Broadcom acquired Symantec's Enterprise Security division in late 2019, transforming the licensing landscape for endpoint protection, DLP, web gateways, and CASB. Broadcom eliminated perpetual licensing, imposed steep price increases (2x to 4x typical), slashed support for smaller customers, and consolidated contracts into multi-year portfolio agreements. This playbook provides product-by-product impact analysis, entitlement protection strategies, negotiation tactics, competitive alternatives, and actionable recommendations for CIOs navigating this changed landscape.
Broadcom no longer sells new perpetual licences for any Symantec products. Existing perpetuals are honoured for usage, but without active support, they receive no updates. For security software, running without signature updates is effectively untenable. Customers face pressure to convert to subscription models at significantly higher cost than prior maintenance fees.
Renewal quotes of 200% to 400%+ above prior Symantec pricing are common. SEP Small Business Edition users saw 400%+ increases. Broadcom's pricing leaves minimal room for negotiation compared to Symantec's more flexible discounting. However, large accounts that demonstrate credible competitive alternatives can sometimes negotiate increases down to 50% to 100% above prior pricing.
Broadcom slashed support resources, focusing on top-tier Global 2000 clients. Smaller customers experience slower response times. SMB-specific offerings (SEP SBE) were discontinued entirely. Broadcom favours consolidated 3-year contracts encompassing multiple Symantec products with co-terminated renewals. While this simplifies management, it locks customers in and creates leverage for Broadcom at renewal.
Bundled subscriptions giving access to multiple Symantec solutions for a single price. Aimed at largest customers. Encourages uptake of additional tools but smaller clients find the model unaligned with focused needs. Be aware that dropping an individual component from a PLA may not proportionally reduce the price.
| Aspect | Symantec (Pre-Broadcom) | Broadcom (Current) |
|---|---|---|
| Licence types | Perpetual with optional maintenance; subscription available for some products | Subscription-only for all products; new perpetuals no longer sold |
| Pricing | Tiered volume discounts; competitive for SMB and enterprise; negotiable via resellers | Significantly higher list prices; minimal discounting except for very large deals; 2x to 4x+ renewal costs |
| Sales channel | Broad partner network; resellers/distributors for all sizes including SMB | Focus on direct sales to large enterprises; many small partners dropped |
| Contracts | Individual product contracts; 1-year typical; co-terming optional; flexible terms | Consolidated multi-product contracts; 2 to 3+ year commitments standard; all licences co-terminated |
| Support | Regional teams and active forums; available for all customer sizes | Lean support organisation; premium tiers at extra cost; smaller customers relegated to self-service |
| Product updates | Regular features and releases; active R&D investment | Fewer new features (maintenance mode on many products); latest versions only with active subscription |
| Bundling | Products sold standalone or in suites; a la carte purchasing available | Portfolio Licence Agreements encourage all-in-one subscriptions; bundles aimed at increasing stickiness |
Symantec Endpoint Protection has been rolled into Symantec Endpoint Security (SES) subscriptions. The Small Business Edition was discontinued entirely. SEP is now subscription-only per endpoint per year. Existing perpetual SEP customers can continue using their last licensed version indefinitely, but without maintenance they stop receiving signature updates. Feature development has slowed. A large retail enterprise (~10,000 endpoints) saw their SEP renewal quote jump roughly 3x under Broadcom. They evaluated CrowdStrike Falcon as leverage and Broadcom conceded to approximately 50% increase (vs 200%) when faced with losing the customer.
Symantec DLP remains strategically important for compliance. Broadcom folded DLP into its Information Security portfolio deals, often bundling with classification and cloud security. Previously available as individual modules (Network, Endpoint, Discovery), now sold primarily through subscription bundles. Support is mixed: core technology is mature and key engineers were retained, but smaller DLP deployments get less personalised support. A financial services firm was pushed from perpetual licences to a 3-year DLP subscription. They negotiated to protect "historical entitlements," ensuring data fingerprinting licences would remain valid indefinitely for on-premises use while adopting the subscription for cloud features.
Broadcom sees the secure web gateway as a SASE framework component. Standalone proxy products are being gradually folded into bundled cloud-edge solutions. Licensing shifted from perpetual hardware + subscription updates to user- or bandwidth-based subscriptions. Minimum licence sizes and multi-year terms are now common. A multinational manufacturer using Blue Coat ProxySG globally saw approximately 150% renewal increase and a push to shift to cloud proxy. They negotiated a reduced user count commitment and secured assurance that existing appliances would be supported for the full new term.
