Symantec Endpoint Encryption Reviews

We use it on laptops and desktops. We use it for email, file and folder, and command-line encryption depending upon the customer's needs. 

We are a service provider for Symantec products. We also use it in our company. We have around 50 to 60 users.

Disk encryption and file and folder encryption are the most valuable and used features.

It is also very well integrated with Symantec Messaging Gateway and Symantec DLP, which is helpful in protecting any kind of information that goes outside. Symantec DLP catches an email and sends it to the encryption server. The encryption server encrypts the email and intimates to the user that confidential information is being sent out. The administrator can then take appropriate action.

Its remote deployment should be improved. Currently, there is no remote deployment for Symantec Endpoint Encryption. You have to install it manually.

There are some issues with AD integration and the time taken to reflect a password on the Endpoint Encryption Manager when a new user has changed the password, but they are already working on these issues, and these will be resolved in the next release.

I have been working with this solution for 14 years.

Currently, their support is less and slow. If I open any case, it is handled after two or three days, but their support will improve in the next two or three months.

The initial setup is straightforward. The deployment duration depends on your hard drive. It can take 5 to 10 minutes, half a day, or one day depending on the size of the hard drive. For 80 GB of data, it will take 7 to 8 hours depending on the hard drive and the RPM of the hard drive. For an SSD, it will take less time to encrypt the data.

I would definitely recommend this solution. I have seen a lot of endpoint encryption products, and Symantec is the best because it doesn't hamper the performance of the machine. If you use McAfee, it hampers the performance of the machine.

I would rate Symantec Endpoint Encryption an eight out of ten. Right now, there is an issue going on with their support. That's why I'm not giving it a ten out of ten.

We primarily use the solution for endpoint security.

Symantec Endpoint is good. We have been using it for more than five years and haven't had any trouble with it. It protects us without any issues.

In India, I am based out of Bangalore and my corporate office is in Lucknow, and we never had any compromises on the security site. Our firewall is very strong and all the devices are protected by Symantec. It does a really great job.

The solution is great for large-scale deployments.

The solution is pretty low maintenance and you rarely need the assistance of technical support.

The solution does slow down the device a little bit, once it's installed.

The Windows 10 comes with Defender. It has its own security layer. It's supposed to protect desktops and laptops running Windows 10. Right now, our question is, what is the additional protection we get from using any other antivirus or other packages on these machines? Symantec isn't really making it clear how they add to or enhance the level of protection we'd get from them if we kept them with Defender already on Windows 10.

We've been using the solution for five years.

The stability is good in the sense that we've never been compromised. It just runs in the background and is scanning. However, when scans do happen, it can slow down the machine. That's typical, and it only does it a little bit.

The solution is deployed on a large scale as we operate 1,000 locations in India and it's at all of them. You can't just protect the branch office, you need to protect every device in every office.

I've never needed to contact technical support.

The corporate office is in Lucknow, and I'm the technical director of a corporate group. I operate from Bangalore. I don't actually deal with the vendors or with the technical support team. My corporate team in Lucknow may be talking to some technical person at Symantec, however, I'm not aware of that. My responsibility is to advise someone on the technology side, so I heavily depend upon the reports and all that's available in public domain. 

I'm not sure what was evaluated beforehand. However, we are evaluating other options currently.

In September, our Symantec license is expiring, so we are looking at if there's anything else in Symantec's product library that we should try or if there are any better options than we should consider. Currently, I'm trying to download some reports to compare Symantec with other solutions as part of some initial research.

We've looked at a few different solutions. We hear that end devices like laptops or desktops are a bit slow when you have Norton installed. AVG looks to have fewer resources although it looks to be a little bit quicker than Norton and doesn't bring your system speed down. Windows 10 also already comes with Defender, so protection would be built right in.

We only use the solution on our own endpoints for our own company and don't necessarily deploy it for clients.

There are a lot of companies in India who are promoting these types of products. They may have quite a good idea about the packages and so on, what you can do, what you can't do and so on. Everyone seems well educated on it. It is not a very complicated solution. It's basically solid. 

You don't need that much technical support. Whether it's Symantec or TrendMicro or AVG or any other package it's all pretty self-sustaining. You'll simply notice it when you have a compromise, at which point you get alerted and then you look at what went wrong. Until you are compromised, you're happy with the product.

I approve of Symantec Endpoint. I've been happy with the solution for the last four or five years. There have been no issues and we have not been compromised until now. I'd definitely recommend Symantec.

