We employ the latest version.
Our clients make general use of the solution for endpoint detection. They are interested in its EDR capabilities.
Senior Security Architect at a tech services company with 11-50 employees
Easy to scale and setup, but should offer more granular timeline analysis
Pros and Cons
- "The setup is quite easy."
- "It would be nice to see more granular timeline analysis."
What is our primary use case?
What is most valuable?
There is no need to do an additional installation for the EDR, as the one belonging to Symantec is pretty much dependent on the endpoint agent, which is already deployed. This is my favorite feature, as it saves a person from the complexity involved in the deployment of additional EDR agents.
What needs improvement?
The solution should offer more features, such as ones which are forensic and timeline.
The tech support was very bad in the immediate aftermath of the merger, although it is now slightly better. The problem came down to the ownership of the case. Support was horrible when the Broadcom entered the picture, but they have done much work in this area and things are mostly better.
It would be nice to see more granular timeline analysis.
For how long have I used the solution?
We have been using Symantec Endpoint Detection and Response for ten years.
Buyer's Guide
Symantec Endpoint Detection and Response
October 2024
Learn what your peers think about Symantec Endpoint Detection and Response. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.
What do I think about the stability of the solution?
While the earlier version had many bugs, the current version is relatively quite stable.
What do I think about the scalability of the solution?
The solution is easy to scale and its methods of deployment are totally up to the needs of one's organization, be them on-cloud, on-premises or hybrid.
How are customer service and support?
Just following the merger, the tech support was very bad, although it has since slightly improved. Ownership of the case was the real issue. At the time when the Broadcom came into the picture, the support was terrible, yet much work in this area has since been undertaken and things are, for the most part, better.
How was the initial setup?
The setup is quite easy.
What's my experience with pricing, setup cost, and licensing?
I do not deal with the pricing. As such, I cannot comment on it.
What other advice do I have?
The method of deployment varies with the client.
Rather than handling the implementation on one's own, it is important to engage a good system integrator. Although a person's expertise may make the process seem straightforward, the experience a good system integrator brings to bear can benefit one beyond what is written in the documentation. Such a person can evaluate one's infrastructure and advise on the best approach.
I rate Symantec Endpoint Detection and Response as a seven out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
IT Security Specialist at TT Systems LLC
Customizable Application and Device control, but it is expensive and there are a lot of false positives
Pros and Cons
- "In Symantec, we have found that the most important feature is Application and Device Control."
- "Technical support is not as good as we expect, and resolving problems should be more timely."
What is our primary use case?
We were using this product for our endpoint protection.
What is most valuable?
In Symantec, we have found that the most important feature is Application and Device Control. You can customize it to help stop attacks, and we have done that many times in our different environments.
What needs improvement?
Some fine-tuning is required because we often see false positives.
For how long have I used the solution?
I had been working with Symantec Endpoint Detection and Response for more than six years. However, we are no longer using it because we are transitioning to another product.
What do I think about the stability of the solution?
This is a stable solution in our experience. We have read in the community communications that there are some corruptions that occur, which is something that should be fixed.
What do I think about the scalability of the solution?
This product is scalable. We have approximately 3,700 users.
How are customer service and technical support?
Technical support is not as good as we expect, and resolving problems should be more timely.
Which solution did I use previously and why did I switch?
We are currently doing a PoC with Trend Micro. We are looking at Apex One and Deep Security. We are switching because we are interested in using a central management console in a cloud-based deployment.
Symantec has a cloud-based solution, but it not compatible with all of the departments in our organization.
I also have experience with the Websense solution.
How was the initial setup?
Installing on a Windows Server was straightforward.
What about the implementation team?
We have two people for maintenance.
What's my experience with pricing, setup cost, and licensing?
We are currently using the trial version of the latest release. The price is really high and it should be lower.
What other advice do I have?
I would rate this solution a seven out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Symantec Endpoint Detection and Response
October 2024
Learn what your peers think about Symantec Endpoint Detection and Response. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.
Data Protection Specialist at CompuCom
Integration with antivirus provides better security posture
Pros and Cons
- "A great feature of this solution is that it is very well-integrated with antivirus software. Other ADR solutions are implemented as single technologies and are not integrated with the provider, but Symantec offers AV plus ADR."
- "I think we have experienced some technical issues because the company focuses mainly on bigger clients. Also, sometimes the solution fails to detect zero-day attacks, so that feature needs some enhancement because it is lacking compared to other solutions."
What is most valuable?
A great feature of this solution is that it is very well-integrated with antivirus software. Other ADR solutions are implemented as single technologies and are not integrated with the provider, but Symantec offers AV plus ADR.
What needs improvement?
I think we have experienced some technical issues because the company focuses mainly on bigger clients. They should treat every client equally instead of only targeting high-profile or high-revenue-generation clients. The focus should be client-centric, not only revenue-centric.
Also, sometimes the solution fails to detect zero-day attacks, so that feature needs some enhancement because it is lacking compared to other solutions.
For how long have I used the solution?
I have been implementing this solution for almost four years.
What do I think about the stability of the solution?
The stability of the solution is good.
What do I think about the scalability of the solution?
The scalability of the solution is quite good.
How are customer service and support?
The turnaround time of the technical support team is quite good.
How was the initial setup?
The initial setup is a little bit complex because the solution gets integrated with the existing antivirus software.
What's my experience with pricing, setup cost, and licensing?
The licensing costs depend on the number of endpoints that are involved.
What other advice do I have?
To anyone looking into Symantec Endpoint Detection and Response, I would say that it's the best solution that can be integrated with AV, thus providing better security posture.
