Symantec Data Loss Prevention Reviews

We use the product to mitigate the malicious attack and prevent data loss for specific servers.

The product helps with blocking sensitive data transmission and permission management.

The product's technical support services need improvement.

We have been using Symantec Data Loss Prevention for three years.

It is a stable product. I rate its stability a nine out of ten.

We have 20 Symantec Data Loss Prevention users in our organization. We use it daily. I rate its scalability a seven out of ten.

The technical support team replies slowly. The process needs enhancement.

Positive

The initial setup takes a few days. However, overall, it requires a month to fine-tune the components. The deployment team includes one or two vendor executives and multiple teams from our organization. One executive can easily maintain the product. I rate the process a seven out of ten.

We take help from third-party integrators for product implementation.

The platform is not very expensive. I rate its pricing an eight out of ten.

I recommend Symantec Data Loss Prevention and rate it a seven out of ten.

The primary use case for this solution is ensuring compliance. Organizations that handle sensitive data find it crucial to implement a data loss prevention solution to prevent unauthorized data breaches.

One of the most valuable aspects of this solution is its integration capabilities with Office 365. This integration enables comprehensive monitoring and control over data leaving the organization.

A significant area for improvement in the product is reducing the number of agents required and improving integration as a unified client ecosystem.

Integrating artificial intelligence to automate policy creation based on user behavior and data sensitivity would be highly beneficial

I have been using Symantec DLP since 2013.

I rate the product stability an eight. 

I rate the product scalability an eight or nine out of ten. 

Symantec has a good support network. However, since the acquisition by Broadcom, support has become more challenging, although some regions still provide excellent support.

The installation process for this solution, based on my experience, is straightforward and user-friendly, ensuring minimal disruption during deployment.

It can be deployed on-premises and in hybrid models, providing flexibility to organizations based on their specific security and operational needs.

The product is high-priced. However, it is worth it for the comprehensive data protection it provides.

We have considered products from other vendors like Microsoft, Forcepoint, McAfee, and Trend Micro. However, Symantec covers all aspects and use cases effectively.

Incident response capabilities are integral to this solution's functionality. It features robust workflow controls that facilitate timely and effective responses to security incidents.

I rate it a nine out of ten.

We use this solution for exact and index data matching, vector machine learning and endpoint prevention. We can use USB, make the solution notify a block policy and make response rules. It allows us to add the directory indication, make the agent configuration from the DLP, and then enforce them.

We can also complete different types of single-tier, two-tier and three-tier installations. For single-tier installation, it can enforce or recommend detections servers on the same servers. For two-tier, it can enforce on the same server and the detection server. And for three-tier, Oracle enforced, and the detection server is on separate servers.

The most valuable features are file integration and optical character recognition. It is a new technology integrated in DLP. File recognition technology mainly uses DLP, and we can use encryption technology to integrate the endpoint detection servers. The solution also helps to integrate the cloud access service broker in the DLP console, and we can complete information-centric tagging. For example, we can tag the files as private or public and protect them on the DLP console. In addition, we can classify data according to the environments and handle the files per the policy created from the console.

Different departments should manage administration, reporting, normalization and incident management. For example, for incident management, escalation can be completed in a specific department, and we can notify a manager and send an email when an incident has been triggered. In addition, confidential files that shouldn't be sent as a CV are managed. A DLP is a confidential solution that cannot be used to send unauthorized organizations' data to others.

The previous versions had a flaw when we installed the agents. We can install the agents manually or by the SCCM and easily manage the database and incident services. We can make several rules if we have a network or endpoint. We can also manage dashboards and administrators, super users and view roles. The larger administrator that manages the activities and daily reports has access to the best access tools. We can utilize user roles for the view access tools and to make policies.

We have been using this solution for ten years and are using version 15.8. It is deployed on-premises, and the cloud is used for network payment for email.

This solution is very stable.

It is very scalable, and there are no issues with maintenance.

We can easily manage technical support unless we need clarification on a version of data or a task for principal clarification. I rate the technical support a nine out of ten.

Positive

The initial setup was straightforward. First, we had to install the Oracle database, which requires 19C if you use version 15.8. Then, we had to deploy and make the info server. After that, we had to complete the Oracle and listener configurations and connect the database. We then had to install the Windows Server and add the detection servers from the endpoint server.

