The level of simplicity in terms of ease of use is moderate. It's not easy to implement. There are some requirements from organizations. For example, businesses must be rated to implement this solution. If businesses want to implement data loss prevention or information security policies, they have to be accredited. However, with Broadcom's product, it's easy to implement. There are modules you can deploy and use. It's easy to plan and easy to deploy, however, you do need to have a proper plan in place.

If we compare with other solutions, Broadcom's Symantec Data Loss Prevention has different kinds of detection techniques. It's just keyword, structural data, OCR, or a combination of all these metrics.

The accuracy in terms of the rate of detection is good. I have worked with big enterprises with this solution. For example, we had 30,000 endpoints with the data loss prevention solution, and I also managed 10,000 clients with Symantec Data Loss Prevention. The accuracy has been pretty good. You just need to fine-tune your policies. If you create policies in the proper way, Symantec works really well.

DLP helps us find sensitive data and apply policies based on user risk. First of all, we need to define which data is sensitive and which data is secret. DLP couldn't find it by itself. Therefore, we need to create a normal policy. Then DLP can manage this risk. 

The solution comes with a default configuration. This can be adjusted. If you need to follow GDPR requirements and GDPR defines your personal sensitive data, you can adjust for that. You can set predefined detectors. You can use this in a policy to protect yourself and ensure compliance.

DLP has helped to reduce the work or the time our DLP administrator spends on data loss protection.

It's a consistent product. You just need to create a policy one time, and then you can apply it to all of the channels you are monitoring.

View full review »

Symantec Data Loss Prevention (DLP) doesn't inherently classify data, but it provides robust features for managing policies and incident response effectively. The incident response options and reporting features are particularly strong, with the inclusion of Incident Classification Assessment (ICA) for integrated reporting. While DLP itself doesn't classify data, it can respond to classified files based on configured policies. DLP can be integrated with other classification tools like GoldenGate, data visibility tools, or Microsoft MIP for enhanced data protection and management.      

View full review »

All of the features are really important, including DLP for the OCR and endpoint. It will be all of the combined features that will give you the strength to control the data. Every feature has its own uniqueness, different control and will help you to protect the data. 

View full review »

The data-at-rest features are the most valuable because they let us identify data infected with ransomware and prevent employees from being exploited through phishing attacks. If an employee is compromised, the attacker can access servers and deposit ransomware. This enables the attacker to exfiltrate data remotely using employees' credentials. It might be valuable data that could cause a business reputational and financial damage if stolen and publicized. It could also be credit card data or personal health information stored on critical servers.

The false positive rate is excellent. It's about 90 percent accurate and gets better as we fine-tune the rule sets. When we have new incidents, we can work to lower the overall risk based on user behavior on the endpoint, the kinds of data we out on SharePoint, and the type of web or FDP traffic generated internally. I assess the effectiveness of a policy based on the number of false positives generated. We need to tune the rule set if it's greater than 20 percent. 

The solution's data recovery is fast. It depends on the size of your storage, but I have no complaints about the speed of data recovery because there are several detection servers with the necessary horsepower to handle the amount of data that needs to be discovered. It could be remotely scanning a SharePoint server or a file server. The local agents can process data in the expected timeframe.

View full review »

Symantec DLP has many servers, and the solution is very powerful because you can use it in ports, endpoints, networks, and email servers to prevent the leakage of emails. DLP can be integrated with Symantec encryption. It's very important because you can integrate these products, and they will protect against the leakage or loss of data. For example, when someone loses flash memory, you can run the automatic response in DLP and encryption, and the flash memory will be encrypted. In the case of the loss of flash memory, it could be easily protected with automatic rules.

View full review »

It has good options for policy findings. You can do granular policy enhancements with multiple options. And the SMB blocking is a very good feature.

Other good features include 

• application control
• integration with other proxy servers
• data discovery.

And the dashboard is very user-friendly. The solution is very easy to use, if you know the baselines, concepts, and how to implement things, it's very easy.

In terms of detection, that's up to us to decide exactly what we want. Whatever we have found has been worth it.

Symantec Data Loss Prevention also supports Macs and Linux. It's up to you how you filter your traffic. A normal user's machine should not have Linux. Usually, that would be a server-level operating system, but there are different controls for different operating systems.

View full review »

What I like about Symantec Data Loss Prevention is the technical support it provides. It's good.

View full review »

The most valuable aspect of Symantec DLP is its powerful policy system. It helps us control data, like making sure nothing leaves our setup. The policy management console is user-friendly, and it offers a range of options to suit our specific requirements.

