Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
Material Security positions itself as a “detection and response platform built for cloud workspaces,” primarily protecting Google Workspace and Microsoft 365. It is not a traditional perimeter gateway or a standalone email filter. Instead, it builds a unified view across email, files, accounts, OAuth apps, and security posture, with the goal of detecting attacks that bypass native controls, reducing exposure of sensitive data, and limiting the blast radius after an account compromise.
In terms of protection coverage, Material includes Email Security, File Security, Account Security, Identity Threat Detection, Data Security, OAuth Remediation Agent, and Posture Management. On the email side, it can automatically detect and remediate advanced malicious emails, and supports AI-powered investigation and response for user-reported phishing. On the file side, it can identify sensitive content, detect excessive sharing, and automatically fix permissions. For accounts, it focuses on detecting risky behavior, containing lateral movement, and preventing data exfiltration. Deployment is API-Based & Agentless; the text explicitly states that no endpoint agent installation is required, and users do not need to manage a quarantine. For administration, it provides structured search, account risk overviews, low-noise notifications, RBAC, a unified multi-tenant view, and integrations with SIEM/SOAR.
On compliance, the page states that its operations are SOC 2 Type 2 certified and that it undergoes regular third-party security testing. It also mentions code-change workflows, immutable audit logs for administrator and security actions, single-tenant isolation, and a dedicated incident response team. Integration capabilities center on Google Workspace, Microsoft 365, APIs, event hooks, SIEM/SOAR, and an MCP Server for AI Agent workflows. Pricing is not publicly disclosed; only Pricing and Get a demo entry points are provided. Buyers need to contact the vendor to confirm plans, billing metrics, SLA terms, and data-region options.
Its strengths are the completeness of its cloud-office context, with the ability to correlate email, file, identity, and OAuth risks. Agentless API deployment helps reduce rollout friction, and automated remediation is well suited to security teams with limited headcount. The drawbacks are that public information lacks details on pricing, false-positive rates, data residency, access from China, and local compliance requirements. Support for non-Google/Microsoft 365 environments or domestic Chinese office suites is also not shown. It is best suited for mid-sized to large enterprises and growing security teams that already make heavy use of Google Workspace or Microsoft 365, and that want to move beyond point email gateways while improving cloud-workspace detection and response.
The crawled text does not state network accessibility from mainland China, payment methods, or Chinese-language support, so china_access can only be rated as unknown. Chinese companies dealing with cross-border data, procurement payments, and local MLPS or industry compliance requirements should conduct a PoC and legal review first. Alternatives to compare include Microsoft Defender for Office 365, Google’s native security controls, traditional email security gateways, DLP, identity security, and SIEM/SOAR-based combinations. For domestic office suites or on-premises email scenarios, local email security, data loss prevention, and identity governance products should also be evaluated.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on material.security official site.
material.security is an United States Security provider. TG4G tracks its product information, an overall rating of 7.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach material.security directly.