During the installation, we imported different templates in .VSP format. The solution allows you to make policies and procedures with built-in templates, and there are templates for multiple sectors, such as energy, banking, financial, and telecommunication. It can be downloaded from the portal during the installation of the Oracle added to the enforce server. We can make different policies like data matching, index data matching, vector machine learning, and desktop content matching. For example, we can use proximity matching to detect data for 70% matches, 50% matches, or 20% matches. We can also upload different documents for index data matching. Exact data matching is for structured data, and index data matching is for unstructured data. Vector machine learning is for positive and negative threats, and the threshold is set for that purpose. I rate the deployment a ten out of ten.

There is a perpetual license for three, five and two years. There is also a one-year renewable license for different parts. In addition, there are licenses for different consoles, namely Endpoint Discover, Endpoint Prevent, and Network Prevent. So it is an easy tool per the budget firewall and not difficult at all.

I rate this solution a ten out of ten. Regarding advice, it is the best solution and has the best reputation. It is easy to manage and an excellent solution for data classification. It is the best solution I have ever used. We prefer Symantec to other solutions because their products are not difficult to integrate with a single console that is easy to manage.

I am an L2 engineer. I'm doing the part of the implementation and the agent upgrades. If any requirements come in for Oracle upgrading we go forward and make it happen. Apart from that, we are doing agent installation and troubleshooting. 

Moreover, we'll be in contact with the SCCM team, and give packages to them. They will push the package to all the machines for the SCCM. We can connect to the virtual team and do the other lines for server backups or upgrades. 

The solution is very good at fingerprinting the documents. This means, basically if a user tries to modify the data or change the file extensions, the system will recognize this action. It will offer the DLP images, so it will fingerprint the data. If a user is trying to modify data, they're trying to change the extension to whatever data, it will tune in on the IP, based on the indexing. 

There are a lot of features. We can modify only particular agent configurations. 

A new feature I've seen is a device block, which is very interesting. Previously, we used to create a policy for blocking certain data, which was transferred from our local machine to the mobile media. Now, we found that there'll be one more option called agent configuration device control. Under the device control, there'll be a block device connections option. It will alert us that a USP has been blocked. 

The solution offers very good virtual machine learning. The ML will capture information based on certain policies. We haven't used it yet. We're still learning about it.

The solution offers good data classifications. What we used to do, is we used to create one template and we used to sit with different project team members. We'd collect the information from the project managers, on the management side. We'd put the information into one Excel sheet and collect the information from that. Now, we're using that to review one data classification tool. What it will do now is, whenever you're working in the document, is it will ask you to determine the data. It will ask that if it is internal or confidential.  

We can integrate with some other tools such as Splunk, which is very useful.

The problem is most companies use a single data protector. The drawback is that they will install Oracle in one server and the application also in one server and detection also, all in one server. If the server crashes, everything crashes. Things should be implemented on another server. 

Previously, when we had Dropbox, if we transferred a document, we would get a popup, and if we transferred 500 documents, we would get 500 popups. We're looking to find out if there is a way around this.

If we get a fatal error issue, if the agent isn't working out, we need a hard fix file. We need to check in pre-production machines. 

When we're doing data scanning, the machines can be slow. 

In the object capture recognition, which we implemented recently, there are a lot of false positives that have been happening. We are expecting them to fix this issue soon.

I've been using the solution for four and a half years at this point.

Occasionally, there are stability issues. If that's the case, I can help clients troubleshoot them.

The solution is very easy to scale. If a company needs to expand it, it can do so with relative ease.

Whenever any issues are reported, for example, a fatal error or multiple errors, or if any machines come up with a blue screen, et cetera, well look for patch releases. We tend to do that monthly and push them to machines.  However, sometimes the issues might be very bad. For example, sometimes the KB will be not compatible with the Symantec DLP, or some of the versions. Maybe an agent will be corrupted, or a machine will get rebooted multiple times.

Initially, we'll check the logs. We'll do the checking and the troubleshooting and the removal of agents if necessary. We initially collect requirement logs and upload them to the Symantec portal. From those details, they will create a hard fix file for us and we will implement it. 

We work well together. We're quite satisfied with the level of service they provide and the assistance they give when we have issues. 

The initial setup is straightforward.

Usually, if we are doing it from the scratch, every time when we are doing the implementation, there will be one document that will be created for other servers. 

If new users come on, they'll reference the document. It's part of our best practices. 

We recommend that someone should be available via stacking, somewhere. For example, to set up the password with the protector, or as an admin password. We used to prefer at least one person. If we get stuck, we'll have a Symantec engineer on a call to assist us. 

