Symantec Advanced Threat Protection provides comprehensive security measures, offering real-time threat analysis and endpoint protection to defend against both traditional and emerging threats, ensuring a secure and resilient online environment.
| Product | Mindshare (%) |
|---|---|
| Symantec Advanced Threat Protection | 2.1% |
| Palo Alto Networks WildFire | 7.3% |
| Microsoft Defender for Office 365 | 6.5% |
| Other | 84.1% |
| Type | Title | Date | |
|---|---|---|---|
| Category | Advanced Threat Protection (ATP) | Jun 23, 2026 | Download |
| Product | Reviews, tips, and advice from real users | Jun 23, 2026 | Download |
| Comparison | Symantec Advanced Threat Protection vs Palo Alto Networks WildFire | Jun 23, 2026 | Download |
| Comparison | Symantec Advanced Threat Protection vs Microsoft Defender for Office 365 | Jun 23, 2026 | Download |
| Comparison | Symantec Advanced Threat Protection vs Proofpoint Email Protection | Jun 23, 2026 | Download |
| Title | Rating | Mindshare | Recommending | |
|---|---|---|---|---|
| Microsoft Defender for Endpoint | 4.1 | 5.8% | 95% | 212 interviewsAdd to research |
| Microsoft Defender for Office 365 | 4.2 | 6.5% | 96% | 61 interviewsAdd to research |
| Company Size | Count |
|---|---|
| Small Business | 6 |
| Midsize Enterprise | 2 |
| Large Enterprise | 5 |
| Company Size | Count |
|---|---|
| Small Business | 49 |
| Midsize Enterprise | 20 |
| Large Enterprise | 32 |
Symantec Advanced Threat Protection integrates seamlessly with existing IT infrastructures to enhance email security, incident management, and network monitoring. With advanced detection capabilities including Zero-Day protection, its stable performance and straightforward setup are appealing. The system also streamlines application control and integrates effectively with SIEM products. Despite requiring enhancements in graphical threat visualization, network-based threat protection, and support for platforms like Windows 11, it remains a robust choice for comprehensive protection against cyber threats.
What features does Symantec Advanced Threat Protection offer?In financial sectors, Symantec Advanced Threat Protection is widely used to shield endpoint devices and secure email communications. Its capabilities are crucial for safeguarding workstations and servers, providing antivirus, malware, and network threat protection to ensure client data in banking and finance remains safe from advanced threats.
ECI
| Author info | Rating | Review Summary |
|---|---|---|
| Lead Architect at Zones | 4.5 | We primarily use Symantec Advanced Threat Protection for clients in the banking and financial sectors. Its valuable integration with SIEM products enhances operations. However, improvements in pricing and licensing models are needed. Clients also consider solutions like McAfee and Microsoft Defender. |
| Cyber SecOps Principal at Dotcom Security | 4.5 | We use Symantec Advanced Threat Protection for environment safety, benefiting from its antivirus, firewall, and application control features. It combines seamlessly with other Broadcom solutions, though its support services need improvement. |
| Infrastructure Team Lead at a comms service provider with 1,001-5,000 employees | 3.5 | I use Symantec Advanced Threat Protection for antivirus and network threat protection, valuing its NetFlow threat protection feature. The support team requires improvement and next-gen antivirus features are needed. I've seen some ROI and previously considered McAfee and FireEye. |
| Director Security Operations at a tech company with 201-500 employees | 3.5 | I use Symantec for advanced threat protection, valuing its integrated email security and easy deployment. However, I'm concerned about slow updates for new OSs like Windows 11 and its struggle to keep pace with competitors' behavioral detection, leading to my 7/10 rating. |
| Systems Manager at Muraspec Decorative Solutions Ltd | 4.0 | We use Symantec Advanced Threat Protection primarily for malware and spyware defense. It's user-friendly, saving time and effort, although improvements for compatibility with Android, iOS, and Mac are needed. The ROI is good, and we trust Symantec's longstanding reputation. |
| Senior security officer at LIB | 4.0 | I use Symantec Advanced Threat Protection for inter-coolant rotations, finding its application control and easy integration particularly valuable. However, I believe the security features could be improved. I have observed a return on investment with this solution. |
