Symantec Endpoint Security Room for Improvement

Hakeem_Abdulkareem - PeerSpot reviewer
Head, Security Technology & Engineering at a financial services firm with 10,001+ employees

Symantec's application security module needs some improvement. You need to create a lot of fingerprints for application security. For instance, let's say I have different brands of ATMs in my environment, like Wincor and NCR. I use GRG to deploy an application control to whitelist some applications. I have to get the exact image of the different models of ATMs. When I tested in the past, some machines would not connect to the server without that. 

Only the approved software on the ATM should run. Anything outside that should not even come up at all. We did this so that an outside person doesn't introduce malicious software to the ATM. That's the essence of locking down with application control. Using Symantec for application control has been hectic, so I use Carbon Black to do the lockdown.

Checking that data security will work fine with Carbon Black. Carbon Black worked fine. Setting up approval in Carbon Black works differently than Symantec. In Symantec, we first need the fingerprints of the applications running underneath. Before setting up Carbon Black, you first install the agent, allowing it to learn the environment. It will analyze all the software's behavior and provide recommendations for what should be allowed. It's more straightforward, whereas configuring application control in Symantec is a bit cumbersome.

View full review »
PedroSoares - PeerSpot reviewer
Senior Security Information Analyst at Modal Bank

One suggestion I have for both regular and mobile would be to collect all the information about installed software, such as versions, and give that information to the manager to help with software management. That would be a huge advantage for everyone who administers these tools.

For example, EDR gives me some applications with a version linked to a CVE or a MITRE attack. That's really interesting, But we don't know about other software that is installed and that means we need to install and use other software on the workstation to collect that information. If Symantec could do that, it would help managers improve their security, as they would know all the software installed on each device.

Because Symantec is already installed on a workstation, it would not be difficult for the agent to collect information about the software installed. It wouldn't need to do anything other than collect and share the information. That would be a huge advantage for the administrator. The more information we have about a device, the more secure we can make it. For example, there are types of software that can open a port that an attacker can use. If we know that such software is installed, we could just act before something happens. If Symantec could collect that software information, it would be amazing.

View full review »
GE
IT Specialist at a healthcare company with 1,001-5,000 employees

The malware and ransomware protections could be improved, which was ultimately the reason why I stopped using the solution.

I had three different clients, and between the three of them, they were hit with ransomware five times. It spread throughout their entire organization. Symantec Endpoint did nothing to stop it, slow it down, or prevent it, so I had to go out and find a different solution.

View full review »
Buyer's Guide
Symantec Endpoint Security
March 2024
Learn what your peers think about Symantec Endpoint Security. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
Nicolo De Jesus - PeerSpot reviewer
Security Operations Manager at a energy/utilities company with 1,001-5,000 employees

We had an issue with the Broadcom migration. We had some problems with product support, and the deployment is tricky because it's an on-premises technology. Deploying any on-premises security solution is hard because you have to distribute the software. 

There are also some issues with false positives and minor product issues in terms of usability. It comes back to the support team. If we have product issues, then it should be relatively easy for them to resolve the matter. 

View full review »
Prateek Agarwal - PeerSpot reviewer
Manager at Indian Institute of Management Visakhapatnam

The pricing could be more friendly, as the licensing cost can be challenging for small and medium-sized organizations.

Installation of the tool on a workstation requires some technical knowledge, which could be more straightforward.

Regarding usability, the UI could be improved, especially around reporting and logs, making them more accessible to the end user. 

View full review »
AA
Desktop Support Engineer at Dixit Infotech Services Pvt Ltd

The virus definitions could be updated more frequently. 

View full review »
SS
Cyber Security Manager at a tech services company with 10,001+ employees

Nowadays, threats are changing, and they are moving more towards script control and zero-day attacks. So, we would like to have more control similar to an EDR solution. Symantec Endpoint Protection has certainly come a long way as a traditional antivirus, but because the threats are changing, we would like to have more EDR features so that we have a detailed view of the source from where the infection entered the environment and whether it has tried to connect any other endpoint. It should provide such a detailed view for investigation. It should protect against zero-day threats, etc. These are the key enhancements that can make it a complete solution for any enterprise. Currently, we have seen organizations going for two solutions: antivirus and EDR. With both these capabilities, it would be a complete package.

View full review »
Muhammad Ejaz ul Hassan - PeerSpot reviewer
CEO at RISE Technologies

If there is a suspicious file, it is put into a sandbox where Symantec does an analysis. After the analysis, Symantec marks the file as a risk, but it doesn't blacklist or block the file. If a file is already known to be harmful, I would like them to automatically block or blacklist it to reduce the damage. It will stop the attack by at least 50%. Sometimes, administrators do not see the console on a daily basis, and sometimes, they assume that Symantec will block and delete the file, which is not the case. I would like it to block the file so that you won't be able to open the file. 

Another improvement area is reporting. Its reporting is more technical. As a technical person, it gives me 100% value, but if someone from the business staff wants to see what exactly is going on, you cannot give them these reports, and they won't get the value out of it. Currently, the data is not presentable for any C-level person.

View full review »
KF
Senior IT Security Officer at Lion International Bank

One issue that comes to mind is that there is no way of specifying categories that the firewall should block. It is able to block specific URLs but other solutions, such as Kaspersky, allow you to block access by specifying a category.

It would be helpful if this product provided patch management functionality.

Compared to Kaspersky, the reporting features are not rich. Overall, the reporting capability needs to be improved.

View full review »
Arvind Tiwari - PeerSpot reviewer
Deputy General Manager at CMS

Zero-day threat and device management or device control can be better. The patch implementation or patch management can also be better because sometimes, they are issuing or deploying patches in old versions.

It should support the next-generation IPS. Currently, it supports only IPS.

View full review »
LD
Country Director at SOCITECH S.A.

The mobility solution should be improved. You need to separately purchase mobile, like a smartphone with Android and so on, you need to buy it separately with SAP, for example. It would be better for the user to use the same solution with all devices, even laptops, desktops, server and so on. They should also use the same endpoints for mobile devices. 

There are a few negative points. They should separate the feature for each separate solution for mobile devices. The second one is about the price, it's expensive. Finally, the third would be the complexity of implementation.

View full review »
AT
Director at Tandon Electronics

In four years, we had no reason to switch solutions, but lately, we've found that Symantec is slowing down the machines. They are looking to change solutions. I would like to stop the Endpoint Security Client's scan when the device boots. It slows the machine a lot. The scan should only run when the machine is idle. The scan often happens when the machine is at its peak load. 

I would also like Symantec to add ransomware protection. If a machine is infected by ransomware, it's hard to recover the data. We don't have any data on the client, so we're not overly concerned about that. Still, it would be nice to have this feature if there are any future problems. 

