Picus Security vs. Symantec Content & Malware Analysis

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Picus Security
Score 8.6 out of 10
N/A
Picus Security, headquartered in San Francisco, offers Continuous Security Validation and Mitigation as the most proactive approach to ensure cyber-resilience. The Picus Platform measures the effectiveness of defenses by using emerging threat samples in production environments, providing the insight required to build the right security strategy to better manage complex operations.N/A
Symantec Content & Malware Analysis
Score 8.8 out of 10
N/A
Symantec Content & Malware Analysis is an application which provides advanced threat detection and threat hunting through advanced machine learning, based on intelligence gathered from ProxySG, threat intelligence services, and other sources.N/A
Pricing
Picus SecuritySymantec Content & Malware Analysis
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Picus SecuritySymantec Content & Malware Analysis
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Picus SecuritySymantec Content & Malware Analysis
Top Pros
Top Cons
Best Alternatives
Picus SecuritySymantec Content & Malware Analysis
Small Businesses

No answers on this topic

No answers on this topic

Medium-sized Companies
Microsoft Defender for Cloud
Microsoft Defender for Cloud
Score 8.5 out of 10
Splunk Enterprise Security (ES)
Splunk Enterprise Security (ES)
Score 8.4 out of 10
Enterprises
Microsoft Defender for Cloud
Microsoft Defender for Cloud
Score 8.5 out of 10
Microsoft Sentinel
Microsoft Sentinel
Score 8.2 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Picus SecuritySymantec Content & Malware Analysis
Likelihood to Recommend
9.0
(1 ratings)
8.0
(1 ratings)
User Testimonials
Picus SecuritySymantec Content & Malware Analysis
Likelihood to Recommend
Picus Security
If you want to analyze the full path focusing on the signatures it’s the best product in the market. If you want to test phishing, data exfiltration/DLP, DNS I don’t recommend Picus. Scenario based attacks also lacking. However Picus support is awesome and I like the development team. When we open a case, they’ll always return with the right answer
Read full review
Broadcom
If you have Symantec based environment including Symantec proxy and endpoints, Content and Malware Analysis is the obvious choice. You can't run the CAS-MAS as a standalone deployment, you need proxies or ICAP supported devices capable to send the files/URLS. It's not a network security device where you can flow/direct the traffic to C/MAS. It does not have UBA, NBA or NTR features, it is just working for analyzing files as expected.
Read full review
Pros
Picus Security
  • It has thousands of signatures and up-to-date attack vectors (It's the largest set in the market)
  • Attack vectors are mapped with existing vendors like Checkpoint and Mcafee, where you don't spend time finding out which cve mapped to which protection
  • Ability to focus/highlght solely new threats, it's superb for 0days and up-to-date protections. As there are always timing issue between updates and apply the updates on the products.
  • Blocked vs not blocked ratios on the dashboard with drill down menu specifiying the set of protections or signatures on the defensive measures
  • Already mapped mitre att&ck framework on the dasboard. SOC and analyst team using the Mitre framework.
  • Detection analytics enhance the analytics capabilities with pinpoint accuracy where to focus and how to prevent
  • Timeline and scheduled reports from the dashboard in flexible format
Read full review
Broadcom
  • 0 day detection and prevenion
  • Flawless integration with Symantec Ecosystem
  • Integration with other vendors supporting ICAP is also working
  • Custom and golden image support
  • High performance on busy environments
  • Many threats are already detected and prevented through the CAS, it improves the performance drastically.
  • Already builtin virustotal integration
  • Reference to updates and updates information where I can see the product/service detecting which APTs
  • Multiple Antivirus engines which you can select/subscribe
  • Manual submission of file is supported through the gui
  • URL manual submission is also supported
Read full review
Cons
Picus Security
  • Visualization of network and the products
  • Complex/Scenario based attacks
  • Phishing tests
  • DNS and Data exfiltration attacks
  • Automatic action through the apis for the products on the path
  • Strategical and tactical reports for Cisos
  • Automatic SOAR entegration with already builtin playbooks
Read full review
Broadcom
  • API support is lacking
  • Symantec/Broadcom security vision in general
  • Symantec support is not perfect
  • You can't run the product as a standalone network device
  • No packet capture capabiliy or work in span mode
  • You need a dedicated hardware to make it run
  • You need to buy
Read full review
Alternatives Considered
Picus Security
We use other vendors Verodin, AttackIQ, SafeBreach, Cymulate etc. All of them have their advantages and disadvantages. Please take a look at TrustRadius reviews of each product. I don’t want to go head to head for each product in this
review. I select Picus because it's local startup company in our region. I like their support and engineering team. Support is marvelous. Product is giving what we expected from the product. Price is adequate. Reporting and dashboard is superb.
Read full review
Broadcom
We have been using many solutions even tested nearly all available 0day sandbox solutions in the market. We choose Symantec CMA as we have already Symantec endpoint protection/EDR on the client, Symantec proxy for the web access, SCMA fits our environment. We have a big bargain when we puchase lots of equipment from the Symantec. Detection and prevention is very good at SCMA but some constant issues; like the product is not designed for heterogeneous environments, we can not integrate the SCMA with WAFs, it's lacking in api and request/reply calls. There's no file scanning, discover the option. SIEM integration is not smooth. I can not run some of the SOAR playbooks through the SCMA.
Read full review
Return on Investment
Picus Security
  • With Picus we have the tangible KPIs for the security
  • Detetcion and Prevention rates for the latest attacks are significantly increased
  • We work with many security vendors. We use picus scores and share specific outputs with the company in case of decreasing score rates where the development and product team analyzes their updates or product engines to increase the rates.
  • It helps our strategic plans where to focus and invest for the following years and planning/prioritizing the security budgets to specific highlighted areas
Read full review
Broadcom
  • 0-day and APT risk is covered by the SCMA
  • As the SSL is inspected and analyzed at Bluecoat proxy servers, hidden threats, malicous files are passed to SCMA to be analyzed.
  • Getting full visibility at file trajectory level
  • As it's a full proxy and ICAP integration, we are sure that the files are to analyzed and scanned for malicious activity. This is a big plus compared to NGFW analyze concept, as the NGFWs have special failsafe mechanisms allowing bypass of file analysis. SCMA fully catches the hidden threats.
  • Flawless integration with Bluecoat systems is a big plus, customers are getting the same type of messages within their browsers.
  • A negative impact is the standardization when I deploy SCAM to one of our locations. Then the auditors demand the same coverage within other areas and it comes with the cost. Especially maintaining these devices on premise environment has a significant cost.
Read full review
ScreenShots