Symantec Data Loss Prevention Room for Improvement

Meleria Mangaring - PeerSpot reviewer
Systems Engineer at Trends and Technologies, Inc

The one downside for Symantec is that, due to its transition from Symantec to Broadcom, there's been a lot of changes. I am based in the Philippines and we don't have a contact person locally for any Symantec.

We no longer have any contact for any Symantec opportunities. It's getting hard for us to request a demo license, or trial license, for a proof of value or proof of POC. Basically, speaking with respect to the technology, technically speaking, Symantec is really good, however, on the commercial side, we're really having a problem with that. 

We always have a problem with respect to the commercial side and how we are offering it to the client. It gets really costly with the database as it's strictly required that clients must have an Oracle database and it's quite expensive if you would compare that to Microsoft SQL. From the technical side, what they need to improve is the database. I'm talking about the on-premise, as, with the on-premise, the database that they require is strictly Oracle and not many end-users are using Oracle for their databases. Some are using MySQL. So it gets really costly when we're offering Symantec and then we have to renew. Oracle is expensive.

What they need to improve is the management console. It's pretty straightforward, however, they need to upgrade it to make it more attractive. While it's easy to understand, from an end-user perspective, they need to upgrade it so that it will be more pleasing on the client's side. It would make them more inclined to look up, for example, for maintenance or visibility and monitoring.  

View full review »
SK
Associate at a insurance company with 10,001+ employees

The problem is most companies use a single data protector. The drawback is that they will install Oracle in one server and the application also in one server and detection also, all in one server. If the server crashes, everything crashes. Things should be implemented on another server. 

Previously, when we had Dropbox, if we transferred a document, we would get a popup, and if we transferred 500 documents, we would get 500 popups. We're looking to find out if there is a way around this.

If we get a fatal error issue, if the agent isn't working out, we need a hard fix file. We need to check in pre-production machines. 

When we're doing data scanning, the machines can be slow. 

In the object capture recognition, which we implemented recently, there are a lot of false positives that have been happening. We are expecting them to fix this issue soon.

View full review »
BR
Cyber Security Consultant at I(TS)² Saudi Arabia

Different departments should manage administration, reporting, normalization and incident management. For example, for incident management, escalation can be completed in a specific department, and we can notify a manager and send an email when an incident has been triggered. In addition, confidential files that shouldn't be sent as a CV are managed. A DLP is a confidential solution that cannot be used to send unauthorized organizations' data to others.

The previous versions had a flaw when we installed the agents. We can install the agents manually or by the SCCM and easily manage the database and incident services. We can make several rules if we have a network or endpoint. We can also manage dashboards and administrators, super users and view roles. The larger administrator that manages the activities and daily reports has access to the best access tools. We can utilize user roles for the view access tools and to make policies.

View full review »
Buyer's Guide
Symantec Data Loss Prevention
November 2022
Learn what your peers think about Symantec Data Loss Prevention. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
657,397 professionals have used our research since 2012.
Yasin Bin Wasim - PeerSpot reviewer
Information Security Engineer at a security firm with 11-50 employees

The solution is not user-friendly. I've had to do a lot of research to try and figure things out on my own.

Due to its database, I first had to install an Oracle database. This should change. The product should allow for the use of an SQL database, and, if possible, it should have an embedded database. The solution should be easier to integrate on different solutions.

The data classification is very difficult in Symantec. It's hard to integrate the detect activation tools, whereas, in Forcepoint DLP, it's better. It's very user-friendly and the quality is defined and it is very clear. Symantec should try to emulate those aspects of Forcepoint.

It's difficult to implement in a protected environment, due to its architectural layout.

The initial implementation is quite complex.

The technical support has really dropped in quality since Broadcom acquired the product.

View full review »
GG
Senior Systems Engineer at a logistics company with 1-10 employees

The OCR functionality could be better. We have OCR functionality. However, it is not as effective. It could be more effective. They need to work on the function that can catch PDF 5 and PDF 5 based on pictures, images, JPEGs, and so on, with text-to-all content. The main goal of this is to check those pictures against corporate policies.

I'd like it if, in DLP, the agent could have more detection capabilities.

Currently, many features can work only with Endpoint Prevention, Network Prevention, and Email Prevention. Those capabilities do not work on the Endpoint Prevent and Endpoint Detection. 

They need to expand the channels they check. It could be wider. So it should be able to check, for example, WhatsApp and mobile solutions, mobile communications, Facebook, et cetera. We're worried about data leakage on these channels. 

View full review »
PG
Senior IT Architect at a tech services company with 201-500 employees

The database is a problem for us, as it's running on Oracle and not everybody likes that. There's a licensing issue with the database. There's a sizing issue with licensing. They did improve it a bit. It supports a virtual server now. However, the pricing and the fact that you install it on the machine and you have to count all the CPU, makes it a problem. It's workable. We dedicated a physical machine to it. It's a bit of a legacy solution. 

