TrustRadius
Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.https://media.trustradius.com/product-logos/ID/V4/TPU9Q91FBC7S.pngSophos' cloud offering works well but Secure Boot messes it upSophos Intercept X is our chosen endpoint security solution for all of our Windows endpoints (Windows and Windows Server) across the entire enterprise. We were already using Sophos before, and we replaced an older Sophos appliance with the cloud-based "Sophos Control" version instead, and we abandoned our on-prem Sophos web appliance.,Sophos is a little too good at DLP. But it is indeed very good at not allowing our data to leave our endpoints without strict adherence to policy. Sophos is very good at protecting endpoints against viruses and other malware. Sopho is really good at informing us of what is happening on our endpoints. OOTB reporting is way better than expected.,Sophos OOTB policies are very strict and they don't offer anything less strict without you creating new custom policies. I'm sure this is deliberate because the product starts you out in the safest way possible but it means that you will have lots of calls to your tech support desk when you first deploy it unless you do somewhat extensive testing beforehand. Sophos Intercept X is currently broken (at least the DLP component) by having secure boot turned on in the UEFI/BIOS. If any user wants to be able to write data to a USB drive or floppy from their PC (yes we still have a couple users who need to use floppies) we have to turn off secure boot on their PC, even if the DLP policy for that user/PC combination specifies that the user and PC are allowed to write to USB/floppy. This would be a very serious problem if it weren't for the fact that we have very few users who need to write files to USB. For us it's OK but I bet it would be a deal-breaker for others. I don't see a whole lot of evidence that Intercept X is any different than any other anti-virus, so maybe their admin alerts just don't clearly identify when they have identified a zero-day threat or maybe we just haven't had any zero-day threats.,6,This product costs almost exactly the same as it's predecessor that we were using, which was an on-prem Sophos Web Appliance. However, the newly separated "Windows Server" endpoint license is a lot more expensive than the old endpoint device license on the web appliance. So we are now paying about 4x as much for coverage on a Windows Server as we did before we changed to Sophos Intercept X simply because Sophos created a new license (and a different client. It was the same client as PCs before now) that is specific to Windows Servers and we decided to buy a few. I'll admit that the new Server client covers more areas than the PC client so that's how the price is justified. We've had LOTS of evidence that Sophos Intercept X has protected us from all manner of malware, ransomware, viruses and data loss. We would never ever be without it because it's value as an antivirus and anti-malware product is inestimable. We don't have a clue how much time and money we would have lost without it, but as you all know, we MUST have a good antivirus. Sophos Intercept X is just that, a good antivirus.,Symantec Advanced Threat Protection and Trend Micro Deep Security for the Hybrid Cloud,8,Cisco Unified Contact Center, Cherwell Service Management, KeePassSophos Endpoint the Right Tool for Any EnvironmentWe use Sophos to protect all the machines in our environment. We also have the cloud set up so when our mobile users connect in the world we can make sure they get updates from the Sophos Database. We also get alerts if a system has not updated in a while which helps us find computers that are not used that often.,Licensing is per user not, machine. So a user could have multiple machines and not have to purchase so many licenses Notifications for issues on devices where it has not contacted system in awhile Notification when there is a threat that was cleaned and if any additional action is needed. Blocking unwanted applications from running in the background when browsing the internet,I honestly cannot thing of anything negative about the Endpoint protection.,10,We have had an outbreak threat that started to encrypt our files and we were able to stop and roll back the changes it made automatically using Sophos. We have had a few instances where it was blocking Java programs but we allowed those on the interface so the work by our NOC techs could continue without issues.,ESET Endpoint Security,Sophos Phish Threat, DameWare Remote Support, SolarWinds Web Help Desk,150,2,Antivirus protection Endpoint policy setup and maintenance Can uninstall PUA on detection with administrators ok,Able to group with other Sophos products to provide better protection. Cloud management so i am able to monitor anywhere without having to connect to my network.,Might be able to add more sophos products in the future and maintain them all from the cloud management,10,Yes,Price Product Features Product Usability Product Reputation Prior Experience with the Product,Not sure we would change anything about our evaluation process in the future,Implemented in-house,No,Change management was minimal,Some applications needed permission to run but was able to easily do that via policy.,9,9,No,Had an issue where one of my computers failed to install fully. The support team was able to fix the issue and instruct me on what they were doing so i could fix it on another device if it happens again.,The interface on the cloud management system is very easy to use and follow.,Not sure I have found anything cumbersome to setup or use on Sophos Endpoint protection,9Intercept X is a game changer for our organizationSophos Intercept X has been added