Symantec Endpoint Security Enterprise Reviews

I've handled a number of cases in my previous company throughout my one-and-a-half years of experience. Mostly, I deal with endpoint policies. For example, clients want to block URLs like Facebook within their organization to prevent employees from using it during working hours. 

I implement policies to block Facebook on laptops, mobile devices, and computer systems. 

Additionally, I've deployed hardware policies to prevent USB usage across an entire organization, stopping anyone from accessing or transmitting data through USB drives.

I work in information security. I'm also involved in vulnerability assessment and penetration testing (VAPT). My duties involve securing the environment as the lead in my department. I handle all aspects of information security, including research and development, and troubleshooting. I'm what you'd call an 'offensive security' person – I conduct penetration testing for clients. So, I work across multiple domains – endpoint security, offensive security, and defensive security. A little bit of everything!

It's fundamentally an upgraded version of antivirus software, which is a basic necessity for any organization operating in a real-world environment. It helps us overcome real-time threats like APTs (Advanced Persistent Threats). This product comes into play. These products, like Symantec or Kaspersky, are designed to counter real threats.

It's a crucial element these days because cybercrime is constantly increasing. All organizations should deploy at least endpoint security, and ideally solutions like EDR, XDR, intrusion prevention systems, firewalls, and SOC teams as well. But the absolute minimum is robust endpoint security within the network environment.

I've handled multiple problems, including policy configuration, R&D issues, troubleshooting system connectivity to the Endpoint Protection Manager, and so on.

Symantec Endpoint Security helps us with known malware and zero-day attacks. For example, we can allow or block certain ports using the Symantec console. We can also do an analysis of the devices that are in compliance. Eight admins have access to the Symantec console and use it to manage the devices. 

Four of them are auditors who check the details for audits. The other four are Symantec administrators managing policies, checking devices for compliance, and overseeing the KPIs.

We have an on-premise deployment, but Symantec now offers a cloud solution. A better deployment approach would be to go with the cloud because it's easier to implement and operate.

Symantec Endpoint Security Enterprise helps us meet regulatory requirements for payment card industries. We must use next-generation antivirus to comply with PCI regulations. The solution protects our network environment, data, and devices.

Symantec is an innovative solution. They're always upgrading the product, and the signatures are constantly updated on the cloud side, and the signatures update on my machine three or four times. Symantec stays ahead of novel viruses and malware using machine learning and next-generation technology

It helps us adopt a multilayered approach to security that incorporates behavioral analysis to detect threats that a signature-based solution can't protect us against. 

I rate Symantec's Endpoint Security Enterprise Single Agent System an eight out of ten for attack surface reduction, attack prevention, and breach prevention. A single breach can impact the company's reputation. The return on investment is always great because we are confident that Symantec will protect our users and data.

Symantec Global Intelligence Network helped us reduce false positives by 20 to 30 percent, so we aren't spending as much time investigating these alerts. This frees up resources to do something else. Two of our people working on Symantec also have other responsibilities. 

The solution is used for email and network virus scanning. We use it for a small business. It's a women's clothing store. We have a little network. I can manage it from home, and the tool does a really good job.

The solution has grabbed a few phishing attacks. When people click on the wrong things, I get a little alert. It locks them out of it. People cannot access things after clicking on the wrong links.

All our servers and Windows machines across 15 sites have Symantec Endpoint Security, which we use for malware prevention, antivirus, intrusion prevention, Windows Firewall management, etc. The whole suite is used on Windows infrastructure.

We have other layers of security outside the Symantec solution; we also use the full Meraki security suite for malware and intrusion prevention and a firewall on each side. We use Darktrace too, so Symantec Endpoint Security is one of the components we use to secure our environment.

We don't allow remote connections, such as VPN access, from IP addresses outside Ireland and the UK. Even if we have Cisco VPN with Duo and it was compromised, hackers from China, Russia, the USA, Brazil, etc., would not be able to get in that way. The same goes for any of our mobile or web applications exposed to the internet, and we have Cisco AMP on each of our sites. Our emails are through the cloud, so there are many elements to our security landscape. Symantec isn't a one-stop shop, but it caters to the fundamentals of securing a Windows PC: firewall management, IPS, malware, and app blocking.

Additionally, we block PowerShell on all our machines because 70-80% of the hacks out there use it.

Since I joined the company and implemented Symantec and other products, we've had stability on our network and no security incidents or breaches.

We haven't had a security breach in four years, which is significant. There are only so many companies out there who can say that. 

We use the solution for security purposes. We use it for system scans, remediation policies, and deploying SEP policies like USB lockdowns via Symantec rather than using global policies.

It's better to have the solution than not have it. We are going through CMMC 2.0 compliance. Technically, we can use the licensed version of Microsoft Defender for Endpoint for CMMC 2.0. It technically counts as an endpoint protection, but it is not as secure. We've been going through a lot more reconfiguration.

My company uses the backup solution from Symantec, along with ManageEngine, to manage the endpoint protection area.

The solution is useful for endpoint protection. The tool is useful to manage and secure all of the company's servers, devices, and everything else. The product also helps manage users to deal with areas like malware, viruses, and other attacks.

Though the product is good, it is not very easy to use. There are so many internal problems with the tool, and one needs to have time to resolve them. Sometimes, the tool is not fast when you want to scan certain areas. My company has many in-house applications that we need to install manually after the tool completes the scanning process. When our company's in-house application is installed manually, the solution detects such an application as a virus, after which it gets deleted. My company faces the same problem with the product for every machine.

We use the solution for all endpoint systems.

We use it for EDR.

Our product use case is endpoint security. It offers protection against malware. It is utilized by employees to secure their endpoints, including Windows and Linux machines.

The overall solution is good, particularly the detection engine. It performs well in identifying malware and conducting regular network scans. The product is easy to use.