Symantec Endpoint Protection (SEP) Room for Improvement

Cameron Mottus
Principal Consultant - Security at Insentra
They're just starting to get into this now, but I think they can do better - they're just starting out with I think is called the SEP Cloud Console. It has more limited functionality. It will be good once we can run SEP from the cloud. That would be good. View full review »
Leopold Dapa
Country Director at socitech
The mobility solution should be improved. You need to separately purchase mobile, like a smartphone with Android and so on, you need to buy it separately with SAP, for example. It would be better for the user to use the same solution with all devices, even laptops, desktops, server and so on. They should also use the same endpoints for mobile devices. There are a few negative points. They should separate the feature for each separate solution for mobile devices. The second one is about the price, it's expensive. Finally, the third would be the complexity of implementation. View full review »
Imtiaz Hussain
Malware Hunter and Incident Responder at Computer Network Systems
The device control level and application control level should improve. I am finding a lot of issues when I block the devices, like a printer or scanner. In the classes of the devices for the application control, the most important issue is the hashing. Nowadays all the vendors, like Cisco firewalls, are detecting threats with the hashes. Symantec has this option that we can block them always by the hashes but the problem is that sometimes Symantec detects these hashes and is not consistent. These two parts should improve. The rest is always awesome. These two parts are very critical because I found a problem in application and device control. Symantec Endpoint has a perfect agent. It's going to be how many agents you can combine in resources. In the new releases, if they create a single agent to improve the control incrementally, it would be better. If you want to deploy ATP, you should have a separate event. You have to install separate events. With Symantec Endpoint Protection, any other protection should be installed, then configure the warnings. It does not ask for any new agent to install on the client machine. A single agent is enough. Symantec will get a lot of popular support from the industry because people don't like to install agents. For the ATP, you have to install separate events. For the Endpoint, you have to install separate events. If you install all the separate events, it is a huge load on a Windows machine. People start complaining. If Symantec wants to improve, they should have a single event for all their products, like ATP, DLP, and Endpoint Protection. View full review »
Find out what your peers are saying about Symantec, Microsoft, McAfee and others in Endpoint Protection for Business. Updated: October 2019.
372,906 professionals have used our research since 2012.
Subodh Sing
Consultant at Godimo IT
We have talked to Symantec about a feature that is lacking. Any external device which is inserted into a computer should be subject to an auto-scan policy, to automatically scan it before accepting the device. Let's say I have a pen drive and there is a Trojan virus for which the signature is not updated. If the signature is not updated, then the system should automatically scan and understand that there is a foreign file and it should be blocked immediately. That is the one feature that I feel is missing. They need to make it more user-friendly, so that when anyone puts in a USB stick it will be scanned, popping up any problems before it is used. This is a feature they need to work on, in my opinion. View full review »
Darren Braithwaite
IT Manager at Digitalis Reputation
Sometimes the interface can be a bit cumbersome, and maybe the help features. If you're not charged with administering the product and you don't do it every day it can sometimes be difficult to remember how to do the simple basic things, so some type of help or guidance for your most regular or frequent tasks would be good. Something similar to what the product called Serviceaid has. I also think that the website itself should be improved. They have so many products that when you actually look on their website and you look for helpful guidance you just tend to get lost because they seem to have so much going on. So, basically, a bit more intuitive help and guidance features, as well as more intuitive service information. Some type of solution for mobile devices would be good. For mobile devices, it's drawing from a Windows-based client, so for many core clients for OSX and Linux machines, those OS could be integrated directly. There's no client for mobile devices except for IOS and Android devices. View full review »
SystemAdmin677
IT Systems Administrator at a consultancy with 51-200 employees
Better communication and coordination with Microsoft would help to prevent delays that are frequent when operating system updates are released. As it is now, when a new build from Microsoft comes out, we get warnings to say that certain applications are not compatible. We sometimes just have to wait until a new version of this solution is released in order for it to work properly. One of the problems is that Microsoft releases updates often, and sometimes they don't tell anybody. This can lead to the whole configuration being corrupted. I would like to see a hybrid version of this solution that covers both in-house and cloud-based servers. View full review »
Pablo Dewes
Senior Technical Consultant (SE and Strategic Project Manager) - Email Fraud Protection - LATAM at a tech vendor with 201-500 employees
