Symantec Data Loss Prevention Pros and Cons

They have a feature on the management side called the document indexer. Let's say you have a unique document with many near identical versions, which have one or several values that change, while the rest of the content stays the same. You can collect 50 of those documents and put them into this feature of the Symantec DLP system. It will compress them and create a profile specifically for that document.

I'm able to track everyone who is trying to send information outside the environment and to know if they are not supposed to be sending it. I'm also able to see the people who are accessing or maybe try to access the information they are not supposed to be accessing based on their level of classification. It gives me overall control of who has got access to what and at what point. And who can do what with specific information.

One of the most valuable features is that you can check attachments.

The synchronize application detection policies have been very good.

The features I like most about this solution is the endpoint modules because it gives us the protection we need.

We are able to contain our confidential data in our environment.

The product is very stable.

The most valuable feature of this solution is endpoint security.

The data matching features are the most valuable due to the easy policy setup and implementation.

That fine tuning has to be done for the customer as well as the vendor. So if I take Symantec DLP, we have to have some final fine tuning but we may need some time developing this depending on the customer. This is an area where something can be done to improve the product.

In a majority of cases, most of the companies are using DLP for endpoint sessions, where you have a user that might be communicating information outside of the company. However, they forget there are actual interfaces that can directly communicate with either the database or other files within the data center that uses end-to-end encryption. In those cases, you might need things like your DLP to be able to monitor and block some of that. The solution needs to catch information communicated through the data center on the server-side.

We are finding delayed response if the macOS is updated. They need to make sure their solution is compatible.

We want a more proactive reporting structure.

I do have a problem with the database.

They could improve the predefined reports because they don't have much information. We would like detailed reports.

Virtualization is not currently supported.

This product is very powerful but it is very complex, so making it simpler to use would be an improvement.

The enforce service is difficult to understand, and free courses made available on the internet would be useful.