We performed a comparison between CrowdStrike Falcon and Symantec Endpoint Security based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: CrowdStrike Falcon stands out for its machine-learning capabilities, optimal resource utilization, and precise threat detection. Users praised Symantec Endpoint Security for its regular virus signature updates and comprehensive administrator's console. CrowdStrike Falcon could benefit from adding a sandbox feature and more detailed firewall management options. Reviewers said Symantec Endpoint Security could improve its graphical interface, Linux support, and scanning capabilities.
Service and Support: CrowdStrike Falcon's customer service is considered prompt and helpful. Some users said Symantec customer service was helpful but slow, while others have expressed general dissatisfaction with support.
Ease of Deployment: CrowdStrike Falcon's setup is considered to be simple and efficient, with deployment times ranging from a few days to a month. While there may be some challenges during installation, they are generally manageable. Some users said Symantec Endpoint Security was easy to set up, while others struggled with the installation. Deployment time varies depending on the customer’s environment.
Pricing: Some users find CrowdStrike Falcon costly and think the price should be lowered to make it more competitive. The cost of Symantec Endpoint Security depends on the licensing terms and necessary security components. While some users find the price acceptable, others believe it could be more affordable.
ROI: CrowdStrike Falcon offers cost savings by decreasing the required number of engineers and eliminating the need for onsite servers. Symantec Endpoint Security demonstrates strong stability and incident prevention, leading to reduced downtime. It offers a favorable return on investment.
"The setup is pretty simple."
"The most valuable feature is the analysis, because of the beta structure."
"Ability to get forensics details and also memory exfiltration."
"The stability is very good."
"Forensics is a valuable feature of Fortinet FortiEDR."
"It is stable and scalable."
"The product detects and blocks threats and is more proactive than firewalls."
"This is stable and scalable."
"It provides very good protection and the ability to crosscheck environments."
"Among CrowdStrike Falcon's most valuable capabilities are its UEBA and SOAR functionalities, along with its seamless integration with any other SIEM solution."
"We have seen a reduction to the performance hit to our operating systems."
"One of the most valuable features of CrowdStrike Falcon is when there are upgrades there are no additional fees."
"The detection is very reliable. Also, OverWatch is a great feature."
"Because it is security product and acts like an AIML smart product, not merely based on daily/weekly updates and signatures."
"As an EDR tool, we can integrate log management and event management. The solution deals with threats automatically, that's the advantage."
"Everything we've done with CrowdStrike is due to Arctic Wolf. We don't even need to get alerts from CrowdStrike anymore. It'll send those to Arctic Wolf, and then Arctic Wolf analyzes those and let us know if there's a major issue."
"It is a solid antivirus security product."
"The IPS function (with no firewall needed to be installed in the SEP client) is quite good."
"The solution can be scaled to handle different threats."
"The application and device control functionality is good. We are able to see which applications are installed using the product management dashboard."
"The solution can scale."
"Offers good antivirus and local firewall."
"Threat protection has always worked well."
"I like the additional features that come with it. The firewall feature and the encryption feature that they throw in are good as well. Another thing that I like about Symantec is that it runs on different platforms, not just on Windows."
"I haven't seen the use of AI in the solution."
"We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
"The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud."
"Cannot be used on mobile devices with a secure connection."
"Once, we had an event that was locked and blocked, but information about it came to us two or three days later."
"We'd like to see more one-to-one product presentations for the distribution channels."
"Detections could be improved."
"In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it."
"We can't do scanning audits or device blocking or application control."
"The console is not user-friendly or visually appealing and has room for improvement."
"We have had to open a case with the technical support to get some issues and bugs resolved."
"They should provide us with good visibility for everything."
"Sometimes CrowdStrike changes the GUI, and they need to be better at informing us and providing guidance concerning that."
"The detection time has room for improvement."
"An improvement would be to extend support to legacy and unsupported servers."
"I would like to see improvements in the anti-virus and the device control features."
"The Symantec Endpoint Manager is very difficult to use and extremely old."
"The one thing I don't like about Symantec Endpoint Security is the amount of resources it uses."
"I would like to see even more customization, the possibility to do whitelisting. It needs to be a little bit more liberal on whitelisting, even to use the name if needed, instead of hashes."
"Symantec isn't good in terms of updating customers about updates. You'd normally have to search it out. Sometimes, the update process for the administration and management console can be a bit intimidating, and it can be quite inconvenient to get the updates. That's because when you have to do the update, you have to update the management console, and then you need to update the clients. Their application that's installed on desktops and servers needs to go hand in hand with the management console. Sometimes, it's a bit unwieldy to see that process through."
"When it was directly with Symantec, the technical support was perfect. After Broadcom acquired Symantec, the level of technical support dropped."
"Symantec needs to develop some reporting features and notifications. For instance, if the server is not on or it's shut down. There should also be time-based USB control."
"The stability was not the best. There were times when antivirus updates broke it. It wasn't necessarily self-updating - at least, not in terms of the virus signatures. It updated in terms of the executable files. Therefore, when Windows updates would come out, they often couldn't be installed, or the computer would hang due to the fact that the updates weren't compatible with the antivirus."
CrowdStrike Falcon is ranked 3rd in Endpoint Protection Platform (EPP) with 107 reviews while Symantec Endpoint Security is ranked 5th in Endpoint Protection Platform (EPP) with 140 reviews. CrowdStrike Falcon is rated 8.8, while Symantec Endpoint Security is rated 7.6. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Symantec Endpoint Security writes "The solution has given us visibility into compliance within our whole system and helped us ensure everything is updated". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and Check Point Harmony Endpoint, whereas Symantec Endpoint Security is most compared with Microsoft Defender for Endpoint, Trend Micro Deep Security, Cortex XDR by Palo Alto Networks and Kaspersky Endpoint Security for Business. See our CrowdStrike Falcon vs. Symantec Endpoint Security report.
See our list of best Endpoint Protection Platform (EPP) vendors.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.