Symantec Endpoint Security Reviews

Primary usage is on endpoints, desktops, clients, and servers, and it's working okay.

It blocks malware, as it is supposed to.

We're able to tune it to work with our products.

I would like to see even more customization, the possibility to do whitelisting. It needs to be a little bit more liberal on whitelisting, even to use the name if needed, instead of hashes.

Stability is good.

We only have 10,000 endpoints so it's not that much, but it's working.

Depending on who you end up with, it can take a while before you get the correct support.

The out-of-the-box functionality, the vanilla setup, is okay, but then tuning is needed. Overall the setup is straightforward.

My most important criterion when selecting a vendor is that they are easy to work with.

I rate it at eight out of 10. When, say, Microsoft releases a new OS version twice a year, you never know if the current version of Symantec Endpoint Protection will support it. You can have a lag between when Microsoft releases a new client - and then the current version doesn't work correctly - and it could be some months between updates from Symantec.

Overall, it's really good product. It has saved us a lot of time and, most of the time, it's a self-playing piano.

Antivirus solution for a global company with approximately 34,000 endpoints.                                

• Rather simple management
• Easy to deploy with medium maintenance.
• I believe to get the full benefits of Symantec Endpoint Protection, Symantec ATP is required. It provides quite a good overview of how threats have spread within the company.

• SEP, the entire suite of components, provides good endpoint protection.
• The IPS function (with no firewall needed to be installed in the SEP client) is quite good.
• The risk tracer, which can be enabled with the firewall installed, is also quite good.       

• SONAR could be improved. The false/positive rate is a little high.
• The firewall could be a little more "flexible". For example, it would be convenient if the firewall was allowed to "turn off" for hotspot environments.
• I find the documentation on Symantec.com to be not very updated. It seems like Symantec focuses more on their product than on documentation.
• My personal opinion is that Symantec has too many WS.Reputation.1 detections, which could cause important computers to malfunction.
• In a large environment with a significant amount of GUP's, it would be neat, if the client could "detect" the GUP in its own subnet. The client has some built-in intelligence at this point, but it does not seem to work properly. In an environment with many locations, whereas many of them have little bandwidth capacity (and no local datacenter), the LiveUpdate policy can end up becoming rather complicated.

This handles not just anti-virus, but a wide collection of other protective features including device and application control, network-based intrusions, and phishing attacks. It can also scan virtual machines too.

The reputation system relies on having a constant Internet connection for its operations.

There are three versions, include a cloud-based one, that are very flexible and easy to install and manage.

We just use it mainly for workstation protection.

The anti-virus and firewall policies are the most valuable features of this solution.

I think it's a good product but we've had some problems with their support and service. From the beginning of this year, I haven't been able to reach their support. 

Last year, the support wasn't bad but this year I wanted to renew their license, but I can't reach anybody from their company.

We don't have any plans to replace them but we haven't been able to renew a license. 

Sometimes there is a conflict with Windows 10 updates. There is a Windows server or Windows workstation startup after installing the new Windows update. We contacted Microsoft and they said the device caused an issue.

We have been using Symantec for eight years.

We were using some traditional licensing. Our company is a nonprofit, so we have a different price pricing model.

The most important thing is the cloud management. I would like to see behavior analysis. These two things will be most valuable to the user.

I would rate it a seven out of ten. 

I primarily use the solution for endpoint protection.

This product provides complete laptop and desktop protection from cyber attacks.

The features I've found the most valuable are the scanning and the reporting.

The reporting function definitely has room for improvement. If Symantec can provide us with the overall API for accessing and reporting, that would be great. The reporting function needs to be more user-friendly in general. I think we have too much technical level reporting, I think it would be better to have more user and usage types of reporting.

I would like to see in the next release focus more on unusual behavior so that we can know how the end results are behaving and if they are in the clear.

They should also provide users with some sort of training videos, for how to use the solution.

The solution is very stable. The majority of the users are end users. Other than that we have IT staff that use it, so we have approximately three thousand users.

The scalability is good.

I'd rate technical support as average.

Previously we used Trend Micro. The features were not as good as Symantec, so we switched.

The initial setup was complex. There are too many moving parts. You have to install one bit, then install the reporting function, then install the dashboard, and so on. Then you have to open the manual and check it. If it is not correct the system will restart itself and cause so many complications, every part is pretty complex.

We did not use an integrator, we did it ourselves.

I would rate this solution four and a half out of ten.

Standard use case: firewall, malware, app/device control, reporting of compliance, etc. We use other features too.

A secure stable product, and good customer service of this product from the vendor. Waiting to see how the cloud version pans out.

• Application/device control. Wish encryption detection was integrated though. 
• Good standard malware detection via classic defs and newer heuristic controls.

• Device encryption status and coding off of said status. 
• Better inherent checks against duplicate IDs.

The most valuable features of this solution are deployment, management and finding sources of potential viruses that hack the system.

I think the CPU dependency should be enhanced. In addition, some device control features are in need of enhancements. 

I find it is the most reliable solution in the market. 

Endpoint Protection and Advanced Threat Protection (ATP) with Endpoint Detection and Response (EDR). One of the best solutions that I have ever tried.

Great solution for a company like mine. 

I like Symantec Endpoint Solution quite a lot. I hope it continues improving over time.

ATP is really impressive, and with EDR, it is the best solution I have ever known.

• Resources
• Front-end
• User experience

The Symantec Endpoint Manager is very difficult to use and extremely old.

Very well done, Symantec.