Symantec Endpoint Detection and Response Reviews

The solution is mainly used for antivirus. When clients don't want a heavy agent on their system, they like to use a solution like this. This isn't a signature-based approach which isn't very effective.

Symantec has been a leader in the space. The threat intel they gather is very good. 

They have a wide presence across the globe. They often are the first to pick up on threats and malware. 

They have the capability to address zero-day vulnerabilities. 

They do have managed service offerings.

It is easy to set up.

The solution can scale well.

It is stable.

The pricing is reasonable. 

They need to improve their cloud presence. They need to keep developing prevention. Many OEMs are focusing on the detection part only.  They need to address the challenge of gathering false positives.

We do not need any extra features. 

I've been using the solution for two years now. 

The stability and performance are great. It is very stable. I'd rate it nine out of ten in terms of reliability. 

The solution is very scalable. I'd rate it nine out of ten. It extends easily.

They are leaders in this entire segment, and they have a good understanding of malware and antiviruses is very strong and their presence across the globe is very robust.

We tend to work with medium-sized organizations.

I've used CrowdStrike and they have done a good job in terms of using AI and ML behavior-based analysis. No signature is required on endpoint devices. When you scan devices, it does not decrease user performance. 

The initial setup is very easy to set up. I'd rate the initial setup eight out of ten in terms of ease of the process. 

Most customers are on-premises, although they do now have a cloud option.

The deployment generally takes a few days. 

The pricing is pretty reasonable. I'd rate it nine out of ten. 

I am a reseller. 

I'd rate the solution nine out of ten. Depending on the use case and the problem you are trying to solve, this is a decent solution. 

I've mainly found the antivirus and antispyware features valuable.

The documentation is okay as well.

I would like to see better scanning capabilities.

I've been dealing with this solution for nearly two years now.

Symantec Endpoint Detection and Response is a stable solution.

It is easy to scale it.

We have local support here, so we usually contact them, and they investigate the issue and solve it.

The initial setup was easy and took about a week.

The price is reasonable.

I would give this solution a seven out of ten.

Symantec Endpoint Detection and Response is used for the protection of endpoints.

I have been using Symantec Endpoint Detection and Response for approximately four years.

Symantec Endpoint Detection and Response is stable.

The scalability of Symantec Endpoint Detection and Response is good.

The technical support from Broadcom has given us some challenges. Previously, they had experienced people who handle the end user's query and escalate the problems within a good timeframe. Since Broadcom took over, we have not been satisfied by the way they are handling the end user's query or end-user support.

Symantec Endpoint Detection and Response

We have a partner that has helped us with the implementation, configuration, and policies.

Determining if this is the right solution for someone depends on the region or what type of partner they have. Broadcom user support might be different in your region but we are in the Asia Pacific region is not good. I don't know who is providing the proper support.

I rate Symantec Endpoint Detection and Response a seven out of ten.

It's part of the endpoint and is an EDR product. There are many use cases we're looking at, including power share and general detection.

The initial setup is quick and easy.

We found the product to be scalable.

The stability is good. It's reliable. 

The pricing is good.

Technical support is okay.

It's easy to add hash files. 

I have not picked up anything that is lacking in terms of features while using this tool. 

They do need to minimize the number of agents installed on a server.

The response time for technical support takes too long. 

I've been using the solution for two and four months years now. 

The solution is stable. There are no bugs or glitches and it doesn't crash or freeze. it's reliable. 

The solution is scalable. That's not a problem. 

We have about 2,500 endpoints. It's actually even more than that as it is deployed on the server as well. 

While technical support is great, it does take up to two days before I get a response. They are a bit slow.

The implementation process was quick and easy, and we didn't need a DBU, a database administrator.

Two people handled the initial setup it was done over one day.

Our team handled the deployment in-house. We didn't need any outside assistance. 

The cost of the solution is affordable and manageable. 

We are a customer and an end-user.

I'd rate the solution an eight out of ten.

Symantec Endpoint Detection and Response is used for threat protection.

There are times when Symantec Endpoint Detection and Response tags an executable as malicious when it is trying to get executed on the machine. In this case, it prevents the execution and it gives you a process view of things where you can look into what has happened and whether it is a genuine process trying to access some system activities, or it's a malicious one. Depending upon the process, it gives you a clear identification, and we can do the containment from the interface itself and isolate the machine from the network. The process review on network isolation is good.

