Try our new research platform with insights from 80,000+ expert users
Symantec Endpoint Detection and Response Logo

Symantec Endpoint Detection and Response Reviews

Vendor: Broadcom
3.8 out of 5
Leave a review

What is Symantec Endpoint Detection and Response?

Symantec Endpoint Detection and Response (EDR) is a powerful security solution designed to help organizations proactively detect, investigate, and mitigate advanced threats across their endpoint environments. As part of Broadcom's cybersecurity portfolio, Symantec EDR provides comprehensive visibility into endpoint activities, enabling security teams to quickly identify and respond to threats that evade traditional defenses.

Get the Symantec Endpoint Detection and Response Buyer's Guide and find out what your peers are saying about Symantec Endpoint Detection and Response, CrowdStrike Falcon, Microsoft Defender for Endpoint and more!
Symantec Endpoint Detection and Response is the #48 ranked solution in EDR tools. PeerSpot users give Symantec Endpoint Detection and Response an average rating of 7.6 out of 10. Symantec Endpoint Detection and Response is most commonly compared to CrowdStrike Falcon: Symantec Endpoint Detection and Response vs CrowdStrike Falcon. Symantec Endpoint Detection and Response is popular among the large enterprise segment, accounting for 53% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 9% of all views.
Buyer's Guide
Symantec Endpoint Detection and Response
March 2026
Get the report
Helped 885,264 peers since 2012

Featured Symantec Endpoint Detection and Response reviews

Read more reviews

Symantec Endpoint Detection and Response mindshare

As of March 2026, the mindshare of Symantec Endpoint Detection and Response in the Endpoint Detection and Response (EDR) category stands at 0.7%, up from 0.5% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Mindshare Distribution
ProductMindshare (%)
Symantec Endpoint Detection and Response0.7%
CrowdStrike Falcon8.4%
Microsoft Defender for Endpoint6.9%
Other84.0%
Endpoint Detection and Response (EDR)

PeerResearch reports based on Symantec Endpoint Detection and Response reviews

TypeTitleDate
CategoryEndpoint Detection and Response (EDR)Mar 28, 2026Download
ProductReviews, tips, and advice from real usersMar 28, 2026Download
ComparisonSymantec Endpoint Detection and Response vs CrowdStrike FalconMar 28, 2026Download
ComparisonSymantec Endpoint Detection and Response vs SentinelOne Singularity CompleteMar 28, 2026Download
ComparisonSymantec Endpoint Detection and Response vs Microsoft Defender for EndpointMar 28, 2026Download
Suggested products
TitleRatingMindshareRecommending
CrowdStrike Falcon4.38.4%97%138 interviewsAdd to research
Microsoft Defender for Endpoint4.16.9%95%213 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Valuable features of Symantec Endpoint Detection and Response include ease of use, integration with antivirus, scalability, network isolation, and device control. It effectively manages endpoint agents without additional installations, providing threat hunting, automated updates, and strong detection and response capabilities. Users appreciate its stability, advanced threat protection, and ability to conduct large scans efficiently. The interface is user-friendly, with reliable global settings, effective deception technology, and quick deployment options both on-cloud and on-premises.
  • "The most valuable feature of Symantec Endpoint Detection and Response is its ability to conduct large scans on the endpoints without affecting the network."
  • "There are times when Symantec Endpoint Detection and Response tags an executable as malicious when it is trying to get executed on the machine, prevents the execution, and gives you a process view of things where you can look into what has happened and whether it is a genuine process trying to access some system activities, or it's a malicious one, giving you a clear identification so you can do the containment from the interface itself and isolate the machine from the network."
  • "The implementation process was quick and easy, and we didn't need a DBU, a database administrator."

Room for Improvement

Symantec Endpoint Detection and Response faces challenges such as a complex interface, limited scalability, and insufficient network forensics features. Reporting and integration capabilities are often critiqued as well. Users highlight the need for improved customer support post-acquisition by Broadcom. Enhancements to pricing transparency, cloud presence, and AI-driven analytics would be beneficial. Adding functionalities like zero-day attack anticipation and better documentation can further strengthen user experience.
  • "In the future, it would be nice to have playbooks in the tool, to allow for some of the common activities to be automated."
  • "Symantec Endpoint Detection and Response could improve the reporting. It is very difficult to create reports from the user interface."
  • "The response time for technical support takes too long."

ROI

Users reported a significant increase in cybersecurity efficiency and a decrease in data breach incidences after implementing Symantec Endpoint Detection and Response. The investment led to improved threat detection, reducing response times and enhancing data protection. Cost savings were noted from reducing manual work and mitigating potential breach damages. The tool offered comprehensive protection features, which allowed for better resource allocation and significant reductions in downtime caused by security threats.

Pricing

Symantec Endpoint Detection and Response pricing is mixed. Many users highlight the cost-effectiveness of cloud deployment, while on-premise options are seen as expensive. Pricing varies depending on the number of endpoints and usually includes maintenance and support. Some find it affordable, especially when compared to competitors, although others see it as premium due to Broadcom’s pricing increase. Licenses are often priced yearly, with variations for educational needs and contract options.
  • "Compared to the tools of competitors, Symantec Endpoint Detection and Response is a cheaply priced product."
  • "The product is cheap."
  • "Symantec Endpoint Detection and Response is expensive."

