Symantec Endpoint Detection and Response Reviews

Our primary use case is for HP advanced threat protection. The product gives us an edge when it comes to antivirus. We use a cloud connector and the solution is locally deployed, taking data live from the cloud and syncing. We are customers of Symantec, but we have a global agreement when it comes to pricing. I'm function head of corporate desktop services.

We call this solution the next-generation antivirus and it provides advanced threat protection. Although it can be a little slow, the ATP is live. If there are any issues, it's immediately reported to the appliance which is connected to the cloud. The main benefit for us is that the protection occurs a lot more quickly than it used to. 

The blocking features in Endpoint Protection are good. Problematic patterns can be blocked across the 11,000 workstations we have throughout India. If you apply a blocking policy it will take effect within about 30 minutes across all machines. The console has multiple features for monitoring and seeing alerts. It's working well for us.

Their customer support has deteriorated significantly since Symantec was purchased by Broadcom. We have issues interfacing with Broadcom. eg: There is no TAM / sales team in Broadcom for Symantec products. We have faced up to 3 months delays in getting a quote to renew the license through their partners.

I've been using this solution for over two years. 

very stable

Scalability is easy, we have 92,000 users globally, 11,000 are in India.

We don't use customer support for technical issues, only for insulation configuration. After Symantec was bought by Broadcom the operating model changed. They scaled back on the account managers, who provided us with support and everything went haywire. Now we don't know where to go because Broadcom is not interested in Symantec. When I want to extend a license or purchase additional devices or training credits, I have to do all the work; the support is slow and careless. We have to chase them. 

Neutral

No

The deployment process was complex, starting with having the device shipped from somewhere in the Asia Pacific region. It was not a normal scenario because of Covid. It was a big job because we wanted to go for Quantram. Deployment took almost three months of work with the data center, network team, network security, data center security, the server team, and then project management, end-user computing, and end-user security. Over the three-month period, we had 25 people working on implementation at different times and in different areas. The solution requires annual maintenance with the monitoring, maintenance and upgrades carried out by our team. 

In-house

It's difficult to judge ROI because the last couple of years has seen a lot of companies losing data. It's impossible for us to calculate.

The solution is premium priced. I don't want to say it's expensive because the product is good and we have to pay for it, which is okay. We pay an annual fee for a support contract. 

NA

Symantec is an industry leader and I have no second thoughts about that.  The product itself is excellent.

Taking into account the entire user experience, I rate the solution a seven out of 10. 

Automation in Symantec ecosystem is very good. It's easy to maintain.

The solution could improve their service.

I have been using Symantec Endpoint Detection and Response for two years.

Stability is good.

Scalability is good. I rate the solution’s scalability a ten out of ten.

Support is good. I had a problem, but the support resolve the problem.

Positive

I evaluated WatchGuard, Palo Alto and Cisco.

The initial setup is easy.

The product is expensive.

It is a good product and functions for me. It is easy to install to the administration.

Overall, I rate the solution a nine out of ten.

I use the solution to detect threats.

The security is good.

Symantec is a dead product. The product does not have any add-on features. The interface has many issues. There is no proper KB article to fix the error.

I have been using the solution for five years.

The solution is easy to install.

The product is cheap.

We have trial licenses for Trend Micro, Sophos, and Kaspersky.

People can use the tool. There are not many options, though. We are unable to log in or work in the trial version. We are unable to learn the features. Overall, I rate the solution a one out of ten.

We primarily use the solution for its powerful detection capabilities. 

It is very good at detection. The advanced threat protection is great.

The EDR and the events it is able to collect are quite helpful aspects a=of the solution. 

Its initial setup is fairly straightforward. 

The product is stable. 

The pricing is pretty reasonable. 

We are in Iran, so for some Symantec services, we face sanctions. 

The interface is very complicated. It needs to be simplified in future releases. 

It needs to offer better documentation around configurations during setup.

Scalability is limited. It needs more expansion capabilities and should offer more efficiency. 

I've used the solution for about three years. 

It's a stable solution. It's reliable and free of bugs and glitches. It doesn't crash or freeze.

I'd rate the stability seven out of ten. 

We have about 5,000 clients using the solution right now. It is something that is used on a daily basis. 

I'd rate the ability to scale five out of ten.

My understanding is the solution is not so scalable. I've never tried to scale it, however. That may be why XDR was suggested as an alternative.

Due to our location, there isn't official technical support available. We have some small businesses that can assist if necessary. 

We also work with Kaspersky.

We likely will switch from Symantec EDR to XTR.

The initial setup is not overly difficult.  However, the documentation sometimes does not make it clear about configurations. 

I'd rate the initial setup six out of ten in terms of ease of deployment. 

We have no official Symantec branch here, and so I did try to implement it myself. However, I did have assistance from a third party.

My understanding is the solution is cheaper than other options. I can't say what the exact price is for my company, however. 

