Symantec Data Loss Prevention Reviews

We are managed service provider and system integrator. We have different deployment models and scenarios for different customers, but usually, we deploy Symantec Data Loss Prevention on-premise.

Our clients that are using Symantec Data Loss Prevention have massive use of documentation and they are supporting the digital signatures happening now everywhere. They wanted to secure this information with the solution.

We typically add another solution with Symantec Data Loss Prevention from Titus. It is used for data classification, allowing us to have the DLP and the data classification in one offering.

The most valuable feature of Symantec Data Loss Prevention is the ease of modification.

There should be more documentation with Symantec Data Loss Prevention. We had trouble with the first few deployments.

I have been using Symantec Data Loss Prevention for approximately five years.

Symantec Data Loss Prevention is highly scalable.

We didn't find a lot of need to test the scalability because usually, we do our designs with scalability in place. We didn't need to add licenses, servers, compute capacity, or data center footprints later.

The support can improve in the future. They can use some training to help them have a better understanding of their knowledge of the solution.

The ease of deployment of Symantec Data Loss Prevention is great. We can deploy it easily and it is flexible after the deployment. The deployment difficulty can depend on the client's requirements, there was not a client that took us more than eight weeks to complete which included the assessment, the design, the data classification, which is the second part of the solution,

There is an annual license required to use this solution.

I would recommend this solution to others.

I rate Symantec Data Loss Prevention a seven out of ten.

We primarily use the solution for the endpoint machines within the environment.

I'm able to track everyone who is trying to send information outside the environment and to know if they are not supposed to be sending it. I'm also able to see the people who are accessing or maybe try to access the information they are not supposed to be accessing based on their level of classification.

It gives me overall control of who has got access to what and at what point and who can do what with specific information.

The backend side of the server needs improvement.

In a majority of cases, most of the companies are using DLP for endpoint sessions, where you have a user that might be communicating information outside of the company. However, they forget there are actual interfaces that can directly communicate with either the database or other files within the data center that uses end-to-end encryption. In those cases, you might need things like your DLP to be able to monitor and block some of that. The solution needs to catch information communicated through the data center on the server-side.

The solution is quite stable, especially when you run it on a Linux platform and when you code it and set it end-to-end on a Windows machine.

I've never had any issues around scalability, mostly because of the environment I'm running on. We have about 50 users on the solution currently. 

It's used quite extensively in our environment as a security cluster, but going forward I don't think we will be adding more people to the environment. It's a minimized environment, so there's a limit to the number of people that are allowed to work with it.

We've never had an issue outside our capabilities, so we've never had to contact technical support.

I previously used McAfee DLP at a different company. I'm not sure what my current organization used previously.

The initial setup of the solution was straightforward. It took us less than a week to make sure that we created all the rules. 

The setup itself it took less than two hours. However, applying all the rules and the configurations, and all the different qualities took longer. It total, everything took close to a week.

We only need two people for deployment and maintenance.

We implemented the solution ourselves.

Licensing depends on how you plan your deployment. If you have carefully planned it and you've already looked at the storage capacity and how it's going to grow over a period of two to five years, then you'll hardly have any problems or issues. If you have not planned it correctly then you might run into some issues.

We are using the on-premises deployment model.

I would advise others that the solution does need careful planning before attempting an implementation.

I would rate the solution nine out of ten.

The solution is primarily used for the prevention of data leakage mostly from email and external drives or thumb drives. It's also used for setting certain policies.

The solution is very easy to use.

We find the product is easy to manage and maintain.

Their dashboard is very good. It allows us to see everything on the system and provides a good overview.

Overall, it's a very good product.

Generally, we're not seeing any places for improvement at the moment.

The solution doesn't integrate well with other products.

We're not sure if there was an issue or a bug on the system recently because as of right now if someone sends out a compressed encrypted file, the DLP won't scan it.

The menus need to be updated.

I've been using the solution for about three years.

The solution is mostly stable. However, we do seem to have some sort of glitch or oversight happening currently where the DLP won't scan large compressed encrypted files.

The solution is scalable. 

We've contacted technical support in the past, and have been satisfied with their level of support. However, we mostly deal with their partner, and not directly with them because their partner can just as easily solve any issue that we might face.

The initial setup was pretty straightforward. We didn't have any issues with it, even when we upgraded to version 15.

We're just a customer. We aren't a Symantec partner or reseller.

We recently upgraded to version 15.

We like the solution. Currently, there are no plans to switch to a different product.

I'd recommend the solution to other organizations. I'd rate it eight out of ten overall.

The tool helps to block based on different classifications such as characters and channels. 

Users like the product because of its simplicity and the rate of detection. 

Symantec Data Loss Prevention's setup needs to be easier and support needs to be improved. 

I have been working with the product for ten years. 

The tool is stable. 

The product is scalable. My company has 1000 users for Symantec Data Loss Prevention. 

The product's setup is not easy. 

The tool's licensing costs are yearly. 

I would rate Symantec Data Loss Prevention a six out of ten. I wouldn't recommend the solution for micro SMEs or small enterprises. It is not recommended for organizations that do not have the technical expertise or in-house support.

We use this to protect our client's data. They are China Mobile, China Unicom, and China Telecom.

When our Oracle database is corrupted, we have the ability to restore the data. This helps a lot.

The most valuable feature for us is the ability to backup our database, and restore it if necessary.

This product should be integrated with virtualization technology and work with other applications.

The stability of this product is good. I would rate it as very stable.

I feel that the scalability is good, but the virtualization could be improved. We only have one or two people that use the software. 

This is our original solution. The product was included on our servers that were shipped directly from HP and IBM.

The initial setup was done by our experienced engineer. The setup is not difficult and one or two hours is enough to complete it.

