We just raised a $30M Series A: Read our story

Symantec End-User Endpoint Security OverviewUNIXBusinessApplication

Symantec End-User Endpoint Security is the #5 ranked solution in our list of endpoint security software. It is most often compared to Microsoft Defender for Endpoint: Symantec End-User Endpoint Security vs Microsoft Defender for Endpoint

What is Symantec End-User Endpoint Security?

Unmatched Endpoint Safety for Your OrganizationAs an on-premises, hybrid, or cloud-based solution, the single-agent Symantec platform protects all your traditional and mobile endpoint devices, and uses artificial intelligence (AI) to optimize security decisions.

Symantec End-User Endpoint Security is also known as Symantec EPP, Symantec Endpoint Protection (SEP).

Symantec End-User Endpoint Security Buyer's Guide

Download the Symantec End-User Endpoint Security Buyer's Guide including reviews and more. Updated: October 2021

Symantec End-User Endpoint Security Customers

Audio Visual Dynamics, Red Deer Advocate, Asia Pacific Telecom Co. Ltd., Kibbutz Ein Gedi, and AMETEK, Inc.

Symantec End-User Endpoint Security Video

Symantec End-User Endpoint Security Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
SB
Computer Systems Administrator at a university with 10,001+ employees
Real User
Top 10
Lacks next-generation behaviour-based detection, offers terrible technical support, and not as robust as competitors

Pros and Cons

  • "The solution detects malware very well."
  • "The stability was not the best. There were times when antivirus updates broke it. It wasn't necessarily self-updating - at least, not in terms of the virus signatures. It updated in terms of the executable files. Therefore, when Windows updates would come out, they often couldn't be installed, or the computer would hang due to the fact that the updates weren't compatible with the antivirus."

What is our primary use case?

The use case for the solution was basically this: any computer or anything used for any sort of official business needed to have endpoint protection and needed to have some sort of antivirus protection. The thing was somewhat more than just an antivirus, it also included a firewall that operated in addition to the Windows or Mac firewall.

The university policy basically required that all endpoint devices used for official business have to meet certain requirements and one of them was to have an antivirus.

How has it helped my organization?

The solution probably caught some malware a certain percentage of the time and that helped the organization. By the time we abandoned it, it was actually less effective, at least on Windows 10 machines, than the built-in antivirus that you get with the Windows 10 Defender Antivirus. It became, in the end, sort-of a liability.

It also became a liability when the company was sold to Broadcom. The name is actually different now. I don't think it's called Symantec Endpoint Protection. It's called Broadcom Endpoint Protection. We had a very difficult time even getting in touch with the technical support from that company, especially after Symantec was sold. It wasn't a very robust solution.

What is most valuable?

The solution detects malware very well.

What needs improvement?

It wasn't a very good solution overall, which is why we ended up replacing it.

Most organizations are choosing a next-gen antivirus, one that's based on artificial intelligence. Symantec Endpoint Protection was one of those legacy products that have been around forever. Symantec was a spinoff from Norton. Norton Antivirus was one of the very first antiviruses to come out in the 1980s. Symantec was very highly rated at one point in its life. It never really caught on to the new trends and antivirus protection. And so it still relied on things like a database of virus signatures that would need to get downloaded and then files would be checked for those signatures.

Modern antiviruses don't do that. They're based on behavior. They're based on intelligence algorithms. They're honed by artificial intelligence and machine learning from data collected all over the world. And so for that reason, the next-gen antiviruses are much more efficient at detecting viruses. They also take up a lighter load on the computer.

Next-generation is behavior-based detection rather than signature-based detection. Symantec tried to be a hybrid between the two. It had a behavior-based component called SONAR, however, it was still mostly a signature-based software antivirus application. For that reason, you can never keep up with all the mutations and viruses, and you can't keep up with malicious behavior that isn't based on viruses. Things like downloaded PowerShell scripts, things that computers can do with the components that they already have without needing to put any virus on the computer. A lot of malicious attacks, government-backed attacks, don't use any kind of foreign software. They take advantage of vulnerabilities within existing operating systems like Microsoft Windows or the various versions of Linux or the Mac operating system. They don't need to put additional software on the computer to compromise them.

That, in a nutshell, is why we switched to a next-gen antivirus. Next-gen antiviruses have probably been around for about five or six years. Some of the old companies made the transition to them seamlessly. Symantec didn't. It remained wedded to the old technology and that made it, you could say, a has-been.

For how long have I used the solution?

I've been using the solution for many years. It's probably been about ten years at this point, at least a decade.

