In terms of improvement, it could improve how it deals with solar data. It should be converted to Trellix as soon as possible. We currently don't fully understand Trelix, but we hope to gain a better understanding when they present it to our team. We are looking forward to their presentation, and we believe it will help us provide valuable feedback.
When this solution is used it requires a lot of administration because the users can have difficulties using it and require assistance. The administrators are continuously modifying the policies for the users. Technical support will be used frequently.
Learn what your peers think about McAfee Total Protection for Data Loss Prevention. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
In our environment, we need improved network security. We'll be getting DDoS attacks, brute force, or credential theft. These things we need to improve. While McAfee will work in endpoints, when it comes to networks, it has not helped us. We have AWS GuardDuty and CloudTrail fro that. The initial setup is very complex.
DGM at a financial services firm with 10,001+ employees
Real User
2022-11-11T12:27:31Z
Nov 11, 2022
There is some fine-tuning needed, even once you define something. We need to do a lot of configuration. It would be easier if they made the configuration simpler, especially in the beginning. They need to give the user more choices and provide more guidance to help avoid problems later on. We'd like some more built-in predictive analytics so we can be prepared for what might happen in the future. We did have some bandwidth issues during setup. If your update fails, you may have stability issues. We find it difficult to reach higher levels of support when we face larger issues.
The product is difficult to use. I don't like the McAfee product and have had a negative user experience. They really need to simplify their offering. The interface is not so good. McAfee needs to clarify its rules. If you don't know what you are doing, scaling can be challenging.
McAfee Total Protection for Data Loss Prevention there is always improvement to be made on features. Other companies are coming out with their DLP solutions, such as Microsoft and ClowdStrike which will give McAfee Total Protection for Data Loss Prevention competition to move forward.
For our new engineers, it is difficult to understand the McAfee DLP interface, or configure it in the deployment scenario. The UI needs to be simplified.
It was a struggle prohibiting email content from being sent outside the company. We have some restrictions and obligations from the Central Bank of Jordan and the corporate and ISO and PCITS list. That was a problem for us. I'd like to see GDPR regulations included in this solution as it would enhance the security of the DLP for protecting data.
Sr. Sales Engineer at a tech services company with 11-50 employees
MSP
2022-05-18T05:02:00Z
May 18, 2022
The challenge now is the ability to have sensors, monitoring, and general security and policies on IOT devices. It's a challenge every time I use it and it's been frustrating. There are a lot of vulnerabilities and people can interrogate devices on a network and proliferate different forms of viruses or malware to infect a lot of things within the whole enterprise.
Integration with other vendors could be improved. For example, with Chrome or Firefox. If they have updates, we will have some problems with DLP. The browser updates are causing breakdowns.
Solutions Engineer at Trends and Technologies, Inc
Real User
Top 20
2021-08-05T12:43:12Z
Aug 5, 2021
In my experience, it's not really user-friendly for me, in terms of how I navigate with the ePolicy Orchestrator. They need to upgrade their management console. You can't navigate McAfee without going through all of the administration and product guides. You have to read everything first before you navigate it. That's how it was for me, at least, in my experience. However, in my colleague's case, that didn't happen and I don't know why I can't just navigate the McAfee management console without reading first the administrator or product guide. What's really tedious about reading those things is that the documents are separate. The product guide and the administrator guide for the DLP solution are quite different from the administrator guide and product guide of the ePolicy Orchestrator. They need to improve more with partial matching and exact data matching. The partial matching and the exact data matching are features of Symantec. There, it's pretty sophisticated. If McAfee wants to catch up with that, they have to upgrade their partial matching capabilities. We also had a client who wanted to have at least three, two to three, set of conditions on a single policy or on a single rule, to have that kind of combination. For example, a combination of a serial number from a device, from a removable device, plus a user and a computer or the hosting or the workstation. That's three combinations. User, computer, and removable device. What they wanted is to have the three pieces of that combination in a single rule, however, we were not able to do that as McAfee conditional statements are only limited to two. That's something that they need also to improve. They need to make it more flexible.
Information Security Engineer at a tech services company with 11-50 employees
Real User
2020-10-11T08:58:21Z
Oct 11, 2020
We've had issues with the Lower and Upper filter of the device control module. Technical support doesn't really offer fast response times. They could continue to refine their defense on signature attacks.
We're not very satisfied with the solution. There are some bugs on it that we've been having to deal with. Due to this fact, we've been looking for other options. McAfee in India really isn't working the way it should right now. The solution needs to improve its EDR systems. The solution needs to be a one-stop protection shop. And yet, the DLP isn't strong. Anyone can break it quite easily. The solution takes up a lot of hardware space and uses too much RAM and CPU. It sucks up our resources due to multiple processes. The processing time is too low. Each and every interval should receive a vulnerability scan, and yet McAfee can't seem to do this. On top f that there are bugs within it that make checking vulnerabilities a problem. Customer support is terrible. Compliance is also very bad.
