Symantec Data Loss Prevention Pros and Cons

They have a feature on the management side called the document indexer. Let's say you have a unique document with many near identical versions, which have one or several values that change, while the rest of the content stays the same. You can collect 50 of those documents and put them into this feature of the Symantec DLP system. It will compress them and create a profile specifically for that document.

There's only one policy needed to implement for all channels.

I'm able to track everyone who is trying to send information outside the environment and to know if they are not supposed to be sending it. I'm also able to see the people who are accessing or maybe try to access the information they are not supposed to be accessing based on their level of classification. It gives me overall control of who has got access to what and at what point. And who can do what with specific information.

One of the most valuable features is that you can check attachments.

The synchronize application detection policies have been very good.

The features I like most about this solution is the endpoint modules because it gives us the protection we need.

The dashboard, management section, and reporting are good.

The dashboard, management section, and reporting are good.

We find the product is easy to manage and maintain.

The tool's really working well, and the agents are good.

We are able to contain our confidential data in our environment.

That fine tuning has to be done for the customer as well as the vendor. So if I take Symantec DLP, we have to have some final fine tuning but we may need some time developing this depending on the customer. This is an area where something can be done to improve the product.

The solution is not user-friendly.

In a majority of cases, most of the companies are using DLP for endpoint sessions, where you have a user that might be communicating information outside of the company. However, they forget there are actual interfaces that can directly communicate with either the database or other files within the data center that uses end-to-end encryption. In those cases, you might need things like your DLP to be able to monitor and block some of that. The solution needs to catch information communicated through the data center on the server-side.

We are finding delayed response if the macOS is updated. They need to make sure their solution is compatible.

We want a more proactive reporting structure.

I do have a problem with the database.

There are some features that are not available which are required by every data loss prevention solution.

It is very difficult to log in to create a support ticket because no one is available to support our queries.

We're not sure if there was an issue or a bug on the system recently because as of right now if someone sends out a compressed encrypted file, the DLP won't scan it.

Technical support is pathetic.

They could improve the predefined reports because they don't have much information. We would like detailed reports.