What do I think about the stability of the solution?

The stability was not the best. There were times when antivirus updates broke it. It wasn't necessarily self-updating - at least, not in terms of the virus signatures. It updated in terms of the executable files. Therefore, when Windows updates would come out, they often couldn't be installed, or the computer would hang due to the fact that the updates weren't compatible with the antivirus. I give it pretty poor score for robustness.

What do I think about the scalability of the solution?

It was scalable just due to the fact that had to be installed individually on individual computers. For the unmanaged workstations, it was as scalable as you wanted it to be. There was a new download and a new install on a new computer. There are no limits on that. I'm not sure, however, how true that is, as it wasn't within my area of responsibility. I'm not sure if the managed work points overloaded the servers that were meant to monitor them. I don't think that was the case. The scalability was probably pretty good there too. I never heard any complaints about it not being scalable.

We likely had between 10,000 and 20,000 users on it. The roles would include, since it's a university, students, faculty, staff, and researchers. That pretty much covered the type of people that work at a university.

We don't plan to increase usage as we've completely phased out the solution.

How are customer service and technical support?

Once Symantec was sold to Broadcom, it became very difficult to reach out to technical support, and they just stopped being responsive. By the end, we were very unhappy with their level of support.

Which solution did I use previously and why did I switch?

I've been at the organization for 21, 22 years. Originally, before we had Symantec, it was McAfee antivirus. We had that up until maybe about 2010 or so. Now, we are using CrowdStrike Falcon.

How was the initial setup?

The initial setup was not complex. It was simple.

The deployment was always ongoing due to the fact that, as a university with something like 16,000 employees, computers were getting bought and repurposed all the time. The initial rollout was in fact not a managed version of the antivirus. It was just a standalone version that users could download from a website when they provided their credentials. After that, they would just double click on a downloaded file and run the installer and they'd have the antivirus.

However, it was completely unmonitored. The antivirus program on their computer was not sending its data anywhere. It couldn't be helped by anyone remotely to do its job of protecting the computer.

Therefore, almost all organizations now want to have a managed antivirus solution where there's software installed on the computer, but it communicates with the cloud, and IT administrators at the organization can control this behavior and learn from it.

In terms of the staff required to handle the deployment and maintenance, there was probably the equivalent of maybe two to three full-time staff that were dedicated to antivirus endpoint protection issues. 

What about the implementation team?

We handled everything ourselves in-house. We didn't need the help of a consultant or integrator.

What's my experience with pricing, setup cost, and licensing?

We pay on a yearly basis. However, I'm unsure of the exact amount.

Which other solutions did I evaluate?

We did evaluate a number of other vendors. We entertained some RFPs and we did testing on four other competing products. There was one other competitor that was close. The main factor that tilted us toward CrowdStrike is that they did make a last-minute significant cut in price to their offer. I think they reduced it by something like 30% or 40%.

CrowdStrike has been in the business longer and is a bigger company than the runner up as well. To us, that mattered. If there is winnowing out of competitors, if the market actually shrinks and there are a few big players in five years, we want to be sure that we're with one of the big players that are going to make it.

What other advice do I have?

The solution is a kind of a mix between an on-premise managed server that managing some machines, and other machines just had an unmanaged client that was distributed to students. It's not actually a cloud, it's a server. It's an on-premises server. It's not a cloud-based server that is being used. The antiviruses report to the server and policies can be set on the server.

I'd advise users to be aware that there are better solutions out there than this. I've learned that technology can change and your solution may be great now, but in a few years, it may drop to the bottom of the barrel. That's what happened here.

I'd rate the solution one out of ten. In order to get any sort of higher rating, they would need to start it over again from scratch. Instead of trying to make a legacy product better, they should abandon it and invent a new product.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
RG
Sr. Professional Services Engineer at a computer software company with 11-50 employees
Real User
Top 5
Offers excellent advanced and modern features and does a great job at protecting your environment

Pros and Cons

  • "The firewall, IPS and device control are useful at protecting the environment."
  • "There is a lack of reporting and alerts."

What is our primary use case?

The primary use case for this solution is to protect all endpoints in a complex enterprise environment, including it's servers, workstation, Citrix-based systems, includes Windows, Linux and Macs. We're a small company, under 50 users. But we deploy Symantec to companies that have from a few hundred to dozens of thousand users, therefore I have extensive experience with the product. We are partners and resellers and I'm a senior professional services engineer. 

What is most valuable?