to the whole organization and all backend server as well (285 seats).,Block ransomware. Notify administrators. Revert back the data to the previous stat. Blocks all executables from running.,It has to be used with Sophos AV & Sophos central to have an effective solution.,10,Intercept should be integrated with AV as one solution but I think Sophos generate more revenue from selling 2 products. We appreciate Sophos Central it is a fantastic product ut require some reporting enhancement. I wish intercept X has the mechanism to analyze the ransomware, malware & other attacks to give deeper insight into the issue (when, where and how).,McAfee Advanced Threat Defense, Norton Internet Security, ESET Endpoint Security and Windows Defender Advanced Threat Protection (Hexadite AIRS),VMware ESXi, WhatsUp Gold, Adobe Acrobat DC, Netwrix Auditor, ADManager Plus, BeyondTrust Remote Support (Formerely Bomgar Remote Support), Zoom, LastPass, Duo Security, Snagit, AWS Cloud9, Barracuda Backup, KnowBe4Sophos Intercept-X Works Great!We use Sophos Intercept-X company-wide for our endpoint security solution and it has been doing an excellent job in thwarting off potential attacks.,Easy migration from Symantec to Sophos Intercept-X. A simple .msi file allowed for the automatic uninstall of Symantec. Sophos Central makes it very simple to mitigate potential issues immediately. I can log in and remediate from anywhere. Most vulnerabilities are blocked and removed without IT Helpdesk needing to touch a machine. The reporting capabilities after the fact are informative.,There are a bunch of running Sophos processes on machines with the software installed. Some take up quite a bit of memory at times. Although the process to correct is easy and relatively quick, I've noticed quite a few false positives when it comes to web filtering. Setting up policies is a little clunky at first.,8,Intercept-X has allowed us to improve our NIST Compliance Requirements by giving us a better view of threats and how they are cleaned up. We're able to more quickly remediate vulnerabilities with Intercept-X.,Symantec Endpoint Protection,7,Adobe Acrobat DC, Fortinet FortiGateQuick alerting and automated responses for better securitySophos is utilized across the whole organization. It provides the layer of protection needed for endpoints and servers against various forms of viruses and attacks that batter the technology industry. The need for protection of assets is well provided with the Sophos product and its components with little interaction or annoying notifications to users.,Alert notifications can be sent directly to email as soon as any suspicious activity or files are discovered. The endpoint agent is delivered in one installer package, allowing for ease of deployment. Sophos works with common SIEM products and integrates well, giving visibility of events to security analysts for pattern detection.,Sophos is heavy on resource utilization for scanning and detecting. Upon installation and use, there are approximately 17 services that are installed and run the product. Sophos could make it easier on deployment by being able to scan a domain and push the agent out to assets that don't have protection.,7,Positive: Sophos has allowed the organization many forms of proof of protection for auditing and compliance. Positive: Sophos has detected and automatically cleaned suspicious files and blocked malicious activity for several assets. Negative: End-user feedback of intensive scanning and high CPU/Memory usage by Sophos.,Trend Micro Apex One (formerly OfficeScan),1,Malwarebytes Endpoint ProtectionSophos Intercept X with EDR: great product with features you would actually use!We have been using Sophos Intercept X with EDR for the past 3 or so months and it is an excellent platform. It provides protection and prevention for all my servers as well as all client workstations over 80+ sites. The product also serves as a web filtering platform for the business, with easy to use and set up web filtering rules.,Antivirus EDR Web Filtering Integration with SIEM (AlienVault USM Anywhere),The tamper protection is very clunky. I understand why it was done, however, you should be allowed to set up your own anti-tamper password. The Sophos Central (the web management interface) is a bit confusing, especially when it gets to creating groups to organize your assets. Not easy to get into the administrator interface on the clients.,10,It has reduced cost, as i no longer need dedicated web filtering solution for mobile users. It has increased the rate of detecting and fixing malware. It has reduced bandwidth usage due to warnings when end users go to file sharing services, etc. can prevent data leaks as it can block usb storage devices being used in the business.,Avast Business Antivirus,AlienVault USM, SolarWinds N-centralSophos Endpoint - An essential component in a modern antimalware/security platform.We use Sophos Endpoint Protection on our internal equipment, as well as client computers/servers. The product enables us to manage AntiVirus, Encryption, and Next Gen AntiMalware in a single portal with a single agent. The protection we get from this combo is second to none, and that's where the real value of this product comes through - tight integration to the entire platform...,Simple Installation. Clean reporting. Single pane of glass management with other Sophos products.,Client can occasionally be more resource intensive than we would like...,10,Customers on Sophos have yet to manage to encrypt a PC with malware. It's that simple - we don't have to fight those fires anymore...,Bitdefender GravityZone, VIPRE and AVG AntiVirus Business Edition,Zoom, Ubuntu Linux, ConnectWise Control (formerly