This app is not a free app and is for business/enterprise users only. Microsoft Defender for Endpoint helps enterprises stay protected from cyber security threats such as malicious apps and dangerous web sites that may try to steal user information. It allows your company’s security operations teams to prevent, detect, and investigate cyber security incidents. Microsoft Defender for Endpoint is also the client app for Microsoft Tunnel, which helps users gain access to apps and data on your company’s internal network on the go.
Key features of Microsoft Defender for Endpoint:
1. Warns users of malicious, potentially unwanted apps and APKs that may get installed or copied on to the user’s device.
2. Uses accessibility services to automatically blocks malicious web pages that may be accessed via links from SMS, messaging apps, browsers, and email.
3. Offers a world-class SecOps experience enabling security operations teams to see all alerts and threat context, and investigate incidents and respond.
4. Supports Mobile App Management (MAM) also called as App Protection Policies. This protects your organization’s data within a managed application based on MDE device risk signals.
5. Enables secure connections to internal documents and apps through Microsoft Tunnel on Microsoft Intune-managed devices.
6. Offers Conditional Access integration based on device risk level with Intune.
7. Supports in-app feedback.
Microsoft Defender for Endpoint web protection and app security features require a valid Microsoft 365 E5 license. Microsoft Tunnel functionality in Defender for Endpoint requires a license for Microsoft Endpoint Manager which is available in E3 licenses from Microsoft. Additionally, the device needs to be enrolled in Intune which is included in Endpoint Manager. Both Defender for Endpoint and Endpoint Manager require work accounts to be set up in Azure Active Directory.
A note about Defender for Endpoint and Microsoft Endpoint Manager: every organization has different access requirements and will use these solutions in ways specific to their needs. Microsoft, your network provider, and your device’s manufacturer will not be aware of every organization’s access needs and therefore how Microsoft Defender for Endpoint will be used. Some capabilities may not be available in certain countries. If you have questions about how this app is being used within your organization, your company’s IT administrator should have those answers for you.