Options

Already have an account? Login Now