Popular Use Cases

Healthcare, government, financial institutions, and sectors like banking and telecom primarily use Symantec Endpoint Detection and Response for endpoint protection against malware, data leaks, and zero-day threats. It aids in detecting threats, preventing phishing, and provides advanced threat protection. Clients utilize it for antivirus and EDR purposes, enabling proactive security measures on devices such as laptops, desktops, and phones. Users value its powerful capabilities and recommend it to clients.

Service and Support

Symantec Endpoint Detection and Response customer service and support present mixed experiences. Many find technical support responsive, reliable, and available, sometimes resolving issues quickly. However, some report delays, lack of expertise, and issues since the Broadcom acquisition. Some acknowledge improvements post-merger, although queries and escalations may suffer. Users notice slower response times and inadequate handling post-outsourcing. Despite the challenges, some praise support, describing it as helpful and efficient.

Deployment

Many users found Symantec Endpoint Detection and Response's initial setup to be straightforward. Licensing is required, and planning helps manage deployment smoothly. For some, installation took a couple of days to a few weeks, and complexity varied with integration needs. Technical knowledge was necessary, and larger deployments needed extensive team collaboration. Occasionally, users needed external expertise for seamless implementation, especially when integrating with existing systems or using on-premise or cloud versions.

Scalability

Symantec Endpoint Detection and Response is praised for its strong scalability capabilities, accommodating various deployment needs, whether on-cloud, on-premises, or hybrid. It successfully manages thousands of users across diverse organizations. While most feedback reflects positive experiences with scaling, a minority express concerns about flexibility. Its global presence and understanding of malware bolster its reputation, though user ratings on scalability range widely.

Stability

Users generally praise Symantec Endpoint Detection and Response for its stability, noting it is reliable, free from bugs or crashes, and offers good performance. Regular updates contribute to its smooth operation. While earlier versions had issues, the current version shows significant improvements. Community comments mention some instances of corruption, which require attention. Stability ratings range from two to nine out of ten, with most users agreeing on high reliability.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Symantec Endpoint Detection and Response Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business13
Midsize Enterprise7
Large Enterprise7
By reviewers
By visitors reading reviews
Company SizeCount
Small Business46
Midsize Enterprise20
Large Enterprise74
By visitors reading reviews

Top industries

By visitors reading reviews
Financial Services Firm
9%
Manufacturing Company
9%
Comms Service Provider
9%
University
6%
Retailer
6%
Government
6%
Marketing Services Firm
5%
Healthcare Company
5%
Recreational Facilities/Services Company
5%
Computer Software Company
5%
Outsourcing Company
4%
Transportation Company
4%
Legal Firm
3%
Performing Arts
3%
Construction Company
3%
Insurance Company
3%
Educational Organization
3%
Wholesaler/Distributor
2%
Energy/Utilities Company
2%
Logistics Company
2%
Media Company
2%
Hospitality Company
1%
Security Firm
1%
Non Profit
1%
Real Estate/Law Firm
1%
Aerospace/Defense Firm
1%

Compare Symantec Endpoint Detection and Response with alternative products

Go!

Learn more about Symantec Endpoint Detection and Response

Symantec EDR leverages machine learning, behavioral analysis, and global threat intelligence from Symantec's vast network to detect sophisticated threats, including zero-day attacks, ransomware, and advanced persistent threats (APTs). This allows organizations to identify malicious activities early and respond swiftly to mitigate potential damage. The solution offers automated response options that enable security teams to contain and remediate threats quickly.

Symantec EDR provides detailed forensic capabilities, allowing security analysts to dive deep into endpoint data, investigate incidents thoroughly, and understand the scope and impact of attacks. Features such as timeline analysis, incident graphing, and the ability to isolate endpoints enhance investigative efforts and support effective remediation strategies.

With its centralized management console, Symantec EDR offers visibility across the entire endpoint environment, regardless of the operating systems or whether endpoints are on-premise or remote. Symantec EDR seamlessly integrates with other Symantec security solutions, enhancing its detection capabilities and enabling a unified approach to threat management. Its scalable architecture ensures that businesses of all sizes can benefit from its advanced security features without compromising performance.

Quickly discover and resolve threats with deep endpoint visibility and superior detection analytics, reducing mean time to remediation. Overcome cyber security skills shortages and streamline SOC operations with extensive automation and built-in integrations for sandboxing, SIEM, and orchestration.

Fortify security teams with the unmatched expertise and global scale of Symantec Managed Endpoint Detection and Response services.
Roll out Endpoint Detection and Response (EDR) across Windows, macOS, and Linux devices using Symantec Endpoint Protection (SEP)-integrated EDR or a dissolvable agent.