View full review »

The solution offers a one-click view from a single console, with detailed incident investigation capabilities that capture activity from end users, the web, and email. Symantec Data Loss Prevention provides comprehensive information conveniently and efficiently while also conforming to good architectural standards.

Compared to Forcepoint DLP, we can see that the email is not available. In Symantec, we are dependent on other products, such as DashMagiq, to release quarantined emails. This is because DashMagiq is able to do this through its API integration with the Office 365 email box. Unlike Forcepoint DLP, we don't have the option to release quarantined emails ourselves.

The detection capabilities are comprehensive. The solution covers all channels and supports cloud scanning. Additionally, the cloud-based solutions provided by CASB offer additional functionalities and now include AdvExt.

Symantec Data Loss Prevention has good detection accuracy. In some instances, the solution can produce a false positive. The solution's Application Monitoring feature allows us to monitor data that should be uploaded through an application; however, it can trigger an incident when the application is opened. The features provided by Broadcom are generally practical, but some of the less-used features may not be as accurate.

View full review »

The product helps with blocking sensitive data transmission and permission management.

View full review »

The solution is very good at fingerprinting the documents. This means, basically if a user tries to modify the data or change the file extensions, the system will recognize this action. It will offer the DLP images, so it will fingerprint the data. If a user is trying to modify data, they're trying to change the extension to whatever data, it will tune in on the IP, based on the indexing. 

There are a lot of features. We can modify only particular agent configurations. 

A new feature I've seen is a device block, which is very interesting. Previously, we used to create a policy for blocking certain data, which was transferred from our local machine to the mobile media. Now, we found that there'll be one more option called agent configuration device control. Under the device control, there'll be a block device connections option. It will alert us that a USP has been blocked. 

The solution offers very good virtual machine learning. The ML will capture information based on certain policies. We haven't used it yet. We're still learning about it.

The solution offers good data classifications. What we used to do, is we used to create one template and we used to sit with different project team members. We'd collect the information from the project managers, on the management side. We'd put the information into one Excel sheet and collect the information from that. Now, we're using that to review one data classification tool. What it will do now is, whenever you're working in the document, is it will ask you to determine the data. It will ask that if it is internal or confidential.  

We can integrate with some other tools such as Splunk, which is very useful.

View full review »

The most valuable aspect of Symantec DLP is its broad coverage. Symantec DLP covers USB, Outlook email clients, and web traffic. If we install the endpoint DLP, we can cover multiple channels, including the clipboard and printer. 

What distinguishes Symantec from other solutions is the technology to create policies based on our customer's requirements, like ID items and index documents. We can fingerprint our documents so that any attempt to send the data outside the organization is detected. Symantec DLP has Described Content Matching if you need to send unstructured data. We can carry out the rule with the Described Content Matching technology. 

This enables us to create multiple rules. Symantec offers various technologies, like Index Document Matching, Described Content Matching, and Exact Data Matching. We can also create rules for structured data stored in the Excel database.

In addition to these features, Symantec DLP also provides email traffic monitoring, giving us visibility into on-prem Exchange email servers and cloud-based tools like Office 365. We can extend DLP detection to all email and SMTP traffic. 

I rate Symantec DLP a ten out of ten for ease of use and implementation. It's easier to use than other DLP solutions. 

The detection capabilities are also excellent. I rate Symantec DLP eight and a half out of ten for detection. I give Symantec an eight out of ten for accuracy and seven out of ten for scanning speed. 

View full review »

We can see everything about the users, meaning what kinds of data they use on their computers. When you install the Symantec agent on users' PCs, you define a role for the users and set the policy. We have set rights such that users can't copy sensitive data or send it via email or to USB. After, you can search monthly or yearly and see what kind of data they have used or shared and where they shared the data.

We also like the analytics and reports. We can get yearly reports, six-month reports, and monthly reports for analytics that we can export.

And for administrators and system engineers, it's easy to use, install, maintain, and upgrade. It's also easy for end-users.

For detection, it has a great algorithm. It can recognize ID numbers and everything that you put in a policy for the end-users. That is really great for us as an institution where we have sensitive data. It recognizes all the sensitive data when someone tries to transfer it or put in other data. When that happens it sends me a notification that somebody needs to use an ID or sensitive data. Its accuracy of detection is high.

Another positive aspect is that the speed of discovery is very high. We are very satisfied.