View full review »
SS
Security Consultant at InfySec

In a few cases, when we enable the IPS/IDS feature, there are performance-related issues on the end devices. If we run quite a few features of Symantec, especially the IPS/IDF, it consumes a lot of processing and memory capacity. We would like to enable all the features, but doing so should not have a direct impact on the performance of the system. If they can come up with an agent that consumes less memory, that would be a great enhancement.

Also, Symantec is not being promoted from a marketing standpoint. I don't see any promotions for it. There are no road shows, marketing efforts, training, or anything organized by Symantec these days, at least in my region. The product is good, but if you're not marketing it people think "Okay, we haven't gotten any updates about the product." We need to have more road shows and promotions, and we need to have people trained in the technical aspects to gain market share.

View full review »
MI
CEO at CT AMERICA

We have many issues with the way that Symantec is a data entity in our active directory. 

We need to protect all personal devices such as mobile phones. We can't do it at the moment via this product. It is a very important aspect that is missing at this moment. If they could add mobile detection, that would be ideal. Currently, we are using a lot of mobiles as we work from our home. 

The support needs to be better. When we upgrade, we can run into issues, and it's hard to get the help we require.

Newer versions can be a bit less stable.

View full review »
PD
Project Manager at Dreams Technology

The one thing I don't like about Symantec Endpoint Security is the amount of resources it uses.

View full review »
SA
Information Technology Specialist at Wonderla Holidays Ltd

The device can be outdated. More enhancement of network and discovery would help already great features.

View full review »
RC
Sr. Windows Analysts at a engineering company with 10,001+ employees

Every time an OS comes out, I have to upgrade the Symantec product. They don't know how to patch it. If they would produce a patch instead of uninstalling or installing over the current version and rebooting I'd be a lot happier with the product. 

As far as what it attacks and how good it is and its job I don't really care. It drives me nuts because every time I have to do a feature update it requires a new version of SAP. Then, I have to go through the silly process of putting it into the configuration manager, running tests and upgrading it, and making customers reboot their machines. It should make a pass and be done with it.

View full review »
Olajide Olusegun - PeerSpot reviewer
Network Team Lead at Atlas Security

Its GUI needs improvement. It's good, but it needs to be improved in terms of management and reporting. Its reporting features aren't straightforward.

View full review »
MS
Senior Information Security Engineer at Herbalife

They provide the updates of the client, and those clients need a reboot after the upgrade, which is something we don't like. We don't like to reboot the server after the upgrade because we have live applications. If we do a reboot, it can impact the business as well.

It sometimes behaves unusually. It sometimes stops our full services, and if we didn't upgrade to the better version or current version on the server, many a time, it blocks Microsoft patch upgrades. 

View full review »
Jawaria Abbas - PeerSpot reviewer
Security Engineer at a computer software company with 201-500 employees

Users mostly complain that the solution slows down the system whenever something is scanned. Sometimes, Symantec gets blocked with legitimate applications, and we add the application in the exceptions. Users always complain that agents, which are very heavy for the system, slow down the PC's performance.

View full review »
DB
Operations Manager at Telescope Digital

Getting it up and running can be a bit overcomplicated. 

Symantec isn't good in terms of updating customers about updates. You'd normally have to search it out. Sometimes, the update process for the administration and management console can be a bit intimidating, and it can be quite inconvenient to get the updates. That's because when you have to do the update, you have to update the management console, and then you need to update the clients. Their application that's installed on desktops and servers needs to go hand in hand with the management console. Sometimes, it's a bit unwieldy to see that process through. 

The ransomware protection on Symantec doesn't match its competitors at the moment. Defender is doing a better job in terms of ransomware protection.

Their support can be improved. It's difficult to know who to call, and their online knowledge base is quite difficult to navigate.

View full review »
ML
IT Director at a comms service provider with 10,001+ employees

Today, it's just a question of understanding the update package of the operating system as the antivirus software in and of itself is not enough.

This is due to the fact that if I have not updated Windows, I have a huge breach of security. The idea for us, from our point of view, is that the antivirus needs to understand how if Windows is safe. If the operating system is safe, the antiviral has less work to do. From a security point of view, both of them need to work together. It's not just the task of the antivirus to keep all the computers safe. The operating system needs to be updated too.

The operating system and the antivirus need to communicate better with each other and exchange information so that I know everything is secure. It needs to be more clear when things aren't aligned and need to be repaired, in order to avoid the risk of a security breach.

The technical support could be a bit better.

View full review »
Ammar Jibarah - PeerSpot reviewer
IT Security at Aramex

Symantec Endpoint Security can improve management because it is difficult to do. It is not a straightforward tool to use. Additionally, the dashboards and reports could be better. It is difficult to understand what exactly is your current status.

View full review »
SB
Computer Systems Administrator at a university with 10,001+ employees

It wasn't a very good solution overall, which is why we ended up replacing it.

Most organizations are choosing a next-gen antivirus, one that's based on artificial intelligence. Symantec Endpoint Protection was one of those legacy products that have been around forever. Symantec was a spinoff from Norton. Norton Antivirus was one of the very first antiviruses to come out in the 1980s. Symantec was very highly rated at one point in its life. It never really caught on to the new trends and antivirus protection. And so it still relied on things like a database of virus signatures that would need to get downloaded and then files would be checked for those signatures.

Modern antiviruses don't do that. They're based on behavior. They're based on intelligence algorithms. They're honed by artificial intelligence and machine learning from data collected all over the world. And so for that reason, the next-gen antiviruses are much more efficient at detecting viruses. They also take up a lighter load on the computer.

Next-generation is behavior-based detection rather than signature-based detection. Symantec tried to be a hybrid between the two. It had a behavior-based component called SONAR, however, it was still mostly a signature-based software antivirus application. For that reason, you can never keep up with all the mutations and viruses, and you can't keep up with malicious behavior that isn't based on viruses. Things like downloaded PowerShell scripts, things that computers can do with the components that they already have without needing to put any virus on the computer. A lot of malicious attacks, government-backed attacks, don't use any kind of foreign software. They take advantage of vulnerabilities within existing operating systems like Microsoft Windows or the various versions of Linux or the Mac operating system. They don't need to put additional software on the computer to compromise them.

That, in a nutshell, is why we switched to a next-gen antivirus. Next-gen antiviruses have probably been around for about five or six years. Some of the old companies made the transition to them seamlessly. Symantec didn't. It remained wedded to the old technology and that made it, you could say, a has-been.

View full review »
AM
Senior Infrastructure and Security Engineer at Georgetown University

We had trouble with the advanced features, such as the firewall builder and all the network protection modules. We were having a lot of issues because it would sometimes block users or the printing, or it would create issues with the network access resources.