ScreenConnect),Yes,Product Features Product Reputation Vendor Reputation Existing Relationship with the Vendor Analyst Reports,If we had it to do again, we would have simply done it sooner... This change has freed my helpdesk team up to do more valuable tasks instead of fighting fires because a user was able to click a link that contained malware to spite our best efforts to protect them with legacy software platforms.Sophos: Simple and efficient, does what it saysSophos is used globally across the entire company. We really on Sophos to provide endpoint protection to all desktops and servers plus the entire AWS estate. This provides us with our primary AV defense from internal users and malicious internet content. This is managed by multiple teams who can interact with the cloud-based solution and closely monitor all devices for compliance.,Simple to setup and configure leaving engineers free to worry about other tasks. Sophos automatically discovered all our AWS servers with very little input enabling a clear picture of what servers we have over which sites and which are protected. Very easy to configure specific policies either by server type, location or office specific for end users.,Automatic reporting of non-compliance devices could be improved as such that the engineer managing the estate can quickly see what is out of compliance and what needs to be done to fix it. A single pane of glass interface to see all devices would be useful as switching between servers and desktops could be simplified. With multiple policies being created the interface gets very busy and determining which policy is active for a particular device is not always clear.,9,Sophos provides a clear defense for all AV threats with a minimal input form engineering at a very reasonable price point ROI was quick with saved engineering time, risk reduction and being cloud based meat no overhead for on premise solutions The added benefit of then using Sophos to monitor internet access and usage was icing on the cake providing added benefits with little additional overheads,Trend Micro Endpoint Security and Palo Alto Networks Traps,Zendesk, Smartsheet, Veeam Backup & ReplicationSophos is more than your legacy AV.It's being used across the whole organization.,Centralized management of endpoint security Easy to understand dashboards Protection against ransomware Nice graphical analysis for malware behavior and the vectors involved in the attack,SAML login support for cloud console Manual malware cleanups can be frustrating Feature to enable reinstall from the portal if need be.,9,Protection against ransomware Efficient malware remediation,CylancePROTECT,BlueCat Address Manager, lynda.com, Cisco Virtualization Experience InfrastructureGreat Endpoint Protection SolutionWe use Sophos Endpoint Protection for threat detection and prevention. It's deployed across our endpoints and other resources to provide antimalware protection, monitor our web resources and emails in real time and to protect us against ransomware attacks. After being a victim of ransomware attack, we switched to Sophos endpoint protection and it has been able to provide complete protection against ransomware and malware attacks over the years, thus providing peace of mind for us.,This product provides excellent protection against malware and its database is usually updated regularly to provide protection against even the newest malware This product gives far less false positive alerts than most products I've used Sophos Intercept X is a wonderful artificial intelligence solution that works better than most competing product's solutions. It provides excellent protection against ransomware attacks and hasn't failed since we steered using it,The web console looks dated and surely needs some improvements Support is very slow to respond It lacks customization when compared to some other popular solutions,8,It keeps us safe from malware attacks, thus giving us peace of mind to focus on our work, thereby increasing productivity It provides protection against ransomware attacks that are usually very expensive to resolve once they occur and usually leads to loss of important files and resources.,Norton Internet Security,Webroot SecureAnywhereThe easiest and most reliable security software out there!We use Sophos Endpoint Protection to provide an extra layer of security for our users. We deployed this software to our entire organization. The great thing is, I do not believe the majority of users are even aware that it exists. It runs completely silent in the background. It also makes management and monitoring very easy since all instances can be modified and changed in the cloud.,Easy, simple, centralized management makes this software a breeze to administer. The latest definitions update quietly and frequently. This provides great peace of mind knowing that your users will be protected from the latest threats. Deployment is very easy! It's a quick install and it simply does not malfunction once it's installed.,I literally have nothing negative to say about this software.,10,Sophos Endpoint Protection has made life easy for me, as an administrator. It is easily deployed, configured and maintained. This software has saved a lot of time. It stays up to date reliably, which saves me from having to go investigate why the latest definitions package was not installed. We have not had any security issues since it was deployed years ago. That alone makes Sophos Endpoint Protection a winner!,Symantec Endpoint Protection,Malwarebytes, Sophos UTMSophos makes financial and security sense.We implemented Sophos Endpoint Protection across our organization a couple of years ago and it has been the best solution we have seen to date. We installed this