| Manager, Information Technology at a consumer goods company with 11-50 employees | 4.5 | I appreciate Symantec Advanced Threat Protection for its effective notification capabilities and active traffic analysis. However, technical support quality has declined, which needs improvement. The product continually assesses network traffic, identifying potential threats from unusual IP addresses. |
| CTO at ABM Info. tech | 3.5 | I find this solution stable, effective, and easy to set up, with great support. Deployment is fast. However, I believe its scalability needs significant improvement. Overall, it's mostly okay. |
| Lead IT Security Consultant at Compliance Data Systems Kft. | 3.5 | I value its strong integration and excellent incident management. However, I find its appliances have scalability issues, it's a closed system needing other Symantec products, and customer support has slowed post-acquisition. |
| Infrastructure Team Lead at a comms service provider with 1,001-5,000 employees | 3.5 | I use this stable solution for endpoint protection, appreciating its network defense. Setup was straightforward, and support is good. However, I find it lacks advanced threat protection compared to others, rating it a seven out of ten. |
Our primary use case for the product is to provide advanced threat protection to our clients, primarily in the banking and financial sectors.
Symantec ATP has been beneficial in ensuring robust security for our clients. Its effectiveness in detecting and mitigating threats has improved customer satisfaction, evidenced by clients opting for renewals instead of switching to new products.
Symantec ATP's integration capabilities with various SIEM products like IBM QRadar and Microsoft Sentinel have been valuable. This integration ensures seamless operation within hybrid environments, which is crucial for many clients.
One area for improvement could be the pricing model. Future releases could further enhance integration capabilities with other platforms and simplify the licensing model to compete more with Microsoft's offerings.
The solution is stable.
The platform scales well, particularly in hybrid environments, ensuring consistent protection across both on-premises and cloud-based assets.
The technical support services are excellent.
Our clients have used various solutions, such as McAfee, Carbon Black, and Palo Alto NG Firewalls, depending on their requirements.
The initial setup process is straightforward.
Our implementation engineers manage the deployment effectively.
Our clients often evaluate multiple options before deciding, including Microsoft Defender and other endpoint protection solutions.
Symantec ATP has proven to be a reliable and effective solution. I rate it a nine out of ten.
We use the product to protect the environment with the help of antivirus and firewall features.
Symantec Endpoint Protection provides end-to-end protection. Along with antivirus protection, it has a lot of key areas, including intrusive prevention, firewall features, and application and device control. It can integrate with other Broadcom solutions, such as Symantec Messaging Gateway and Symantec DLP. If you want to send an email, it gets scanned through endpoint protection and DLP. We get all Symantec functionality in a single pane.
The product's support services need improvement.
We have been using Symantec Endpoint Protection for 12 years. At present, we are using the latest version.
It is a stable antivirus product. I rate its stability a nine out of ten.
It is a scalable product. I rate its scalability a nine out of ten.
We encounter challenges while working with Broadcom’s support services regarding a lack of skills to deal with errors. However, they are improving that particular area.
Neutral
The deployment time depends on the number of endpoints. For 70,000 endpoints, it takes a few months to complete. Whereas for 50 endpoints, it takes only three days. I rate the process a five out of ten.
Symantec Endpoint Protection has an average price. I rate its pricing a five out of ten. It depends on the number of user licenses purchased.
I rate Symantec Endpoint Protection a nine out of ten. I highly recommend it to others as I have used it for many years. It is a stable product that helps us secure our environment.
We use it for antivirus, as well as network threat protection.
The most valuable feature is NetFlow threat protection.
The support team needs improvements.
There should be next-generation antivirus features in the next release.
I have been using Symantec for around twenty years, and we currently use the 14th version.