We were using the on-premise version of Symantec End-User Endpoint Security and one of the reasons to use the on-premise versions was to save the network traffic from the cloud. However, because we deployed the full package, the client's computers were really slow most of the time. End-user used to complain that their computers are running slow. It was not only the antivirus because the user had to run other applications as well, in parallel. As soon as we removed Symantec End-User Endpoint Security, the user did see a lot of improvement in their hardware performance, such as the CPU usage being lower and memory resources going down. 

The background scanning performance should be improved because it makes the computers run slow and we had the latest hardware, but it was still having issues. Their engine needs to be improved for the scanning.

View full review »
PK
IT manager at a transportation company with 10,001+ employees

I'd like to see a full anti-ransomware solution because there are some anti-ransomware functionalities that would assist us if they were included in the solution. 

View full review »
MS
Project Manager at a real estate/law firm with 10,001+ employees

We've had some issues with the performance. There have been some minor hiccups. Now it's better. Initially, it had some issues, not for all, but some of the systems only. We had applied a fix that was released in the 14.1 version. By 14.2 they fixed the issue. Ever since we applied 14.2, it's good.

During the scanning time, it could be less intrusive for the users. Right now, it's not exactly working quietly in the background.

Technical support could be more responsive.

View full review »
BJ
Manager at a financial services firm with 5,001-10,000 employees

There could be definition updates installed and running for the product, similar to new EDR solutions that receive updates from the internet. We still have legacy concepts where clients have installed definitions themselves. It could be more effective. Additionally, the memory usage by the product could be reduced.

View full review »
JK
Technical Manager at Digital World

After selling this product, what we have observed is that the system gets slower, which is a major issue.

We would also like to see better pricing. It's almost double when compared to other products.

View full review »
DW
Senior Network Engineer at a government with 10,001+ employees

This solution is resource-heavy. It uses up a lot of memory and a lot of disk space. It demands a lot of resources. There have been improvements with Windows 10 and it's not as problematic.

The firewall capabilities did not seem to do what the documentation claimed it should do.

Port control is one of the things that this solution does do, but it does it on a higher level. When I say port control, it's things like USB ports that can be used to plug things in. For example, if you plug in a wired mouse or a wireless mouse then you want the flexibility to be able to do that. It should be able to identify that it is a mouse and let you use it. 

By the same token, if you plug in a 1 TB external hard drive, that should be shut down unless it is one of your hard drives. The only way to detect that would be to have units with their own serial number and the system programmed in such a way that it would recognize it.

Seagate for example has many external drives. They have serial numbers on those drives, and we don't want to just set it up for use by any Seagate drive. We want our external drives to be used, only. We don't want to have to go purchase Seagate drives to have it work. We want them to get it from us, that we know works, and have them return it to us.

I would like to see a check-in system where you can log which specific drives your staff can access and what they cannot access.

View full review »
CP
Owner at ONE2ONE Tech Solutions

This latest version upgrade/migration over the last year has been atrocious.

There have been numerous support issues and calls with Sr. VPs at Symantec, who were always understanding about the problems, but the product has proven unreliable to install and manage. The protection itself seems as solid, but if devices are losing their licensing without notice for no reason, it's only a matter of time before they become compromised.

The bottom line is that when it comes to management, reliability of management, reporting, alerting, installation, and licensing, if these don't work reliably you can't trust the product's security capability.

View full review »
GS
Solutions Specialist Security at COMPAREX India Pvt. Ltd.

About four years back, Symantec's signature was very heavy and their signature patch was around 200MB or 300MB files.

View full review »
Saurabh Patel - PeerSpot reviewer
Technical Support Executive at Adit Microsys Pvt Ltd

Its interface needs improvement. Its interface is very old, and it needs a new look. Other solutions, such as Sophos and BitDefender, have a better and more modern interface, whereas Symantec has had the same interface for a while. There has been no enhancement in the interface. They should update and provide a better interface in 2022 for a better user experience for their customers.

Currently, Symantec's EDR functionality is expensive, and it is an add-on, whereas other devices have built-in EDR functionality. It would be beneficial for customers if Symantec does the same.

Their support also needs to be improved.

View full review »
VK
Administrator at a real estate/law firm with 5,001-10,000 employees

Automation of tasks should be improved on SEPM. It is currently manual, and we should be able to automate installation and deployment from the client side.

View full review »
SA
Technical lead at a tech services company with 51-200 employees

Symantec needs to develop some reporting features and notifications. For instance, if the server is not on or it's shut down. There should also be time-based USB control.

The APIs could also be more developed.

View full review »
Heritier Daya - PeerSpot reviewer
Network Administrator at a financial services firm with 1,001-5,000 employees

For me, Symantec has been working fine. I'm not dealing with security inside the company, I'm just in the network part, so I can't think of any suggestions for improvement. 

As for some features I would like to see, I'd like a retrospective action feature similar to Cisco Secure Endpoint's. Some antiviruses don't allow you to re-scan a product that was in the former scan—for example, if a file was classified as proper, but then for some reason the file was changed, we need an antivirus with retrospective capability. We need EPP and EDR products in a secured environment. 

View full review »
VS
Director at a consultancy with 10,001+ employees

We'd like to have a solution that offers a single pane of glass that would allow us to integrate all of our traffic and solutions under one umbrella so that we can look at all the incidents in one place. 

The product needs to be well versed in the security landscape to best protect us from malicious attacks, as we've seen a rise in activity.

The agent shouldn't use up so many resoures at the endpoint when scanning and protecting.

There needs to be better communication, back and forth, between on-site teams and off-site users. If something is happening off-site there should be some sort of logging or details that can be shared with the main office.

The solution needs to do a better job at scanning video links. 

There have been instances where we haven't been able to find the root causes of alerts.

The size of the footprint of the software is too high. It's quite heavy.

Network and cloud scanning coverage needs to be expanded and improved upon.

The functionality could be much better.

There also needs to be more training offers to companies to help understand the technology and its capabilities a bit better. 

Technical support is not great. They are not responsive. 

View full review »
TO
Manager VAPT at a financial services firm with 1,001-5,000 employees

The solution already has support for Windows, Mac, and Linux but it could improve by having better support for Linux. We have run into some problems when there are upgrades. If they can improve this point, Symantec would be good for endpoint protection as well as for a critical server.

View full review »
MN
Manager IS Security at a manufacturing company with 5,001-10,000 employees

It would be great if the solution could match up with the competition's offerings - for example, making sure they are keeping up with, for example, CrowdStrike and other offerings.

They need to ensure they are continuously keeping up with cybersecurity trends.

If the next release contained advanced threat protection and EDR, et cetera, it would be really fantastic.

If the agent can be minimized so that it can work with in-memory concepts, that would be ideal. As of now, it is file-based, signature-based. If they should come with an in-memory option, it should work at the random-access memory level also. 

