If you were talking to someone whose organization is considering Symantec Advanced Threat Protection, what would you say?
How would you rate it and why? Any other tips or advice?
I would rate this solution a seven out of 10.
We originally deployed the on-premises model, but over the past year, we've started to use the cloud deployment as well. It would be really great if we had some involvement from Symantec's side. Some of the other endpoint protection products in the market or other companies who are selling the same product, are, in my experience, really helpful. That's one thing that's lacking on the Symantec side. For those considering implementing the product, try to get Symantec as involved as possible. It would be better. I'd rate the solution six out of ten, based on the cloud capabilities and the privacy offered.
This is a good solution, and whatever our requirement is, all of the features are there. I would rate this solution a nine out of ten.
Overall I can recommend the product. It's pretty much the best for protecting from intrusions or other malicious items that are coming from the endpoint and the servers. If you have the ATP software, it will actively seek out whatever is being affected inside it because it has PFM threat protection enabled for it. Each of these features is not normally found for endpoint protection. I would rate this solution 8 out of 10.
I would recommend GravityZone over the Symantec package. Symantec has a lot of products which are working individually and separately and in the last two or three years, they have tried hard to integrate one with the other. ATP has had some serious features cut, and they're not working timing-wise if you don't integrate it with endpoint protection. My advice to the company would be to either make them work individually, separately or to integrate them seriously. The dependency between several separately sold products from Symantec is bothersome. You buy a product, for example, Endpoint Protection and, a lot of the features only work if you buy also another product, say ATP. If you want the network detection or manage services or whatever other technology you have to buy another product which also integrates with the first and the second one, and so on. This is one of the reasons that I like GravityZone because it has everything inside. The worst part is that you don't buy the license for some feature that's inside. They are already there, they are already working. You can at least deactivate them if you don't buy the add-on license. Symantec has the exact opposite perspective. You have to buy each individual product and then integrate them. For a small company, the integration part is easy. If you have 500 endpoints, you integrate three or four and separate the security products, it's done. If you have a complex company with branch offices and separate domains etc. the integration part may take you months of work because the products are separately sold which is bothersome. I would rate this solution between 8 or 8.5 out of 10.
It's a solid solution. Do your testing. Get a trail edition. Try to attack it with malware in your lab. See how it will stand up in a bake-off. The key thing is to keep up with all the industry changes. There are more services running on the cloud and figuring out how to do that.