What Symantec Web Isolation does

Symantec Web Isolation - also called Remote Browser Isolation (RBI) - moves the rendering of web content from the user's endpoint to a disposable container running in Broadcom's cloud. The endpoint never executes web code; it only receives a sanitized visual stream of pixels and DOM updates. The user interacts normally - clicking, scrolling, typing - and the actions are relayed back to the isolated container. When the session ends, the container is destroyed.

The threat model defeated: drive-by malware, browser exploit kits, phishing landing pages, malicious scripts on compromised legitimate sites, watering hole attacks, browser-based zero days. Even if every detection control fails, isolated browsing has no path to the endpoint.

Common search terms covering this product family: Symantec Web Isolation, Symantec browser isolation, Symantec cloud browser isolation, Symantec full browser isolation, Symantec enterprise browser isolation, Symantec isolated browsing, Symantec malware isolation, Symantec phishing isolation, Symantec RBI, Symantec remote browser isolation.

Email Threat Isolation - phishing defeated

The combination of Symantec Web Isolation with Symantec Email Security creates Email Threat Isolation. Links in inbound emails are rewritten to route through the isolation cloud. When a user clicks, the destination renders in the disposable container. Phishing landing pages that look legitimate at delivery time but go malicious hours later - the category of "delayed weaponization" attacks - are caught at click time because rendering happens in isolation.

Search terms: Symantec email threat isolation, Symantec phishing isolation, Symantec email link protection.

Integration with Cloud SWG

Symantec Cloud SWG categorizes web traffic and routes risky categories through Web Isolation:

  • Uncategorized or newly registered domains
  • Sites flagged as "suspicious" or "potentially harmful"
  • File downloads from untrusted sources
  • User-selected high-risk categories (e.g., social media for finance teams, news sites for legal)

Trusted categories (banking, healthcare, internal SaaS) go direct without isolation. The user experiences a uniform browser; risky content is invisibly isolated. See Cloud SWG services for the full SWG context.

Deployment scenarios

  • Financial services - isolate finance team browser sessions to prevent wire-fraud-related attacks
  • Government and defense - isolate access to public web from sensitive endpoints
  • Healthcare - protect endpoints handling PHI from browser-borne malware
  • Legal - isolate research browsing from work-product systems
  • Executive protection - high-value targets get isolated browsing by default
  • Contractor / third-party access - isolate browsing on unmanaged devices
  • Zero-day defense - universal isolation as a defense-in-depth layer

How CyberKIS deploys Web Isolation

Standard deployment scope: categorize web traffic to identify isolation candidates, configure Cloud SWG routing rules, deploy isolation policy with user disclosure, run a 2-week pilot with a friendly user population to validate latency and usability, expand to production. Typical timeline: 4-8 weeks for an enterprise of 5,000 users including Cloud SWG integration.

FAQ

  • 01

    What is Symantec Web Isolation?

    +

    Symantec Web Isolation is Remote Browser Isolation (RBI) - every web page renders in a remote, disposable container in the cloud rather than on the user's endpoint. The user sees and interacts with the page normally; malicious code never executes locally. Defeats most browser-based malware and phishing exploits.

  • 02

    Is Symantec Web Isolation the same as RBI?

    +

    Yes. Web Isolation is Symantec's product name for what the industry calls Remote Browser Isolation or RBI. Same concept, same architecture - render web in the cloud, ship pixels to the endpoint.

  • 03

    What about email link isolation?

    +

    Symantec Email Threat Isolation pairs Web Isolation with Email Security: links in inbound email get rewritten to route through the isolation cloud. Even if the user clicks a phishing URL, the page renders in the isolated container, never on the endpoint. Symantec Phishing Isolation is the specific use case.

  • 04

    How does Web Isolation interact with Cloud SWG?

    +

    Cloud SWG categorizes web traffic and routes risky categories (uncategorized sites, new domains, file downloads from suspicious sources) through Web Isolation. Trusted categories go direct. The user sees a uniform browsing experience; risky content is invisibly isolated.

  • 05

    Does Web Isolation slow down browsing?

    +

    Modern Symantec Web Isolation runs at near-native latency for most content. Heavy media (video streaming) and complex JavaScript apps may show slight latency overhead. The tradeoff is usually invisible to users for non-streaming workloads.