View full review »
AS
Infrastructure Architect at a financial services firm with 1,001-5,000 employees

There are limitations because everyone these days has hybrid working; however, the endpoint does not work for us unless we are connected to a VPN, which is a major limitation. And because it's quite old technology that hasn't been updated, we don't want an on-premises solution; we want a cloud-based solution. We want a cloud-based solution and a market leader.

When I look at the Gartner Quadrant and the Magic Quadrant, it's nowhere near, if not lagging behind. For those reasons, I would not use it.

It was a good product many years ago, but since Broadcom took it over and so on, it has fallen behind.

View full review »
JP
Sr India Admin at Aon Hewitt

Symantec End-point production doesn't support the EDR function.

There are certain drawbacks regarding deployment. We have to leverage other things like PPM.
Another major drawback is that we can't do the deployment from the console itself. We have to depend on other products technically.

The reporting is not as good.

Check detection could be improved as well.

View full review »
CA
System Analyst at Abbey Mortgage Bank

Sophos's ransomware protection gives you some kind of comparative advantage over Symantec. Symantec needs to be better in this regard.

The monitoring capabilities could be further developed. For example, you get Sophos Central in Sophos. In Symantec, I don't know if there is an equivalent. You can actually manage and do deployment across the various geo-locations on every single point, however, Sophos is a cross-platform solution and Symantec is not. 

Sophos Central gives me a one-stop-shop on one page that allows me to monitor all activities going on in my network. Symantec doesn't have that.

The initial setup can be a bit complex.

The scalability could be a bit easier.

We're not too happy with the level of technical support we get.

The pricing is okay, however, it could be more competitive.

View full review »
AB
Manager at a comms service provider with 1,001-5,000 employees

It can maybe send notifications when there is an update and everything is successful.

View full review »
RG
Sr. Professional Services Engineer at a computer software company with 11-50 employees

I think Symantec, like many of its competitors, doesn't have comprehensive built-in reporting. The product keeps improving, but reporting and alerting is not keeping pace, and these are critical.

View full review »
RM
CEO Iberia & Latam at a recruiting/HR firm with 10,001+ employees

There are several new products that offer better protection.

The artificial intelligence of Symantec End-User Endpoint Security could be better.

The web filter could be improved.

View full review »
SD
Information Technology Executive at JFE Shoji Steel India Pvt. Ltd.

We are not satisfied with the technical support. Since Broadcom took over responsibility for its engagement, we have faced many issues. This is why we wish to switch to a different antivirus solution. We are currently in contact with the relevant distributors and suppliers in regards to this issue. We do not wish to encounter the same challenges that we face at present. Before switching to Sophos, we would first have to ensure that all our support-related concerns are addressed.

When an issue happens in my cell, we can log in a ticket on the Symantec or Broadcom websites. From this point, the response time is very slow. Sometimes technical support lacks a proper or firsthand knowledge of an issue and finds itself lacking in the appropriate response. We feel this to be very irritating. The customer wishes for the issue to be resolved, but tech support has shown itself to be inadequate in dealing with enterprise tech products. 

View full review »
NM
Technical Manager at Mignet Technologies

More control features can be added, and its performance can also be better. Sometimes, the performance is not good when we access the cloud console. Moving to each tab is slow. 

The dashboard can be a little bit user-friendly. For some users, it is a bit difficult. If someone is a little bit familiar with it, then it is fine. Otherwise, it is hard to find policies in Symantec.

View full review »
NA
Unit Head Infrastructure at First Woman Bank Limited

Some vendors are starting to give Symantec Endpoint Security a run for their money. Even Symantec's basic DLP features are getting to a point where they're good enough for some organizations' endpoint security needs. The company should be anticipating this. It might be a good idea to introduce some additional features to Symantec Endpoint Security.

View full review »
PE
Network Administrator at Cape Breton Regional Municipality

The platform itself can be improved as there's no way to track how infections get into the organization. You're just notified if there is an instance. Still, there's no way to actually determine a workflow of how it actually came in, how it was executed, and how it was distributed within the enterprise if indeed it did migrate or propagate through.

It would be really good if they had a proactive feature to isolate the node with the agent on the endpoint when it sees some type of erroneous behavior and knock it off the network. Then it can't probably get onto another node. You can usually do that with a policy setting.

It'll also help if they give us more of an explanation of what the malware tries to do once it's on the network. For example, if it's trying to call home to a specific IP or domain. We can use that information to beef up the firewall rules.

Case in point, we had an issue where we had a machine that was affected. It immediately tried to find other machines on that network segment with the same vulnerability to infect that particular node. There was no way to lock that node down immediately when you see something out of the ordinary.

View full review »
LA
IT Security Lead at a tech services company with 10,001+ employees

I am happy to say that the Symantec comes into the picture where the issues are reported from the product, it might be a product bug or it might be a product defect. The product engineer works on this and the latest upgrade has it built into the peer cost, where we can upgrade our involvement and support our clients again.

So, we were having a problem in Version 14, where the client machines used to go into the health state and once it restarted, and never came back again. But as far as one of the defaults, this was reported and not an issue in new versions of Symantec 14 and SEMP 2. Apparently, this is works well for now, and we are happy with this.

View full review »
BD
Manager Operations/ Information Technology at a financial services firm with 1-10 employees

As for improvement, it would be good to have Symantic End-User Endpoint Security integrate more with other cloud computing providers rather than being a standalone product.

The spam filter is something that you can't control, and you can't set the filter to intercept different types of emails. We certainly don't have any control over what can be adjusted in the actual filter. So, we still have a 50/50 chance of a suspect email being legitimate or not.

It would be good if they can partner with one of the other big players who provides enterprise software that includes it with the product rather than having to buy their software separately.

View full review »
Saddam Lateef - PeerSpot reviewer
Information Security Admin at a retailer with 201-500 employees

We have had some problems with the Symantec solution. The problems were bad enough that I was compelled to start to research into other products. The biggest issue was the whitelisting feature. The Symantec software has a feature that detects certain things as malicious and it takes care of the issue. It is supposed to do that. Sometimes the things it flags are not real issues — they are essentially false positives. Sometimes there are things we want it to let through that it would otherwise flag. We put these things on a whitelist so they get allowed. We were having a problem keeping a particular file on the whitelist. It was an EXE and Symantec kept flagging it even when it was whitelisted.  

To fix the issue, we had to do in-house software development. We had to run some extra code. The process was not smooth and, in the long run, it basically did not work. The support by Symantec on the issue was of no further help and it remained a problem.  

A feature that seems to be missing from Symantec is reporting on external devices. For example, if a remote user gets a virus on their computer and they are accessing our system, I want to know. The Symantec agent should be checking this in the cloud and informing us that a particular end-user got a virus. I should get a report or alert somehow. The computer in question should be isolated — or something like that — to mitigate the potential of the threat. Instead, nothing happens.   