View full review »

The solution is simple to use with good administrative controls and a console that is easy to understand. This is particularly important because end users are security engineers, CSOs and compliance managers with minimal technical knowledge. 

The DLP is very effective on the application side because there is a control on both endpoint and network storage. These components are separate from each other which needs to be planned out carefully but reduces server needs. 

View full review »

The most valuable feature of the solution is its OCR process for image recognition. Symantec Data Loss Prevention can extract all the data from the image. In scenarios where a user may be trying to get some screenshots of certain confidential documents, Symantec Data Loss Prevention will extract whatever data is included in that image, after which it may block the user who was involved in the act.

View full review »

The most valuable features are file integration and optical character recognition. It is a new technology integrated in DLP. File recognition technology mainly uses DLP, and we can use encryption technology to integrate the endpoint detection servers. The solution also helps to integrate the cloud access service broker in the DLP console, and we can complete information-centric tagging. For example, we can tag the files as private or public and protect them on the DLP console. In addition, we can classify data according to the environments and handle the files per the policy created from the console.

View full review »

I have found the most valuable feature to be partial enlisting.

View full review »

Reporting is the most valuable feature the solution offers. It provides information on any incidents that occur in our environment. 

View full review »

Whatever features Symantec has provided have all been valuable. The indexing features, where if anyone captures the image of the data, then it can be extracted to any of the channels, is quite useful. If you have a point DLP, email DLP, network DLP, et cetera it can capture that. 

It offers a pretty straightforward setup process. 

The solution can easily scale. 

It is stable. 

The support has been pretty decent.

View full review »

What we like about Symantec Data Loss Prevention is that it's a very good product. We never faced any problems with its performance. It has very good performance. There was this RAM issue, but it was an internal issue which we've sorted out. Apart from the RAM issue, there are no other issues with Symantec Data Loss Prevention.

View full review »

The most valuable feature of Symantec Data Loss Prevention is the ease of modification.

View full review »

The product is very robust. We can ensure that whatever we want to protect can be protected much better than Zscaler. The tool uses regular expressions, OCR, and other useful enterprise protection features.

View full review »

I've been working with Forcepoint, Symantec, and also McAfee. From my experience with the three of them, Symantec has one of the best LP solutions on offer. Forcepoint is on par with Symantec on some points, however, with respect to the granularity of how Symantec has laid it out for the customers, is much easier when compared to Forcepoint. The client also has more opportunities for customization.

With respect to the amount of intelligence that they have with respect to how they formed the DLP solution, for example, exact data matching. If you compare Forcepoint with Symantec, Symantec is more sophisticated than Forcepoint. 

I would prefer Symantec over Forcepoint. 

With respect to how Symantec Data Loss Prevention works now, it's got an edge over all the rest of the Data Loss Prevention with the exact data matching and also the partial matching. We've done a test with that with other solutions, for example, with McAfee and Forcepoint. Symantec is really more sophisticated when it comes to partial matching as compared to other solutions. There's data around this as well. There's a document about a specific confidential file. We will configure everything so that 50% of the data from a document should be scanned. The rest will be detected as black or whatever the option should be or the response should be.

With Symantec, they are capable of doing that. Only a part of the document is scanned and they are capable of detecting the amount of information that is supposedly secure and that should not be sent outside to any unauthorized users. Technically, Forcepoint can also do that, but there are certain limitations. Forcepoint can only do so much. With Symantec, it's very straightforward. You can just specify the version page and then upload the identifier, upload a sample, for example, a series of programming codes. You upload that, you give a sample, and then, just like that, you can already specify a specific response for that and it will be detected. That's also one of the samples that we were able to do with one of our clients. 

Aside from exact data matching and aside from partial matching, there is better machine learning. 

Symantec can offer a more sophisticated OCR. The optical character recognition, which we often showcase specifically for hospitals with x-rays, CT scans, and ultrasounds, is quite useful.

View full review »

I like how I have the possibility to check different channels with the same policy set.

The machine learning solution is very good. Many of our partners are not using mostly the machine learning function yet, however, the index document matching, the IDM, and the actual data matching function are the most useful. Those are very, very good functions of the DLP.

View full review »

The most valuable features of Symantec Data Loss Prevention (DLP) are the Optical Character Recognition (OCR) functionality and its automation capabilities.

View full review »

The most valuable feature is file-level DLP. It gives the possibility of creating rules; it's possible to know when a file is with the laptop or computer and servers. It can be any type of file.

View full review »

I like the software as a whole. It's a good one. The tool's really working well, and the agents are good. It's not heavy, and it's working fine with the clients.

