Symantec Data Loss Prevention Reviews

The most valuable features of Symantec Data Loss Prevention are endpoint security,  endpoint agent, and DLP. Additionally, we have been satisfied with the policies.

Symantec Data Loss Prevention could improve by having better system resource management, cloud option, and more features.

I have been using Symantec Data Loss Prevention for approximately eight years.

The solution is stable.

I have been satisfied with the technical support.

The price of Symantec Data Loss Prevention could be reduced.

I rate Symantec Data Loss Prevention an eight out of ten.

Where we are so far deployed is into the financial sector and in telecom, and they want to evaluate what kind of information users are usually trying to touch, which they're not supposed to be touched. They want to see that analysis. If there are any outflows, they want to mediate that as well - especially if there is any breach on the team.

Overall, it is an excellent product.

The product is stable. 

Technical support is very professional and responsive.

It's not a scalable product.

It only works on the Windows platform. It doesn't support Linux, which is unfortunate. Most of the clients these days use Linux. It would be ideal if Symantec could have more integrations with the different operating systems as well on the DLP. That would be much better.

The deployment is complex.

We have been dealing with Data Loss Prevention since 2008.

The stability of the solution is great. There are no bugs or glitches. It doesn't crash or freeze.

The solution isn't very scalable. A company can expand if they need to.

I currently have three customers using the solution at this point. 

Technical support is good. They are responsive and professional and the solution is stable. Clients are well looked after.

On the DLP side, we do Forcepoint and Symantec. It depends on the client and, and at which stage of the business cycle you are engaged with the end-user. If someone's already engaged with Symantec, then it's no use to follow up on the same product with the client. In that scenario, we go for Forcepoint. If the client is new and we are initiators of the solution, in that case, we prefer Symantec.

The installation of Symantec DLP is not straightforward. You need to understand the concept of the technology before you can deploy it. It's not as simple or straightforward and a certain level of skill set is definitely required. 

You need one engineer, a person in presales, and a backup in order to deploy the product.

Customers do have to pay a yearly licensing fee in order to use the solution.

The solution is deployed mostly on-premises, however, you can have agents on the cloud as well, and data classification can be done there. The server can be deployed on the cloud. It can be a hybrid as well. That said, it's mostly deployed on-prem.

I'd rate the solution at an eight out of ten.

Symantec Data Loss Prevention is used for endpoints to protect users from data leaks.

Symantec Data Loss Prevention is the number one product in its field. It does its job well and it has all the necessary features. It is definitely better than any other solution on the market.

There should be more information about the features of the solution and what they do. This way we would be able to use all the features that are available.

I have been using Symantec Data Loss Prevention for approximately five years.

Symantec Data Loss Prevention is reliable and stable.

The solution is highly scalable.

We have approximately 50 people using this solution in my organization.

We have not needed to contact technical support. We have our own internal team that handles support.

We did the implementation of the solution.

The solution should be less expensive to allow more people the opportunity to use it. Some of their competitors are less expensive. There is a license required to use the solution and we purchased an annual license.

I would recommend this solution to others.

I rate Symantec Data Loss Prevention a nine out of ten.

I am using the current version.

We are planning to implement OCT, which we consider a valuable feature. 

We also like the maintenance pack for bug inspection. We encountered many bugs, especially with the Endpoint MP1, the MP2 being the other one. 

I would like to see an improved interface, with better documentation and integration with other products.

The initial setup could also be better, so that the solution would easily interact with other monitoring tools without the need for taking further steps. 

I have been using Symantec Data Loss Prevention for four or five years. 

The solution is stable. 

The solution is definitely scalable. 

For non-critical issues, technical support lends email assistance. Otherwise, we will work with the log. For critical issues they talk with us by phone.  

The initial setup is easy.  

I cannot comment on the price, as this is in the purview of the finance team. 

I rate Symantec Data Loss Prevention as an eight out of ten. 

I am an L2 engineer. I'm doing the part of the implementation and the agent upgrades. If any requirements come in for Oracle upgrading we go forward and make it happen. Apart from that, we are doing agent installation and troubleshooting. 

Moreover, we'll be in contact with the SCCM team, and give packages to them. They will push the package to all the machines for the SCCM. We can connect to the virtual team and do the other lines for server backups or upgrades. 

The solution is very good at fingerprinting the documents. This means, basically if a user tries to modify the data or change the file extensions, the system will recognize this action. It will offer the DLP images, so it will fingerprint the data. If a user is trying to modify data, they're trying to change the extension to whatever data, it will tune in on the IP, based on the indexing. 

There are a lot of features. We can modify only particular agent configurations. 