The enterprise product that we have now does not have that feature. Maybe Symantec has that feature implemented in other products, but I do not know about it. Maybe it is not there at all or maybe it is some type of cloud feature. But the end result is I have looked for the solution in the product, can not find it, support did not inform me that it can be resolved, and we are essentially left with a vulnerability. That is really not acceptable.   

View full review »
TS
Director at a consultancy with 201-500 employees

I'm not sure if the solution can improve that much more. Right now, for me, I'm asking the question "How does Defender stack up against the product we're paying for?" 

Defender comes with Windows 10 and we have Windows 10 throughout our environment. With that being free, we're asking ourselves why we would pay for another solution that's sort of redundant.

I know they were just bought out by Broadcom and there have been some difficulties with Broadcom as far as getting license renewals, etc. Mostly, due to the fact that it's confusing, even for the vendor, people are turned off by it. The vendors are telling us that it can take weeks for them to get a renewal quote, nevermind the actual renewal.

I've actually had to call Symantec myself because my vendor said "Well, we're going to try it, but it's going to take weeks to get an answer from them." In the end, it was internally expedited and I got the answer the next day, however, that's an exception, not the rule.

I know a number of people that have left just because of the fact that when Broadcom first bought them, and their licensing ran out, the company provided a temporary license and then another instead of dealing with a proper license. One had to argue for another renewal or for them to promise to give them the proper license in the third month. He finally got it, however, it took three months of begging. That doesn't seem right.

View full review »
AC
Head of IT Department at a pharma/biotech company with 10,001+ employees

A good improvement would be altering the console in the console manager. Sometimes we need to add and improve the security to access to the console because the indicators and we can take management activities into the console, and it's, nice to have to improve the security access to the console.

View full review »
HQ
Architect & Technical Director at a tech consulting company with 11-50 employees

There are no additional features my company expects the product to offer since it has no limitations and works properly in any given environment.

Symantec has not properly promoted Symantec Endpoint Security in the market. In my opinion, the product should be properly promoted.

View full review »
BW
IT Admin at a manufacturing company with 51-200 employees

Using the management console is a bit complex. There are many features that we cannot use and we could use some help. We need some assistance to make them work better. They need to add features to make it simpler.

It may also need to be updated for new attacks.

View full review »
Faisal Mian - PeerSpot reviewer
CTO at ABM Info. tech

The solution should have more integration with other platforms. 

Broadcom's support is friendly and very professional. However, in Pakistan, the support team takes more time than Trend Micro or Sophos to reach to the bottom, as their policies are under review. A strategy should be employed to open this to Pakistan, as well. As such, a delay occurs, something which occasionally comes about indirectly. The support itself is good, but the issue which needs to be resolved concerns the promptness with which an assigned engineer can address each ticket we open.

View full review »
NR
Head of IT Department at a construction company with 1,001-5,000 employees

I would like to be able to migrate to the cloud so that the end-users outside the company offices don't need a VPN to connect to the Symantec server to update the policies. They should be able to connect to the admin center directly through the internet to get updated policies.

There is some integration issue with the other security appliances or tools. Other hardware, firewall, or Network Detection and Response (NDR) solution vendors are not willing to integrate with Symantec. They only mention products from other vendors such as CrowdStrike and Carbon Black. Symantec is not there. Symantec should work on integration with products from other security vendors.

View full review »
Heritier Daya - PeerSpot reviewer
Network Administrator at a financial services firm with 1,001-5,000 employees

In the future, I think there should be a sandboxing feature. Some of the most used endpoint protection does not include sandboxing. We cannot rely on URL filtering or IP repetition. Sometimes attacks can pass through the firewall.  

In addition, this product must be compatible with a VMware environment. Because most of our server has VMware. It seems that its not working very well with VMware.

Finally, they need to do some effort to make it a little bit sly. They have to make some improvement in order to not make the computer slow during all of the backend scanning.

View full review »
Mostafa  - PeerSpot reviewer
System Administrator at Suez Canal Insurance

I would like to see improvements in the anti-virus and the device control features.

Anti-Virus: I would like to see Symantec improve the ant-virus to stop and detect Ransomware and email attachments. Symantec is weak with Ransomware. I would like to see the anti-spam for Outlook improve the scanning and blocking of attachments.

Device control: I would like to see an improvement in the USB control, because it sometimes creates a conflict with USB printers.

View full review »
RR
Security Technical Consultant at Prosoft Information Systems

The product must be uploaded, keeping all the sites with threats and virus signatures. We have to deploy or push EXE files to the endpoints like Kaspersky.

View full review »
IH
Endpoint Specialist at a computer software company with 201-500 employees

The device control level and application control level should improve. I am finding a lot of issues when I block the devices, like a printer or scanner. 

In the classes of the devices for the application control, the most important issue is the hashing. Nowadays all the vendors, like Cisco firewalls, are detecting threats with the hashes. 

Symantec has this option that we can block them always by the hashes but the problem is that sometimes Symantec detects these hashes and is not consistent. These two parts should improve. The rest is always awesome. These two parts are very critical because I found a problem in application and device control.

Symantec Endpoint has a perfect agent. It's going to be how many agents you can combine in resources. In the new releases, if they create a single agent to improve the control incrementally, it would be better.

If you want to deploy ATP, you should have a separate event. You have to install separate events. With Symantec Endpoint Protection, any other protection should be installed, then configure the warnings. It does not ask for any new agent to install on the client machine. 

A single agent is enough. Symantec will get a lot of popular support from the industry because people don't like to install agents. For the ATP, you have to install separate events. For the Endpoint, you have to install separate events. If you install all the separate events, it is a huge load on a Windows machine. People start complaining.

If Symantec wants to improve, they should have a single event for all their products, like ATP, DLP, and Endpoint Protection.

View full review »
ES
Group Brand Manager at a comms service provider with 51-200 employees

We must have complete dissolution with advance care protection but we are finding out that we need more Symantec technical specialists. We have identified a need to hire at least one more technical specialist familiar with Symantec to improve our solutions capabilities.

Additionally, an endpoint detection response feature would be great but not with an additional license, it should be included as an additional feature. We have identified this as a solution that our customers are very interested in, but they don't want to purchase additional subscriptions.

View full review »
BL
Information Technology at a non-profit with 201-500 employees

This product uses a signature-based detection system, which is something that we want to move away from. The current buzz is about next-generation antivirus, which is user-behavior-based protection rather than signature-based. Behavior-based detection relies on patterns of behavior to search for suspicious activity.

The problem with a signature-based solution is that if the signature is in the file then it catches the threat. If it's not there, then it doesn't. These days, when a virus infects the system, it doesn't advertise the fact. The only way you figure it out is if something malicious happens, such as ransomware. With a behavior-based detection system, you can identify a threat before it does something malicious.

There is no local support for Symantec products in Hong Kong.