The interface is very complicated to use and it is easy to forget how it works. There needs to be support for blocking the sending of files by email because even if you block or remove an external disk, the files are not protected. As long as the files can still be sent via email, it is useless to protect them from being copied to an external drive.
Cyber Security at a tech services company with 11-50 employees
Real User
2020-03-09T08:07:52Z
Mar 9, 2020
The technology would provide a DLL hook injection into memory to monitor processes as they were inserted into memory. Assuming they pass the other tests from the AV side, and they're allowed to be inserted into the memory, then the DLL hooks allowed the product to monitor those processes for injection, or for any risk. That worked some of the time but didn't work on everything. We found ways to inject code into processes that were being monitored and it was a silent failure. The solution didn't see everything. It did a good job of just stopping the insertion of malicious code from normal sources, but more advanced items it didn't catch. It was a silent failure on some of the more advanced attacks. The solution needs an easier integration in heterogeneous and dynamic environments. The product needs to offer more protection for memory-based attacks.
One thing that would help us is if the McAfee agent that we install on virtual machines became lighter. It is a bit heavy for installation on virtual machines and it uses too much in the way of resources. It takes a lot of the CPU, the RAM, and other resources in comparison to some other application like Kaspersky. Kaspersky Security Solution is a lighter solution than McAfee. McAfee is a little heavy for many installations and does not work for all clients and situations. It would also be good if the McAfee solution contained specialized features just for the virtual desktop. Some brands of security solutions already have this type of feature which makes it easier to use them for desktop virtualization. I can not find that currently in the McAfee product.
Both the pricing and the support for this product could be improved. I think the support comes at a very high cost. In our case, there are some regions where we do not pay McAfee for support because they do not provide the support quickly or they do not have the capacity to support our needs completely. It depends on the case and where the client is. It is not just the support that is expensive, I would like to see better pricing for the product licensing. Feature-wise, I would like enhancements added to the GUI interface to make it more well-designed, user-friendly, and user-intuitive while adding other features to help users work with the product more easily.
McAfee Total Protection for Data solution suite protects your data using a combination of powerful encryption, access control, and user-behavior monitoring.
The product’s pricing could be cheaper.
McAfee Total Protection for Data Loss Prevention needs to improve the resources it uses for CPU and RAM.
In terms of improvement, it could improve how it deals with solar data. It should be converted to Trellix as soon as possible. We currently don't fully understand Trelix, but we hope to gain a better understanding when they present it to our team. We are looking forward to their presentation, and we believe it will help us provide valuable feedback.
The product fails to offer automatic classification capabilities to its users. The tool should offer automatic classification in future releases.
I would like the solution to improve the AI features for anti-virus detection. I also want the software to include a tool for malware detection.
When this solution is used it requires a lot of administration because the users can have difficulties using it and require assistance. The administrators are continuously modifying the policies for the users. Technical support will be used frequently.
The user interface is messy and could be simplified. It could be more fruitful because the UI part of the DLP is also messy.
In our environment, we need improved network security. We'll be getting DDoS attacks, brute force, or credential theft. These things we need to improve. While McAfee will work in endpoints, when it comes to networks, it has not helped us. We have AWS GuardDuty and CloudTrail fro that. The initial setup is very complex.
There is some fine-tuning needed, even once you define something. We need to do a lot of configuration. It would be easier if they made the configuration simpler, especially in the beginning. They need to give the user more choices and provide more guidance to help avoid problems later on. We'd like some more built-in predictive analytics so we can be prepared for what might happen in the future. We did have some bandwidth issues during setup. If your update fails, you may have stability issues. We find it difficult to reach higher levels of support when we face larger issues.
The product is difficult to use. I don't like the McAfee product and have had a negative user experience. They really need to simplify their offering. The interface is not so good. McAfee needs to clarify its rules. If you don't know what you are doing, scaling can be challenging.
McAfee Total Protection for Data Loss Prevention there is always improvement to be made on features. Other companies are coming out with their DLP solutions, such as Microsoft and ClowdStrike which will give McAfee Total Protection for Data Loss Prevention competition to move forward.
For our new engineers, it is difficult to understand the McAfee DLP interface, or configure it in the deployment scenario. The UI needs to be simplified.
The licensing cost for McAfee Total Protection could be cheaper, but apart from that, I don't need anything else. The software has what I need.
The solution takes up too much CPU and memory.
