The Machine Learning capability could be improved, particularly in data discovery. When given sensitive data expressions, the system retrieves files that are not always related. The system should adhere strictly to the given expression rather than just focusing on keywords within the expression. In endpoint features, while the detection rate is good, there could be improvements in remediation and rollback solutions during attacks. Other solutions now include such options since providing 100% security is impossible. The flexibility varies across environments. Enterprise customers find the product performs well without affecting their data, with scans running as scheduled. However, SMB customers experience some performance issues during scanning. Since EDR is integrated, users must access the EDR console to check endpoint detections. It would be beneficial if this functionality were incorporated within the EPO console, as the current threat graphs link doesn't display endpoint threat graphs.