View full review »
TG
Corporate IT Manager at a pharma/biotech company with 11-50 employees

It would be interesting if Symantec Endpoint protection could also manage Windows Defender. If they were to add a feature, it would be nice if you could see the Symantec client and the Windows Defender client in case you choose to deploy both.

View full review »
GK
IT Systems Administrator at a consultancy with 51-200 employees

Better communication and coordination with Microsoft would help to prevent delays that are frequent when operating system updates are released. As it is now, when a new build from Microsoft comes out, we get warnings to say that certain applications are not compatible. We sometimes just have to wait until a new version of this solution is released in order for it to work properly. One of the problems is that Microsoft releases updates often, and sometimes they don't tell anybody. This can lead to the whole configuration being corrupted.

I would like to see a hybrid version of this solution that covers both in-house and cloud-based servers. 

View full review »
TD
General Manager at a consultancy with 51-200 employees

We are not very happy with the solution and are in the process of moving away from it. 

Owing to its limitations, we are currently moving towards EDR products, which we find to be more dynamic. 

The solution could be more secure and scalable. 

View full review »
AC
IT Specialist at a educational organization with 201-500 employees

Since the acquisition by Broadcom, we are no longer receiving the proper support. Otherwise, we had no specific point points while using this solution.

This product would be improved with the inclusion of EDR functionality.

View full review »
MK
Dy General Manager at a real estate/law firm with 501-1,000 employees

The Sandboxing and ATP functionality does not integrate very well, improving this would be helpful. Additionally, having a single console that allows interaction with other security products would be great.

A lot of people have moved to their homes because of the pandemic and this has made endpoint security a crucial part of our protection against threats. Having full integration is very important for all the hardware to work together. If there is any strange network behaviour, all the hardware should work the first time to bring the security flaw forward to be actioned and solved. This only can happen if there are proper communication and integration with other hardware products.

View full review »
LC
Systems Engineer at a tech services company with 51-200 employees

The biggest thing I would like to see is malware remediation, if there is some kind of outbreak. We'd like to see better remediation and better detection and response. It's pretty good at capturing things, but it doesn't stop everything, so better machine learning would be helpful.

View full review »
MD
Industrial Automation Analyst at a mining and metals company with 1,001-5,000 employees

The solution could improve by having a better graphical interface.

View full review »
MW
Project Manager at Realnux

The localization could be better. It could be more friendly for local users.

It's a solution that's only in English. It makes it difficult if you, for example, speak a different language. If that's the case, and you don't understand English well, you might struggle to understand aspects of the product. They need to develop a multi-language interface.

View full review »
Karen Yerznkanyan - PeerSpot reviewer
Chief Information Technology Officer at AMX

We have issues when we install in older systems, such as Windows 7, it's difficult to carry out the set up on these systems.

View full review »
GS
System Administrator at a consultancy with 1-10 employees

We are not satisfied with this solution. It needs a lot of improvements. It doesn't detect the most recent malware and unknown threats. With most of the users working from home these days, there is also a need for some extra security layer. That's why we are thinking of going for a better solution that will take care of all of our endpoints and work from home situation.

Symantec also has to work on EDR technology. Vendors like Palo Alto and Cisco are coming with their own intelligence and cloud infrastructure in which unknown threats are regularly watched and monitored, and they are reported to the admin.

View full review »
it_user847761 - PeerSpot reviewer
Consultant at TNPL

If we install a client's software in our location, such as Microsoft Office or Adobe reader, we would like to have these endpoints protected.

View full review »
JC
Director of Technology Operations at International City/county Management Association
  • An easier management portal
  • Setting up and managing profiles was overly complex
  • An easier cloud management portal would be appreciated.
View full review »
KD
Director Of Services at a tech services company with 1,001-5,000 employees

Overall, the price could be reduced.

View full review »
RK
Improvation Security System Engineer at a healthcare company with 10,001+ employees

It needs to die. In my opinion, Symantec was a really great security company, 10, 15 years ago. They went out, they bought all the great tools and then they never did anything with them. So they've just fallen behind and there's nothing that's going to work now to bring them back up the date that's going to regain user confidence.

In order to improve, I would like to see active remediation tools, where I can connect to systems and do things directly on the system without having to leave the tool.

View full review »
AN
Systems Administrator at a pharma/biotech company with 51-200 employees

I would really like some of the features that are available in Kaspersky Enterprise to be available in the client version of this solution.

In the next release of this solution, I would like to see more to do with malware, encryption technology, and controlling mobile devices. I would like to be able to protect my wireless equipment at that level.

View full review »
JB
General Manager at a tech services company with 11-50 employees

The Centralized Management could be improved. The deployment is very limited. They can improve on reporting as well. If they can improve threat incident analysis, that would be great.

The solution itself is pretty comprehensive at this stage, and the features that we would like to be added to these are available as separate purchases, so I wouldn't that there's anything new that I need in there, they probably covered all the bases at this stage.

View full review »
DB
IT Manager at Digitalis Reputation

Sometimes the interface can be a bit cumbersome, and maybe the help features. If you're not charged with administering the product and you don't do it every day it can sometimes be difficult to remember how to do the simple basic things, so some type of help or guidance for your most regular or frequent tasks would be good. Something similar to what the product called Serviceaid has. 

I also think that the website itself should be improved. They have so many products that when you actually look on their website and you look for helpful guidance you just tend to get lost because they seem to have so much going on. So, basically, a bit more intuitive help and guidance features, as well as more intuitive service information.

Some type of solution for mobile devices would be good. For mobile devices, it's drawing from a Windows-based client, so for many core clients for OSX and Linux machines, those OS could be integrated directly. There's no client for mobile devices except for IOS and Android devices.

View full review »
it_user381717 - PeerSpot reviewer
Information Security Senior Engineer at a tech vendor with 10,001+ employees

Interaction with the product admin needs work. If Symantec could add a new feature which would allow the user to be nice every time the new definitions are/are not in place. Also, for machines which have connectivity problems and cannot download the new definitions for several days, I would suggest that they include them int one report and alert the system admin about them.

View full review »
it_user805980 - PeerSpot reviewer
Consultant at Godimo IT

We have talked to Symantec about a feature that is lacking. Any external device which is inserted into a computer should be subject to an auto-scan policy, to automatically scan it before accepting the device. Let's say I have a pen drive and there is a Trojan virus for which the signature is not updated. If the signature is not updated, then the system should automatically scan and understand that there is a foreign file and it should be blocked immediately. That is the one feature that I feel is missing. They need to make it more user-friendly, so that when anyone puts in a USB stick it will be scanned, popping up any problems before it is used. This is a feature they need to work on, in my opinion.

View full review »
Lead System Engineer at a tech vendor with 1,001-5,000 employees

I would like to see even more customization, the possibility to do whitelisting. It needs to be a little bit more liberal on whitelisting, even to use the name if needed, instead of hashes.

