Symantec Data Loss Prevention Room for Improvement

SK
Associate at a tech company with 51-200 employees

The problem is most companies use a single data protector. The drawback is that they will install Oracle in one server and the application also in one server and detection also, all in one server. If the server crashes, everything crashes. Things should be implemented on another server. 

Previously, when we had Dropbox, if we transferred a document, we would get a popup, and if we transferred 500 documents, we would get 500 popups. We're looking to find out if there is a way around this.

If we get a fatal error issue, if the agent isn't working out, we need a hard fix file. We need to check in pre-production machines. 

When we're doing data scanning, the machines can be slow. 

In the object capture recognition, which we implemented recently, there are a lot of false positives that have been happening. We are expecting them to fix this issue soon.

View full review »
Information Security Engineer at a security firm with 11-50 employees

The solution is not user-friendly. I've had to do a lot of research to try and figure things out on my own.

Due to its database, I first had to install an Oracle database. This should change. The product should allow for the use of an SQL database, and, if possible, it should have an embedded database. The solution should be easier to integrate on different solutions.

The data classification is very difficult in Symantec. It's hard to integrate the detect activation tools, whereas, in Forcepoint DLP, it's better. It's very user-friendly and the quality is defined and it is very clear. Symantec should try to emulate those aspects of Forcepoint.

It's difficult to implement in a protected environment, due to its architectural layout.

The initial implementation is quite complex.

The technical support has really dropped in quality since Broadcom acquired the product.

View full review »
TN
‎Head: Group Legal at Optiflex

The backend side of the server needs improvement.

In a majority of cases, most of the companies are using DLP for endpoint sessions, where you have a user that might be communicating information outside of the company. However, they forget there are actual interfaces that can directly communicate with either the database or other files within the data center that uses end-to-end encryption. In those cases, you might need things like your DLP to be able to monitor and block some of that. The solution needs to catch information communicated through the data center on the server-side.

View full review »
Learn what your peers think about Symantec Data Loss Prevention. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,607 professionals have used our research since 2012.
PG
Senior IT Architect at a tech services company with 201-500 employees

The database is a problem for us, as it's running on Oracle and not everybody likes that. There's a licensing issue with the database. There's a sizing issue with licensing. They did improve it a bit. It supports a virtual server now. However, the pricing and the fact that you install it on the machine and you have to count all the CPU, makes it a problem. It's workable. We dedicated a physical machine to it. It's a bit of a legacy solution. 

The licensing is a bit of an issue for us. They need to work on the way the licensing is set up.

A feature we would like to see is entropy detection in text. We need something that detects when you send an email and you try to hide something by using simple encryption techniques. It's typically called entropy. If we had entropy detection in the regular text that would be ideal

View full review »
IT Security Engineer at a tech services company with 1-10 employees

I do have a problem with the database. It uses the Oracle database and sometimes this causes some problems. I would prefer it to use the MS SQL database because it has a more stable connection than the Symantec database.

View full review »
AT
Manager Cyber Forensic at a financial services firm with 51-200 employees

We are having support issues. We had local support but since the acquisition, the support is now only five teams. It is very difficult to log in to create a support ticket because no one is available to support our queries. In India, it's especially needed.

It has some feature deficiencies, as well. For example, it won't monitor the remote desktop and the file-sharing to the RDP. It's not detecting it and RDP is not supported well. The issue is not only with RDP, but rather it's with the product used to provide the remote support. If the data is leaked through that application, then Symantec doesn't monitor that section.

There are some features that are not available, which are required by every data loss prevention solution.

In the next release, encryption should be available. For example, if an extended drive is plugged into the endpoint and someone tried to copy the data to the external drive, the Symantec DLP component doesn't encrypt the drive. If you want the encryption feature you have to purchase an additional component for it. This could be an integral part of Symantec today.

View full review »
BJ
Assistant Manager at AmBank Group

Generally, we're not seeing any places for improvement at the moment.

The solution doesn't integrate well with other products.

We're not sure if there was an issue or a bug on the system recently because as of right now if someone sends out a compressed encrypted file, the DLP won't scan it.

The menus need to be updated.

View full review »
Sr. Manager - IT at a tech company with 10,001+ employees

Technical support is pathetic. Stability and scalability can be improved as well. It would also be better if it could restrict Bluetooth transfers.

Symantec also uses Oracle databases, which isn't really convenient for most customers. It would be better if they switched to SQL.

View full review »
AA
Information Security Consultant at a tech services company with 51-200 employees

I would like for the administrator management interface to improve. It's kind of old and slow. Updating it would make this solution better. 

View full review »
Private Security Consultant at a tech services company with 11-50 employees

This product is very powerful but it is very complex, so making it simpler to use would be an improvement. It takes eight or ten services to activate all of the features, which is too difficult to manage.

View full review »
Cyber Security Engineer at quadra

I would like to see this solution made more user-friendly, and the administration needs improvement.

The enforce service is difficult to understand, and free courses made available on the internet would be useful.

View full review »
Learn what your peers think about Symantec Data Loss Prevention. Get advice and tips from experienced pros sharing their opinions. Updated: May 2021.
511,607 professionals have used our research since 2012.