Symantec Data Loss Prevention Reviews

We approached one of our partners for Symantec Data Loss Prevention and implemented all of these things through the partner.

Symantec Data Loss Prevention's ability to adapt to evolving security landscapes is always helpful. Any security tool is always helpful for any organization and has to be implemented in any organization around the world. By implementing these kinds of security tools, our security posture is also very secure, meaning the confidential data. We can use it for many features, based on what we have right now.

Continuous monitoring is always necessary in any organization when using Symantec Data Loss Prevention. Once you deploy any security tool, of course, you are not 100% confident. As we say, the zero trust model applies. We need continued improvement of any product. We cannot trust that once we deployed in our organization, confidential data can be protected within the organization. We cannot be 100% sure of that. That is why we need to, on a periodic basis and at intervals, conduct some reviews, and we need to do a review of the rules what we have implemented within that particular mechanism, which is nothing but Symantec Data Loss Prevention.

The centralized management console in Symantec Data Loss Prevention helps me understand the data flow analysis part from each and every department. You have to understand the business, what kind of data goes out, what kind of data they deal with their vendors and third-party vendors, and all these things. Based on that, we can create the policies.

In future updates of Symantec Data Loss Prevention, I would like to see improvements based on the many attacks happening around the world. They can improve their product and the features mainly to focus on how we can prevent that data within the organization, over the cloud, whatever it is, as that is important.

I would give the stability of Symantec Data Loss Prevention an eight.

I rate the scalability of Symantec Data Loss Prevention as a nine.

I rate the technical support of Symantec an eight.

Positive

Currently I am using Forcepoint DLP also, and before Forcepoint, I worked on Microsoft Purview. Microsoft Purview is also very good, but in terms of cost, it's very cost-effective.

We approached one of our partners for Symantec Data Loss Prevention. Through the partner, we implemented all of these things, and it was done through the partner.

I am not aware of the licensing cost for Symantec Data Loss Prevention because the licensing cost is up to senior management's decision. I really don't know what the cost of that is. It is based on, of course, what are the targets you want to achieve within the organization. If it is a large target, then of course your cost will be high. If it is a low target, then of course your cost will be low.

I have experience with solutions such as Symantec Data Loss Prevention and Microsoft Purview Data Loss Prevention. I have used both products.

The interface of Symantec Data Loss Prevention is very good. There is no word for that as it is very user-friendly. Not only Broadcom, but also the Microsoft Purview interface is also very good.

I rate this review overall as a nine.

Symantec Data Loss Prevention is completely designed for the enterprise area because it enables great segmentation. For example, if you have four branches in different cities of Turkey, you can create different detection servers. You can create a detection server for the endpoint of location one, create a web detection server to detect all web data loss, and create all these servers for each location and user sets, computer sets.

The discover options are very different, and you can discover what's happening in your network and file servers. We had a case where a banking company not using Symantec Data Loss Prevention lost 500 customer information pieces and their personal credit notes through screenshots. A malicious actor created reports for different 500 people, not taking the PDF file of the personal report but instead taking first credit note page screenshots, stealing all data via screenshots. When this case occurred, I suggested there must be a detection method for images because Data Loss Prevention solutions must analyze the details of all images. Initially, Symantec created an OCR module, and they are now fully capable of searching what's inside images.

When discussing this with DLP customers, they asked about bank robbery scenarios involving credit notes and whether Symantec could detect this. I wrote this concern to product development at Symantec. Many engineers wrote to Symantec HQ about this issue, and subsequently, they added the feature.

Symantec Data Loss Prevention is completely designed for enterprise area, permitting extensive segmentation. You can create various detection servers for different locations, allowing organizations to tailor the DLP solution to each branch and user set. The detection capabilities extend into the network and file servers, enriching the discover options. Symantec's OCR module enhances image analysis, crucial for detecting data loss via screenshots, improving the overall security posture against data breaches.

Symantec Data Loss Prevention provides a centralized management console with an Enforce server, which is the management server. According to your license, you can create many servers. In one of the biggest banking companies, there were 22 detection servers in HQ for different email gateways, web gateways, file servers, and endpoint groups. In another banking company with about 4 or 5,000 users, they installed six servers, managing all DLP activities on just one Enforce server for each company.