View full review »
it_user676365 - PeerSpot reviewer
Senior Security Administrator at a tech services company with 10,001+ employees

As an Endpoint Security Expert, I have worked on multiple anti-virus solutions of different vendors. They are turning the table in market. There are many ways in which I see Symantec overshadowing the same in near future.

The deployment mechanism needs work. There are various vendors who have been coming up with endpoint agents as small as size of a delta definition.
There are various options and tweaking which can help save the administrators a lot of effort, such as:

  • Multi-domain policy options for exceptions and global blocks
  • Deploying intelligent updates remotely
  • Deleting AV cache remotely
  • More versatile dashboard with more custom add-ons to monitor infra.

I see Symantec as being late in releasing certified definitions for the same day while other vendors are lightning fast. I would like to see a GUP monitoring tool being supported.

View full review »
it_user676353 - PeerSpot reviewer
Systems Project Manager at a retailer with 1,001-5,000 employees

The management of the server is a bit complex. It takes time get used to it. When upgrading the software for clients, you have to link the upgrade package to every sub-folder, and there is no inheritance.

View full review »
AS
Account Manager, Cybersecurity at a tech services company with 11-50 employees

Because of organizational changes, I dislike the entire situation. The solution has become quite complicated since Broadcom acquired Symantec, and we no longer sell it or try not to sell it.

There have been so many changes since the Broadcom acquisition, that we feel like abandoning the product.

It now has a lack of support, and they could be more knowledgeable.

View full review »
SP
Sr Manager IT at a retailer with 5,001-10,000 employees

The solution is very difficult to uninstall. There isn't really a way to uninstall the product at all, which is quite a headache.

It's also complicated to upgrade the product. They need to make these aspects much easier.

Sometimes the solution will just randomly stop working. I'm not sure why this happens.

The licensing aspects of the solution could be improved.

I haven't used the product for about five or six months at this point, so it's hard to say which features they are missing and new items may have been added since then.

View full review »
DS
Owner at David Strom Inc.

The reputation system relies on having a constant Internet connection for its operations.

View full review »
VN
Service Manager with 51-200 employees

It would be nice to see more antivirus features for USB control.

View full review »
RP
Manager IT & Infrastructure at a energy/utilities company with 201-500 employees

The solution could improve by adding encryption. If it had encryption along with antivirus it would be better.

View full review »
it_user1280532 - PeerSpot reviewer
Network Server Analyst at Everport Terminal Services

Managements' number one item on the "Wish List" would have to do with the real-time scan of external media inserted into any client.

A secondary concern is software compatibility with other important networked tools: WSUS, Desktop Central, etc, without a large number of exception rules. 

View full review »
GR
Enterprise Architect Manager at Accenture
  • Device encryption status and coding off of said status. 
  • Better inherent checks against duplicate IDs.
View full review »
CM
Principal Consultant - Security at Insentra

They're just starting to get into this now, but I think they can do better - they're just starting out with I think is called the SEP Cloud Console. It has more limited functionality. It will be good once we can run SEP from the cloud. That would be good.

View full review »
JM
Director for Cybersecurity Solutions at a tech services company with 11-50 employees

It can be improved in terms of features and integration. It should have more advanced features and more integration. Currently, it is just talking to their own solutions. They could add more artificial intelligence, more XDR, and more integration with other vendors so that we can do sharing of information with other vendors.

View full review »
PM
Accounting Assistant with 1,001-5,000 employees

It is only available to use on computers with higher-end specs.

I think the software should be compatible with all versions of all computers, even earlier models. This would allow all clients to be included, which is important for those who cannot afford to buy the latest computers.

View full review »
DH
Chief Executive Officer at a tech services company with 1-10 employees

The reporting function definitely has room for improvement. If Symantec can provide us with the overall API for accessing and reporting, that would be great. The reporting function needs to be more user-friendly in general. I think we have too much technical level reporting, I think it would be better to have more user and usage types of reporting.

I would like to see in the next release focus more on unusual behavior so that we can know how the end results are behaving and if they are in the clear.

They should also provide users with some sort of training videos, for how to use the solution.

View full review »
OC
IT Manager at a hospitality company with 51-200 employees

There is room for improvement in the zero-day threat detection system.

In the next release of this solution, the email integration could improve.

View full review »
Angus  Yeung - PeerSpot reviewer
System Analyst at a security firm with 11-50 employees

It would be perfect if it is capable of detecting or checking ransomware.

View full review »
HH
IT Director at Al Akhawayn University

This solution needs better compatibility with services and applications.

View full review »
HG
General Manager at a tech services company with 51-200 employees

I think the CPU dependency should be enhanced. In addition, some device control features are in need of enhancements. 

View full review »
it_user814116 - PeerSpot reviewer
Consultant
  • Resources
  • Front-end
  • User experience

The Symantec Endpoint Manager is very difficult to use and extremely old.

View full review »
SA
Director at a tech services company with 11-50 employees

It's a nice product. I think Symantec should work more precisely on minimizing database size and the live update size.

View full review »
AC
Technology Strategy Consultant at a tech services company with 10,001+ employees

I would like things to be cheaper in the next release, although I cannot say which specific function I am referencing.

View full review »
KK
Regulatory Specialist at a healthcare company with 501-1,000 employees

The reporting could be improved.

View full review »
FL
Information Technology Manager at a performing arts with 51-200 employees

I think it's a good product but we've had some problems with their support and service. From the beginning of this year, I haven't been able to reach their support. 

Last year, the support wasn't bad but this year I wanted to renew their license, but I can't reach anybody from their company.

We don't have any plans to replace them but we haven't been able to renew a license. 

Sometimes there is a conflict with Windows 10 updates. There is a Windows server or Windows workstation startup after installing the new Windows update. We contacted Microsoft and they said the device caused an issue.

View full review »
MB
Solutions Architect at IP Protocol INC

The pricing is a little bit more expensive than other competitors, if you compare it to Kaspersky, for example, or McAfee.

The detection and response can always be improved.

View full review »
JH
IT System and Storage Administrator at a financial services firm with 51-200 employees

I would like to see fileless attack protection. Also, the version could be lighter.

View full review »
Pablo Dewes - PeerSpot reviewer
Senior Technical Consultant (SE and Strategic Project Manager) - Email Fraud Protection - LATAM at a tech vendor with 201-500 employees

Reports: It would be nice to have customized reports integrated on the main console with no additional DB server or BI server. Vulnerabilities: A vulnerability scan integrated with SEP would be important for the admin to understand the risk level they are facing and how to protect themselves...

Reports: SEP has built-in, on the console, many pre-configured reports
however, in a complexed environment, customers may would need customized
reports other than already provided by the console. In this case, it´s
possible to achieve them using an external data base and server. It would
be nice have a possibility to create customized reports without an external
server and data base, on the same SEP Admin console.