It is a very stable solution, and I would give it a nine out of ten.
We have used it for up to 5000 clients. So, it is scalable.
I would rate scalability a seven out of ten. Entire threat protection is not available for the advanced features, thus cutting the three points.
The response time is quite long; I rate support a four out of ten.
Neutral
We explored McAfee and FireEye Antivirus Protection.
It is very straightforward and only takes a couple of hours to reinstall the entire structure. We didn’t need any third-party assistance.
One person is required for deployment, but it can also be deployed from a remote location. It is a very good feature.
I saw some ROI because we have used it for many years.
I rate it a seven out of ten. It is time we get advanced options on ransomware and threat protection, as these features are still lacking and pushing us to explore new technology.
We use it for advanced antivirus protection. It is primarily used for protecting the workstations and servers from Zero-Day and other emerging threats.
I am using its latest cloud-enabled version. Its deployment model varies. We recommend the full cloud version, so we try to get everybody moved over to the cloud. Most of the time, it is a hybrid for a while, until you get moved fully into the cloud.
You don't have to buy a separate email security platform. You can enable that using their endpoint, and I like that. You don't have to have two agents running on the same box.
They have advanced their product line with other detection capabilities outside the traditional hashes. They have added Zero-Day in the emerging Advanced Threat Protection series. So, it gives the customers a better feel that they're protected. It is not just traditional AV-only protection. It also protects against new and emerging threats.
Its agent is also pretty solid. It is a good product.
The support for new OSs and older OSs could be a little tighter. They need to be more upfront about what protection services they're going to provide on new OSs. I haven't seen the Windows 11 version out yet. It is either already released in Beta, or the Beta will be released soon. There could be a little bit more advanced updates on what they're doing to help protect Windows 11 environments. They can let us know in advance so that we know it is going to be protected. We can't roll out the new OS without putting end-point protection on it. So, they should tell us what is their support model for that, and what are they doing to protect Windows 11. They're not telling me, and that's a criticism. The same issue is applicable to all the other antivirus tools. It is not just Symantec; all of them have this problem.
Solutions like CrowdStrike, ESET, and SentinelOne have really jumped ahead on behavioral and algorithm-based detection capabilities. Symantec is trying to catch up, but they still have some limitations of being an old-school AV protection program and adding AI and behavioral learning and detection algorithm.
I have been using this solution for eight years.
As far as I could tell, it is pretty stable. I don't get a lot of complaints. I have some concerns about their growth strategy. The market is a little bit more competitive than it used to be. We have more tools and technologies out there for AV protection, but for now, it is in really good shape.
They can scale to very large enterprises. I don't see any problems with that.
Each individual customer has their own licenses, so I don't have a roll-up of how many users are actively using it.
Their sales cycle is pretty good. Their support is very good. We've had a good experience with them. We are usually able to get to who we need to in a timely manner. They have a good group of guys over there.
They have a very simple and easy implementation. They have been around for a long time, and they have been very easy to deploy, support, and manage.
The deployment duration depends on the size of the environment. It depends on whether you have 100 workstations or 10,000 workstations. Regardless, it scales very well. It takes minutes per workstation versus days.
After the installation, you have to configure it. They've made that pretty easy. It takes maybe five minutes per workstation to make sure it is working and running, but then you also have alerting and monitoring. So, you got to monitor it. Otherwise, it doesn't do any good if you're not telling people what's going on. The monitoring, detection, and response piece of it can be very expensive.
We are an MSSP, so we do all the work ourselves for customers. Typically, you have to have at least one SME who is dedicated to it. It also depends on the size of the organization. So, if there are five computers, then you would probably have one person doing everything. If you have 5,000 computers, then there would probably be one person doing just Symantec. So, the ratio is 1 to 5,000.
I am not a big fan of them being bought out by Broadcom. They're not their own entity, but it didn't turn out to be a bad thing so far. So, I'd just be cautious about a company that is bought out by an investment company like Broadcom. They typically buy companies to let them die. That would be the only concern I have.
