Microsoft Defender Endpoint & Microsoft Defender for Servers

“To say you have no choice is to relieve yourself of responsibility.” ― Patrick Ness

Choices always involve measuring desired outcomes. And for that it’s ideal to have as much information as possible for each available option (or choice). We must strive to make the choice that suits our responsibility, let’s then take that philosophy to the subject of Server protection in the “MSU” (Microsoft Security Universe) — a term I’m coining myself, better watch out “MCU”!

It isn’t rare to be around misconceptions about Server and End User Compute endpoint security. What are good solutions for each? How to manage these properly? Most importantly, what security controls are needed for each?

There are various reasons for this, these are some from my past experiences:

• Similar Operating Systems used in both kinds of Systems (advent of Linux in the DC is fairly recent, as this article from 2007 looked at reflecting on how Linux could be a mistake in Enterprises)
• Traditional security providers didn’t make the distinction for a long time. Working with Early EDRs, such as Cisco AMP, there was no distinction from a solution perspective. On the protection side of things, decent developments on dedicated…