Our in-house engineer handled the implementation.

The pricing and licensing for this product is good.

We considered other data loss prevention business products, including the Dell EMC backup solution.

We are actively looking for a product that handles virtualization easily and efficiently. We would like to see support for virtual environments.

I would rate this product an eight out of ten.

Previously, what was happening was that anyone could send any data outside. We now know who is sending what data and where. We can then question them: "Why have you sent that data?"

In DLP one of the most valuable features is that you can check attachments. 

In addition, it gives me the data such that, if someone is using a browser and email, I'm able to figure out who is sending the data.

Symantec customer support is very bad.

We are finding delayed response if the macOS is updated. They need to make sure their solution is compatible.

Also, if any data at all is going outside of our network and it matches our screening it has to be captured and we should see it detailed properly: Who is sending it, where they're sending it.

The stability has met our expectations.

I'm not good with the scalability. It's not capturing everything. If someone's trying to send from Gmail to some other browser or if someone is using Safari in a Windows machine, under those conditions it's not captured. 

This is the first product of its kind for us. Nobody seemed to know much about this product but we figured out how to use it, and the vendor gave us training, so we have been able to handle it.

The initial setup is a little complex. But once you go through it you get used to it. After using this product it becomes easy to handle, easy to understand. Our deployment took about two months for 2,000 users. 

Our strategy was simple. I needed to implement it for every user so that we could monitor any data.

We used the vendor's support and it was nice working with them. They helped a lot when it came to the deployment.

I wasn't involved in the pricing negotiations but from what I know the pricing is good, it's not too expensive. If you negotiate you can get a good price.

We evaluated multiple solutions, such as McAfee.

We have around 1,500 users in HR, admin, the finance department, and IT. For maintenance of the solution we have two people. It's covering all users at the moment so there are no plans to increase usage.

I rate the solution at eight out of ten. It is fulfilling our requirements.

I use it in my own environment for data loss prevention.

I installed it for testing purposes. I've logged some of my data through different policies. However, I've only done this at the endpoint channel, not on, for example, email channels.

There's only one policy needed to implement for all channels. That's a good point for Symantec. To have one policy for all channels has been great. You don't have a user workload. You can manage everything through a single policy.

The solution is not user-friendly. I've had to do a lot of research to try and figure things out on my own.

Due to its database, I first had to install an Oracle database. This should change. The product should allow for the use of an SQL database, and, if possible, it should have an embedded database. The solution should be easier to integrate on different solutions.

The data classification is very difficult in Symantec. It's hard to integrate the detect activation tools, whereas, in Forcepoint DLP, it's better. It's very user-friendly and the quality is defined and it is very clear. Symantec should try to emulate those aspects of Forcepoint.

It's difficult to implement in a protected environment, due to its architectural layout.

The initial implementation is quite complex.

The technical support has really dropped in quality since Broadcom acquired the product.

I've used the solution for a month so far and for endpoint channel only. It hasn't been too long. 

The solution is stable. I've seen the people are using it in very large organizations with no problems. It doesn't crash or freeze. It's not buggy. There aren't glitches. However, it's difficult to maintain and run the product.

The solution is quite scalable. From articles I found online, it looks like you can manage around 5,000 to 10,000 endpoints easily through Symantec. You can expand it by quite a bit if you need to.

I've only been using the solution myself over the course of a month. I implemented the solution to two or three other users. I do not plan to increase usage as my intention is to move to another product.

The technical support, after Broadcom acquired Symantec, has been not very good. It used to be maintained by Symantec itself. Since then, there has been a drop off in responsiveness and helpfulness. After being acquired by Broadcom, the support, even at the endpoint level, took two to four days.

We aren't satisfied with the level of support. It should be faster.

This is the first DLP I've used, however, I am switching over to Forcepoint DLP. I'm not staying with Symantec.

the initial setup is not straightforward or simple. It's quite complex.

The whole deployment process took about two days or so.

In Symantec, you have to first install the Oracle database, then you can go on to install the enforce server and then detection servers. It will take time.

I have done the entire installation by myself with the help of some installation guides. I did not contact a consultant or integrator for assistance.

We have a license for our clients. However, in my case, I've only used the trial license in my environment.

I've looked into Forcepoint and it seems to be much better as it's user-friendly and there are some other features that I like. I've just looked into it for comparison purposes. I've never actually used it.

I would recommend this product to other organizations, however, I would warn them it's difficult to maintain due to its architecture.

The product has enterprise-level use cases. The product protects the endpoints and the network. I mostly worked on endpoints and networks.

We used the solution to protect data from going out of the organization based on emails or regular expressions. We didn’t want users to share their debit or credit card details with others outside.

The product is very robust. We can ensure that whatever we want to protect can be protected much better than Zscaler. The tool uses regular expressions, OCR, and other useful enterprise protection features.

The product must improve its interface. The solution did improve the interface, and it looks better. However, the report filtering features could be much better. The in-built ITSM module needs to be revamped.

If anybody has been flagged for violation, the violation content shows all the credit card details. Any administrator can see the credit card details. I would like to see the tool integrated with Symantec Endpoint Protection.

I have been using the solution for more than a year.

The tool is pretty stable. I rate the stability a nine out of ten.

The scalability is good. I rate the tool’s scalability a seven out of ten.

The technical support is not that good.

Neutral

The initial setup was not very straightforward, but it was kind of easy.

We have seen an ROI on the product.

The product charges a little on the higher side.

People evaluating the solution must test the product against various vectors of threats. Symantec is very consistent, but sometimes it is a hit or miss. It is 95% accurate. It should be appropriately evaluated. Overall, I rate the solution an eight out of ten.