Coming October 25: PeerSpot Awards will be announced! Learn more
Buyer's Guide
ATP (Advanced Threat Protection)
September 2022
Get our free report covering Microsoft, Fortinet, Fortinet, and other competitors of ESET LiveGuard Advanced. Updated: September 2022.
635,513 professionals have used our research since 2012.

Read reviews of ESET LiveGuard Advanced alternatives and competitors

Director Security Operations at a tech company with 201-500 employees
Real User
Integrated with an email security platform, protects against new threats, but needs tighter support for new OSs and is limited in behavioral and algorithm-based detection capabilities
Pros and Cons
  • "You don't have to buy a separate email security platform. You can enable that using their endpoint, and I like that. You don't have to have two agents running on the same box."
  • "The support for new OSs and older OSs could be a little tighter. They need to be more upfront about what protection services they're going to provide on new OSs. I haven't seen the Windows 11 version out yet. It is either already released in Beta, or the Beta will be released soon. There could be a little bit more advanced updates on what they're doing to help protect Windows 11 environments. They can let us know in advance so that we know it is going to be protected. We can't roll out the new OS without putting end-point protection on it. So, they should tell us what is their support model for that, and what are they doing to protect Windows 11. They're not telling me, and that's a criticism. The same issue is applicable to all the other antivirus tools. It is not just Symantec; all of them have this problem."

What is our primary use case?

We use it for advanced antivirus protection. It is primarily used for protecting the workstations and servers from Zero-Day and other emerging threats. 

I am using its latest cloud-enabled version. Its deployment model varies. We recommend the full cloud version, so we try to get everybody moved over to the cloud. Most of the time, it is a hybrid for a while, until you get moved fully into the cloud.

What is most valuable?

You don't have to buy a separate email security platform. You can enable that using their endpoint, and I like that. You don't have to have two agents running on the same box. 

They have advanced their product line with other detection capabilities outside the traditional hashes. They have added Zero-Day in the emerging Advanced Threat Protection series. So, it gives the customers a better feel that they're protected. It is not just traditional AV-only protection. It also protects against new and emerging threats.

Its agent is also pretty solid. It is a good product.

What needs improvement?

The support for new OSs and older OSs could be a little tighter. They need to be more upfront about what protection services they're going to provide on new OSs. I haven't seen the Windows 11 version out yet. It is either already released in Beta, or the Beta will be released soon. There could be a little bit more advanced updates on what they're doing to help protect Windows 11 environments. They can let us know in advance so that we know it is going to be protected. We can't roll out the new OS without putting end-point protection on it. So, they should tell us what is their support model for that, and what are they doing to protect Windows 11. They're not telling me, and that's a criticism. The same issue is applicable to all the other antivirus tools. It is not just Symantec; all of them have this problem.

Solutions like CrowdStrike, ESET, and SentinelOne have really jumped ahead on behavioral and algorithm-based detection capabilities. Symantec is trying to catch up, but they still have some limitations of being an old-school AV protection program and adding AI and behavioral learning and detection algorithm.

For how long have I used the solution?

I have been using this solution for eight years.

What do I think about the stability of the solution?

As far as I could tell, it is pretty stable. I don't get a lot of complaints. I have some concerns about their growth strategy. The market is a little bit more competitive than it used to be. We have more tools and technologies out there for AV protection, but for now, it is in really good shape.

What do I think about the scalability of the solution?

They can scale to very large enterprises. I don't see any problems with that.

Each individual customer has their own licenses, so I don't have a roll-up of how many users are actively using it.

How are customer service and support?

Their sales cycle is pretty good. Their support is very good. We've had a good experience with them. We are usually able to get to who we need to in a timely manner. They have a good group of guys over there.

How was the initial setup?

They have a very simple and easy implementation. They have been around for a long time, and they have been very easy to deploy, support, and manage.

The deployment duration depends on the size of the environment. It depends on whether you have 100 workstations or 10,000 workstations. Regardless, it scales very well. It takes minutes per workstation versus days.

After the installation, you have to configure it. They've made that pretty easy. It takes maybe five minutes per workstation to make sure it is working and running, but then you also have alerting and monitoring. So, you got to monitor it. Otherwise, it doesn't do any good if you're not telling people what's going on. The monitoring, detection, and response piece of it can be very expensive.

What about the implementation team?

We are an MSSP, so we do all the work ourselves for customers. Typically, you have to have at least one SME who is dedicated to it. It also depends on the size of the organization. So, if there are five computers, then you would probably have one person doing everything. If you have 5,000 computers, then there would probably be one person doing just Symantec. So, the ratio is 1 to 5,000.

What other advice do I have?

I am not a big fan of them being bought out by Broadcom. They're not their own entity, but it didn't turn out to be a bad thing so far. So, I'd just be cautious about a company that is bought out by an investment company like Broadcom. They typically buy companies to let them die. That would be the only concern I have.

I would rate Symantec Advanced Threat Protection a seven out of 10, just because there is so much competition. Five years ago, I would have rated it higher than that.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Other
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Buyer's Guide
ATP (Advanced Threat Protection)
September 2022
Get our free report covering Microsoft, Fortinet, Fortinet, and other competitors of ESET LiveGuard Advanced. Updated: September 2022.
635,513 professionals have used our research since 2012.