It was a struggle prohibiting email content from being sent outside the company. We have some restrictions and obligations from the Central Bank of Jordan and the corporate and ISO and PCITS list. That was a problem for us. I'd like to see GDPR regulations included in this solution as it would enhance the security of the DLP for protecting data.
The challenge now is the ability to have sensors, monitoring, and general security and policies on IOT devices. It's a challenge every time I use it and it's been frustrating. There are a lot of vulnerabilities and people can interrogate devices on a network and proliferate different forms of viruses or malware to infect a lot of things within the whole enterprise.
Integration with other vendors could be improved. For example, with Chrome or Firefox. If they have updates, we will have some problems with DLP. The browser updates are causing breakdowns.
McAfee Total Protection for Data Loss Prevention could improve by having artificial intelligence.
In my experience, it's not really user-friendly for me, in terms of how I navigate with the ePolicy Orchestrator. They need to upgrade their management console. You can't navigate McAfee without going through all of the administration and product guides. You have to read everything first before you navigate it. That's how it was for me, at least, in my experience. However, in my colleague's case, that didn't happen and I don't know why I can't just navigate the McAfee management console without reading first the administrator or product guide. What's really tedious about reading those things is that the documents are separate. The product guide and the administrator guide for the DLP solution are quite different from the administrator guide and product guide of the ePolicy Orchestrator. They need to improve more with partial matching and exact data matching. The partial matching and the exact data matching are features of Symantec. There, it's pretty sophisticated. If McAfee wants to catch up with that, they have to upgrade their partial matching capabilities. We also had a client who wanted to have at least three, two to three, set of conditions on a single policy or on a single rule, to have that kind of combination. For example, a combination of a serial number from a device, from a removable device, plus a user and a computer or the hosting or the workstation. That's three combinations. User, computer, and removable device. What they wanted is to have the three pieces of that combination in a single rule, however, we were not able to do that as McAfee conditional statements are only limited to two. That's something that they need also to improve. They need to make it more flexible.
The interface can be improved, it's too cluttered.
We've had issues with the Lower and Upper filter of the device control module. Technical support doesn't really offer fast response times. They could continue to refine their defense on signature attacks.
We're not very satisfied with the solution. There are some bugs on it that we've been having to deal with. Due to this fact, we've been looking for other options. McAfee in India really isn't working the way it should right now. The solution needs to improve its EDR systems. The solution needs to be a one-stop protection shop. And yet, the DLP isn't strong. Anyone can break it quite easily. The solution takes up a lot of hardware space and uses too much RAM and CPU. It sucks up our resources due to multiple processes. The processing time is too low. Each and every interval should receive a vulnerability scan, and yet McAfee can't seem to do this. On top f that there are bugs within it that make checking vulnerabilities a problem. Customer support is terrible. Compliance is also very bad.
The interface is very complicated to use and it is easy to forget how it works. There needs to be support for blocking the sending of files by email because even if you block or remove an external disk, the files are not protected. As long as the files can still be sent via email, it is useless to protect them from being copied to an external drive.
The technology would provide a DLL hook injection into memory to monitor processes as they were inserted into memory. Assuming they pass the other tests from the AV side, and they're allowed to be inserted into the memory, then the DLL hooks allowed the product to monitor those processes for injection, or for any risk. That worked some of the time but didn't work on everything. We found ways to inject code into processes that were being monitored and it was a silent failure. The solution didn't see everything. It did a good job of just stopping the insertion of malicious code from normal sources, but more advanced items it didn't catch. It was a silent failure on some of the more advanced attacks. The solution needs an easier integration in heterogeneous and dynamic environments. The product needs to offer more protection for memory-based attacks.
One thing that would help us is if the McAfee agent that we install on virtual machines became lighter. It is a bit heavy for installation on virtual machines and it uses too much in the way of resources. It takes a lot of the CPU, the RAM, and other resources in comparison to some other application like Kaspersky. Kaspersky Security Solution is a lighter solution than McAfee. McAfee is a little heavy for many installations and does not work for all clients and situations. It would also be good if the McAfee solution contained specialized features just for the virtual desktop. Some brands of security solutions already have this type of feature which makes it easier to use them for desktop virtualization. I can not find that currently in the McAfee product.
Both the pricing and the support for this product could be improved. I think the support comes at a very high cost. In our case, there are some regions where we do not pay McAfee for support because they do not provide the support quickly or they do not have the capacity to support our needs completely. It depends on the case and where the client is. It is not just the support that is expensive, I would like to see better pricing for the product licensing. Feature-wise, I would like enhancements added to the GUI interface to make it more well-designed, user-friendly, and user-intuitive while adding other features to help users work with the product more easily.