All the features are great with the core being antivirus, spyware, Artificial Intelligence and Advanced Machine Learning, and capabilities like reputation analysis based on their huge footprint, firewall, IPS and device control are very useful at protecting the environment. Unfortunately many companies just use the basic, out of the box solution. Even when they turn on the firewall, they will use it just with its default settings, but if you really learn how to use it and deploy it correctly, it provides much more protection. With Symantec adopting the AI and many of the new protection features like file-less attacks and other modern technologies, it's very attractive and makes a big difference. EPPs by nature have so many parts to it, they can be daunting, even to those with experience, but once deployed it's quite easy to use.

This is a very complete solution. It has all the pieces that you need. Like many companies, Symantec also sell an EDR solution, and it is a feature you'd want to add to an endpoint solution. 

What needs improvement?

I think Symantec, like many of its competitors, doesn't have comprehensive built-in reporting. The product keeps improving, but reporting and alerting is not keeping pace, and these are critical.

For how long have I used the solution?

I've been using this solution for about 13 years. 

What do I think about the stability of the solution?

This is a very stable solution. 

What do I think about the scalability of the solution?

In terms of scalability, it's one of the best out there. I did a project for a major hotel chain that also has rental properties. Some of these places have five users, and then others have 200 users. When you deploy in a company like that, scalability and the ability to protect remote places without having to put a server out there, is critical. And Symantec just really scales up. It's very efficient. It can be used in a company that has a lot of remote users, like oil companies with remote locations. It's a solution that allows you to support a worldwide company that might have offices in dozens of countries, and it just works.

How are customer service and technical support?

The technical support is similar to other companies. You're assigned a low level guy on your first call. We don't have issues with the basic things, it's more about the bigger problems so we always have to escalate and they do a good job of it.

How was the initial setup?

The initial setup is super easy. Deployment is faster than in other solutions but it still takes time. It needs to be done in steps. You initiate it with a test and pilot to discover false positives or whether it might be blocking things or creating an issue on your network. A lot of companies have custom code programs and typically any EEP would trigger false positives. The companies we deploy to are generally medium or large so you have to be strict on your load because the impact can be brutal if not done right. You then carry out an expanded pilot and once you're satisfied that it's not going to bring your network down, you deploy it almost at once. You go from deploying it to 25 endpoints as a test to maybe 200 endpoints as an expanded pilot, and then you deploy it to 5,000 computers over a relatively short period of time.

We generally offer up to a six-month window for implementation and it usually takes between two weeks to six months to fully deploy. The process isn't difficult, you just have to be careful. You can deploy all the features in a month if it's a small environment including all the testing and pilot phases. 

What's my experience with pricing, setup cost, and licensing?

My understanding is that the price is quite good and competitive. My advise is to invest the necessary time and effort to deploy it correctly and with minimal disruption. In the enterprise arena, if you don't have the in-house expertise in the more complex areas of the product do your organization a favor and get expert assistance.

Which other solutions did I evaluate?

Many, there are numerous great solutions in this market and they all offer great protection. The differences are in the feature sets, some for example don't have firewall, device control or Intrusion Preventions, or for example don't have the scalability required to deploy to companies that have hundreds of remote offices that have a few computers and hardly any bandwidth, and they can cause bottlenecks.

What other advice do I have?

It's like any enterprise solution, it needs to be done professionally. People complain about Symantec, claiming it's messed up their system but I've deployed it to hundreds of places of all sizes and have had few issues. The problems are self-induced because the people deploying didn't know what they were doing, and didn't understand the solution. They didn't do the pilot, they didn't do the best practices. And so something happened, messed up the system, and created problems, and they blamed the product. 

This remains a very viable solution. There's a lot of sexier stuff out there, but Symantec brings a lot to the table with their introduction of AI and the latest technologies. They continue to be a well-designed system that just works. 

I would rate this solution a nine out of 10. 

Which deployment model are you using for this solution?

Private Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Learn what your peers think about Symantec End-User Endpoint Security. Get advice and tips from experienced pros sharing their opinions. Updated: October 2021.
543,089 professionals have used our research since 2012.
SL
Network Administrator at a pharma/biotech company with 51-200 employees
Real User
Top 20
This is still a solid product but is lagging behind the competition in keeping up with modern needs

Pros and Cons

  • "It is a solid antivirus security product."
  • "The whitelisting feature does not work as expected."
  • "The enterprise edition does not report attacks on external devices."

What is our primary use case?

We use the product as an antivirus solution and install it on every end-user machine.  

What is most valuable?

I think Symantec is a good antivirus solution. There is not really a specific feature that I think stands out. If you consider the protection as a feature, I would say that antivirus protection is the most valuable feature the product has.  