A new feature I've seen is a device block, which is very interesting. Previously, we used to create a policy for blocking certain data, which was transferred from our local machine to the mobile media. Now, we found that there'll be one more option called agent configuration device control. Under the device control, there'll be a block device connections option. It will alert us that a USP has been blocked. 

The solution offers very good virtual machine learning. The ML will capture information based on certain policies. We haven't used it yet. We're still learning about it.

The solution offers good data classifications. What we used to do, is we used to create one template and we used to sit with different project team members. We'd collect the information from the project managers, on the management side. We'd put the information into one Excel sheet and collect the information from that. Now, we're using that to review one data classification tool. What it will do now is, whenever you're working in the document, is it will ask you to determine the data. It will ask that if it is internal or confidential.  

We can integrate with some other tools such as Splunk, which is very useful.

The problem is most companies use a single data protector. The drawback is that they will install Oracle in one server and the application also in one server and detection also, all in one server. If the server crashes, everything crashes. Things should be implemented on another server. 

Previously, when we had Dropbox, if we transferred a document, we would get a popup, and if we transferred 500 documents, we would get 500 popups. We're looking to find out if there is a way around this.

If we get a fatal error issue, if the agent isn't working out, we need a hard fix file. We need to check in pre-production machines. 

When we're doing data scanning, the machines can be slow. 

In the object capture recognition, which we implemented recently, there are a lot of false positives that have been happening. We are expecting them to fix this issue soon.

I've been using the solution for four and a half years at this point.

Occasionally, there are stability issues. If that's the case, I can help clients troubleshoot them.

The solution is very easy to scale. If a company needs to expand it, it can do so with relative ease.

Whenever any issues are reported, for example, a fatal error or multiple errors, or if any machines come up with a blue screen, et cetera, well look for patch releases. We tend to do that monthly and push them to machines.  However, sometimes the issues might be very bad. For example, sometimes the KB will be not compatible with the Symantec DLP, or some of the versions. Maybe an agent will be corrupted, or a machine will get rebooted multiple times.

Initially, we'll check the logs. We'll do the checking and the troubleshooting and the removal of agents if necessary. We initially collect requirement logs and upload them to the Symantec portal. From those details, they will create a hard fix file for us and we will implement it. 

We work well together. We're quite satisfied with the level of service they provide and the assistance they give when we have issues. 

The initial setup is straightforward.

Usually, if we are doing it from the scratch, every time when we are doing the implementation, there will be one document that will be created for other servers. 

If new users come on, they'll reference the document. It's part of our best practices. 

We recommend that someone should be available via stacking, somewhere. For example, to set up the password with the protector, or as an admin password. We used to prefer at least one person. If we get stuck, we'll have a Symantec engineer on a call to assist us. 

Usually, I'll do everything from the scratch, setting up the port under whatever LAN is required and what other system requires. 

For an Oracle installation, it will take three hours or four hours. And for the server that's at least one hour. A total of five hours to six hours is required in order to complete our implementation.

The maintenance is contract-based. Some of the clients will ask that only I implement the Symantec DLP. Then we'll do the implementation and we'll create some documents as per requirements. Clients will ask the contract be for one year or two years, and we'll do the analysis and the reports, which we need to send on a daily basis and weekly basis and monthly basis and quarterly basis. On yearly ones, we'll do the auditing. 

We used to delete the duplicate machines, or any machines supposed to be in stock or offline. Every month we will send the policy to our customers asking if there is anything they want to add, or any rule they want to delete, or anything specifically they want to create, et cetera. For example, if there are any personal kinds of users they want to monitor. We'll whatever they recommend. This is the type of maintenance I do.

The pricing is moderate. It's not the cheapest, or the most expensive. 

There are various types of licenses. For example, if you are a customer for endpoint prevention, that is a different license. And if you want to cloud prevent, that is a different license. It's flexible. If you need to purchase a full suite, you can purchase it, or if you want only endpoint or cloud or network, you can buy it as a separate command.

We are implementors. 

As of now, in my current company, I was designed to DLP around seven months back. My previous company is a service-based company. Normally we will connect with other partners. 

Usually, we are service providers, so we'll take the project from Symantec and we will implement the approach for our business partners. Then we'll go directly to the onset location and we'll stay there and we'll do the implementation and we'll create a policy, as per the requirements. We'll do the handout documents to the management team, and we'll relocate them to the local engineers. These kinds of activities I've done. For around four years, I've continuously been doing this DLP and encryption.

I'd recommend the solution. I'd rate it at a ten out of ten.

I use it in my own environment for data loss prevention.

I installed it for testing purposes. I've logged some of my data through different policies. However, I've only done this at the endpoint channel, not on, for example, email channels.

There's only one policy needed to implement for all channels. That's a good point for Symantec. To have one policy for all channels has been great. You don't have a user workload. You can manage everything through a single policy.