Symantec is integrating all branches of DLP to the cloud side. If a company hosts their emails on the cloud, Symantec is capable of handling DLP processes of this email traffic. If their file servers are completely on cloud, Symantec can also discover all file server features working on the cloud. Symantec continues adding these features, and it works more effectively with each version.

A significant case highlighted an improvement need when a banking company lost 500 customer information pieces through screenshots. The data theft occurred through individual screenshots of credit note pages rather than taking complete PDF files. This incident led to the suggestion for implementing image detection methods, as Data Loss Prevention solutions needed to analyze image details. Symantec responded by creating an OCR module, enabling the capability to search within images.

The pricing structure remains an area for improvement. We lost a POC despite installing 2,000 endpoints because Symantec Data Loss Prevention is more expensive compared to other solutions. Although the competing product couldn't match all the best practices, the price difference influenced the final decision.

I started working with DLP in 2011 at Comtera, a McAfee distributor. Since 2016, I have been working exclusively with Symantec Data Loss Prevention as my sole product.

We are currently at Redington, one of two distributors in Turkey. In technical support, we have a lab environment for Symantec. When we open a case about our NFR license or installation, including demo installations, they respond quickly. We conduct sessions to solve problems for customers, and they also perform these processes. The support provided from both Symantec Turkey and distributor companies enables us to support customers and partners effectively. The support side of Symantec is commendable.

The basic installation of Symantec Data Loss Prevention is efficient. Installing the database and Enforce server takes less than a day. For a configuration with five detection servers and one Enforce server, the complete setup takes only two days. However, in Symantec DLP education, it's emphasized that installation is only 10% of the DLP processes.

After installation, remediation studies, incident analysis, rule creation, and fine-tuning are necessary to receive true incidents. Initially, Symantec Data Loss Prevention generates thousands of incidents, but after fine-tuning and eliminating false positives, this number reduces to approximately 50 or 60.

The pricing structure affected a POC deployment where we installed 2,000 endpoints. Despite being a successful POC, the client chose another product due to cost considerations. Symantec Data Loss Prevention is more expensive compared to competing solutions.

I would rate Symantec's support as 8.5 out of 10. The Symantec Data Loss Prevention tool deserves a perfect 10 out of 10 rating. As technical professionals, we must be trusted advisors, and this trust must be earned. While not all Symantec products deserve top ratings, with their EDR solution potentially rating at six or five, the DLP solution truly merits the highest score.

Overall review rating: 10/10

The primary use case for Symantec Data Loss Prevention is for data leak prevention and as a security tool.

The best feature in Symantec Data Loss Prevention is the Data Loss Prevention itself, which is for PII, Personal Identification Information, to prevent sensitive data leakage, and the main feature is the mail and web integration feature.

Symantec Data Loss Prevention helps in identifying and securing sensitive data in my organization by being used for the internal, outgoing, and inbound traffic, specifically for any personal identification data leak prevention and any PII data.

There is room for improvement in incident management within Symantec Data Loss Prevention because most of the incidents are false positives. It is very critical to understand whether an incident is a false positive or a true positive, particularly because some false positive incidents are quarantined.

I have used Symantec Data Loss Prevention for the last four years.

My experience with the centralized management console in Symantec Data Loss Prevention is that it is user-friendly, allowing us to manage the data flow and updates. The stability and scalability are its most important features.

Symantec Data Loss Prevention adapts to evolving security landscapes by handling MIP labels and sensitivity categorization, which impacts my approach to data security as it also supports multiple protocols.

I rate the technical support for Symantec Data Loss Prevention as very best, giving it a rating of ten out of ten.

Previously, I worked with Forcepoint DLP, and I find Symantec Data Loss Prevention to be much better for creating policies and for the segregation of data.

The deployment of Symantec Data Loss Prevention is easy and very comfortable. The deployment process for Symantec Data Loss Prevention takes time due to its four-part structure, with the most time spent on the database server installation, which includes the database, the Enforce server, and then the detection server.

When compared to other solutions, specifically Forcepoint DLP, I find Symantec Data Loss Prevention to be easier for agent deployment and allows for customer policies, while Forcepoint DLP offers a lightweight solution.

The automatic updates and policies adjustments in Symantec Data Loss Prevention depend on the customer's requirement. For example, if the customer is in a financial environment, the most suggested policy is the EDR-based, index data matching, such as for account numbers, credit card details, and Aadhaar card numbers.