What needs improvement?

We have had some problems with the Symantec solution. The problems were bad enough that I was compelled to start to research into other products. The biggest issue was the whitelisting feature. The Symantec software has a feature that detects certain things as malicious and it takes care of the issue. It is supposed to do that. Sometimes the things it flags are not real issues — they are essentially false positives. Sometimes there are things we want it to let through that it would otherwise flag. We put these things on a whitelist so they get allowed. We were having a problem keeping a particular file on the whitelist. It was an EXE and Symantec kept flagging it even when it was whitelisted.  

To fix the issue, we had to do in-house software development. We had to run some extra code. The process was not smooth and, in the long run, it basically did not work. The support by Symantec on the issue was of no further help and it remained a problem.  

A feature that seems to be missing from Symantec is reporting on external devices. For example, if a remote user gets a virus on their computer and they are accessing our system, I want to know. The Symantec agent should be checking this in the cloud and informing us that a particular end-user got a virus. I should get a report or alert somehow. The computer in question should be isolated — or something like that — to mitigate the potential of the threat. Instead, nothing happens.   

The enterprise product that we have now does not have that feature. Maybe Symantec has that feature implemented in other products, but I do not know about it. Maybe it is not there at all or maybe it is some type of cloud feature. But the end result is I have looked for the solution in the product, can not find it, support did not inform me that it can be resolved, and we are essentially left with a vulnerability. That is really not acceptable.   

For how long have I used the solution?

I have been using Symantec Endpoint security for about 2 years.  

What do I think about the stability of the solution?

It is stable. We do not really have problems with the product crashing.  

What do I think about the scalability of the solution?

Endpoint Security is not that scalable right now because it is hard to even get a new quote. It is part of the problem happening during the transition when they got bought up by Broadcom. The whole process of renewing and buying new licenses has become a pain. It takes forever to get a quote.  

On a daily basis in our company right now there are around 300 people using the product. The system is monitored by the system admin and myself. We have a cooperative situation.  

How are customer service and technical support?

The Symantec customer support team is responsive by email. I would say it is between 80% to 90% effective.  

Which solution did I use previously and why did I switch?

I have not used other antivirus products as an admin. The Symantec product was already in use at the company when I came here.  

How was the initial setup?

I would say that the initial installation is moderately straightforward. It is not really completely straightforward and it is not really complex. It is somewhere in the middle.  

The deployment of the server takes more time, but I am not the one who deployed it. I do not know exactly how long it took. I am not aware of any surprises or difficulties with the deployment.  

What about the implementation team?

The system admin did the installation without external assistance.  

Which other solutions did I evaluate?

I was not the one who implemented Symantec at our company. The decision was made before I arrived and I inherited the product.  

I am now researching products in consideration of deploying a replacement option for Symantec because it is not totally meeting our security needs.  

What other advice do I have?

The honest advice I would have for someone considering this solution at this point in time is to move on. I say this because Symantec is being bought out by Broadcom. That may not be a bad thing on its own. Symantec has traditionally been a very good company and still was up to this point. But being bought by another company just means that there will be a mess because of the transition and integration between these companies and products. Developers of the product will be spending time focusing on that merger rather than core product issues. It creates a little bit of a mess that the client should not have to suffer through when there are other capable solutions.  

Another thing is that Symantec still needs to implement some features that it does not have. They have very good, strong protection, but they are behind other products on the market. There are a lot of more features they have failed to implement. Especially now when everyone is working remotely and with cloud products, the security does not seem complete.  

Maybe the cloud version addresses these issues. I have not used the cloud version because I am on the enterprise version and like in-house deployment. Our version is missing a ton of features that are very important to security especially in the current environment.  

On a scale from one to ten where one is the worst and ten is the best, I would rate Symantec End-User Endpoint Security as a seven-out-of-ten. It is missing too much to be rated higher.  

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
ML
IT Director at a comms service provider with 10,001+ employees
Real User
Top 20
Offers good scalability capabilities and nice stability with great protection against any kind of malware

Pros and Cons

  • "The product has been quite stable."
  • "The technical support could be a bit better."

What is our primary use case?

The primary reason we use the solution is to protect the device and to be sure there isn't any kind of malware. The device is protected from any kind of malware is the basic level of the solution. We use the control applications to blacklist applications that we don't need to use, and that we have blocked on the Microsoft group policy. We use the antivirus to do the same thing. That way, if the final user tries to install any non-approved software, the antivirus removes or blocks the application.

