Endpoint Protection Forum

User with 10,001+ employees
May 07 2018
We recently moved our AV solution from McAfee VSE to the new next Gen Cb Defense and I would like to know thoughts on running Windows Defender along with it? Like a fall back option that runs a traditional AV.
Content Specialist
IT Central Station
Mar 05 2018
One of the most popular comparisons on IT Central Station is MS Windows Defender vs Symantec EP.  People like you are trying to decide which one is best for their company. Can you help them out? Which of these two solutions would you recommend for endpoint protection? Why? Thanks for helping your peers make the best decision! --Rhea
Andre BarnettIf you have to choose between Symantec or MS, It would have to be Symantec. That is as long as you are willing to adopt more of their eco-system of solutions. I is more heavily geared torwards file protection (can be good or bad, pending the use case) but not dynamic enough in its policy creation capability. However the same can be said for MS Defender. MS Defender has one major shortcoming as it has tunnel vision on the windows platform. It leaves exposures with other operating systems. Also policy capabilities are not quite as effective and granular as one would think given the proximity to the Active Directory / Azure origin. I believe CarbonBlack is a superior solution. The breadth of its detection and response capabilities reside within the context of its primary solution. That said if you are looking for a heavier AV solution, Symantec is the way to go.
Martin CarnegieBetween Symantec and Defender, the best of the two is Symantec for detections and false/positive rates. Couple sites to check https://www.av-test.org/en/ https://www.av-comparatives.org/dynamic-tests/ One thing you will notice is that the first site does not even consider Defender as a corporate solution, so take that for what it is. One thing I will say about Symantec is the horrendous support. I find that every ticket I work on is pure frustration. Tickets are closed without actually solving the problem, constant debating around what the issue is and what the solution is. It has been driving me nuts! But that being said, the product is fairly easy to manage and has kept us pretty clean. Our worst issue is spear-phishing attacks, but these cannot be prevented by malware software that well. Symantec does offer a cloud connection for the agents now. My big issue right now is that you cannot have an internally managed server connect to the cloud (or reverse) to provide information in a consolidated view. I am told that this is coming though. I could move everything to the cloud I guess, but that is something for the future.
Bruce BadingSymantec Endpoint Protection and Windows Defender both have their strong points. Microsoft has made great progress in its free edition of Windows Defender in Windows 7 and improved version in Windows 10. Its no cost feature is its strong point. Symantec Endpoint Protection is a purchased product, but the cost is worth the price. SEP is always near or at the top of Gartner’s Magic Quadrant both in execution and completeness of vision. In my 25 years as an IBM lead security engineer, I observed that SEP was chosen by IBM to protect its mobile workforce and also was the leader in Endpoint Protection chosen by the world’s largest banks, retailers and organizations. Powered by Sonar and now a Machine Learning Cloud interface in SEP 14.1, it is in most expert’s options the leader in Endpoint Protection. My current experiences have also show that Symantec detects a far greater number of the zero-day threats than Windows Defender. However, the number of zero-day threats that can bypass the total of all anti-virus solutions has risen in recent years and the problem is that even though solutions such as SEP 14.1 are moving to machine learning detection engines, the number of data breaches continues to increase exponentially as the malicious actors are beginning to use AI to create and distribute Advanced Persistent Threats and it is a lucrative industry being run by organizations with a corporate structure mimicking the actual corporate structures of legitimate business. Today only a holistic approach toward a foundational implantation of fundamental security controls at all levels will decrease the growing number of data breaches, reputational damage and monetary losses. Threat Hunting is the new norm and every organization should look beyond Endpoint Protection to an early detection and reduction in infection time by implementing an advanced Threat Hunting posture. Beyond that, Governance, Risk Management, Compliance and an increase in security awareness from the boardroom to the ground floor is making the more mature organizations leaner, agiler and less likely to suffer a data breach.
Chief Operations Officer with 1-10 employees
Traditionally, having more than one anti-virus / anti-malware product, particularly with built-in firewall can provide conflicts that render part of one or both of the products to be ineffective. However, since Cylance appears to work very differently, I am hopeful that Cylance can be used alongside other high-level products. Can Cylance be used with Symantec or Kaspersky endpoint solutions without conflict?
‎ICT Director with 201-500 employees
I am looking information to compare Malwarebytes for Business VS Webroot Endpoint. What do you recommend to use: Malwarebytes for Business or Webootr endpoint?

Sign Up with Email