I'd rate the solution eight out of ten. It does tend to slow down a machine when it does the scan. However, I've noticed the same slow down on competition like Norton or AVG and it doesn't slow anything down near as much as Norton.

We are currently working with companies in the financial sector which is why we are using this on-premises solution, because their compliance policies do not allow for cloud-based servers. Our clients are using the full encryptions. They're using Symantec Endpoint Encryption to secure their data. If someone loses their laptop, for example, they can wipe their disk and save their data from ending up with a third party.

I like all the features in Symantec Endpoint because they provide four or five features for end-users. They have three consoles for managing the data. Symantec also provides the licensing with the software. There is no need to enter the licensing or install files manually because it's bundled with the software. This is a good feature. Also, you get updates and other encrypted files easily. I also like the manage keys.

There is no need to add any features, because they are developing their own encryption methods.

Currently, all the software has been managed by BitLocker, but Windows does not suit every encryption management software. 

There are many apps that do that kind of thing. All the features are there so I don't think that needs to be on encryption software. I'm working with some end point management software and they are managing the software and connections, what can be installed and what is restricted, etc... But more features need to be included in the encryption software.

I have been using Symantec Endpoint Encryption for one year.

Their scalability is good. They are using three consoles and have full-consoling end point users for our solutions.

On a scale of one to ten I would rate Symantec Endpoint an eight.

We are using three of the product's modules. We are using encryption for messaging, we are using encryption for shared folders and we are using encryption for our hard drives.

The product has helped our organization by providing encryption options. For example, it is better to have encrypted messages because it is more secure. With the module for the shared folders, we can decide to use it as an addition to our active directory. So we can give users different rights within the active directory. The different set of rules we create in PGP is like an add-on to our active directory and again provides more secure access and restriction of access to some information.

The most valuable features are the messaging features and shared folders.

The hard drive encryption needs to be improved. There is an issue, for example, where we cannot easily do Microsoft updates. The updates stop before the PGP reboot is complete. So when PGP encryption from the hard drive is active, we can't update Microsoft Windows. As a work-around, we have to decrypt the encrypted hard drive, which takes an hour every time, and then do the updates and then encrypt again. It is time-consuming and there must be a better solution.

One other improvement I would like to see is the ability to get support directly from the seller. There should be a better way to open tickets directly from the seller to eliminate delays and have a better way that we can contact them and get help when we need it. Technical support is a problem.

We have been using Symantec Endpoint Encryption since 2013, or about six years.

It is not a very stable product based on our experience with how we use it. It is mostly the disk encryption issues and how long it takes to do Microsoft updates. So we actually open some tickets at technical support and also with the integrator who initially installed the system for us. So currently we are dissatisfied and we are looking at BitLocker instead of the PGP only for drive encryption. As it is a Microsoft product, it makes sense that it will work better with Microsoft updates.

The scalability of the product is fine. With PGP servers we can link the Windows account, active directory account with PGP so when I do an installation on a computer, all I have to do is open the profile of the new employee's machine and it is linked to a server. It doesn't matter how many people I link in. We currently have 40 people and the product is installed on all our computers. Most people in our company are consultants who work on the premises of our clients. They are not located within our offices.

We have contacted technical support in the past with specific issues but we haven't received any answer yet. So my impression is naturally that the technical support is not great.

We are currently looking at Kaspersky Endpoint Encryption for Business Events. I am actually doing testing with a free license that we have access to for 30 days. We are doing this in order to look at the value of the solution, functionalities of the software and if it can apply to our architecture.

Right now we are using Kaspersky but on individual bases. It's not centralized, so each computer has its own Kaspersky security model, but what we want is to be able to manage all the computers in our infrastructure from a central point entry. So that's why we are looking at that specific software. Symantec is not solving all our issues sufficiently.

We are also considering looking into BitLocker to perhaps replace the disk encryption module in Symantec Endpoint Encryption because it is not easy to use.

I wasn't with the company when the product was installed, but I presume the initial setup was complex. The deployment of the product usually takes very little time. I installed the software for new computers and I encrypt the disks. That is all that has to be done so the installation of the product is very quick. It is the encryption of the disk that takes time.

The installation was done by a consultant in 2013.

I am not sure of the licensing fees. I presume there are packages based on what you use. We have three modules (for messaging, disk encryption and shared folders). I believe there are five modules, but we have three out of five. The price scales depending on the number of modules that we use.