What is most valuable?

The protection against any kind of malware is the most important feature of this product. It really helps to keep the operations system clean.

The product has been quite stable.

We've found the scalability to be very good.

What needs improvement?

Today, it's just a question of understanding the update package of the operating system as the antivirus software in and of itself is not enough.

This is due to the fact that if I have not updated Windows, I have a huge breach of security. The idea for us, from our point of view, is that the antivirus needs to understand how if Windows is safe. If the operating system is safe, the antiviral has less work to do. From a security point of view, both of them need to work together. It's not just the task of the antivirus to keep all the computers safe. The operating system needs to be updated too.

The operating system and the antivirus need to communicate better with each other and exchange information so that I know everything is secure. It needs to be more clear when things aren't aligned and need to be repaired, in order to avoid the risk of a security breach.

The technical support could be a bit better.

For how long have I used the solution?

We've been using the solution for just about a year or so. I'm quite new to the company. That said, it's my understanding that the company has been using the solution for about six years or so.

What do I think about the stability of the solution?

The stability is very good. It's reliable. It doesn't crash or freeze. There are no bugs or glitches. It's quite good.

What do I think about the scalability of the solution?

We have no problem with scalability so far. We are a growing team and company and so far it's been growing with us. It scales well. 

As of today, we have around 4,000 users, however, we are still growing.

How are customer service and technical support?

Technical support is a bit of an issue. In Brazil, when we need technical support we use a partner. Every time that we contact Symantec, it will take a long time to get the answer. The primary contact is the partner who implements the software here. It's a local company from Brazil that handles all the support information and services for us. We just needed to make contact with Symantec one time however, the answer was so long that the partner got the answer to us first and therefore we really stopped trying to directly reach out.

How was the initial setup?

We don't have too much trouble with deploying the solution. 

We have a policy software that controls all the policies and deploys with the software. I really don't know too much beyond that, however, as we have a security team that handled the installation, deployment, and maintenance. I haven't heard anything negative, however, which makes me assume everything is very straightforward.

What's my experience with pricing, setup cost, and licensing?

We pay a yearly licensing fee. The fee was paid last year, however, I don't have access to the exact costs. It may have been renewed before I started working with the company.

Which other solutions did I evaluate?

Today, we are looking at Kaspersky. We want to see if it can handle dealing with Windows updates in a better way than Symantec. They have some interesting features that take a pretty deep look inside the Windows system in order to protect it. We feel the antivirus needs to go farther into the Windows system and down to the endpoints themselves and really take a look around in order to effectively protect it from attacks. We're currently searching for more information to see how Kaspersky stacks up.

The pricing is also quite different between the two solutions and this may affect our decision as well.

What other advice do I have?

We're just a customer and end-user.

I'm finding that, in Brazil, Symantec's services need to be closer to the customer and the antivirus itself is not enough for an IT department to keep the company safe. It can't just protect user data. It needs to go further and protect all of the company's devices and software. 

I can have the best antivirus software, however, we find that if our Windows disk is not updated or has a security branch, something can attack the security branch in the Windows and sometimes it's a virus software. That's why Windows needs to work more closely with this product - or any antivirus.

In general, I would rate the solution at an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Marbella Ibarra
CEO at CT AMERICA
Reseller
Top 5Leaderboard
Scalable with good central management but needs better technical support on offer

Pros and Cons

  • "The solution, especially in older versions, is quite stable."
  • "The support needs to be better. When we upgrade, we can run into issues, and it's hard to get the help we require."

What is our primary use case?

We use the solution in order to protect all the computers and servers that we are using on the premises to have some controls against some threats. We are using it as anti-malware protection on the Endpoint Security side, and for encryptions for the high-risk drives on the encryption side.

What is most valuable?

Symantec has similar functionality and characteristics compared to other solutions in the market. However, we found it was easier for us to upgrade Endpoint Encryption. The main characteristic and the main advantage that we saw was that it could handle all the settings through a central point.

The solution, especially in older versions, is quite stable.

The scalability is good.

What needs improvement?

We have many issues with the way that Symantec is a data entity in our active directory. 

We need to protect all personal devices such as mobile phones. We can't do it at the moment via this product. It is a very important aspect that is missing at this moment. If they could add mobile detection, that would be ideal. Currently, we are using a lot of mobiles as we work from our home. 

The support needs to be better. When we upgrade, we can run into issues, and it's hard to get the help we require.

Newer versions can be a bit less stable.

For how long have I used the solution?

We've been using the solution for the last eight years, more or less.

