We performed a comparison between Elastic Security and Symantec Endpoint Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Just the ability to do a lot more than just up-down is nice, which a lot of people take for granted."
"It's simple and easy to use."
"The most valuable feature is the search function, which allows me to go directly to the target to see the specific line a customer is searching for."
"The scalability is good. It can be scaled easily in the production environment."
"It is very quick to react. I can set it to check anomalies or suspicious behavior every 30 seconds. It is very fast."
"ELK documentation is very good, so never needed to contact technical support."
"It is an extremely stable solution. Stability-wise, I rate the solution a ten out of ten."
"Elastic has a lot of beats, such as Winlogbeat and Filebeat. Beats are the agents that have to be installed on the terminals to send the data. When we install beats or Elastic agents on every terminal, they don't overload the terminals. In other SIEM solutions such as Splunk or QRadar, when beats or agents are installed on endpoints, they are very heavy for the terminals. They consume a lot of power of the terminals, whereas Elastic agents hardly consume any power and don't overload the terminals."
"The solution detects malware very well."
"The solution can be scaled to handle different threats."
"The application and device control functionality is good. We are able to see which applications are installed using the product management dashboard."
"With a single console, you get control over Mac, Windows, iOS, and Android. This control is most valuable."
"The IPS function (with no firewall needed to be installed in the SEP client) is quite good."
"The solution can scale."
"Its response time is the most valuable. It is very quick."
"Offers good antivirus and local firewall."
"The solution's query building is not that intuitive compared to other solutions."
"Its documentation should be a bit better. I have to spend at least a couple of hours to find the solution for a simple thing. When we buy Elastic, training is not included for free with Elastic. We have to pay extra for the training. They should include training in the price."
"The Integration module could be improved. It is a pain to build integration with any product. We have to do parking and so on. It's not like other commercial solutions that use profile integration. I would also see more detection features on the SIEM side."
"I would like the process of retrieving archived data and viewing it in Kibana to be simplified."
"There should be a simulation environment to check whether my Elastic implementation is functioning perfectly fine. Other solutions have their own Android and iOS applications that I can install on my mobile so that I am continuously connected to the SIEM."
"Anything that supports high availability or ease of deployment in a highly available environment would help to improve this solution."
"The problem with ELK is it's difficult to administer. When you have a problem, it can be very, very difficult to rebuild indexes."
"It's a little bit of a learning curve to understand the logic of searching for things and trying to find what you're looking for in Elastic Security."
"Difficult to set up on older systems."
"It would be helpful if this product provided patch management functionality."
"There are limitations because everyone these days has hybrid working; however, the endpoint does not work for us unless we are connected to a VPN, which is a major limitation."
"Symantec End-point production doesn't support the EDR function."
"Its interface needs improvement. Its interface is very old, and it needs a new look. Other solutions, such as Sophos and BitDefender, have a better and more modern interface, whereas Symantec has had the same interface for a while. There has been no enhancement in the interface. They should update and provide a better interface in 2022 for a better user experience for their customers."
"Symantec has not properly promoted Symantec Endpoint Security in the market. In my opinion, the product should be properly promoted."
"The malware and ransomware protections could be improved, which was ultimately the reason why I stopped using the solution."
"Future releases should ideally be cheaper."
Elastic Security is ranked 5th in Log Management with 59 reviews while Symantec Endpoint Security is ranked 5th in Endpoint Protection Platform (EPP) with 140 reviews. Elastic Security is rated 7.6, while Symantec Endpoint Security is rated 7.6. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Symantec Endpoint Security writes "The solution has given us visibility into compliance within our whole system and helped us ensure everything is updated". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Microsoft Defender for Endpoint, whereas Symantec Endpoint Security is most compared with Microsoft Defender for Endpoint, CrowdStrike Falcon, Trend Micro Deep Security, Cortex XDR by Palo Alto Networks and Kaspersky Endpoint Security for Business. See our Elastic Security vs. Symantec Endpoint Security report.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.