Anytime you are managing multiple servers and workstations on a network, having a good Security Center to assist with that management is critical. Kaspersky Security Center provides that and gives the administrator the tools and reports necessary to properly manage and monitor these systems across a network. This is a VERY useful tool and it makes my job much easier.
We have found that Symantec Endpoint Security is better suited to newer systems running faster processors and more than 8GB RAM otherwise the client agent takes up too many resources and slows the system down. However, if you have a reasonably modern fleet of systems it does everything you would expect from an Endpoint Protection solution and works well as part of a multi-layered cybersecurity policy.
Removing dead clients from the console. This is nearly impossible to do, and makes keeping the console clean a very difficult task.
Poorly tested versions are sometimes released that cause serious issues for users. This ranges from browsers malfunctioning to BSOD errors.
Malware detection is good but not great. We are not confident in SEP by itself to neutralize malware threats. It's detection rate just isn't high enough for next generation and zero day threats.
The product is stable and accurate in detecting security threats. There are very few or no false positives in detecting security threats or unusual behavior and has very sharp heuristics. The product does the job very well including saving us money in getting 3rd party patch management tools as the business is already using Microsoft System Center Configuration Manager which is Microsoft product specific and the product patches these third party products e.g Adobe Flash Player
Continued satisfied support. The saying "if it ain't broke, don't fix it..." comes to mind. It works, and we'll continue to use it and support Symantec.
I will give Kaspersky a score of 9 out of 10 for scalability, as it allows businesses to easily expand their security infrastructure. This means it won't cost them a lot to add further protection and security. It won't also require them to purchase other hardware and services for their required protection.
The rating reflects Symantec Endpoint Security's ability to balance enterprise grade security with user-friendly workflows or advanced configurations require extra effort. For most organizations, the streamlined management and robust automation justify the high score. Management GUI is old fashined and need to be improve. Older devices may experience slowdowns during full scans without careful configuration.
I've used the on-premise server. I've only experienced one time that we couldn't open the console, and that was a server issue. It seems to be a dependable solution. It's there, and it's stable.
We've used it for years and the software is easy to use. The dashboard is easy to read, and you can easily figure out where to go to troubleshoot or deploy software. Symantec is there for emergencies like backup restoration or file retrieval. It's pretty low maintenance. Symantec is there when your IT infrastructure needs it
Users don't notice any slowdown with the antivirus running on their systems. There have been issues when the systems have missed a scheduled scan, and it was checked to run at [a] first available time, they will start a full scan at startup. This has caused some lag. Normally there are also some issues with the workstation, but it is something to note.
I give the maximum grade because we have no complaints; we never had any failure, serious error, and serious threat to the company. All of its features work very well. The great advantage of having a product supported by an industry-leading security company is that regularly updated security protocols will protect the system against all emerging threats.
Support is completely awful! You can never get anyone to help if you can even find a number to call. The support web portal is a joke and their response time if you're even able to submit a ticket is ridiculously slow.
Make sure to provide awareness campaigns on changes that will be implemented and WHY the business is doing it and the benefits reaped. Benefits reaped is very important for the justification of why things have to change and emphasizing the importance of security. This will reduce user disgruntlement and total bitterness on use of their workstation or laptop
I've used the cloud version of CarbonBlack and Bitdefender. They both say they automatically scan files as soon as they appear on your computer. The user/administrator is left to trust that the technology works. With Bitdefender, it at least allows an on-demand scan, but it still never reports to the user if the file was clean. Kaspersky automatically scans and notifies the user that it has been scanned AND the results of the scan. In IT we know we can't always trust the technology to perform as designed. I NEED confirmation to feel at ease. Kaspersky makes it easy to run an on-demand scan of a workstation if there is suspicion of an infection. Another thing is that I have not [seen] in Bitdefender, and I know CarbonBlack does not provide inventory information for the administrators like Kasperky. Kaspersky gives detailed information about the systems it scan and lists every software installed. You can even filter and search for specific installations in your network through the Kaspersky Server Center (KSC). It helps know what licenses are used and where.
Symantec Endpoint Security seems to be a more mature solution compared with CrowdStrike, particularly when CS was just recently getting their USB blocking functionality rolled out for macOS endpoints this year. Another differentiator with CrowdStrike is that Symantec ES still provides both on-demand scanning & real-time signature-based detection in addition to solely real-time machine learning detection whereas on-demand scanning and signatures are not available on CrowdStrike. This means there is a doubt as to whether we can use CS to comply with some of our PCI DSS obligations which specifically require the use of signature-based antivirus solutions.
You can create groups and create different policies for each group. You can customize many parts of the software before it is deployed. You can create different tasks and schedules based on the groups. It is customizable.