I would rate Symantec Advanced Threat Protection a seven out of 10, just because there is so much competition. Five years ago, I would have rated it higher than that.
We primarily use the product to protect against malware, spyware, and hardware issues.
The platform is easy to use, which saves us a lot of time and effort. Monitoring is straightforward and efficient.
They could enhance the solution to work across all devices, including Android, iOS, and Mac, and make it more user-friendly.
We have been using Symantec Advanced Threat Protection for about 25 years.
I would rate the stability of Symantec as a nine.
The platform is extremely scalable. We have about 150 users. Yes, it is extensively used, and we may increase the number of users as needed.
We have contacted their support, and it has been satisfactory. We have received support via phone, email, and SMS.
The deployment process is simple. It involves deploying one file across the entire system.
The return on investment is good.
The price is quite expensive because a different entity has taken over the company.
We evaluated other options, but Symantec has been around for 20 to 25 years, and we trust it.
The product integrates well with our systems, and we have not encountered any problems. The user interface is fine. It is reliable and simple to use.
I rate it an eight.
We use the solution for our service's inter-coolant rotations.
The security features need to be improved.
It is a moderately stable solution.
It is a highly scalable solution as it allows easy scale-up or down, and it also helps in integration. Approximately three thousand users are using the solution.
The technical support team is good and experienced.
The initial setup is straightforward and the deployment is a one click process.
I have seen a return on investment.
I definitely recommend the solution. I rate the overall solution an eight out of ten.
What I like most about Symantec Advanced Threat Protection is its notification capability. Even if it's not anything credible, you're at least notified of it. Its active engine looks at anything hitting any ports that are accessible from the workstation all the way up to the gateway. It's like a constant analyzer checking the traffic and seeing if the traffic is within the specification of what is defined on your network. If it's some weird IP address, it's constantly assessing those stuff and looking for variations from what is established.
Usually, the technical support was very good, with proper guidance and help figuring out stuff. The support has dropped down to a five out of ten.
Symantec Advanced Threat Protection's pricing is comparable. The solution's license model is slightly more flexible than FortiGate. Fortinet sells in packs, while Symantec Advanced Threat Protection sells individual licenses.
Once it's been properly updated, Symantec Advanced Threat Protection works properly. I've had a few security incidents running the solution during the couple of years I used it.
I prefer Symantec Advanced Threat Protection to FortiGate because I can set it up to receive notifications.
Overall, I rate Symantec Advanced Threat Protection a nine out of ten.
We have two departments, two clients on Advanced Threat Protection.
Advanced Threat Protection usually helps in identifying and protecting against non-signature virus attacks. With this product, you can protect yourself from attacks.
The solution has proven so far to be quite stable.
It's mostly an effective product and it's good to have on the side.
We have found the initial setup to be simple. The deployment is also very fast.
Technical support has been helpful and responsive.
Scalability could be better.
We've been using the solution since 2015. It's been quite a few years at this point.
The stability is excellent. There are no bugs or glitches. It doesn't crash or freeze. It's reliable.
The solution is slightly scalable. It's not diverted to different collectors so that they can perform effectively, however. It could be more easily scalable.
We have a few customers on this solution.
Technical support is great. They are helpful and responsive. We're quite satisfied with the level of support that's available.
The initial setup is very straightforward. It's not overly difficult and not complex. A company shouldn't have any issues with the process.
The deployment might have taken two hours. It's quite fast.
Customers do have to pay in order to receive a license. It's a yearly license.
I'd rate the solution at a seven out of ten. It's mostly okay, however, it could be better in some areas.
We primarily use the solution for its integration capabilities.
Their integrations are pretty good as are their Sandbox solutions, their proxies, and their LTAs with API or ICAP protocols.
Symantec has good experience in the field. They're good at picking up on trends.