View full review »

Users like the product because of its simplicity and the rate of detection. 

View full review »

DLP's most valuable feature is that it's more granular in terms of creating block-based policies, which gives you more options to create policies in a filtered way.

View full review »

I'm able to track everyone who is trying to send information outside the environment and to know if they are not supposed to be sending it. I'm also able to see the people who are accessing or maybe try to access the information they are not supposed to be accessing based on their level of classification.

It gives me overall control of who has got access to what and at what point and who can do what with specific information.

View full review »

DLP's most valuable feature is compliance.

View full review »

The most valuable features of Symantec Data Loss Prevention are endpoint security,  endpoint agent, and DLP. Additionally, we have been satisfied with the policies.

View full review »

The solution is very easy to use.

We find the product is easy to manage and maintain.

Their dashboard is very good. It allows us to see everything on the system and provides a good overview.

Overall, it's a very good product.

View full review »

The most valuable feature for us is the ability to backup our database, and restore it if necessary.

View full review »

Overall, it is an excellent product.

The product is stable. 

Technical support is very professional and responsive.

View full review »

The synchronize application detection policies have been very good. We are able to use it with the cloud service connectors and manage it on the cloud.

View full review »

Symantec Data Loss Prevention is the number one product in its field. It does its job well and it has all the necessary features. It is definitely better than any other solution on the market.

View full review »

We are planning to implement OCT, which we consider a valuable feature. 

We also like the maintenance pack for bug inspection. We encountered many bugs, especially with the Endpoint MP1, the MP2 being the other one. 

View full review »

There's only one policy needed to implement for all channels. That's a good point for Symantec. To have one policy for all channels has been great. You don't have a user workload. You can manage everything through a single policy.

View full review »

They have a feature on the management side called the document indexer. If you have a unique document with many near-identical versions, which have one or several values that change, while the rest of the content stays the same. You can collect 50 of those documents and put them into this feature of the Symantec DLP system. It will compress them and create a profile specifically for that document. 

For example, if you are getting a daily performance report for your company, each report will be completely the same, except some of the numerical values may change. I can collect 50 documents from the last 50 days and put them into the system to compress the documents and create a profile. I can then put this in a policy that will monitor only those documents. If an employee tries to send those documents outside without authorization, the system will block the documents. I have found the data indexer in Symantec, but I didn't find it in McAfee.

View full review »

The exfiltration capabilities are great. You can put all of these rules in the product to detect the patterns and text. You can build the rules to detect credit cards and personal information, for example. 

Technical support, by and large, is very helpful.

In general, it's a solid, dependable product.

View full review »

• Detects the percentages of text and interrogate words within documents and emails.
• Finds leaks of documents and restricted controlled information.
  

View full review »

In DLP one of the most valuable features is that you can check attachments. 

In addition, it gives me the data such that, if someone is using a browser and email, I'm able to figure out who is sending the data.

View full review »

The Network Monitor component is the most advanced on the market. Combined with the other Network DLP components (Prevent for Web, Prevent for Email, Discover and Prevent), Symantec offers one of the best network DLP solutions in the market. Another component that is very valuable from my point of view is the Data Insight component that allows the client to have full visibility into the company data.

View full review »

Symantec Data Loss Prevention can both monitor and block data at the endpoint level. It can prevent copying and encoding of HTTP data to various sites like Google, and Webex. It can also prevent data leakage by capturing and blocking various forms of data, including images, videos, and audio. Even if an end user attempts to send an image file or screenshot, it will undergo scanning. Symantec Data Loss Prevention will extract fingerprints from the image and prevent the data from being transmitted.

View full review »

The most valuable feature is the end point encryption and the solution provides good data loss prevention. 

View full review »

The dashboard, management section, and reporting are good.

View full review »

The data matching features are the most valuable due to the easy policy setup and implementation.

View full review »

• The administration part is pretty simple. 
• Detection is pretty accurate.

View full review »

The most valuable feature of this solution is endpoint security.

The network discovery is very helpful.

View full review »

The features I like most about this solution is the endpoint modules because it gives us the protection we need. 

View full review »

1) Keeps monitoring data and protects sensitive information on computers. 2) One of the very few DLP tools with machine learning capabilities that easily classifies various documents and takes care of many administrative chores. 3) With the help of the above technology, DLP is able to greatly reduce the number of false alarms. 4) Supports various types of encryption mechanisms. 5) Now available for tablets as well. 6) Has support for blocking of data copying to removable media. View full review »