Reports: It would be nice to have customized reports integrated on the main console with no additional DB server or BI server. Vulnerabilities: A vulnerability scan integrated with SEP would be important for the admin to understand the risk level they are facing and how to protect themselves... Reports: SEP has built-in, on the console, many pre-configured reports however, in a complexed environment, customers may would need customized reports other than already provided by the console. In this case, it´s possible to achieve them using an external data base and server. It would be nice have a possibility to create customized reports without an external server and data base, on the same SEP Admin console. Vulnerabilities: It would be nice have on the SEP Admin console a feature to measure the environment risk level using an OS and application vulnerability scan where the administrator can analyze the risk, mitigate the main risks, prioritized them and, over a Path Manager, correct them if possible. View full review »
reviewer725523
General Manager at a tech services company with 11-50 employees
The Centralized Management could be improved. The deployment is very limited. They can improve on reporting as well. If they can improve threat incident analysis, that would be great. The solution itself is pretty comprehensive at this stage, and the features that we would like to be added to these are available as separate purchases, so I wouldn't that there's anything new that I need in there, they probably covered all the bases at this stage. View full review »
Laeeq Ahmed
IT Security Lead at a tech services company with 10,001+ employees
I am happy to say that the Symantec comes into the picture where the issues are reported from the product, it might be a product bug or it might be a product defect. The product engineer works on this and the latest upgrade has it built into the peer cost, where we can upgrade our involvement and support our clients again. So, we were having a problem in Version 14, where the client machines used to go into the health state and once it restarted, and never came back again. But as far as one of the defaults, this was reported and not an issue in new versions of Symantec 14 and SEMP 2. Apparently, this is works well for now, and we are happy with this. View full review »
Anthony Ndong
Systems Administrator at a pharma/biotech company with 51-200 employees
I would really like some of the features that are available in Kaspersky Enterprise to be available in the client version of this solution. In the next release of this solution, I would like to see more to do with malware, encryption technology, and controlling mobile devices. I would like to be able to protect my wireless equipment at that level. View full review »
Emiliano Santos
Group Brand Manager at a comms service provider with 51-200 employees
We must have complete dissolution with advance care protection but we are finding out that we need more Symantec technical specialists. We have identified a need to hire at least one more technical specialist familiar with Symantec to improve our solutions capabilities. Additionally, an endpoint detection response feature would be great but not with an additional license, it should be included as an additional feature. We have identified this as a solution that our customers are very interested in, but they don't want to purchase additional subscriptions. View full review »
Gulab Singh
Solutions Specialist Security at COMPAREX India Pvt. Ltd.
About four years back, Symantec's signature was very heavy and their signature patch was around 200MB or 300MB files. View full review »
Nuno Martins
Partner at a consultancy with 1-10 employees
It would be nice to be able to manage the endpoints a bit further. A valuable attribute would be the management of software inventory, software deployment, and third-party software deployment. I would like to see the ability to deploy and delete unlicensed software. Many users try to install what they shouldn't, so that would be really useful. What would be really great would be to have the ability t manage those applications that you don't need to install to run. Those are a nightmare for companies, for mine as well. Applications like BitTorrent and unsupported browsers, all of those. Even with decreased user privileges, they are still able to run, so that's a big area to focus on in the future. View full review »
Lynne Caputi
Systems Engineer at a tech services company with 51-200 employees
The biggest thing I would like to see is malware remediation, if there is some kind of outbreak. We'd like to see better remediation and better detection and response. It's pretty good at capturing things, but it doesn't stop everything, so better machine learning would be helpful. View full review »
Heritier Daya
Network Administrator at a financial services firm with 1,001-5,000 employees
In the future, I think there should be a sandboxing feature. Some of the most used endpoint protection does not include sandboxing. We cannot rely on URL filtering or IP repetition. Sometimes attacks can pass through the firewall. In addition, this product must be compatible with a VMware environment. Because most of our server has VMware. It seems that its not working very well with VMware. Finally, they need to do some effort to make it a little bit sly. They have to make some improvement in order to not make the computer slow during all of the backend scanning. View full review »
Dr. Suresh Hungenahally
Chief Executive Officer at a tech services company with 1-10 employees
The reporting function definitely has room for improvement. If Symantec can provide us with the overall API for accessing and reporting, that would be great. The reporting function needs to be more user-friendly in general. I think we have too much technical level reporting, I think it would be better to have more user and usage types of reporting. I would like to see in the next release focus more on unusual behavior so that we can know how the end results are behaving and if they are in the clear. They should also provide users with some sort of training videos, for how to use the solution. View full review »
Chris Pohts
Owner with self employed
