Symantec Endpoint Protection provides end-to-end protection. Along with antivirus protection, it has a lot of key areas, including intrusive prevention, firewall features, and application and device control. It can integrate with other Broadcom solutions, such as Symantec Messaging Gateway and Symantec DLP. If you want to send an email, it gets scanned through endpoint protection and DLP. We get all Symantec functionality in a single pane.

The most valuable feature is NetFlow threat protection.

What I like most about Symantec Advanced Threat Protection is its notification capability. Even if it's not anything credible, you're at least notified of it. Its active engine looks at anything hitting any ports that are accessible from the workstation all the way up to the gateway. It's like a constant analyzer checking the traffic and seeing if the traffic is within the specification of what is defined on your network. If it's some weird IP address, it's constantly assessing those stuff and looking for variations from what is established.

You don't have to buy a separate email security platform. You can enable that using their endpoint, and I like that. You don't have to have two agents running on the same box. 

They have advanced their product line with other detection capabilities outside the traditional hashes. They have added Zero-Day in the emerging Advanced Threat Protection series. So, it gives the customers a better feel that they're protected. It is not just traditional AV-only protection. It also protects against new and emerging threats.

Its agent is also pretty solid. It is a good product.

The Application Control code and the easy integration are valuable features. 

Real-time threat analysis is quick and takes action on threats immediately.

Overall, the product supports everything already. Feature-wise, because it has something like email protection, monitoring detection, network intrusion detection, it has advanced threat protection.

The solution has proven so far to be quite stable.

It's mostly an effective product and it's good to have on the side.

We have found the initial setup to be simple. The deployment is also very fast.

Technical support has been helpful and responsive.

Their integrations are pretty good as are their Sandbox solutions, their proxies, and their LTAs with API or ICAP protocols.

Symantec has good experience in the field. They're good at picking up on trends.

They have one of the biggest background cloud networking internet solutions due to the fact that they have a lot of customers everywhere in the world and they have a lot of data.

The incident management on the solution is very good. You get a lot of detailed information about an incident. You also get a lot of documentation in connection with the CVI or integration.

If you have to integrate it with CM solutions, you can correlate data more with other solutions, for example, with firewalls. The result of this integration is that it gives you much more information. 

There are customers where the engineers have enough time to investigate all of the incidents. However, you can also collect this data in a CM and then in an incident and response management solution. It ends up saving a lot of time

The most valuable feature is Click-time URL protection. If there are any URLs in the email then they will be automatically scanned, and then opened.

It works all the time. We do test against it by doing penetration testing and other things. It triggers and block these attacks. We think it holds up, but there's always zero-days.

Endpoint to network is a good feature, it can protect the line. 

They manage to solve detection quite nicely. There is some rather elaborate detection compared to other providers. Most of the providers of the security software offer a threat graph, for example, so you can see how the menace propagates throughout the infrastructure. Symantec also provides a small set of information linked to each of the attacked computers. It provides a bunch of information that I find useful.

All of the solution's features are quite valuable for us. We especially like the threat protection it provides.