They have one of the biggest background cloud networking internet solutions due to the fact that they have a lot of customers everywhere in the world and they have a lot of data.
The incident management on the solution is very good. You get a lot of detailed information about an incident. You also get a lot of documentation in connection with the CVI or integration.
If you have to integrate it with CM solutions, you can correlate data more with other solutions, for example, with firewalls. The result of this integration is that it gives you much more information.
There are customers where the engineers have enough time to investigate all of the incidents. However, you can also collect this data in a CM and then in an incident and response management solution. It ends up saving a lot of time
Symantec appliances need improvement. The whole appliance environment is a robust system and it needs a massive amount of storage space. If you have to increase or speed up the background storage it's a pretty complicated process. The scalability and sizing is critical, and if you do it wrong you run into issues pretty quickly.
Symantec ATP doesn't offer add-ons or anything of that nature. It's a closed architecture, a closed system. It's based on a Linux OS, and we haven't got a lot of privileges to change anything.
That said, if you are integrated with content analysis, then you have to use a lot of very good add-ons for the content analysis to find and analyze and investigate. If you only have ATP it's not enough to be effective. You have to use other solutions from Symantec, like its content analysis. You have to integrate the messaging gateway or email security and so on.
I've been using the solution for two years.
The solution is mostly stable. However, these types of solutions can be blocking items and will need to be adjusted. If you have any LAN, for example, and an on-premise solution, then you need to change it. When you do you will lose the connection. Therefore, if you have LAN solution, you need to change the mode out of work hours.
In terms of the on-premises appliances, you need very big appliances to handle the storage. Users of on-premises solutions really need to size things up correctly at the outset, as it isn't easy to scale a physical environment.
We've contacted technical support in the past.
As of right now, with the Broadcom acquisition, many people are changing roles which causes support to be rather slow. The senior engineers are now moving to premium support. Due to these changes the customers aren't the happiest as they have to wait longer for help or information. This has only been happening for about a year, which, in thte scheme of things, isn't too long.
We've worked with Palo Alto in the past and have just started using Check Point.
Whether the initial setup is straightforward or complex depends on on the company and its requirements and if it plans to integrate the solution into other products.
Deployment times vary; it really depends on the organization's existing architecture and on the integration. For example, if you like to only implement systems for the EDR facility, all the EDR, along with the manager, is a pretty fast process. However, if you would like to integrate it with your email security or with your web proxy, or with anything else, that will be complicated and will lengthen the processes. The implementation can take anywhere from one month to one year.
The solution isn't the least expensive option. Other solutions do cost more, however.
We have been platinum partners with Symantec.
The solution is at a bit of a crossroads due to its acquisition by Broadcom and they changed their EDI solution because Broadcom had an EDI network solution too. There were EDI scanners in the network, but it's on the side. Now they have a new direction in this area, due to the fact that they want to solve these processes only from the endpoint side. Frankly, I am still waiting for the restart of this new direction. I do not think it's enough.
While most deployments are using on-premises, we have some hybrid and cloud solutions too. It depends on the customer.
Whether or not this is a suitable solution for a company depends on its network and requirements. Different products offer different benefits. A company needs to shop around to see which fits best. For example, it's not the best solution for enterprise companies. Also, their price is not the cheapest, however, there are many more that are more expensive as well.
I'd rate the solution seven out of ten.
We use the solution for endpoint protection. I'm an infrastructure team leader and we are a customer of Symantec.
Endpoint to network is a good feature, it can protect the line.
In general, improvements can be made but nothing specific. I think SonicWall and McAfee are better solutions. I think this is a good solution for someone looking for endpoint protection but not so great if you're looking for advanced threat protection.
I've been using this solution for about six years.
I think this is a stable solution, we haven't had any bugs or glitches.
I've contacted technical support many times, they are quite good and helpful.
Initial setup is relatively straightforward, deployment on our systems took about two or three months. We deployed with our own team.
I would rate this solution a seven out of 10.