What do I think about the stability of the solution?

The solution is mostly stable, however, when we need to upgrade, at this moment we need help due to the fact that we don't have good technical support locally. 

We have been using older versions, as they are stable versions for us and we don't know how to upgrade completely to the latest version. That is the issue that we have at this moment. We need to be trained, however, we don't have any access to training, especially from Symantec. For the last two years, and it is hard.

What do I think about the scalability of the solution?

The scalability is pretty good. We can increase the number of computers managed by the solution, and we can increase the passes. We have been using these solutions for the last eight years due to the fact that we don't have any kind of problems. 

That said, when we tried to upgrade, when we got the newest features, the newest protections, we had a lot of problems as we don't have any Symantec specialists available for us to help us, to train us, and to give the appropriate support. That is the main issue that we have right now.

How are customer service and technical support?

Technical support needs to be better. We don't have any specialists available for us. We are located in Latin America. We are located in El Salvador, in Central America. We don't have any specialists available for us in order to help us or to teach us how to solve our problems. We are looking online mostly at this point for some advice in blogs and forums. That's not what our expectations were when we signed up. We open tickets through the webpage and nobody happens. We are a little disappointed in that sense.

Which solution did I use previously and why did I switch?

We have not moved to another security solution due to the pandemic, as we have been working irregularly. We have been closed for around one and a half years. Then we have been working some days in the office, some days from home. It has not been a good moment for us to change the solutions, however, we are thinking about it, not due to its scalability or stability, or even due to licensing. We have been talking about changing because of the lack of good technical support.

How was the initial setup?

It's easy to set up all the devices that are managed by the active directory, however, many devices that we are using right now to work are not managed by the active directory. For example, cell phones or any other intelligent devices. We can't protect them through Symantec Endpoint Protection, Endpoint Security.

For laptops and desktops managed by the active directory, it's relatively easy to deploy. It's not a problem as we only set a policy when a laptop or server or desktop is added to the active directory so that it's transparent. It's added immediately to the Symantec console in a transparent way. 

The deployment is immediate. With the equipment managed by the active directory, it's five minutes or less.

What other advice do I have?

We are a reseller.

We are using Symantec Endpoint Security and we're using Symantec Endpoint Encryption.

We have it implemented on-premises.

I'd advise other companies to consider the solution. It's necessary. If you have a good team of specialists around you, it's a good option.

The most important thing is to have someone to help you, especially if all of your users are working regularly from different places, with different issues, with different connections through your infrastructure. If you don't have the skills, or you don't have good advisers or good technicians to help you, you are lost. 

I'd rate the solution at a seven out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
Flag as inappropriate
DW
Senior Network Engineer at a government with 10,001+ employees
Real User
Top 10
Blocks threats well and is automatically updated on a regular basis

Pros and Cons

  • "The most valuable feature is the automated updating feature."
  • "This solution is resource-heavy."

What is our primary use case?

The primary use cases of this solution are for antivirus protection, anti-malware protection, and personal firewall protection.

What is most valuable?

The most valuable feature is the automated updating. They send out updates on a regular basis. All that we have to do is to set it up on our server to download it, then it is distributed to the individual endpoints. 

Individual machines could do the same thing but it would only be on that one machine.

It seems to block things fairly well.

What needs improvement?

This solution is resource-heavy. It uses up a lot of memory and a lot of disk space. It demands a lot of resources. There have been improvements with Windows 10 and it's not as problematic.

The firewall capabilities did not seem to do what the documentation claimed it should do.

Port control is one of the things that this solution does do, but it does it on a higher level. When I say port control, it's things like USB ports that can be used to plug things in. For example, if you plug in a wired mouse or a wireless mouse then you want the flexibility to be able to do that. It should be able to identify that it is a mouse and let you use it. 

By the same token, if you plug in a 1 TB external hard drive, that should be shut down unless it is one of your hard drives. The only way to detect that would be to have units with their own serial number and the system programmed in such a way that it would recognize it.

Seagate for example has many external drives. They have serial numbers on those drives, and we don't want to just set it up for use by any Seagate drive. We want our external drives to be used, only. We don't want to have to go purchase Seagate drives to have it work. We want them to get it from us, that we know works, and have them return it to us.

I would like to see a check-in system where you can log which specific drives your staff can access and what they cannot access.

For how long have I used the solution?

I have been using this solution for approximately six to eight years.

What do I think about the stability of the solution?

With Windows 7 there were some stability issues. The environment handled resources differently. You could have a fairly resource-heavy solution that would make the system unusable.

