We performed a comparison between Elastic Security and Symantec Endpoint Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the search function, which allows me to go directly to the target to see the specific line a customer is searching for."
"I like that it's a SIEM platform. I like that I can sell Elastic Security quickly. Elastic Security has a large community that can support users."
"We like Elastic Security because it's a REST API-based solution. That's the primary reason we use it."
"Its flexibility is most valuable. We can have a number of scenarios, and we can get logs from anything. If we know how to use Logstash, we can tweak it in many ways. This makes the logging search on Elastic very easy."
"Just the ability to do a lot more than just up-down is nice, which a lot of people take for granted."
"I use the stack every morning to check the errors and it's just so clear. I don't see any disadvantage to using Logstash."
"ELK is open-source, and it will give you the framework you need to build everything from scratch."
"The most valuable features are the speed, detail, and visualization. It has the latest standards."
"The single-pane management is the solution's most valuable feature. It makes administrative control very easy."
"It is a scalable product and is average stability-wise."
"It's good at detecting signature-based stuff and stopping that."
"The solution's application control feature is very, very powerful."
"The anti-virus and firewall policies are the most valuable features of this solution."
"It's a single-agent installation with many features including wireless protection."
"We never expect downtime. There is also great ease of use for my admins."
"If there is exposure, we need to investigate the source of the attack, e.g., whether it came from the network or externally. We view the firewall logs, and if there has been exposure, then we use the Application Isolation feature. When there is an attack with on-prem, that system will go into isolation mode, removing connectivity to other internal systems. We also restrict the WLAN part to avoid that system broadcasting to other networks."
"The tool should improve its scalability."
"If you compare this with CrowdStrike or Carbon Black, they can improve."
"Its documentation should be a bit better. I have to spend at least a couple of hours to find the solution for a simple thing. When we buy Elastic, training is not included for free with Elastic. We have to pay extra for the training. They should include training in the price."
"The solution does not have a UI and this is one of the reasons we are looking for another solution."
"In terms of improvement, there could be more automation in responding to and evaluating detections."
"We'd like to see some more artificial intelligence capabilities."
"With Elastic, you have to build the use cases for the specific requirement. Other products have a simple integration and more use cases to integrate out-of-the-box solutions for SIEM."
"It would be better if Elastic Security had less storage for data. My customers do not like this. Other vendors have local support in different countries, but Elastic Security doesn't. I would like to have Operational Technology (OT) security in the next release."
"About four years back, Symantec's signature was very heavy and their signature patch was around 200MB or 300MB files."
"The Symantec Endpoint Manager is very difficult to use and extremely old."
"The solution has become quite complicated since Broadcom acquired Symantec, and we no longer sell it or try not to sell it."
"They need to develop a multi-language interface."
"This solution is resource-heavy."
"I would like to see improvements in the anti-virus and the device control features."
"The management of the server is a bit complex."
"The support can be wanting. Sometimes the time to resolution is longer than I would expect."
Elastic Security is ranked 5th in Log Management with 58 reviews while Symantec Endpoint Security is ranked 5th in Endpoint Protection Platform (EPP) with 139 reviews. Elastic Security is rated 7.6, while Symantec Endpoint Security is rated 7.6. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Symantec Endpoint Security writes "The solution has given us visibility into compliance within our whole system and helped us ensure everything is updated". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Microsoft Defender for Endpoint, whereas Symantec Endpoint Security is most compared with Microsoft Defender for Endpoint, CrowdStrike Falcon, Cortex XDR by Palo Alto Networks, Trend Micro Deep Security and Kaspersky Endpoint Security for Business. See our Elastic Security vs. Symantec Endpoint Security report.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.