+ Reply to Thread
Results 1 to 13 of 13
  1. Senior Member
    Join Date
    Jul 2016
    Location
    New Hampshire
    Posts
    377

    Certifications
    CCNET, CCNA R&S, ITIL, MCP, Security+
    #1

    Default BitLocker vs. Symantec Endpoint Encryption

    Good Afternoon Ladies and Gentlemen,

    I'm in the process of evaluating whether Microsoft's BitLocker or Symantec's Endpoint Encryption is a better choice for my organization. I've run a couple of Google searches for reviews and I'm asking if anyone is aware of an objective site along the lines of what Consumer Reports is for consumer goods that evaluates software like this?

    I apologize for asking such a stupid question, but like many I'm never completely sure what is wheat and what is chaff in the big and scary interwebs.

    Thank you!

    Leigh
    Reply With Quote Quote  

  2. SS -->
  3. Member NuclearBeavis's Avatar
    Join Date
    Oct 2017
    Posts
    71
    #2
    Unfortunately, not aware of any quality comparisons. Every time I tried to find out if Symantec Endpoint Encryption supported a TPM, I couldn't come up with anything conclusive. They did at one point, then they didn't, then who knows.

    We've used Symantec Endpoint Protection for clients because it's one of the few choices that can do what we want without creating and maintaining a complex separate database. But it has its pain points. If SEE is anything like SEP, I'd be cautious.

    For my work and personal systems that are on Windows, I use Bitlocker, and it's very smooth. But as for centralized management of an organization's systems, I couldn't speak to that.
    Last edited by networker050184; 11-03-2017 at 04:07 PM.
    Reply With Quote Quote  

  4. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    242
    #3
    Just to add, BitLocker fully integrates with Active Directory for recovery and has centralized software available for it, called MBAM. Worth checking out. We use BitLocker and it's as smooth as running a program to use.
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-740 - Installation, Storage and Compute with Windows Server 2016
    Reply With Quote Quote  

  5. Senior Member
    Join Date
    May 2006
    Posts
    1,936

    Certifications
    CISSP, CCSP, eJPT, ITIL,PA ACE,Qualys Certified Specialist, A+
    #4
    Symantec SEP is a suite that includea different modules. Bitlocker is used for 1 thing specifically.
    Reply With Quote Quote  

  6. There is no spoon. p@r0tuXus's Avatar
    Join Date
    Nov 2016
    Location
    KCMO
    Posts
    519

    Certifications
    ITIL-F, A+, S+, CCNA
    #5
    My organization uses both, plus the symantec mail filters.

    Completed: ITIL-F, A+, S+, CCENT, CCNA R|S
    In Progress: Linux+/LPIC-1, Python, Bash
    Upcoming: eJPT, C|EH, CSA+, CCNA-Sec, PA-ACE
    Reply With Quote Quote  

  7. Senior Member Phalanx's Avatar
    Join Date
    Apr 2017
    Location
    UK
    Posts
    242
    #6
    He's asking about SEE, not SEP, guys.
    Desktop: MCSE: Mobility | Server: MTA | Cloud: None | Networking: MTA
    Security: None | Linux: None | Service Management: ITIL 2011: Foundation
    Currently Studying: 70-740 - Installation, Storage and Compute with Windows Server 2016
    Reply With Quote Quote  

  8. Junior Member
    Join Date
    Nov 2012
    Posts
    24

    Certifications
    A+, N+, S+, 3x MTA, MCSA 2008/2012/Windows 7, CCNA
    #7
    Had Symantec PGP at a previous employer and it did its thing. Wasn't a huge fan of the screen before bootup due to most users not knowing how to use tab key to get to password field. This lead to plenty of help desk calls.

    Currently implementing bit locker now and works just as well as PGP did, for free.
    Reply With Quote Quote  

  9. Senior Member cyberguypr's Avatar
    Join Date
    May 2007
    Location
    Chicago, IL
    Posts
    5,817

    Certifications
    GCFE, GCED, GCIH, CISSP, CCSP, and others that should never be mentioned
    #8
    We moved thousands of hosts from a similar 3rd party encryption product to BitLocker. The ease of administration is just hard to beat. Keep in mind that you need specific Windows versions that support BitLocker. If you are running one of the supported Win flavors, then the business case makes itself.
    Reply With Quote Quote  

  10. Senior Member
    Join Date
    Mar 2011
    Location
    Chicago
    Posts
    1,310

    Certifications
    CISSP-ISSAP, HCISPP GPEN, GSEC, GSNA, GCIH, E|CH, ECSA, Security+
    #9
    Have to agree with Cyberguypr here, the ease of administration is hard to beat. Check your licensing as well, you may already be paying for the product if your using a high enough enterprise license (Enterprise 4 or 5). I forget when bitlocker kicks in but its fairly inexpensive if bought as an add on as well.

    I have nothing against Symantec but they'd have to really want to sell me on the technological merits over BitLocker to get me to move.

    - b/eads
    Reply With Quote Quote  

  11. Senior Member
    Join Date
    Jul 2016
    Location
    New Hampshire
    Posts
    377

    Certifications
    CCNET, CCNA R&S, ITIL, MCP, Security+
    #10
    After much research, we can't run Endpoint because we're a small organization and don't use AD. It looks like I'm doing BitLocker in the morning...
    Reply With Quote Quote  

  12. Senior Member 636-555-3226's Avatar
    Join Date
    Jul 2015
    Posts
    872

    Certifications
    Lots of security certifications, yet the more I learn, the further I have to go...
    #11
    bitlocker ftw. free and works as well as any of the others. i honestly am surprised anybody pays for fde anymore with bitlocker being as good and easy as it is. eval'd a bunch last year, none had any features worth the extra $$ over free
    Reply With Quote Quote  

  13. Senior Member
    Join Date
    Apr 2017
    Posts
    325
    #12
    We use SEE at my job. Does it's thing pretty well. Guess it depends on your org too. Small/mid size companies may benefit from Bitlocker more than huge global companies.
    Reply With Quote Quote  

  14. Member
    Join Date
    Nov 2012
    Location
    Alabama
    Posts
    51

    Certifications
    A+, Security +, C|EH, and CCNA R&S
    #13
    We currently run BitLocker that is managed by Sophos Safeguard. All in all no issues now. One thing to consider is if you are running BitLocker and use Dell laptops with USB-C docks, you will have to make some adjustments in either disabling thunderbolt technology or in your PCRs on local group policy.
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks