Symantec Endpoint Security Reviews

Our primary use for this solution is for antivirus, website protection, and malware protection.

The most valuable feature for our organization is the antivirus, as our staff is the target of zero-day malware and viruses.

Better communication and coordination with Microsoft would help to prevent delays that are frequent when operating system updates are released. As it is now, when a new build from Microsoft comes out, we get warnings to say that certain applications are not compatible. We sometimes just have to wait until a new version of this solution is released in order for it to work properly. One of the problems is that Microsoft releases updates often, and sometimes they don't tell anybody. This can lead to the whole configuration being corrupted.

I would like to see a hybrid version of this solution that covers both in-house and cloud-based servers. 

This solution is very stable. It is "install and forget".

Once you install the solution on the server, it is very quick when it comes to updating the clients. Specifically, it sends packages really quickly to all of the clients to ensure that they have the latest build. It is transparent and quick.

This solution is constantly in use. It runs 24/7.

We have between sixty and seventy people, both IT and non-IT staff, who use this solution. The latter are primarily working in Microsoft Office and SharePoint environments.

The technical support is ok. You create a ticket and depending on what the issue is, and whether it is an emergency, they give it a level such as one, two, or three. After this, they take action and they are pretty good.

Most of the solutions to things like installation issues or other incompatibilities, they are quick on creating "How to" pages in their help.  

My understanding is that we were running Kaspersky before this solution was implemented, but I was not here at the time.

The initial setup is straightforward. Also, we have just updated, and the installation over the top of the old one was perfect. It saved all of the data that we had configured from the beginning, did a backup, installed the new version, and deleted the only one. It was good and simple.

The deployment takes approximately one hour, and one person can handle both deployment and maintenance.

We performed the installation in-house.

This solution protects us and we do not get any viruses, so this can be considered the return on our investment.

We receive a discounted price for this solution because we are a non-profit organization. There are no costs in addition to the standard licensing fees.

I was not at this company when the solution was selected.

My advice for anybody implementing this solution is to consider the rules that you want to define. Installation is straightforward, but you can make it simple, or you can make it pretty complex.

For example, you can set up specific groups for in-house or external users. You can also install clients that only touch base occasionally, such as logging into the internal environment once per year. It can also be used on Virtual Machines, where the client's resources are limited or restricted. In a hosted environment, it does not have to be installed on the individual VMs. It can run on the host and it will scan everything.

There is also a cloud version of this product out now, which covers people who are more cloud-based.

So far, I find that this product works pretty good.

I would rate this solution a nine out of ten.

SEP was used mainly to protect desktops/laptops of students, faculty, and staff (about thirty-five hundred in total).

Symantec was also used as messaging Gateway for email filtering (moved to Office 365).

SEP was very useful for protecting devices that belonged to students, faculty, and staff. However, it was a source of problems for some users, as some services/apps in their devices were blocked/frozen.

The most valuable feature is the virus and malware detection capability.

This solution needs better compatibility with services and applications.

We are using this solution for endpoint protection.

This solution has helped us because it is really useful for blocking all kinds of viruses.

The support for virus checking in containers is very useful.

We have also created policies to assist with blocking evasive applications.

We are also using the Symantec Messaging Gateway.

If we install a client's software in our location, such as Microsoft Office or Adobe reader, we would like to have these endpoints protected.

The solution is stable.

We have had some little issues and file problems when we are logging the calls through the technical team.

Sometimes, when we are creating a new policy, some of the clients are not being updated with the latest policy.

We have approximately one thousand users with this solution.

Technical support for this solution is good. We speak to the technical support team directly.

I started with the company after this solution was implemented.

The initial setup for this solution is easy. Not a problem.

Our deployment took less than fifteen minutes, and a single engineer is enough for the maintenance.

The Symantec technical team handled the implementation for us.

The licensing is calculated on a monthly basis, but we use a three-year renewal. There are no costs in addition to the standard licensing fees.

They did evaluate other solutions including Sophos, ESET, McAfee, and Kaspersky. We did not find these as user-friendly.

The support is very good. It is easy to manage all of the clients and deploy new policies.

I would rate this solution a ten out of ten.

My primary use case is endpoint antivirus/antimalware security on Windows computers, on and off my office network.

Initially, it provided easy centralized management of policies and devices. Threat protection has always worked well.

I originally posted the most valuable feature is centralized management - after consideration, I realized this is not accurate. I've used the on-premise and cloud versions of SEP.  I prefer cloud versions as it is centralized and easy to manage, but every cloud-managed solution does this. I have many cloud managed solutions I use, but I've found SEP to be quirky and inefficient at best. My personal experience is the protection works well. I haven't had an infected computer in years (managing 300 devices now, more over the years). The problem with the protection is I've encountered far too many computers where the licensing fails at some point after installation without warning or notice. You have to check each computer routinely to verify the license is good and the agent is updating. This directly impacts the core reliability of the product since license "expiration" (failure) prevents the agent from updating.

This latest version upgrade/migration over the last year has been atrocious.

There have been numerous support issues and calls with Sr. VPs at Symantec, who were always understanding about the problems, but the product has proven unreliable to install and manage. The protection itself seems as solid, but if devices are losing their licensing without notice for no reason, it's only a matter of time before they become compromised.

The bottom line is that when it comes to management, reliability of management, reporting, alerting, installation, and licensing, if these don't work reliably you can't trust the product's security capability.

I've seen way too many outages and "maintenance" events in the last year on the new platform to consider it stable.

This latest version has proven unreliable for management and installation.

I would no longer recommend this product as a viable security solution.

We are a partner or distributor of Symantec Endpoint Protection. We use this solution for antivirus and cyber threat protection. Internally, we are using it to ensure that we receive security against all known attack vectors with efficacy, cyber defense at scale, high-performance client, and on-premises management architecture.

Endpoint Protection has improved our operations by protecting our servers from potential cyber threats.

The solution offers a Device Control policy to block all USB thumb drives and all USB hard drives. We use this feature for some areas here in the company and it's been great for us because these areas contain very important information and we are doing everything we can to avoid breaches, data theft, and data leaks.

We must have complete dissolution with advance care protection but we are finding out that we need more Symantec technical specialists. We have identified a need to hire at least one more technical specialist familiar with Symantec to improve our solutions capabilities.

Additionally, an endpoint detection response feature would be great but not with an additional license, it should be included as an additional feature. We have identified this as a solution that our customers are very interested in, but they don't want to purchase additional subscriptions.

The stability is great.

The scalability of the solution is great.

Currently, we have around 400 employees using this solution.

We haven't used their technical support. We receive support directly from Symantec here in Mexico and they are pretty responsive.

There were difficulties at the beginning with the setup. I wasn't directly involved with the initial setup but from what I heard, from the IT department, is that they encountered issues when attempting to create differentials between the principle, directors, and manager groups.

The deployment and improvements took two months to implement because we have branch offices all over the place.

Deployment required three people and support only requires one person; the IT manager.

Compared to other products and brands here in Mexico, the price is okay, somewhere in the middle. Our solution is unique in that it can adapt to a variety of pricing and licensing constraints considering we have the corporate, government, and academic mandates. The account managers here in Mexico always give us support in the form of applicable discounts and adjustments.

The management console is great. We only have only one person managing and controlling the console. It seems to be very user-friendly.

On a scale of one to 10, with one being the worst and 10 being the best, I would rate this product a nine. To make it a ten, it should be free. The cost is restrictive to some degree.

We work with Symantec DLP and Endpoint Protection as our main security solutions. We have deployed Endpoint Protection for a few customers and for our own organization as a test: Endpoint Protection, Email Security, and DLP.

We are a partner but we are a user as well. Our company has more than 100 employees and our group, which is made up of different companies, has more than 400 employees, and we are planning to deploy it for our group. Our company is the system integrator, while other companies within the group are service providers or different types of service integrators for areas like fintech.

It has improved our productivity and, from a security point of view, we feel safe from spam. For endpoint protection, we are not facing problems now.

I cannot say the stability is excellent, but it is very good.

Scalability, of course, is good. They acquire different companies sometimes and they adapt their different technologies.

We get good support from Symantec. We find that during integration, if we face any problems, we get a good response from the OEM and we solve them very quickly. Technical support is very good, they have a toll-free number.

We didn't have anything at this scale. We just used Kaspersky as an antivirus, but we are not using it now, we are using Symantec Endpoint Protection which covers everything. Symantec is better, it covers more requirements. Antivirus solutions only cover some basics, but Endpoint Protection is the next generation. It covers antivirus, spamware, ransomware; all this is covered through Endpoint Protection.

We selected Symantec because it is at the top of industry reviews. We also know that globally, Symantec spends a lot of money for R&D and we believe it will remain up to the mark.

We also use Symantec Email Security which improves our productivity and protects our valuable data. Email Isolation is the only feature which the others don't have. When we use it we find that we are free from phishing mail, etc.

The setup was straightforward. It takes very little time. It's not that complex.

I have not actually done an ROI calculation, but from what I understand, considering the cost and complexity and the technical support and deployment, if I consider all these things, the return on investment is good.

Pricing and licensing for our country is very good. It's not that expensive and the endpoint security is very good. It's not as cheap as some others, but they are not as good.

 We are evaluating Imperva, as we have some customer requests to do a PoC on that, as well as other product like F5 and A10. We have the PoC boxes for A10 for load-balancing and DDoS. We also have some NGFWs, like Check Point - we are doing a PoC and testing it as a firewall and as endpoint protection. CyberArk is another among the products we are focusing on for our customers.

Our market is very aware of Symantec, A10, and F5. F5 is predominant and, obviously, there is Cisco as well, which is a dominant company from a firewall point of view. We don't push all of their security products, like FirePower etc., because we understand that they are not a leader for firewalls. Palo Alto, Check Point, and Fortinet have been leaders in the last few years. 

But we are focusing on Check Point and Palo Alto. They are slowly growing and customers are buying their NGFWs and their endpoint protection or some other security product they have, for double-protection.

Since we have done two very successful PoCs, one live PoC for my largest customer, which is in government, and another for a private company, I recommend that other customers take the Symantec solution as their main security: I prefer Endpoint, Email Security, and DLP. Symantec has other solutions which I don't prefer. They have network analyzers and WAF but I prefer the Imperva WAF, which is better.

In our company, most of the 100 people are using this solution and their roles range from management to normal end-user. We have three staff, maximum, for maintenance, and their roles are IT administrator, and system managers. We do plan to increase our usage.

I would rate this product at eight out of ten, based on the technical support, cost, and their local presence as well.

It's an antivirus solution. We need something centralized because we have hundreds of desktops and laptops. We have taken this solution to manage antivirus, security, etc., all together.

Symantec, as an antivirus solution, makes things far better on the management and the vulnerability scanning sides. From a management point of view, it is good.

The fact that it has centralized management is the most valuable feature.

In addition, the support from Symantec is very important. It is a global company and they give very good support. That is an important factor here because we are sitting in Africa and getting support on time can be a bit tougher. In this way, Symantec is a good fit for us.

Also, the console is very user-friendly. It is easy to understand, easy to play with it, easy to make up policies. And you can customize your policies. It's not like there's a set of policies that has been set out. Other products also have this kind of feature, but it is more user-friendly and a better product with better support.

We have talked to Symantec about a feature that is lacking. Any external device which is inserted into a computer should be subject to an auto-scan policy, to automatically scan it before accepting the device. Let's say I have a pen drive and there is a Trojan virus for which the signature is not updated. If the signature is not updated, then the system should automatically scan and understand that there is a foreign file and it should be blocked immediately. That is the one feature that I feel is missing. They need to make it more user-friendly, so that when anyone puts in a USB stick it will be scanned, popping up any problems before it is used. This is a feature they need to work on, in my opinion.

It is very stable.

For us, scalability is fine, there is no problem, no restriction, other than we cannot go beyond our licenses. If we are extending it, of course we need to pay for it. But it's not like something is restricting or blocking it. The scalability is okay. We have connected more than 1,200 computers and they are working well.

We have one staff member who maintains the solution. He is our network security guy and he is also Symantec-certified. We also have second-level support from Symantec. If anything is needed we get support from them. We pay them yearly for that.

Right now, we don't have plans to increase our usage of the solution.

The technical support is fine, no problem.

The initial setup is straightforward. I don't think it is complex. I have long experience as a system administrator. For me, as a technical person, it was straightforward. We definitely took support from Symantec and they helped us a lot in the deployment process.

Since it was a long time back, I don't remember exactly how long the deployment took. We keep updating it now. But I don't think it took more than three working days, including deployment and automating installation for all the workstations. We shifted from another antivirus to this one.

We had help from Symantec and their partners.

We have definitely seen return on investment.

We pay on a yearly basis and have a three-year contract.

Understand your environment and what kind of security product you're looking for. Every environment has different requirements. Everybody has different kinds of file formats and data classifications.

For Symantec is a good product for our environment. It helps us a lot. It provides seamless operation. It's not like we have to intervene every day. People are monitoring and, if they find a machine that is not working or not connected, they create a remote connection to see what the problem is and to fix it.

We are using Symantec Enterprise, but you have new threats coming into the world market and you definitely have to be up to date. We found information on IT Central Station and we set up a comparison of the technologies.

Every antivirus, in my experience, is only successful 95 percent of the time. No antivirus can tell you that you are 100 percent protected. The important part is how the backend works. If the backend is giving you support, they answer immediately and help you, that is important. In that way, Symantec is a good product and we are happy with it.

A couple of our customers have deployed and are using Symantec Endpoint Protection.

I joined COMPAREX eight months back, and they have been using Symantec Endpoint Protection for two and a half years.

Symantec has cloud-based endpoint protection, so whether a user is off the network or on the network, the endpoint will be protected by the cloud.

It has very unique features, which are not available with other vendors. E.g., there is a feature called SONAR.

You can integrate it using ATP, so all the endpoints communicate to each other on the security platform. 

17 million sensors are fitted all over the world. 

About four years back, Symantec's signature was very heavy and their signature patch was around 200MB or 300MB files.