I'd rate the affordability of the product at a six or seven out of ten. 

While I have no experience with the cloud and work mainly with on-premises deployments, I have heard the cloud is very good. 

I'd rate the solution seven out of ten. 

Symantec Endpoint Detection and Response is mainly used for endpoint protection against malware and other threats.

The most valuable feature of Symantec Endpoint Detection and Response is its ability to conduct large scans on the endpoints without affecting the network.

In the future, it would be nice to have playbooks in the tool, to allow for some of the common activities to be automated. For example, some of the scannings of the malware can be too manual for a specific device. Additionally, a vulnerability manager would be beneficial.

I have been using Symantec Endpoint Detection and Response for approximately three years.

The stability of Symantec Endpoint Detection and Response is good.

Symantec Endpoint Detection and Response scalability depends on the agents. You have to discover the devices. It's scalable, but it's not as flexible as one would like.

We have approximately 10,000 endpoints using this solution. We use the solution every day.

I rate the support from Symantec Endpoint Detection and Response a four out of five.

They have given quick resolutions to our questions.

I have not used other solutions. However, if you compare what Microsoft may provide to Symantec Endpoint Detection and Response, the integration with other systems, such as AD, Microsoft EDR solution treats it much better than Symantec Endpoint Detection and Response.

Symantec Endpoint Detection and Response advantages are the ease of use, quick introduction of new technicians, and it's much faster. It doesn't require a lot of training. In terms of usability, it's something that you can deploy and run quickly.

The initial setup of Symantec Endpoint Detection and Response was not complex, it was easy.

We had access to the Symantec Endpoint Detection and Response consultant to assist us with the implementation.

I rate the price of Symantec Endpoint Detection and Response a three out of five.

The more devices we have the more expensive it becomes, which is where the challenge is.

I rate Symantec Endpoint Detection and Response a seven out of ten.

The solution is mainly used for antivirus. When clients don't want a heavy agent on their system, they like to use a solution like this. This isn't a signature-based approach which isn't very effective.

Symantec has been a leader in the space. The threat intel they gather is very good. 

They have a wide presence across the globe. They often are the first to pick up on threats and malware. 

They have the capability to address zero-day vulnerabilities. 

They do have managed service offerings.

It is easy to set up.

The solution can scale well.

It is stable.

The pricing is reasonable. 

They need to improve their cloud presence. They need to keep developing prevention. Many OEMs are focusing on the detection part only.  They need to address the challenge of gathering false positives.

We do not need any extra features. 

I've been using the solution for two years now. 

The stability and performance are great. It is very stable. I'd rate it nine out of ten in terms of reliability. 

The solution is very scalable. I'd rate it nine out of ten. It extends easily.

They are leaders in this entire segment, and they have a good understanding of malware and antiviruses is very strong and their presence across the globe is very robust.

We tend to work with medium-sized organizations.

I've used CrowdStrike and they have done a good job in terms of using AI and ML behavior-based analysis. No signature is required on endpoint devices. When you scan devices, it does not decrease user performance. 

The initial setup is very easy to set up. I'd rate the initial setup eight out of ten in terms of ease of the process. 

Most customers are on-premises, although they do now have a cloud option.

The deployment generally takes a few days. 

The pricing is pretty reasonable. I'd rate it nine out of ten. 

I am a reseller. 

I'd rate the solution nine out of ten. Depending on the use case and the problem you are trying to solve, this is a decent solution. 

The most valuable features are that:

• It is easy to connect
• Global settings are good

I don't see much room for improvement. I am not an analyst for this product. I just manage this product for an analyst. I like the dashboard, it has lots of information like threats and we can see activity on the dashboard. It shows new and unknown threats in the environment. This feature is very good for EDR monitoring and management.

We have been using Symantec EDR for the last year. We also have Symantec Endpoint Protection

We are facing our own issues that we are checking to see if it's secure. We are working on this with support but they are not able to fix that now. We haven't had any issues regarding the features. It works perfectly. 

Scalability is good. 

We have contacted technical support multiple times. They are good but not excellent. We had a few issues and it took them a long time to respond. 

We did the POC within one week and the entire deployment took one month.

It's a good product if you have a lot of SAP solutions. 

I would rate it a six out of ten. Not a 10 because it works on version 14 but SAP clients have some issues and EDR is different on SAP. That's why I wouldn't recommend it for other systems. It works only with SAP clients. That's why I'm giving it a six. It would get higher if it worked on all networks without the help of SAP.

We use Symantec EDR to protect users and endpoints. 

I like Symantec EDR's device control and USB security features. 

It should be easier to deploy Symantec's client for end-users. 

I have used Symantec EDR for more than 10 years. 

It isn't difficult to install Symantec EDR. We use the on-prem and the cloud versions. 

I rate Symantec Endpoint Detection and Response eight out of 10.