Symantec's CloudSOC CASB is rarely sold standalone now. It is bundled into Symantec Enterprise Cloud packages or the PLA alongside endpoint and web security. Some legacy customers found CASB bundled into new agreements whether they wanted it or not. Dropping CASB may not reduce the bundle price proportionally. A tech company found their CASB renewal folded into a larger Symantec Enterprise Cloud agreement. They evaluated Netskope as leverage. Broadcom responded with an additional 2-year price lock and roadmap enhancement commitments.
Inventory all Symantec licences owned. Identify which are perpetual and which are term subscriptions. For perpetuals, locate proof of purchase, licence keys, and entitlement IDs. Broadcom's systems may not have complete records from Symantec days. Maintaining your own evidence is critical if any dispute arises. Centralise them in your SAM repository alongside support renewal records and SKU lists from past agreements.
Perpetual licences without active maintenance entitle you to use the last version released while maintenance was active, indefinitely, but without updates or support. If you need support, Broadcom may require converting to a subscription. Negotiate a "support-only" fee to retain perpetual use rights. Leverage tactic: "We have the right to use our existing version indefinitely. If Broadcom's offer is not reasonable, we will stay on current version or seek third-party support."
Scrutinise renewal terms for clauses that supersede past agreements. Avoid inadvertently voiding your perpetual rights. If a new subscription deal says it replaces all prior licences, ensure you carve out that pre-existing perpetual licences are retained. Explicitly ask Broadcom how legacy licences will be treated if you sign a new portfolio agreement. Get all terms in writing. Document promises in the contract or a formal addendum. Verbal assurances are not enforceable.
Broadcom values big deals. If you use multiple Symantec products (Endpoint, DLP, Web Security), consolidate them into a single negotiation. Bundled deals covering more product lines give you more leverage for cross-product discounts. Broadcom's sales reps often have more flexibility on pricing when more revenue is at stake.
If agreeing to multi-year terms, insist on price caps and flexibility. Negotiate caps on annual increases or the ability to adjust quantities downward. Watch for clauses allowing 7% yearly uplift and strike those out or cap them. Seek true-down options at renewal anniversaries if usage drops. Key clause: "true-down symmetry," if Broadcom allows true-up for more licences, ask for the equivalent right to reduce counts at each anniversary.
Solicit proposals from competitors before finalising your Broadcom deal. Get quotes from CrowdStrike (endpoints), Zscaler (web gateway), Forcepoint (DLP), Netskope (CASB). Having concrete alternatives provides real leverage. Some organisations sign conditional deals with alternatives (cancellable if Broadcom matches), underscoring readiness to leave. In several cases, Broadcom offered significantly improved discounts once the customer demonstrated a foot out the door.
Evaluate what your organisation truly needs before negotiating. Broadcom's quotes may include extra products or inflated seat counts. Determine the minimum licences or modules required and start from that baseline. If you have 1,000 seats but only use 700, push to renew for actual usage. Use renewal time to eliminate shelfware. Newer tools may cover multiple functions, allowing you to drop redundant Symantec components.
| Symantec Product | Leading Alternatives | Key Considerations |
|---|---|---|
| Endpoint Protection (SEP/SES) | CrowdStrike Falcon, Microsoft Defender for Endpoint, Trend Micro, SentinelOne, Sophos | CrowdStrike actively courts former Symantec users. Microsoft strong if M365 E5 customer. Replacement involves deploying new agents: plan parallel operation during transition. |
| Data Loss Prevention (DLP) | Forcepoint DLP, Trellix DLP, Digital Guardian, Microsoft Information Protection | DLP is the hardest to switch (policies deeply embedded in processes). Consider phasing in alternatives for new use cases while gradually retiring Symantec components. |
| Secure Web Gateway (ProxySG) | Zscaler, Cisco Umbrella, Palo Alto Prisma Access, Forcepoint SWG | Zscaler is the clear frontrunner: cloud-delivered, eliminates appliance maintenance. Often the first alternative considered when Broadcom renewals loom. Gradual migration possible. |
| CASB (CloudSOC) | Netskope, Microsoft Defender for Cloud Apps, McAfee Skyhigh Security | Netskope frequently named top competitor. Zscaler and Netskope both include CASB modules in their platforms. Ensure replacement covers your critical cloud services. |
| Integrated Platform | Microsoft 365 E5 Security, Palo Alto Cortex + Prisma, Trend Micro Vision One | You may not need one-for-one replacements if another vendor's suite covers multiple areas. Can simplify the switch and be more cost-effective bundled together. |
If Broadcom's renewal quote is unpalatable (2x+ increase with rigid conditions), if innovation has stagnated and you need modern capabilities, or if frequent poor support experiences indicate deprioritisation, these are clear signals to seriously evaluate the market. Many IT leaders started exploring alternatives a full year before renewal once Broadcom's direction became apparent. Even if you prefer to stay, just the act of evaluating competitors improves your outcome with Broadcom.