Symantec Endpoint Detection and Response could improve the reporting. It is very difficult to create reports from the user interface.

I have been using Symantec Endpoint Detection and Response for approximately six months.

Symantec Endpoint Detection and Response is a stable solution.

The stability of Symantec Endpoint Detection and Response is good.

We have the solution running on 3,000 endpoints. After two years after we have more clients, we might increase usage.

I have not contacted support. The administrator of the platform is taking care of the support for us. They might have contacted the support but I have not.

I have not used another solution previously.

The initial setup of Symantec Endpoint Detection and Response is straightforward.

We have three people that are supporting the solution.

I have evaluated McAfee.

I would recommend this solution to others.

I rate Symantec Endpoint Detection and Response an eight out of ten.

It is mostly used for malware detection and antivirus purposes.

The unpredictability of the pricing is a cause of concern.

It would be good if it can anticipate zero-day attacks. I don't know how it can be done and if it is even a feature of this product.

I have been working with this solution for more than three years. 

It is stable.

We haven't had any issue with scaling the product. Its scalability has not been an issue.

I have used Sophos in another company, but that was almost 10 years ago.

I was not a part of the installation team. When I arrived, it was already there.

Of late, because of the Broadcom purchase, its price has been increasing.

I would rate it a seven out of 10.

We were using this product for our endpoint protection.

In Symantec, we have found that the most important feature is Application and Device Control. You can customize it to help stop attacks, and we have done that many times in our different environments.

Some fine-tuning is required because we often see false positives.

I had been working with Symantec Endpoint Detection and Response for more than six years. However, we are no longer using it because we are transitioning to another product.

This is a stable solution in our experience. We have read in the community communications that there are some corruptions that occur, which is something that should be fixed.

This product is scalable. We have approximately 3,700 users.

Technical support is not as good as we expect, and resolving problems should be more timely.

We are currently doing a PoC with Trend Micro. We are looking at Apex One and Deep Security. We are switching because we are interested in using a central management console in a cloud-based deployment.

Symantec has a cloud-based solution, but it not compatible with all of the departments in our organization.

I also have experience with the Websense solution.

Installing on a Windows Server was straightforward.

We have two people for maintenance.

We are currently using the trial version of the latest release. The price is really high and it should be lower.

I would rate this solution a seven out of ten.

The primary use case of this solution is for protection.

The most valuable feature is that the same agent can act as the endpoint detection and response agent. You don't need to deploy an additional agent. As you do with other solutions.

If you try to deploy a new solution you have to replace the existing agent with a new agent, but with Symantec, you can use the same agent.

Reporting is a major issue, as it is not user friendly. It's the biggest challenge we are facing. I have raised this issue multiple times.

With virus detection, if one OEM vendor is detecting the virus at 1:10 am, within 24 hours all others will detect it. For example, Symantec will detect the virus, then McAfee will detect it then Trend Micro, all within 24 hours, everyone will have it covered.

In the next release, I would like to see the option to customize the report as per our needs, and better reporting in general.

I have worked with all Symantec products. Detection and response is a new technology that they have come up with and I have been working with it for two years.

If the solution is updated regularly then there is no challenge with stability.

This solution is definitely scalable.

The technical support is very bad. It's been outsourced. The level one support does not have the expertise to support people properly, from a technical perspective. 

I'd say that the level of understanding has been reduced as a result of outsourcing to a third party.

Previously, I was working with Trend Micro. Before the detection and response were included, I would have recommended Trend Micro. However, Symantec Endpoint has now taken the lead.

Endpoint detection and response have not been developed into Trend Micro.

The initial setup is straightforward. It's not complex. You will have to license it, then you are good to go.

If you try to establish the replication then you should plan it properly. If you do proper planning then it manages well. As an example, with one of my customers, I updated 3,000 machines that were in remote sites in less than a month's time.

The price is okay, but it really depends on the customer's requirements.

I am a user of Symantec as well as an admin with the Symantec support team. I was the technical support account manager and I would support other customers.

Symantec release updates two or three times per day. If you have a low bandwidth it will never get updated, although there are options to resolve this.

First, you have to decide on your requirements and what features you are looking for, then you can consider any endpoint detection and response solution.

There are good products on the market; there is one in particular that is cloud-based, where you don't need a single investment, but you will need to have good bandwidth. 

Before looking for any solutions the planning must be done.

Overall, this is a good product but it is still in the early stages and there are some improvements that need to be made.

I would rate this solution an eight out of ten.