Windows 10 improved stability quite a bit.

How are customer service and technical support?

Technical support is good, but when they sold to Broadcom, even though people were paying for the support they were not getting it.

What's my experience with pricing, setup cost, and licensing?

This product is more reasonably priced than some competing solutions.

Which other solutions did I evaluate?

We spoke with some vendors who recommended Sophos and Crowdstrike. While Crowdstrike has some incredible features, it's four times the cost.

Sophos is supposed to handle our needs.

Crowdstrike could handle our needs and then some, but we couldn't justify the cost.

What other advice do I have?

Within the last three or four months, we decided to drop Symantec on its own because of some issues we have with the company. We will be using Sophos.

Symantec sold off their enterprise solutions, which this product falls into. When they sold it. they sold it to a company that has purchased software packages in the past and not done very well with it. They are a hardware company trying to expand into the software realm. This is another example of a hardware company that thinks that they can do software and they can't.

We were told that Broadcom was ignoring all of their customers that were below a certain level of license purchases. Some of the customers were calling wanting to renew their product and they were having to wait a month or six weeks just to get a quote.

We did our own research and confirmed that what we were told was true and decided that we were not going to renew and went to Sophos.

If you are going with Symantec, definitely purchase the 24/7 tech support. They will help you with just about everything, or at least they used to. I am not sure if that still applies to Broadcom.

They now offer the option to put it into the cloud for the management capabilities. That way the endpoints, the individual laptops, and desktop computers are actually going to a website to get the management, the new definitions, and new configurations. This option should seriously be considered. 

I am not recommending that they do that but they should at least seriously consider it, because, while having that one server to do that one thing is fairly important, it would be nice to not have to deal with it.

For what we were using this product for it was pretty good, but there were some things that we didn't like, and some things that we would have like to take advantage of.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
TS
Director at a consultancy with 201-500 employees
Real User
Top 10
Great administrative control, reliable technical support, and easy to implement

Pros and Cons

  • "The single-pane management is the solution's most valuable feature. It makes administrative control very easy."
  • "I know they were just bought out by Broadcom and there have been some difficulties with Broadcom as far as getting license renewals, etc. Mostly, due to the fact that it's confusing, even for the vendor, people are turned off by it. The vendors are telling us that it can take weeks for them to get a renewal quote, nevermind the actual renewal."

What is our primary use case?

We basically use the solution for endpoint protection.

What is most valuable?

The single-pane management is the solution's most valuable feature. It makes administrative control very easy.

What needs improvement?

I'm not sure if the solution can improve that much more. Right now, for me, I'm asking the question "How does Defender stack up against the product we're paying for?" 

Defender comes with Windows 10 and we have Windows 10 throughout our environment. With that being free, we're asking ourselves why we would pay for another solution that's sort of redundant.

I know they were just bought out by Broadcom and there have been some difficulties with Broadcom as far as getting license renewals, etc. Mostly, due to the fact that it's confusing, even for the vendor, people are turned off by it. The vendors are telling us that it can take weeks for them to get a renewal quote, nevermind the actual renewal.

I've actually had to call Symantec myself because my vendor said "Well, we're going to try it, but it's going to take weeks to get an answer from them." In the end, it was internally expedited and I got the answer the next day, however, that's an exception, not the rule.

I know a number of people that have left just because of the fact that when Broadcom first bought them, and their licensing ran out, the company provided a temporary license and then another instead of dealing with a proper license. One had to argue for another renewal or for them to promise to give them the proper license in the third month. He finally got it, however, it took three months of begging. That doesn't seem right.

For how long have I used the solution?

I've been using the solution for about ten years at this point. It's been at least a decade.

What do I think about the stability of the solution?

From a usage point, it's very stable. With the new company Broadcom, that's taken them over, I know they've had some shakeups. My concern is whether or not Broadcom continues to support it going forward. If they do I'm fine with it. If they don't or they start having failures in their support, then I'm going to have to leave them.

What do I think about the scalability of the solution?

I don't know enough about the scalability to really have an opinion on it, one way or the other. I wouldn't be able to comment on it.

Currently, we have anywhere between 100 and 500 users on the solution.

How are customer service and technical support?

I've used technical support in the past. They've always been okay. We've had very few incidents where we've had to have to call them and ask for assistance. Out of those incidents, in my recollection, the last one was probably a couple of years ago, but those incidents were quickly resolved. 

I would say, overall, we've been satisfied with their level of service in the past.

How was the initial setup?