Related questions

  • 330
What is the biggest difference between EPP and EDR products?
  • 69
What is the difference between EDR and traditional antivirus?
  • 42
What is your recommendation for a 5-star EDR with low resource consumption for a financial services company?
  • 47
Which is the best EDR for a logistics company with 500-1000 employees?
  • 88
What is the best EDR or XDR product for a company with 9000 employees?
  • 121
What to choose: an endpoint antivirus, an EDR solution or both?
  • 197
Do we need to use both EDR and Antivirus (AV) solutions for better protection of IT assets?
  • 55
How does EternalBlue work?
  • 52
What are the best on-premise Endpoint Security solutions for a Tech Services company with 10,000 employees?
  • 141
Which is better for Endpoint Security: EDR or XDR solutions?

Product Categories

Product Categories
Endpoint Detection and Response (EDR)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Symantec Endpoint Detection and Response Logo
CrowdStrike Falcon vs Symantec Endpoint Detection and Response
Microsoft Defender for Endpoint vs Symantec Endpoint Detection and Response Logo
Microsoft Defender for Endpoint vs Symantec Endpoint Detection and Response
Cortex XDR by Palo Alto Networks vs Symantec Endpoint Detection and Response Logo
Cortex XDR by Palo Alto Networks vs Symantec Endpoint Detection and Response
SentinelOne Singularity Complete vs Symantec Endpoint Detection and Response Logo
SentinelOne Singularity Complete vs Symantec Endpoint Detection and Response
IBM Security QRadar vs Symantec Endpoint Detection and Response Logo
IBM Security QRadar vs Symantec Endpoint Detection and Response
Fortinet FortiEDR vs Symantec Endpoint Detection and Response Logo
Fortinet FortiEDR vs Symantec Endpoint Detection and Response
Huntress Managed EDR vs Symantec Endpoint Detection and Response Logo
Huntress Managed EDR vs Symantec Endpoint Detection and Response
Elastic Security vs Symantec Endpoint Detection and Response Logo
Elastic Security vs Symantec Endpoint Detection and Response
Trellix Endpoint Security Platform vs Symantec Endpoint Detection and Response Logo
Trellix Endpoint Security Platform vs Symantec Endpoint Detection and Response
WatchGuard Firebox vs Symantec Endpoint Detection and Response Logo
WatchGuard Firebox vs Symantec Endpoint Detection and Response
TrendAI Vision One vs Symantec Endpoint Detection and Response Logo
TrendAI Vision One vs Symantec Endpoint Detection and Response
Check Point Harmony Endpoint vs Symantec Endpoint Detection and Response Logo
Check Point Harmony Endpoint vs Symantec Endpoint Detection and Response
Kaspersky Endpoint Security for Business vs Symantec Endpoint Detection and Response Logo
Kaspersky Endpoint Security for Business vs Symantec Endpoint Detection and Response
Rapid7 InsightIDR vs Symantec Endpoint Detection and Response Logo
Rapid7 InsightIDR vs Symantec Endpoint Detection and Response
WatchGuard EPDR vs Symantec Endpoint Detection and Response Logo
WatchGuard EPDR vs Symantec Endpoint Detection and Response
See all alternatives
 
Symantec Endpoint Detection and Response Reviews Summary
Author infoRatingReview Summary
IT Director at Al Akhawayn University4.0We use Symantec Endpoint Detection and Response to protect all our devices from phishing emails. While it operates smoothly, it lacks integration features. Our return on investment is positive, though competitors offer better integration but are expensive.
Information Security Specialist at IHV-Nigeria4.5I use Symantec Endpoint Detection and Response to secure endpoints, valuing its ease of use and strong support. The solution lacks MDM functionality under its current license, but despite evaluating alternatives like SentinelOne and Sophos, Symantec best met our needs.
Security Technical Manager at Modaberan Fanavari Pasargad4.0I use Symantec Endpoint Detection and Response to prevent network attacks and ransomware. It's user-friendly and offers good reports, although the GUI needs improvement. While the product provides comprehensive reports, more detailed usage reports would enhance its functionality.
Product Manager at Arkanet4.0I've used Symantec Endpoint Detection and Response for five years; it's strong in threat hunting and log gathering, but difficult to sell due to an unfriendly partner program, so we often prefer alternatives like ESET or Secure.
Threat Analyst at SA RVE Bank4.0We use Symantec Endpoint Detection and Response for its network isolation and virtual machine consistency, enhancing security. However, the reporting engine needs improvement for better filtering and integration with tools like Power BI, and AI-driven analytics would be beneficial.
Consultant at CNS Engineering4.5I use Symantec Endpoint Detection and Response for threat detection, as it effectively identifies malware attacks with its quick response and investigation features. However, its scalability, stability, and investigation capabilities need improvement for better overall performance.
System Administrator at Aljazera Market co4.5We use Symantec Endpoint Detection and Response primarily for endpoint detection and response to monitor security threats. It is reliable and scalable, but it lacks in shell features, web control, and automation, prompting consideration of other platforms soon.
IT Infrastructure Manager/Sr. System Administrator at EClerx Services Limited4.5I use Symantec Endpoint Detection as an antivirus. It meets my expectations, is stable, scalable, and easy to set up. I highly recommend it with a 9/10 rating, though I wish it was more secure.