I would assess Symantec Data Loss Prevention's effectiveness in monitoring and controlling data movements across my endpoints, networks, and storage systems as successful since we have used it to monitor the endpoint, storage, and network. On the network, it provides monitoring and prevention.

This has helped my organization at the endpoint level by allowing us to create policies for mass storage devices and user-based policies.

Over one thousand users work with Symantec Data Loss Prevention solution in my organization.

My clients include both small enterprises and medium enterprises.

Symantec Data Loss Prevention does not require any maintenance at all.

I find that Symantec Data Loss Prevention is not an expensive solution.

My advice for others looking into implementing Symantec Data Loss Prevention is that it is an on-premise solution, which is why I selected it, especially since other products like Forcepoint DLP have a lot of bugs with agent installation and uninstallation.

I have given this product an overall rating of nine out of ten.

I am primarily using Symantec Data Loss Prevention for MIP labels, sensitivity categorization, and securing data such as confidential PAN card and Aadhaar card numbers. I also use it for keywords matching tied to customer-specific project codes and email policy configuration as per project requirements.

Symantec Data Loss Prevention has proprietary metadata and is well-suited for endpoint-level security. It stands out for supporting multiple protocols like email and SMTP without needing user profile login for endpoint agents. Once policies are downloaded to the local system, they function independently of a user's login. The solution helps enhance security operations when integrated with ServiceNow and offers robust incident response capabilities.

A main disadvantage of Symantec DLP is its reliance on Oracle, especially compared to other products like Forcepoint, which offer MSSQL database options that are more convenient.

I have been using Symantec Data Loss Prevention for more than eight years.

I have never experienced any stability issues during the eight years of using the solution.

Scalability poses challenges primarily when integrating with proxy solutions through ICAP. However, when using native proxy solutions, scalability issues are minimized, and the solution remains stable.

I rate the technical support from Symantec as a seven out of ten. The support team changed from MTechPro to a different partner, affecting our experience. There is room for improvement.

Neutral

Previously, I worked with Forcepoint DLP until 2022. Forcepoint offers a lightweight solution that's beneficial for agent deployment, allowing in-team deployment without the need for custom, unattended code.

Symantec or their partners provide support for installation and charge for the one-time installation.

I evaluated Forcepoint DLP, which is lightweight and offers benefits in agent deployment over Symantec.

I rate Symantec Data Loss Prevention seven out of ten. 

With the bundle of all Symantec and Broadcom products, users can enjoy complete features. The solution provides a comprehensive experience when used in a bundled environment.

Symantec Data Loss Prevention (DLP) is highly effective in safeguarding sensitive data in cloud storage. Its granular features allow us to tailor implementations according to specific use cases and customer requirements.

Symantec Data Loss Prevention primarily targets confidential data. We utilize the indexing feature along with Endpoint Discover (EDM) to analyze consultation files. This involves scanning their content using OCR and managing data access accordingly.

Symantec Data Loss Prevention (DLP) doesn't inherently classify data, but it provides robust features for managing policies and incident response effectively. The incident response options and reporting features are particularly strong, with the inclusion of Incident Classification Assessment (ICA) for integrated reporting. While DLP itself doesn't classify data, it can respond to classified files based on configured policies. DLP can be integrated with other classification tools like GoldenGate, data visibility tools, or Microsoft MIP for enhanced data protection and management.      

Agent configuration should be improved for easier interaction for users, particularly by allowing configuration changes to be done on a grid. I would like to see OCR (Optical Character Recognition) features extended to endpoint devices in Symantec DLP. Currently, OCR is only available for network channels, but many users also require OCR functionality on endpoints, especially for scenarios involving data migration or interaction with USB devices. Enhancements for OCR support on endpoints would be beneficial for technical support and implementation on these devices.

I have been using Symantec Data Loss Prevention for the past 7 years. 

I would rate stability 9 out of 10. The solution has proven to be smooth and reliable in maintaining data security and protection, earning a high rating for stability.

I would rate Symantec Data Loss Prevention (DLP) as a 9 for scalability. Our customers range from small to enterprise businesses, with varying numbers of endpoints and data levels. 

The service quality declined after the platform transition. There's room for improvement by assigning support engineers based on region to ensure better assistance.