My advice to others who are considering this solution is to make sure that they do some testing if they are using disk encryption as we have had problems with updates. Our problem may depend on the version of Windows. So it may be different for other people. I didn't choose to use encryption before, so I learned a lot about the performance and the principle of encryption when it comes to messaging and share folders. So that part is good.

On a scale from one to ten where one is the worst and ten is the best, I would rate Symantec Endpoint Encryption as a six currently. The main problem for us is working with Microsoft updates within PGP. This should be possible because BitLocker is currently doing that which might be a reason we would switch. Updates for Microsoft OS are very complicated for us right now.

The primary use case of this solution is for endpoint Security for the Government of the Ministries that we are employed in.

Their cloud features such as Cloud Endpoint security, ransomware modules, malware, and other modules are very effective.

The main concentration has been on upgrading the cloud version with new features and cloud security. 

They are mostly providing the cloud version and stopping with the on-premises version. I think that they should improve the on-premises version to include the manageability and simplicity that is available on the cloud. This should all be included in the on-premises version.

Currently, the on-premises version is tricky and difficult. 

They should be looking at the on-premises deployment and simplifying it.

In the next release, I would like to see the uninstall feature be more advanced.

This is a stable solution. It is more stable than most solutions.

Even with other solutions, the PC slows down. All those things are there, but it needs to be worked out on a combination. The Endpoint security system always slows down the PC. For the most part, it has been good.

I can't comment on the scalability because I have not deployed on more than one thousand endpoints per customer.

We have five to six customers with each having six to seven hundred endpoints. Our customers' IT supporters have outsourced us.

The technical support is good. When you submit a tag, the support you receive is very good.

Previously were using Trend Micro Endpoint. We chose Symantec Endpoint because it is better.

Compared to cloud the initial setup is complex.

The cloud version is easy to set up. It's one gateway and you connect it and it's pretty much a configured service on the cloud.

Generally, the deployment takes a month for seven hundred endpoints per customer. This includes installing endpoints for customers.

To frame the policy and set up on-premises, it's approximately a week.

The cloud implementation is straightforward. We were able to implement it ourselves, but for the on-premises version, we needed support.

I would recommend cloud implementation, rather than on-premises if it is possible.

The on-premises deployment model will lead you to have errors.

I would rate this solution an eight out of ten.

The encryption feature is very good.

As we're just in the testing phase, we haven't explored many other features in-depth yet.

When we started at that time, the engineers configured the solution only for our roaming users. Now, we have to reconfigure to SQL because we have almost 10,000 clients. We have to do this through SQL because we cannot keep a record of each client.

The agent can be improved on the solution. Right now, we have an Endpoint Protection agent as well as an encryption agent and another for the DLVs and other services. We would prefer a single agent for the entire product.

Endpoint Encryption should be the same as Endpoint Protection. However, for security purposes, we don't want to show to the client the hard drive encryption and all of those related features. If the solution could remove this visibility on the client level and keep it on the control level of the server, that would be better. We don't want to show to the user the security policies.

We haven't had any issues with the stability of the solution.

The scalability of the solution is fine.

We haven't had any issues with the solution yet, so we've never had to contact technical support.

The initial setup is not complex. It's very easy. Deployment time depends on the client and on the machine. Some machines take 24 hours, some machines take three days. Some machines even take up to a half-day. It depends on the hardware.

We had assistance with the integration.

We're using the on-premises deployment model.

I would rate the solution eight out of ten.

The primary use case is for protecting accounts.

Protecting accounts.

We would like some advanced security protection features.

The stability has been good, so far.

The scalability is good.

The technical support is good.

The initial support was straightforward.

The solution has helped to increase staff productivity.

It is a good product.

The primary use case is to protect from data loss prevention in my company.

It has reduced the number of incidents related to the loss of information.

The precision that it has to identify all my assets.

I would like them to improve their support.

The stability is really good and nice. We don't have any issues with the stability, in particular. 

You can get any size or use it in any size organization. So, scalability is not a problem.

It's a bit difficult to get good support. Their response times are really bad. I don't like it.

The initial setup was straightforward. It was fast, easy, and not intrusive on my company.

Symantec did the deployment.

This solution has helped to increase staff productivity.

The licensing costs yearly are $5000.

We had three vendors on our shortlist. I choose this vendor because it was a leader at that time, and it still is the leader right now. 

I am happy with it and not looking to change vendors.

Try to look at many vendors. There are a lot of papers about solutions, especially this one. So, it's really nice. 

I started my security program four years ago, and we now have a mature security program. We added this solution as the last part of our security program.