Symantec Endpoint Protection is stable product, if you compare it other vendors, like McAfee or Trend Micro. McAfee was acquired by the Intel, who is very not strong in security patterns.

Our German team manages the maintenance.

The scalability is okay. I would rate it as a nine out of ten. Users are a bit afraid of the integration with ATP, as it is increasing scan times when downloading up to two to seven seconds.

We have around 2500 employee over all the globe. All the endpoints on laptops or desktops are running Symantec Endpoint Protection. Apart from that, we have multiple customers who have deployed the Symantec Endpoint Protection solution.

The technical support is very good. They have an Indian support team, so there are no delays in receiving support.

Their R&D teams are very strong in remediation.

We were previously using Trend Micro Smart Protection Complete.

The initial setup is very straightforward, not complex.

Deployment time depends on the user size. E.g., 200 users can be implemented in two days.

We have a dedicated delivery team to deploy the solution.

It is very easy to configure. There are no challenges when implementing this solution.

We have seen ROI.

Each annual client license is around 1200 or 1600 INR.

Zero-day threat or advanced attacks should be part of the endpoint. The product should not require you to buy a separate license.

It is a very good product. They are a very strong leader in the Indian market.

We are a solution provider for end customers like Telco, banks, etc. We are also a Symantec partner and reseller. Not only do we use it but we also position this solution for customers.

We have a telecom company that was using Kaspersky and they still had some vulnerabilities and attacks and we discussed with them and succeeded in presenting this solution. The one we proposed was Symantec Protection Suite, SPS Enterprise Edition, for about more 1,100 endpoints, exactly 1,100 users. We also implemented the mailer for Symantec Messaging Gateway for spam protection. Until now they used the solution and they are very satisfied with it. We started with SEP 12.1 but later they upgraded to SEP 14.

We had a bank that we were working with and they had a challenge in which they needed to protect against vulnerability. They had previously used Kaspersky, we discussed and told them that Symantec is capable and is able to address their specific challenges. We gave them a trial version. When they started they found it very easy; not easy to implement but easy to use. We started with the headquarters here and later we also implemented it for all the subsidiaries in the region, in other countries. They have a centralized solution, so they can help other countries in management. 

We had to position Symantec in big companies like Telco and several banks. With this solution, you also get the Protection Suite, endpoint protection, SEP, and you also have the Mail Security and Messaging Gateway. It's really integrative and our customers find it very valuable. It addresses almost all of the challenges on security for endpoint messaging. Symantec is going to be used much more because of its features.

The mobility solution should be improved. You need to separately purchase mobile, like a smartphone with Android and so on, you need to buy it separately with SAP, for example. It would be better for the user to use the same solution with all devices, even laptops, desktops, server and so on. They should also use the same endpoints for mobile devices. 

There are a few negative points. They should separate the feature for each separate solution for mobile devices. The second one is about the price, it's expensive. Finally, the third would be the complexity of implementation.

It is very stable. Even the customers don't really complain compared to other solutions. 

It is very scalable.  

Their technical support is reactive. When you have an issue, you just log a service request and you can find an engineer to help you. I would rate their technical support a nine out of ten. We're very confident that whenever we have an issue we can find the solution. It also depends on the support you choose. We have 24-hour support.

We also use McAfee because of the scalability. It had the issue that it consumed too many resources and for vulnerabilities, sometimes there are some direct varieties you cannot delete.

The initial setup is a little bit complex. You need to have a certain level of training before being able to set up it. What is nice is that you can remotely install the set up on all of the infrastructures from the server, the SAPM, that is the Symantec Endpoint Protection Manager, you can manage all the endpoints but it's not really easy to set up or to configure the policies. Sometimes customers find it a little bit difficult to implement for the configuration because you need some knowledge to implement the feature.

The setup depends on the issues of the network. The bottom line is if the network is really mastered, the policies on the network are really mastered in around three to four days for the new companies.

We only need one person who is well trained to manage and support this solution. 

It's not planned yet to switch to another product but we can potentially implement Cisco as we are also a Cisco partner and we find it sometime interesting when requested by the customer. But we push and we recommend Symantec.

This solution is very effective. It can really address the challenges but you need to have training in order to be able to effectively implement it. If you don't fully know how to implement it you can't use the features very usefully.

I would rate it a nine out of ten because of its ability to address challenges and because of the completeness of the solution.

Standard use case: firewall, malware, app/device control, reporting of compliance, etc. We use other features too.

A secure stable product, and good customer service of this product from the vendor. Waiting to see how the cloud version pans out.

• Application/device control. Wish encryption detection was integrated though. 
• Good standard malware detection via classic defs and newer heuristic controls.

• Device encryption status and coding off of said status. 
• Better inherent checks against duplicate IDs.