Immediately audit all Symantec/Broadcom software in use. Determine licence types, quantities, renewal dates, and contractual obligations. Benchmark increases against peers and analysts. Prepare C-suite for potential budget impact. Communicate early that Broadcom renewals will require strategic attention.
Even if you plan to stay, get competitive bids for equivalent solutions. This provides negotiating context and a ready Plan B. Right-size at renewal: eliminate shelfware and excess licences. If you have 1,000 seats but use 700, push to renew actual usage only. Newer tools may cover multiple functions, allowing you to drop redundant Symantec components.
Have legal review Broadcom contracts for auto-renewal language, audit rights, and termination provisions. It is easier to amend problematic language before signing. Approach Broadcom professionally and fact-based. Make clear you are willing to continue if it makes business sense, but have a fiduciary duty to consider alternatives. See Broadcom Contract Negotiation Services.
Broadcom no longer sells new perpetual licences for any Symantec products. Existing perpetual licences are still legally valid. You can use the last version released while your maintenance was active, indefinitely. However, without an active support contract, you receive no signature updates, patches, or technical support. For security software, this is effectively untenable long-term. Broadcom pressures perpetual customers to convert to subscriptions, often at significantly higher cost than prior maintenance fees.
Reports range from 2x to 4x+ above prior Symantec pricing, depending on customer size and product. Large enterprises typically see 2x to 3x increases. SEP Small Business Edition customers reported 400%+ increases. Broadcom's pricing leaves minimal room for negotiation compared to Symantec's historically flexible discounting. However, large accounts that demonstrate credible competitive alternatives can sometimes negotiate increases down to 50% to 100% above prior pricing.
It depends on your situation. If Broadcom's terms are unpalatable, innovation has stagnated, or support quality is insufficient, seriously evaluate alternatives. CrowdStrike, Zscaler, and Netskope actively court former Symantec customers. However, even if you plan to stay, evaluating competitors provides critical negotiating leverage. Many organisations found that demonstrating readiness to switch improved Broadcom's offer significantly. Start the evaluation a full year before renewal.
A PLA is a bundled subscription giving an enterprise access to multiple Symantec solutions (endpoint, DLP, web security, CASB) for a single annual or multi-year price. Broadcom pitches it as reducing complexity. In practice, only the largest customers benefit. It encourages uptake of additional tools to justify the cost. Smaller clients that only need one or two products find the model unaligned. Dropping an individual component from a PLA may not proportionally reduce the price.
Inventory all perpetual licences with proof of purchase, licence keys, and entitlement IDs. When signing new deals, scrutinise for clauses that supersede past agreements. Ensure your perpetual rights are explicitly carved out. Get all terms in writing. Use perpetual rights as negotiation leverage: "We can stay on our current version indefinitely if your offer is not reasonable." Have legal review all contract language before signing.
CrowdStrike Falcon is the leading next-gen alternative, actively courting former Symantec users with cloud-native endpoint security and integrated EDR. Microsoft Defender for Endpoint is strong if you are an M365 E5 customer (included in the licence). SentinelOne, Trend Micro, and Sophos are also strong contenders. Replacing endpoint protection involves deploying new agents and tuning policies. Plan for parallel operation during transition. Many organisations found improved capabilities and potentially lower total cost were worth the migration effort.
Data Loss Prevention (DLP). Symantec DLP policies are deeply embedded in enterprise processes, and the product covers network, endpoint, and discovery scenarios that few competitors match in a single platform. Forcepoint DLP and Microsoft Information Protection are the leading alternatives. Consider phasing in alternatives for new use cases (cloud apps) while gradually retiring Symantec components rather than attempting a complete replacement in one move.
Redress Compliance provides independent Broadcom advisory: renewal negotiation, legacy entitlement protection, competitive evaluation, Portfolio Licence Agreement analysis, audit defence, and contract optimisation for Symantec endpoint, DLP, web security, and CASB products. We help enterprises achieve the best available pricing while protecting existing entitlements. Complete vendor independence. No Broadcom partnerships, no resale commissions.
Broadcom Advisory ServicesIndependent Broadcom advisory helping enterprises negotiate Symantec renewals, protect legacy entitlements, and optimise security software licensing costs. Fixed-fee engagement models.