The initial setup wasn't complex at all. It was very straightforward. However, in our case, the initial set up was 10 years ago. Its been a very, very long time. I can't speak to what it is like right now. It may be different, or just as easy.

What's my experience with pricing, setup cost, and licensing?

We're a not-for-profit. We do get exceptionally good pricing, however, I cannot say exactly what the costs are for us on a monthly or yearly basis.

What other advice do I have?

We're just a Symantec customer. We aren't a partner or reseller.

We're currently using the latest version of the solution.

Overall, we're pretty happy with the product.

I would tell other organizations considering implementing it that it's a great tool. My concern again would be if Broadcom doesn't really invest in the product's success. Often companies will buy out their competitors and/or they'll buy out a product line thinking that they want to get into that field. Then they turn around and they dump the product line after a year or two and decide, "Well, I guess we don't want to go this way," or they are just buying it out to get rid of the competition.

My concern lies in the new company failing to come through on updates or the delivery of the service. It remains to be seen whether they're going to fail, or whether they're going to continue to support the product and keep it as a high-end solution.

So far I've been very happy with them. I would rate them overall as fairly high, maybe a nine out of ten. The only thing that worries me as a user is whether or not Broadcom is going to continue to support them going forward.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
VS
Director at a consultancy with 10,001+ employees
Real User
Top 20
Very scalable with good security capabilities and good stability

Pros and Cons

  • "The solution can scale."
  • "The agent shouldn't use up so many resources at the endpoint when scanning and protecting."

What is our primary use case?

We primarily use the solution to protect our endpoints. There are growing attacks worldwide, and we need to be protected against any eventuality - including malicious attacks or ransomware. We also use the solution to protect endpoints for users that work from home. 

What is most valuable?

The product is good at alerting users to anomalies.

The detection is pretty good.

The system has been working fine and is quite stable.

The device control has been working impeccably. 

The solution can scale.

What needs improvement?

We'd like to have a solution that offers a single pane of glass that would allow us to integrate all of our traffic and solutions under one umbrella so that we can look at all the incidents in one place. 

The product needs to be well versed in the security landscape to best protect us from malicious attacks, as we've seen a rise in activity.

The agent shouldn't use up so many resoures at the endpoint when scanning and protecting.

There needs to be better communication, back and forth, between on-site teams and off-site users. If something is happening off-site there should be some sort of logging or details that can be shared with the main office.

The solution needs to do a better job at scanning video links. 

There have been instances where we haven't been able to find the root causes of alerts.

The size of the footprint of the software is too high. It's quite heavy.

Network and cloud scanning coverage needs to be expanded and improved upon.

The functionality could be much better.

There also needs to be more training offers to companies to help understand the technology and its capabilities a bit better. 

Technical support is not great. They are not responsive. 

For how long have I used the solution?

I've been using the solution for a long time. It's been more than ten years.

What do I think about the stability of the solution?

For the most part, the stability is okay. 

What do I think about the scalability of the solution?

You can scale the solution very well. It's not an issue as well. However, the support is lacking, and it might deter users from wanting to scale. Even the resellers are warning clients that the support isn't there, and the company is not responding well to queries. 

How are customer service and technical support?

We have found Symantec's technical support to be very sluggish. They are very slow to respond and alert us to changes. It's quite a problem. Trend Micro, for example, has much better service. Even if you look at Palo Alto, they really work with you and give you complete training. Symantec really doesn't offer its clients much.

Which solution did I use previously and why did I switch?

We are using Trend Micro. Many customers seem to be moving over to them as they are losing faith in Symantec's support capabilities. 

How was the initial setup?

The initial setup has given us some trouble in the past. We use a Windows server and have had downtime in terms of setting things up. 

What's my experience with pricing, setup cost, and licensing?

They have increased the products of these products recently without any notice. This hasn't gone over well with small clients.

What other advice do I have?

We are customers and end-users.

We use various versions of the solution, according to which Windows versions we are using.

What we would really like is a solution that could really put all of our security under one pane of glass, which Symantec doesn't really do at this time. 

Our concern is having a solution that can keep up with the shifting landscape, as malicious activity is on the rise. We need a solution that is holistic in nature and can help us work with our other in-house solutions and other products writ large.

Also, the company seems to not be very responsive to queries. The resellers are becoming more vocal on these concerns as well. For this reason, we are considering just switching it out altogether.

I'd rate the solution at an eight out of ten. It's a good solution for endpoint protection, however, we worry about the lack of support and response from the company.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Buyer's Guide
Download our free Symantec End-User Endpoint Security Report and get advice and tips from experienced pros sharing their opinions.