I would rate this solution as an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Implementer
CIO at Meera Diagnostics
Easy to use and constantly updated
Pros and Cons
- "The interface is quite easy to use."
- "The Symantec portfolio is not big enough to cover the organization in all 360 degrees."
What is our primary use case?
We are in the healthcare industry and we use this product for our endpoint security.
It is primarily for DLP, protecting us against data leakage via malware and virus attacks.
What is most valuable?
The interface is quite easy to use.
The knowledge and signature database is continuously updated.
What needs improvement?
The Symantec portfolio is not big enough to cover the organization in all 360 degrees.
For how long have I used the solution?
We have been using Symantec Endpoint Detection and Response for almost three years.
What do I think about the stability of the solution?
We have had no issues in terms of stability.
What do I think about the scalability of the solution?
Scalability has not been a problem for us.
Which solution did I use previously and why did I switch?
We currently have multiple vendors that make up our security solution, although this is our only endpoint protection product.
What's my experience with pricing, setup cost, and licensing?
We are satisfied with the pricing.
Which other solutions did I evaluate?
We are looking for an orchestrated solution, where we can have all of the vendors operating under one umbrella. For example, Symantec is a good endpoint solution, but if we also need a perimeter solution then it is not covered.
What other advice do I have?
Overall, I think that this product runs quite smoothly and I definitely can recommend it. Anybody who implements it should not have any problem.
I would rate this solution a nine out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
CTO at ABM Info. tech
Effective, and has good support, but it could be more compatible
Pros and Cons
- "The Detection vulnerability is very effective."
- "It would be beneficial to have more integration and compatibility with other platforms."
What is our primary use case?
Symantec Endpoint Detection and Response is primarily applied to endpoints in the banking and telecom sectors.
If you want to protect yourself from zero-day threats, one option is to have Endpoint and the EDP, and if you don't want to have that combination, EDR is the best way to detect any exfiltration into the network, and then to respond accordingly.
What is most valuable?
The Detection vulnerability is very effective. It distinguishes Symantec Endpoint Detection and Response from its competitors.
What needs improvement?
It would be beneficial to have more integration and compatibility with other platforms.
For how long have I used the solution?
I have been working with Symantec Endpoint Detection and Response since 2018.
What do I think about the scalability of the solution?
We have two customers who are using this solution.
How are customer service and support?
I am very comfortable with technical support. It is good for whatever product they have.
How was the initial setup?
To deploy this solution, you will definitely require technical knowledge. It is not as straightforward and simple as other endpoints, but it is not difficult to deploy as long as you are aware of the technical aspects of it.
We need three sales engineers and backroom support to maintain this solution.
What's my experience with pricing, setup cost, and licensing?
It's a yearly subscription.
What other advice do I have?
I would recommend this solution to others.
I would rate Symantec Endpoint Detection and Response a seven out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Director General at MPR "Sarmatia" sp. z o.o.
Reliable, fast customer service, and priced fair
Pros and Cons
- "I have had absolutely no problem with using this solution, it really works well."
- "It is not possible to buy it from the company itself, or resellers in other countries. If it is available, I see that it is offered as part of a larger service. For me, this was not suitable."
What is our primary use case?
We are mainly using the solution to protect our computers from malware and other dangerous occurrences.
What is most valuable?
I have had absolutely no problem with using this solution, it really works well.
For how long have I used the solution?
I have been using the solution for three years.
What do I think about the stability of the solution?
The solution is stable.
What do I think about the scalability of the solution?
We are a small company and we did not branch out to know how scalable it is. We have under 10 people in the company using the solution.
How are customer service and technical support?
Once or even twice I used the technical support and I was assisted almost immediately.
Which solution did I use previously and why did I switch?
We have used McAfee and Trend Micro in the past.
How was the initial setup?
The installation was very easy, the deployment took a couple of weeks.
What's my experience with pricing, setup cost, and licensing?
We have a yearly subscription, and the pricing is fair.
What other advice do I have?
I would recommend this solution to others. However, it is not possible to use it for small companies at this moment. It is not possible to buy it from the company itself, or resellers in other countries. If it is available, I see that it is offered as part of a larger service. For me, this was not suitable.
I rate Symantec Endpoint Detection and Response a ten out of ten.
Which deployment model are you using for this solution?
Private Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Symantec Endpoint Detection and Response Report and get advice and tips from experienced pros
sharing their opinions.
Updated: October 2024
Product Categories
Endpoint Detection and Response (EDR)Popular Comparisons
CrowdStrike Falcon
Microsoft Defender for Endpoint
Fortinet FortiEDR
Cisco Secure Endpoint
Cortex XDR by Palo Alto Networks
Elastic Security
Intercept X Endpoint
VMware Carbon Black Endpoint
Trend Vision One
Trellix Endpoint Security (ENS)
Bitdefender GravityZone EDR
Kaspersky Endpoint Detection and Response Expert
Fidelis Elevate
WatchGuard Threat Detection and Response
Sangfor Endpoint Secure
Buyer's Guide
Download our free Symantec Endpoint Detection and Response Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What is the biggest difference between EPP and EDR products?
- What is the difference between EDR and traditional antivirus?
- What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?
- Which is the best EDR for a logistics company with 500-1000 employees?
- What is the best EDR or XDR product for a company with 9000 employees?
- What to choose: an endpoint antivirus, an EDR solution or both?
- Do we need to use both EDR and Antivirus (AV) solutions for better protection of IT assets?
- How does EternalBlue work?
- What are the best on-premise Endpoint Security solutions for a Tech Services company with 10,000 employees?
- What is Mimikatz?