Usually, I'll do everything from the scratch, setting up the port under whatever LAN is required and what other system requires. 

For an Oracle installation, it will take three hours or four hours. And for the server that's at least one hour. A total of five hours to six hours is required in order to complete our implementation.

The maintenance is contract-based. Some of the clients will ask that only I implement the Symantec DLP. Then we'll do the implementation and we'll create some documents as per requirements. Clients will ask the contract be for one year or two years, and we'll do the analysis and the reports, which we need to send on a daily basis and weekly basis and monthly basis and quarterly basis. On yearly ones, we'll do the auditing. 

We used to delete the duplicate machines, or any machines supposed to be in stock or offline. Every month we will send the policy to our customers asking if there is anything they want to add, or any rule they want to delete, or anything specifically they want to create, et cetera. For example, if there are any personal kinds of users they want to monitor. We'll whatever they recommend. This is the type of maintenance I do.

The pricing is moderate. It's not the cheapest, or the most expensive. 

There are various types of licenses. For example, if you are a customer for endpoint prevention, that is a different license. And if you want to cloud prevent, that is a different license. It's flexible. If you need to purchase a full suite, you can purchase it, or if you want only endpoint or cloud or network, you can buy it as a separate command.

We are implementors. 

As of now, in my current company, I was designed to DLP around seven months back. My previous company is a service-based company. Normally we will connect with other partners. 

Usually, we are service providers, so we'll take the project from Symantec and we will implement the approach for our business partners. Then we'll go directly to the onset location and we'll stay there and we'll do the implementation and we'll create a policy, as per the requirements. We'll do the handout documents to the management team, and we'll relocate them to the local engineers. These kinds of activities I've done. For around four years, I've continuously been doing this DLP and encryption.

I'd recommend the solution. I'd rate it at a ten out of ten.

Our customers mostly use it for data discovery, content monitoring, and policy enforcement.

The most valuable aspect of Symantec DLP is its powerful policy system. It helps us control data, like making sure nothing leaves our setup. The policy management console is user-friendly, and it offers a range of options to suit our specific requirements.

There is room for improvement in the remote control capabilities of the DLP solution. Currently, if the client-side agent is not installed, there are limited features available, and remote management through the manager portal is lacking. This is particularly important for users on VPN who would benefit from full remote control and management features.

I have been using Symantec Data Loss Prevention for a year.

If we had the remote control feature, it would significantly improve the overall stability level of the solution. I would rate the stability as an eight out of ten.

I would rate the scalability of Symantec Data Loss Prevention as a seven out of ten. It could use some improvement. We have eight users of the solution at our company. This product is not designed for small or medium businesses; it is intended for enterprise-level use, particularly in sectors like banking, finance, and insurance. We currently serve about ten enterprise customers who utilize the DLP features of the product. We have a few hundred clients using the solution.

I would rate the technical support as a nine out of ten. It is fantastic.

Positive

Our deployment process begins by understanding the customer's requirements and ensuring they have the necessary server infrastructure in place. We then install our DLP product on the customer's site and set up data agents. The customer is responsible for installing the agent on their users' devices. We proceed by creating and applying data protection policies tailored to their specific data requirements. Many of our customers have a lot of sensitive data, so they worry about its safety even after we've applied the rules. I would rate the easiness of the initial setup as a seven out of ten. It is quite user-friendly. The deployment time for this product varies based on customer needs and availability. If everything goes smoothly, it typically takes around one and a half months to deploy all the necessary components, including agents and other requirements. 

I am a technical person, so I don't have specific pricing details. However, I consider it to be in the average to moderately expensive range because it is tailored for enterprise use, not SMBs. Pricing can vary depending on specific needs and configurations.

My advice to people who are considering implementing Symantec DLP is to request a demo to see how it works and experience its features. Subscribing to these features, applying policies, and learning about the advantages will help them make an informed decision about whether it meets their specific needs. Overall, I would rate it as an eight out of ten.

Our primary use case for Symantec Data Loss Prevention revolves around addressing internal data security concerns, particularly email communication and data leakage prevention.

Symantec Data Loss Prevention has significantly improved our organization, particularly regarding data management and incident response. The solution has streamlined internal processes and enhanced data security measures. By integrating Symantec into our management systems, we've achieved better packaging and handling of sensitive information.

The most valuable features of Symantec Data Loss Prevention (DLP) are the Optical Character Recognition (OCR) functionality and its automation capabilities.