This latest version upgrade/migration over the last year has been atrocious. There have been numerous support issues and calls with Sr. VPs at Symantec, who were always understanding about the problems, but the product has proven unreliable to install and manage. The protection itself seems as solid, but if devices are losing their licensing without notice for no reason, it's only a matter of time before they become compromised. The bottom line is that when it comes to management, reliability of management, reporting, alerting, installation, and licensing, if these don't work reliably you can't trust the product's security capability. View full review »
Karthik R S
Consultant at TNPL
If we install a client's software in our location, such as Microsoft Office or Adobe reader, we would like to have these endpoints protected. View full review »
Cnslt5892
Consultant with 51-200 employees
There was an administrative feature, which was available in the previous version, which has been removed. We would like that feature to be added again, because it helps the customer in many ways, and it's a very user-friendly feature. View full review »
Reviewer58
Head of IT Department at a pharma/biotech company with 10,001+ employees
A good improvement would be altering the console in the console manager. Sometimes we need to add and improve the security to access to the console because the indicators and we can take management activities into the console, and it's, nice to have to improve the security access to the console. View full review »
LeadSysEn375629
Lead System Engineer at a tech vendor with 1,001-5,000 employees
I would like to see even more customization, the possibility to do whitelisting. It needs to be a little bit more liberal on whitelisting, even to use the name if needed, instead of hashes. View full review »
SymanSEP677
Solutions Architect at a tech services company with 51-200 employees
The pricing is a little bit more expensive than other competitors, if you compare it to Kaspersky, for example, or McAfee. The detection and response can always be improved. View full review »
SørenAndersen
IT Systemadministrator at a construction company
* SONAR could be improved. The false/positive rate is a little high. * The firewall could be a little more "flexible". For example, it would be convenient if the firewall was allowed to "turn off" for hotspot environments. * I find the documentation on Symantec.com to be not very updated. It seems like Symantec focuses more on their product than on documentation. * My personal opinion is that Symantec has too many WS.Reputation.1 detections, which could cause important computers to malfunction. * In a large environment with a significant amount of GUP's, it would be neat, if the client could "detect" the GUP in its own subnet. The client has some built-in intelligence at this point, but it does not seem to work properly. In an environment with many locations, whereas many of them have little bandwidth capacity (and no local datacenter), the LiveUpdate policy can end up becoming rather complicated. View full review »
Sudeep Amalkar
Director at a tech services company with 11-50 employees
It's a nice product. I think Symantec should work more precisely on minimizing database size and the live update size. View full review »
Arshad Mohammad Khan
Security Consultant at Accenture
They should work on the virus definition file and agent lighter. Pushing agent to remote users via console is issue View full review »
SEP677
Service Management Officer at a non-profit with 501-1,000 employees
The overall quality of the product needs to be improved because with the last session we had several issues with new versions. Also, the solution needs better protections. View full review »
Prince Matema
Accounting Assistant with 1,001-5,000 employees
It is only available to use on computers with higher-end specs. I think the software should be compatible with all versions of all computers, even earlier models. This would allow all clients to be included, which is important for those who cannot afford to buy the latest computers. View full review »
SEPend677
IT Associate Manager at a pharma/biotech company with 501-1,000 employees
Reporting in this solution needs improvement. The product could be improved if it repeated data, and if it showed that data better in the analytics. View full review »
Johnny Hadchity
IT System and Storage Administrator at a financial services firm with 51-200 employees
I would like to see fileless attack protection. Also, the version could be lighter. View full review »
SeniorCob6e8
Senior Consultant - Infrastrute at a tech services company
* Reporting without Altiris should be improved. * More cloud-based functionality, but that seems happening going forward. * It should have hypervisor level AV protection for VMs, so you do not need a client on the systems. View full review »
John Cook
Director of Technology Operations at a non-profit with 51-200 employees
* An easier management portal * Setting up and managing profiles was overly complex * An easier cloud management portal would be appreciated. View full review »
Pepe_Perez
Consultant
* Resources * Front-end * User experience The Symantec Endpoint Manager is very difficult to use and extremely old. View full review »
Hamid Harroud
Assistant Professor with 201-500 employees
This solution needs better compatibility with services and applications. View full review »
Greg Reilly
Enterprise Architect Manager at a tech services company with 10,001+ employees
* Device encryption status and coding off of said status. * Better inherent checks against duplicate IDs. View full review »
Hakan GUNAYDIN
General Manager at a tech services company with 51-200 employees
I think the CPU dependency should be enhanced. In addition, some device control features are in need of enhancements. View full review »
ShahbazAhmed
‎Technology Leader with 1-10 employees
* Administration * Orchestration for broken clients fixes * Healing of agents View full review »
Find out what your peers are saying about Symantec, Microsoft, McAfee and others in Endpoint Protection for Business. Updated: October 2019.
372,906 professionals have used our research since 2012.
Sign Up with Email