Vulnerabilities: It would be nice have on the SEP Admin console a feature
to measure the environment risk level using an OS and application
vulnerability scan where the administrator can analyze the risk, mitigate
the main risks, prioritized them and, over a Path Manager, correct them if
possible.

View full review »
it_user693255 - PeerSpot reviewer
Information Security Manager at a energy/utilities company with 201-500 employees

SEP could improve on virus detection, specially on Zero-Day threats.

View full review »
TO
IT Systems Supervisor at a insurance company with 51-200 employees

They are lacking the visibility that you get in a heuristical, next-generation AI product. 

In the next release, I would like to see any of the features the next generation antivirus and GAV products have, especially the heuristical and the behavioral analysis. It looks at the behavior of the endpoint, and that is how it identifies something that is not to your normal pattern of working.

View full review »
JC
Service Management Officer at a government with 501-1,000 employees

The overall quality of the product needs to be improved because with the last session we had several issues with new versions. Also, the solution needs better protections.

View full review »
it_user819690 - PeerSpot reviewer
IT Systemadministrator at a construction company
  • SONAR could be improved. The false/positive rate is a little high.
  • The firewall could be a little more "flexible". For example, it would be convenient if the firewall was allowed to "turn off" for hotspot environments.
  • I find the documentation on Symantec.com to be not very updated. It seems like Symantec focuses more on their product than on documentation.
  • My personal opinion is that Symantec has too many WS.Reputation.1 detections, which could cause important computers to malfunction.
  • In a large environment with a significant amount of GUP's, it would be neat, if the client could "detect" the GUP in its own subnet. The client has some built-in intelligence at this point, but it does not seem to work properly. In an environment with many locations, whereas many of them have little bandwidth capacity (and no local datacenter), the LiveUpdate policy can end up becoming rather complicated.
View full review »
it_user1266 - PeerSpot reviewer
Network Manager at a local government with 51-200 employees
Doesn't protect against viruses. I have spent a lot of time cleaning up computers from malware and viruses using other tools. I usually use Avira, Malwarebytes, and Combofix to fix issues SEP couldn't detect. It usually detected 5/10 viruses. The management console wasn't very powerful. Sometimes I would have to manually update computers because SEP would error out. SEP is mostly a virus in itself. It's detection engine uses so much processor and RAM, it's faster to uninstall it than use it as anti-virus. View full review »
TO
IT Systems Supervisor at a insurance company with 51-200 employees

They lack the visibility you get in a heuristical, artificial, AI type of product, like a next-gen antivirus. They lack the visibility of what's happening that your next-gen solutions offer.

View full review »
it_user900123 - PeerSpot reviewer
Partner at a consultancy with 1-10 employees

It would be nice to be able to manage the endpoints a bit further. A valuable attribute would be the management of software inventory, software deployment, and third-party software deployment. I would like to see the ability to deploy and delete unlicensed software. Many users try to install what they shouldn't, so that would be really useful.

What would be really great would be to have the ability t manage those applications that you don't need to install to run. Those are a nightmare for companies, for mine as well. Applications like BitTorrent and unsupported browsers, all of those. Even with decreased user privileges, they are still able to run, so that's a big area to focus on in the future.

View full review »
RR
Executive Cybersecurity Advisor - President at a tech services company with 11-50 employees

The console in general could be improved. There are two consoles. There's an on-prem console and a hosted console, but the on-prem console doesn't do the product justice — it's a bit cumbersome.

It could use more feature parity between what is offered with their on-prem console as well as their hosted console.

View full review »
it_user1020 - PeerSpot reviewer
Head of Data Center at a tech company with 51-200 employees
One problem that I have with any Symantec product is the heavy consumption on resources. Though they claim that they have made inroads on this issue, their newest products still suffer from the same flaw.The problem lies in the very awesome-looking dashboard interface of the management application. There is too much information which can overwhelm basic users. As an advanced user, it simply has too much information which I could not use anyway. There are some widgets that are technically useless and just contributes to the already huge resource use of the application. Microsoft Forefront and Kaspersky Anti-virus has simpler but very usable management interfaces.I would less likely recommend this product to users who only have average RAM and CPU power. It will just eat your computer's resources and there are other products out there that can do the same job and has a less cluttered management interface. View full review »
it_user1065324 - PeerSpot reviewer
IT Associate Manager at a pharma/biotech company with 501-1,000 employees

Reporting in this solution needs improvement. The product could be improved if it repeated data, and if it showed that data better in the analytics.

View full review »
it_user765246 - PeerSpot reviewer
Senior Consultant - Infrastrute at a tech services company
  • Reporting without Altiris should be improved. 
  • More cloud-based functionality, but that seems happening going forward. 
  • It should have hypervisor level AV protection for VMs, so you do not need a client on the systems.
View full review »
it_user294141 - PeerSpot reviewer
Information Security Manager at a logistics company with 1,001-5,000 employees

SEP can improve on virus detection, especially on zero-day threats.

View full review »
it_user377553 - PeerSpot reviewer
IT Security Engineer at Biztronz

Administration, agent stability, and health.

View full review »
it_user2628 - PeerSpot reviewer
Network Engineer at a university with 51-200 employees
It consumes high resources and sometimes slows down the processing. It takes too much time to complete a scan. It does not fix all types of Viruses and Trojans. View full review »
it_user2721 - PeerSpot reviewer
IT Administrator at a tech services company with 51-200 employees
・ Windows only. Remote management requires IE. Client messages can be confusing. Learning how to configure can take time. ・ Some of the messages that clients receive are not easy to understand. Instead of saying that spy/virus ware is blocked, the client receives a confusing message about HTTP common name traffic detection. ・ During scans and attacks it slower downs the system, making it very difficult to work. View full review »
it_user701514 - PeerSpot reviewer
Responsable de Infraestructura at a tech services company with 201-500 employees

The custom reporting and real-time monitoring (the customizable dashboard) need improvement.

View full review »
it_user635907 - PeerSpot reviewer
Consultant
  • Machine Learning
  • Reports
  • Linux updates
View full review »
it_user200313 - PeerSpot reviewer
Security Consultant at Accenture

They should work on the virus definition file and agent  lighter.

Pushing agent to remote users via console is issue 

View full review »
it_user760161 - PeerSpot reviewer
Consultant with 51-200 employees

There was an administrative feature, which was available in the previous version, which has been removed. We would like that feature to be added again, because it helps the customer in many ways, and it's a very user-friendly feature.

View full review »
it_user805959 - PeerSpot reviewer
‎Technology Leader at risetechno
  • Administration
  • Orchestration for broken clients fixes
  • Healing of agents
View full review »
Buyer's Guide
Symantec Endpoint Security
March 2024
Learn what your peers think about Symantec Endpoint Security. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.