The product's pricing and support services need improvement.

The platform is stable. Initially, there were minor delays during the setup phase, especially when implementing certain features on the cloud. However, these issues have been resolved over time, and the system runs smoothly. It has been consistently reliable for the past three years. While it may demand slightly higher bandwidth, it remains easily adaptable to any network environment.

I rate the platform's scalability a nine out of ten. Currently, we are working with three companies as our customers for the product, one of which boasts over 10,000 users.

Our experience with customer service and support has improved over time. Previously, we encountered technical issues and concerns while working in the same area of DLP. However, in 2020, we noticed a positive shift. The team has become more responsive and effective in addressing our needs. The personnel handling technical support are helpful.

To deploy Symantec to protect sensitive information in our company, we implement various policies such as web, endpoint, mail, and cloud prevention. While the deployment process itself is simple, there is a requirement for an Oracle database, which can add a layer of complexity, particularly for smaller businesses that may not have the infrastructure readily available. However, we offer a software solution that manages this aspect. We leverage both on-premises and cloud-based functionalities, with customization options available for policies. Default configurations work well for cloud-based deployments, and we utilize comprehensive licensing packages. Cloud management simplifies deployment and implementation tasks significantly compared to on-premises setups, reducing the burden on our team and clients. However, there can be challenges when transitioning existing customers from on-premises to cloud-based solutions, particularly regarding feature availability and accessibility.

The platform is expensive.

The platform provides valuable data for preventing loss in various ways. It operates on a cloud-based platform and is beneficial through email and the web.

The incident response capability has been instrumental in mitigating potential data loss. The response agents are deployed strategically, and licenses govern their access. It ensures that only authorized personnel with the appropriate IT label can intervene.

I rate it an eight out of ten.

I use Symantec Data Loss Prevention since it is a product that is currently involved in an API-level integration with Google Chrome while ensuring that users get to avail some advanced features in the current version of the solution, making it an overall good tool.

The most valuable feature of the solution is its OCR process for image recognition. Symantec Data Loss Prevention can extract all the data from the image. In scenarios where a user may be trying to get some screenshots of certain confidential documents, Symantec Data Loss Prevention will extract whatever data is included in that image, after which it may block the user who was involved in the act.

Symantec Data Loss Prevention's AI technology has certain shortcomings where improvements can be made. Some source code developer companies may have multiple source code data available, and our company may upload such multiple source code data, which may go up to 50 GB of data in Symantec Data Loss Prevention, and expect the AI part to look into what should be the confidential part in such a file so that we can create a policy in our company to manage what should be blocked or allowed.

I have been using Symantec Data Loss Prevention for two years.

It is a stable solution. With Symantec Data Loss Prevention, I have never experienced any downtime.

It is a scalable solution.

The solution's technical support was good. The technical support team of Symantec used to take up cases or issues on priority.

For Symantec Data Loss Prevention, my company needs to deploy a database from Oracle and add a detection server depending on the organization's needs. A company can proceed with either a two-tier deployment or a three-tier deployment. A database from Symantec needs to be included during the deployment process compulsorily.

The solution can be deployed in a day or two. Preparing the database takes one day, and adding Symantec's detection server takes around 30 to 60 minutes.

The solution is deployed on an on-premises model.

Right now, my company seems to be interested in Censornet's DLP product features.

I recommend the product to those who plan to use it since it offers all the good features, along with a good GUI and user experience.

I rate the overall product an eight out of ten.

We have several use cases, the main one is probably the prevention of prohibited files from being uploaded. I'm a user of this product and a network engineer. 

Reporting is the most valuable feature the solution offers. It provides information on any incidents that occur in our environment. 

Symantec doesn't necessarily catch things that are happening in the DLP features such as someone attempting credit card fraud. For the future, I'd like to see better documentation with a more informative focus. 

I've been using this solution for about three years. 

This solution is stable. 

This is a scalable solution. We currently have 15,000 users so it's very scalable.

We have primary support from one of the vendors and they are good. 

The initial setup is not very complex but it's not simple either. We had assistance from the vendor. There is no maintenance required - at the initial stage we created a policy for monitoring only and we get the day to day logs. After that we impose a policy for blocking and justification. This solution is used on a daily basis. 

I've worked with other DLP solutions that I think were better than Symantec, but it's working well for us currently.

This is a good solution for us and I would recommend it. I'd rate Symantec DLP a nine out of 10.