Positive

I would rate setting up Symantec Data Loss Prevention (DLP) 7 out of 10. It can be challenging initially, especially for newcomers to the Symantec solution. It typically takes three to four implementation attempts to become comfortable with the setup process. Following the prescribed steps is crucial, as it leads to a smoother experience and better understanding of the setup requirements.The deployment process for Symantec Data Loss Prevention (DLP) is relatively short and can vary depending on specific requirements. If implementing only the core features, it typically takes about two days. However, if additional components like the endpoint and network channels are included, it may extend to three to four days. 

In terms of pricing, Symantec DLP offers reasonable rates compared to other products like Forcepoint or Jargill, making it a good investment for ROI, typically seen within two years.

I recommend using Symantec DLP, especially for its smooth integration, tiered architecture, and efficient troubleshooting, earning it a solid 9 out of 10 from my experience.

We used Symantec Data Loss Prevention for security purposes, mainly to handle confidential data and protect it from external interventions.

Symantec Data Loss Prevention helped us secure highly credible data of our customers, protect it from being copied, and safeguard it from external threats.

I found Symantec to be user-friendly and easy to use. It was easy to install and work with. These features were some of the factors I liked about the product.

It's been around six months since we switched. I don't recall all necessary updates. However, I do recall the installation and recovery time took longer than expected, which impacted our payment gateways and token changes. 

Updates sometimes overlap, causing technical errors.

I worked with Symantec Data Loss Prevention for around one year and four months.

Symantec Data Loss Prevention was definitely stable for our needs.

Different teams managed scaleability and elasticity. I did not have direct involvement in this aspect.

The technical support from Broadcom was splendid. Whenever we wrote tickets, they were answered immediately. Their support was remarkable.

Positive

We moved to a different vendor based on the organization's decision. However, I did not have control over this switch.

The initial setup and installation were managed by the IT tech team. Deployment took longer, particularly during installation and server restarts.

The IT tech team handled the installation phase.

I don't have a clear idea of the ROI.

I do not have an idea about pricing, as it is handled by another team responsible for procurements.

I haven't used another DLP solution apart from Symantec.

For any technology meets or usability meetings, I have often recommended Symantec Data Loss Prevention.

I'd rate the solution nine out of ten.

We use Symantec DLP because we have different kinds of users who have been moving around for the mobility of their work, they work either from office, home or other offices. So the encryption of this solution supports us in controlling the data within the organization and not getting any data breached. 

All of the features are really important, including DLP for the OCR and endpoint. It will be all of the combined features that will give you the strength to control the data. Every feature has its own uniqueness, different control and will help you to protect the data. 

Their support program needs a lot of improvement. If you are stuck somewhere, getting their support can be difficult. 

Adding the feature of control over Bluetooth is very important right now, most BOPs are don't get control over the Bluetooth function. The features would become more friendly and their dashboard would help us. 

I have been working with this solution for four years. 

I would rate stability an eight out of ten. 

I would rate the scalability an eight out of ten. Our company has about two to three thousand users of this solution. 

Their support program needs to be improved. 

The solution has a simple setup and upgrade process. But both things require time to mature and further improve. The deployment process takes only a day if you have the hardware. 

The product pricing is above average, near to high. 

Trend Micro has a complete suite just like Symantec DLP. Both are good products and nearly equal to each other.

I would rate this product an eight out of ten. 

The tool's most valuable feature revolves around the area of IDM.

Creating any new Microsoft policy is easier compared to Symantec Data Loss Prevention. The creation of any new policy in Symantec Data Loss Prevention needs to be made easier.

I have been using Symantec Data Loss Prevention for around five years.

The solution's technical support is available at a toll-free number. We can directly connect with the tool's support team, but it takes some time. The follow-ups will be there from Symantec's end.

Positive

I switched from Symantec to Microsoft. At the time, there were a lot of, and I had an opportunity to work with, Microsoft Teams. I chose to use Microsoft because I got the opportunity to use the tool, and I want to explore this as well. Other DLPs were there in the market, but most of them were associated with Microsoft.

Microsoft's policy management features are better than Symantec's.

The product's deployment phase was easy.

The tool has impacted our cost savings and reduced incident response times. The tool helps save money and protect data.

I think it is an expensive tool.

The policy management capabilities are really effective.

