Using Windows Defender Advanced Threat Protection to quickly detect and respond to data breaches


Willie Maul, Partner Technology Strategist

In today’s digital world, data is a key asset. Now more than ever, it’s important that customers protect that asset. However, news of high-profile data breaches is starting to become the norm, especially with the Equifax incident this year. Cybercriminals are using more complex methods and have more resources to go after customer data. A 2017 Cost of Data Breach Study by the Ponemon Institute shows the faster the data breach can be identified and contained, the lower the costs. Based on their research, the Mean Time to Identify (MTTI) a data breach is 190 days, basically 6 months! With the average cost of a data breach being $3.62 million and the number of records affected in a breach on the rise, customers need help to quickly detect and respond to malicious attacks. This is where Windows Defender Advanced Threat Protection (WDATP) comes into play.

An overview of Window Defender Advanced Threat Protection

Windows Defender Advanced Threat Protection (WDATP) is a post-breach Endpoint Detection and Response (EDR) solution. It enables customers to detect, investigate, and respond to advanced attacks and zero days on their networks—with no additional on-premises infrastructure. WDATP uses built-in behavioral sensors, machine learning, and analytics to detect attacks that have made it past other defenses. Key features of WDATP include:

  • Built in to Windows 10, not bolted on
  • Analytics-based, cloud-powered breach detection and response
  • Single pane of glass and centralized management
  • Best of breed investigation experience
  • Unique threat intelligence knowledge base

Partner opportunity

Security is a major concern for our customers. Yet, in many situations they do not have the resources, skill, and time to adequately protect themselves from today’s security threats while staying ahead of the curve. The Ponemon Institute study I referenced above stresses the need to quickly detect and respond to malicious attacks. Another study by Forrester, “The Total Economic Impact of Microsoft Windows Defender Advanced Threat Protection”, shows WDATP, when compared to other EDR solutions, catches 1.7 times as many threats, reduces the risk of a data breach by 40%, and provides 4 hours of productivity savings per threat. Microsoft has over 3,500 employees dedicated to security. With Windows Defender you can leverage this expertise within your own security practice.

November 28 Partner Community call

Register for the upcoming Modern Workplace: Windows & Devices Partner Community call on Tuesday, November 28th at 1 PM EST. During the call, we will discuss and demo:

  • What is Windows Defender ATP (WDATP)?
  • What can you protect with WDATP?
  • How do you make it work?
  • How do you use WDATP (by itself)?
  • How do you use WDATP when combined with the Extended Benefits of Microsoft Security Platform?
  • Roadmap

Find additional information about WDATP here.

Modern Workplace Technical Community

Skip to main content