The licensing is a bit of an issue for us. They need to work on the way the licensing is set up.

A feature we would like to see is entropy detection in text. We need something that detects when you send an email and you try to hide something by using simple encryption techniques. It's typically called entropy. If we had entropy detection in the regular text that would be ideal

View full review »
Faisal Mian - PeerSpot reviewer
CTO at ABM Info. tech

It's not a scalable product.

It only works on the Windows platform. It doesn't support Linux, which is unfortunate. Most of the clients these days use Linux. It would be ideal if Symantec could have more integrations with the different operating systems as well on the DLP. That would be much better.

The deployment is complex.

View full review »
Muhammad Ejaz ul Hassan - PeerSpot reviewer
CEO at RISE Technologies

The solution should integrate with other databases because it relies on Oracle which is not financially feasible for many customers, particularly in small or poor countries. Oracle is very expensive on the cloud side. 

Operational costs are too high for small offices that rely on Microsoft Office, so they instead opt for free yet powerful databases such as MySQL. 

Data tagging and classification would be useful because multiple agent roles are needed solve issues. 

View full review »
DM
Data Loss Prevention and Data Classification at a insurance company with 10,001+ employees

Currently, I can't see any areas for improvement in Symantec Data Loss Prevention because the solution seems to be better than all the other vendors out there. It seems all the other vendors are trying to mimic what Symantec Data Loss Prevention is doing in terms of components, practice, and modules.

Sometimes setting up the solution can get a little tricky because it would depend on your internal infrastructure. For example, you have to connect the Symantec Data Loss Prevention platform and you need to integrate it, so that could make the process somewhat difficult.

View full review »
NV
IT Security Specialist at TT Systems LLC

What could be improved in Symantec Data Loss Prevention is its security. It should be more secure.

View full review »
AH
Senior Manager Network Design at a tech services company with 501-1,000 employees

There should be more documentation with Symantec Data Loss Prevention. We had trouble with the first few deployments.

View full review »
Sasikumar P - PeerSpot reviewer
Sr. Manager - IT at Durr India

Technical support is pathetic. Stability and scalability can be improved as well. It would also be better if it could restrict Bluetooth transfers.

Symantec also uses Oracle databases, which isn't really convenient for most customers. It would be better if they switched to SQL.

View full review »
MUHAMMAD FAHAD  HASSAN - PeerSpot reviewer
System Engineer at ABM Info. tech

Symantec needs to improve the policies. If they could gear the policies, or the templates, and publish them, enabling customers to download them, it would simplify things.  They currently have a package uploaded in the system with some policies but there is no option to download our link device. There are some difficulties on the portals with Symantec. In general, the softwares are not available for partners on their portal. If a new patch requires updating on customer sites, those particular softwares are not available on the partner portal. The products they're giving the agent for Linux operating system could be simplified but Symantec is not geared for writing that option for Linux and running windows on it. Symantec doesn't have any agent for DLP on the operating system.

View full review »
KP
Network Engineer at LTTS

Symantec doesn't necessarily catch things that are happening in the DLP features such as someone attempting credit card fraud. For the future, I'd like to see better documentation with a more informative focus. 

View full review »
Amrutha  Gadagakar - PeerSpot reviewer
Data Protection Manager at a healthcare company with 10,001+ employees

Symantec could improve by being more creative and simplifying the functions. Additionally, the data protection should be bundled with data classification and labeling instead of them being separate.

View full review »
SS
Information Security GRC at a manufacturing company with 10,001+ employees

There should be more information about the features of the solution and what they do. This way we would be able to use all the features that are available.

View full review »
SK
Associate at a insurance company with 10,001+ employees

I would like to see an improved interface, with better documentation and integration with other products.

The initial setup could also be better, so that the solution would easily interact with other monitoring tools without the need for taking further steps. 

View full review »
Ankit-Mittal - PeerSpot reviewer
Information Security Manager at Cvent

DLP doesn't work well with Mac OS systems and tends to give false positives. There are also problems in terms of CPU utilization because all the policies are based on a traditional DLP system, which makes it quite heavy and creates issues with user experience. In the next release, DLP should include OCR features, and I'd like the agent to be lightweight, which means the policy should be in the cloud.

View full review »
MananVora - PeerSpot reviewer
Security Architecture at Tredence Inc

DLP could be improved by implementing a cloud-based console. The implementation and installation process could also be made less complicated.

View full review »
VS
Assistant Vice President at a financial services firm with 10,001+ employees

Symantec Data Loss Prevention could improve by having better system resource management, cloud option, and more features.

View full review »
Buyer's Guide
Symantec Data Loss Prevention
November 2022
Learn what your peers think about Symantec Data Loss Prevention. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
657,397 professionals have used our research since 2012.