The tool's policy management capabilities aid us in the area of compliance.

The tool integrates with other security tools, just like how Microsoft works.

I have not dealt with any AI capabilities in the tool.

I recommend the tool to others. The software is sufficient, especially support-wise, and it is the same as Microsoft.

I rate the overall tool an eight out of ten.

The use cases depend on the industry. The use cases for the telecommunication industry and manufacturing industry are different. Typically, the tool is used for data loss prevention.

The product is mature. It has a simplified GUI. We do not have to navigate and hop to different places or UIs to make things work. Everything is in one console. We have a unified platform to do everything. Symantec has one of the best incident management capabilities. It can also be integrated with ServiceNow. We do not have to just use incident management on the Symantec Data Loss Prevention console. We can use ServiceNow, too.

Symantec Data Loss Prevention is a one-stop solution for DLP. Reporting for incidents is a USP of the solution. We get all the details we need. If I detect something but my incident response is weak and does not give me accurate or required details, then it's useless. Any detection will not help me if I do not take prompt action.

The product must provide data encryption. It is integrated with Microsoft MIP to import the labels. It can be used to apply RMS to the files. However, the product must also enable data encryption other than RMS. Elastica must be more flexible and user-friendly. The documentation on the cloud CASB must be more mature. Symantec must reconsider how it is sold to the end user.

I have been using the solution for eight to nine years.

I have never seen Symantec Data Loss Prevention crash or stop working.

I rate the product’s stability a ten out of ten.

Since the solution is deployed on-premise, the scalability depends on us and how much we want based on the resources available. However, the product is very scalable. We just have to get the server installed and connected, and it starts working.

The support people don’t just email us to say they have taken our case. One of the best things is that they give us details and ask about our problems. They prefer getting on calls, which support people from other vendors do not do. Other support teams usually email us and ask us questions. The conversation is only through emails.

Symantec’s support team asks for details initially and tries to get on a call to understand the problem well. They do not wait for five to six days to respond. The response is quick. The engineers at L1 and L2 also know how the product works. It would be one of the best things when the L1 engineer resolves a critical issue caused by bugs. If the issue is due to other environment-related issues, the L2 engineers get on a call and help us.

Positive

The price is a bit high. I do not know Symantec’s sales model, but the pricing is high. Currently, Symantec is providing solutions to certain big customers. I do not think it is good. It deprives other organizations of a very good product.

The solution is more mature than Purview. Symantec Data Loss Prevention is an enterprise product. It is very mature and has different modules. Symantec’s technical team and the end users know the product well. If Microsoft updates something in the backend, the product functionality changes the next day, and we are unaware of it. It is not good when we work in security.

We are partners. I rate the CASB product five out of ten.

Overall, I rate the solution a ten out of ten.

We use the solution to prevent it from data leakage.

Symantec DLP covers almost all the main trajectory of confidential data, including storage, endpoints, networks, and the cloud. We use it for discovery, prevention and network monitoring on the network side. In the cloud, we use cloud services such as email, detection services, and discovery.

Symantec Data Loss Prevention can both monitor and block data at the endpoint level. It can prevent copying and encoding of HTTP data to various sites like Google, and Webex. It can also prevent data leakage by capturing and blocking various forms of data, including images, videos, and audio. Even if an end user attempts to send an image file or screenshot, it will undergo scanning. Symantec Data Loss Prevention will extract fingerprints from the image and prevent the data from being transmitted.

Data Masking could be improved.

I have been using Symantec Data Loss Prevention as a reseller since 2005.

The product is stable.

I rate the solution’s stability an 8 out of 10.

I rate the solution’s scalability a 7 out of 10.

The initial setup is moderate. It'll take a day or 2, depending on troubleshooting needs and database integration. It only supports Oracle databases.

The product is expensive.

I rate the product’s pricing a 3 out of 10, where 1 is expensive and 10 is cheap.

We do have many built-in components on the policy tab. So, if you're in the UK or anywhere else, we have some pre-built policies, making it easy for users to configure. These policies cover SSN, driver's license information, and other sensitive conversations. Additionally, we have some import policies, making the process even easier.

We have almost 65 components, and we are the ones handling the stack for Broadcom. We are responsible for both level one and level two support for Broadcom.

Overall, I rate the solution an 8 out of 10.