Share your experience using Comodo Dome Data Loss Prevention

We have been distributing Trellix DLP solutions for around 5 to 6 years because we have our DLP customers. When going for fresh leads, we insist on Trellix DLP solutions if they have a Windows environment. We definitely recommend Trellix DLP because it has many features, and when it comes to on-premises solutions, it has the best incident monitoring and evidence storing capacity. Data evidence is essential. If somebody shares something, we will be able to look at what files they had and what those contents are. This particular feature we highlight to every customer, making it a key selling point for Trellix DLP.

The main use cases would be incident monitoring and incident storing to look through the contents. Registering the documents enables fingerprinting so you can monitor wherever they go, whether they are sent via mail or through a browser. That is one of the benefits. With application monitoring, many solutions have control over data in applications. For example, remote access applications or instant messaging applications have access, but in most solutions, they are predefined, and to add a custom-based application, it takes some time. You need to have a call with tech support to add that application. However, with Trellix DLP, we can directly create a user-based classifier and application channel in the definitions and block the data leakage of sensitive data through that application.

Another part involves custom classifications; we can also integrate third-party classifiers, such as Titus and Mimecast.

We handle data security parts including DLP Encryption, EDR, and external endpoint security, including Trellix Endpoint Security.

The document registration feature enables fingerprinting of documents for monitoring their movement through email or browser. Application monitoring provides control over data in applications, with the ability to directly create user-based classifiers and application channels without requiring technical support intervention.

The solution includes custom classifications and integration capabilities with third-party classifiers. The Machine Learning capability assists with classification capabilities, though there is room for improvement in data discovery accuracy.

The Machine Learning capability could be improved, particularly in data discovery. When given sensitive data expressions, the system retrieves files that are not always related. The system should adhere strictly to the given expression rather than just focusing on keywords within the expression.

In endpoint features, while the detection rate is good, there could be improvements in remediation and rollback solutions during attacks. Other solutions now include such options since providing 100% security is impossible.

The flexibility varies across environments. Enterprise customers find the product performs well without affecting their data, with scans running as scheduled. However, SMB customers experience some performance issues during scanning.

Since EDR is integrated, users must access the EDR console to check endpoint detections. It would be beneficial if this functionality were incorporated within the EPO console, as the current threat graphs link doesn't display endpoint threat graphs.

We have been distributing Trellix DLP solutions for around 5 to 6 years and continue to maintain our DLP customer base.

The solution is stable and does not have glitching issues.

There are no limitations regarding scalability; the solution is sufficiently scalable.

The technical support from Trellix was excellent previously, but since the rebranding, it needs improvement.

When cases are raised, partners perform initial L1 or L2 troubleshooting. However, ticket resolution times are often too long, with new engineers sometimes requesting the same logs repeatedly. This creates challenges, especially for enterprise customers with strict SLAs.

We previously used McAfee but have transitioned everything to Trellix DLP now.

The installation process is quite easy, especially with AD connectors for group policy installations for bulk setups.

Trellix DLP provides return on investment for enterprise customers, with approximately 20% ROI for enterprises.

The solution is currently affordable and not considered expensive.

The solution features both a dashboard and workspace, which is beneficial. The workspace provides updates on endpoints facing escalated attacks, allowing users to monitor endpoint updates and threat attacks. With EDR integration, users can check policy configurations and identify potential loopholes.

The flexibility varies between SMB and enterprise environments. Enterprise customers report minimal impact during scans, while SMB customers may experience some performance issues during scanning.

Previously held certifications have expired, and there have been challenges accessing the partner portal after the transition to Trellix. Access to the partner portal is important as enterprise customers often request certified professionals.

On a scale of 1-10, this solution rates at 8.

I am intensively working with McAfee Total Protection for Data Loss Prevention, and it is a good solution that we still promote for our customers.

We are still working with McAfee and we support our customers regarding the solution effectively.

My company is a partner with McAfee.

I find unique value in McAfee Total Protection for Data Loss Prevention specifically in controlling the application from a DLP perspective; when a computer downloads a package, you can understand where it downloaded this package from, and you can create a policy regarding the source of the download. This is actually an important and valuable feature, specifically in enterprises where they download, upload, and export critical reports from their business applications.

I appreciate the customized policy features in McAfee Total Protection for Data Loss Prevention because we didn't find these features in other competing applications. This may be a requirement from business customers who have important or critical applications; they expect to understand that these are critical files because this is a critical application. This cannot be done although we are with Trellix or McAfee solution.

I see enhancement in reporting for McAfee Total Protection for Data Loss Prevention as a potential area of improvement to think from a data asset perspective, not from a policy perspective, and do more analysis regarding the user's perspective rather than the policy's perspective.

We have a shortage in integration capabilities with DRM solutions, such as Seclore, while it had been working before. Now, unfortunately, they stopped this integration, and they claim that this is from Seclore's side, but what happened before is not working today.

I have been working with McAfee Total Protection for Data Loss Prevention for approximately six years.

I would rate McAfee technical support as a seven.

Improvements could be made in response time or quality as all of them can be rated a seven.

Positive

The initial setup for McAfee Total Protection for Data Loss Prevention is somewhat complex, as it should work with email gateway and web gateway; this is complex and requires it to work in line, which is essential in the architecture. They have challenges in installing the solution on endpoints, so I believe it is a complex solution, not an easily implemented solution.

I rate the pricing for McAfee as competitive compared to other companies; they are in the same range, not a cheap product and not an expensive product.

The main competitors for McAfee Total Protection for Data Loss Prevention are Symantec DLP, renamed Broadcom, Forcepoint, and Digital Guardian.

In my opinion, the best solutions are between McAfee Total Protection for Data Loss Prevention and Digital Guardian.

Forcepoint and Symantec may be at the same level as McAfee Total Protection for Data Loss Prevention and Digital Guardian.

It is good for my clients to have that advanced analytics tool in McAfee, but actually in all DLPs, the reporting is not prepared adequately. We do more customization in the DLP until we have a suitable reporting solution regarding this subject for our customers; this is not a McAfee issue, it is all DLP solutions.

I do not have experience with granular control options nor do I understand it very thoroughly.

McAfee Total Protection for Data Loss Prevention works perfectly as a DLP solution. It is a matured and established solution that may have a shortage in applying AI, but it has good new approaches in data classification, built-in solution, and also re-architecture for the OCR solution inside the application. It is one of the best, if not the best solution in DLP that works effectively protecting the data, similar to a firewall for the data environment.

I am totally satisfied with the functionality of McAfee Total Protection for Data Loss Prevention, and my clients are also completely satisfied.

The real-time alerts and reporting tools in McAfee Total Protection for Data Loss Prevention work effectively, and we haven't faced any issues regarding that.

The analytics and ML features in McAfee Total Protection for Data Loss Prevention are working efficiently.

The stability of McAfee Total Protection for Data Loss Prevention rates as eight, which is good.

The scalability of McAfee Total Protection for Data Loss Prevention rates as an eight, indicating strong ability to scale and expand.

Overall rating for McAfee Total Protection for Data Loss Prevention is eight out of ten.

I can recommend McAfee to other users confidently.