The solution is not user-friendly. I've had to do a lot of research to try and figure things out on my own.

Due to its database, I first had to install an Oracle database. This should change. The product should allow for the use of an SQL database, and, if possible, it should have an embedded database. The solution should be easier to integrate on different solutions.

The data classification is very difficult in Symantec. It's hard to integrate the detect activation tools, whereas, in Forcepoint DLP, it's better. It's very user-friendly and the quality is defined and it is very clear. Symantec should try to emulate those aspects of Forcepoint.

It's difficult to implement in a protected environment, due to its architectural layout.

The initial implementation is quite complex.

The technical support has really dropped in quality since Broadcom acquired the product.

I've used the solution for a month so far and for endpoint channel only. It hasn't been too long. 

The solution is stable. I've seen the people are using it in very large organizations with no problems. It doesn't crash or freeze. It's not buggy. There aren't glitches. However, it's difficult to maintain and run the product.

The solution is quite scalable. From articles I found online, it looks like you can manage around 5,000 to 10,000 endpoints easily through Symantec. You can expand it by quite a bit if you need to.

I've only been using the solution myself over the course of a month. I implemented the solution to two or three other users. I do not plan to increase usage as my intention is to move to another product.

The technical support, after Broadcom acquired Symantec, has been not very good. It used to be maintained by Symantec itself. Since then, there has been a drop off in responsiveness and helpfulness. After being acquired by Broadcom, the support, even at the endpoint level, took two to four days.

We aren't satisfied with the level of support. It should be faster.

This is the first DLP I've used, however, I am switching over to Forcepoint DLP. I'm not staying with Symantec.

the initial setup is not straightforward or simple. It's quite complex.

The whole deployment process took about two days or so.

In Symantec, you have to first install the Oracle database, then you can go on to install the enforce server and then detection servers. It will take time.

I have done the entire installation by myself with the help of some installation guides. I did not contact a consultant or integrator for assistance.

We have a license for our clients. However, in my case, I've only used the trial license in my environment.

I've looked into Forcepoint and it seems to be much better as it's user-friendly and there are some other features that I like. I've just looked into it for comparison purposes. I've never actually used it.

I would recommend this product to other organizations, however, I would warn them it's difficult to maintain due to its architecture.

We use it for data loss prevention.

I like the software as a whole. It's a good one. The tool's really working well, and the agents are good. It's not heavy, and it's working fine with the clients.

Technical support is pathetic. Stability and scalability can be improved as well. It would also be better if it could restrict Bluetooth transfers.

Symantec also uses Oracle databases, which isn't really convenient for most customers. It would be better if they switched to SQL.

I've been using Symantec Data Loss Prevention for two years.

It isn't stable. For example, when we compare it to other solutions like Bluetooth, it can't be controlled in Symantec, but others can. 

Scalability can be improved. 

Over the past few months, Symantec's support has come down drastically. Even though the issues were escalated, it remained unresolved.

Unfortunately, it's pathetic, and that's the reason why I decided to stop using Symantec, and I'm going to find an alternative.

The initial setup was really good. It's not very easy and also not very complex. There were some issues, but we managed, and it was running well. Managing Symantec DLP isn't difficult. It's easy. 

The price is competitive. Until last year, the price was okay, but it just increased more than 100% this year. There was no justification for that.

Unfortunately, I can't recommend Symantec DLP to potential users. This is because the support isn't good. So in that aspect, unfortunately, I cannot recommend Symantec.

On a scale from one to ten, I would give Symantec DLP a three.

The product has enterprise-level use cases. The product protects the endpoints and the network. I mostly worked on endpoints and networks.

We used the solution to protect data from going out of the organization based on emails or regular expressions. We didn’t want users to share their debit or credit card details with others outside.

The product is very robust. We can ensure that whatever we want to protect can be protected much better than Zscaler. The tool uses regular expressions, OCR, and other useful enterprise protection features.

The product must improve its interface. The solution did improve the interface, and it looks better. However, the report filtering features could be much better. The in-built ITSM module needs to be revamped.

If anybody has been flagged for violation, the violation content shows all the credit card details. Any administrator can see the credit card details. I would like to see the tool integrated with Symantec Endpoint Protection.

I have been using the solution for more than a year.

The tool is pretty stable. I rate the stability a nine out of ten.

The scalability is good. I rate the tool’s scalability a seven out of ten.

The technical support is not that good.

Neutral

The initial setup was not very straightforward, but it was kind of easy.

We have seen an ROI on the product.

The product charges a little on the higher side.

People evaluating the solution must test the product against various vectors of threats. Symantec is very consistent, but sometimes it is a hit or miss. It is 95% accurate. It should be appropriately evaluated. Overall, I rate the solution an eight out of ten.