across our entire company and even implemented it into a new company that was recently acquired. Security is obviously at the fore-front of all of our minds, and Sophos has given us peace of mind.,Sophos Endpoint Protection installs very easily Sophos Endpoint Protection is very unobtrusive on the clients and doesn't get in the way of doing any other tasks. We have had no breaches since we installed Sophos and feel very confident in its protection,It may be nice to have a weekly/monthly digest to see what is going on and how the protection is holding up.,8,Sophos has allowed our IT team to set it and forget it and reduced our overall time spent managing our Security on our Network The value for the price of Sophos has been the best I've seen in my 15 years at my company,Symantec Advanced Threat Protection, Kaspersky Endpoint Security and Trend Micro Endpoint Security,Infor VISUAL, JIRA Software, VMware vCenter Server, vSphere, Microsoft SQL Server, Veeam ONE, Veeam Backup & ReplicationSophos Packs a PunchIn October of last year, our then IT consultants advised our Los Angeles office to switch from AVG to Sophos Endpoint protection. We were told that Sophos Endpoint Protection is a superior virus protection program. AVG had given us a number of problems by frequently detecting false positives and quarantining programs we use quite often in our organization. So AVG along with Malwarebytes were both uninstalled from all our workstations & our servers replaced by the single protection program Sophos Endpoint Protection.,Sophos Endpoint Protection provides a web portal for the administrator to login. Here the administrator can examine and track which computer devices are being protected from virus attacks. The Sophos Endpoint Protection web portal provides a dashboard entry page that shows a summary of what viruses may have been detected and quarantined. In addition this dashboard landing page shows a summary of alert messages sent from the protected computers like when a reboot is needed from a server after software updates. From the Sophos Endpoint Protection web portal various agents like for workstations as well as for servers can be downloaded for deployment. Here you can quickly find and install the agent for the Windows OS, Mac OS and even how to proceed with mobile device protections.,Though the Sophos Endpoint Protection agent for workstations is fairly competitive in cost, especially when with one agent we're protected from both viruses & malware intrusions, the agent to protect our servers are doubled in price. In order for Sophos Endpoint protection to compete with other comparable products, the price for server protection should be lowered. Though Sophos Endpoint Protection is supposed to be a superior antivirus protection program, we did encounter slowness specifically when attempting to open PDFs using the Adobe Acrobat program. Further research did show that Adobe Acrobat with "Protected Mode" enabled may cause this problem. The solution was to switch to other PDF applications and the problem was resolved. Unfortunately, Sophos is just not as well known as some of its competitors like AVG & Symantec. Perhaps more marketing from the company would help make this very powerful virus protection program become more of a household name.,6,Sophos Endpoint Protection had a positive rate of return because of the many capabilities offered to manage the product on their web portal. This really saves IT staff a number of man hours by being able to check computer deployments & protections directly from an internet connection instead of having to be physically in front of the devices to be protected. Sophos Endpoint Protection did have a negative impact when staff started to complain of slowness with opening PDFs using Adobe Acrobat. It took hours from IT staff to research & then narrow down the problem being related to the Sophos protection agent. We found this link from Adobe Acrobat to be most helpful in narrowing down the problem: https://helpx.adobe.com/acrobat/kb/protected-mode-troubleshooting-reader.html. Fortunately, a quick and simple solution was found by replacing Adobe Acrobat with other free PDF readers like Nitro Reader & Foxit. Sophos Endpoint Protection had a positive impact on our office because with the same software, it can be deployed to protect not only our wired devices but also all our wireless devices. This way we don't have to rely solely on our firewall to prevent virus attacks & malware intrusions.,,Symantec Endpoint Protection, McAfee Endpoint Security, DefenderThe best solution I ever useWe use Sophos endpoint for the protection of all the pc servers and Macs in the company in a worldwide environment. Not only in [our] corporate [office], but also in branches and all our stores spread around the world. We have worked with Sophos for many years without any problem, and this is what I search for in a software like this.,Web control on the client, also if it’s not connected to the company it works well We use also the Intercept X module to prevent attacks on non-signature based [issues] . And it’s really powerful. It’s multiplatform also for Mac Doesn’t use a lot of hardware resources,The deploy in a large environment is not easy, with the on-premise central server sometimes the deployment doesn’t work. With the cloud console, the deployment feature doesn’t exist, you must use third-party tools, but with a problem. The executable that must be downloaded expires after one month from the download and if you forget this the deploy in any new machine fails. The web console need improvement is slow and with poor function.,9,The ROI is positive, we haven't had virus problems, so we haven't lost business or time in recovering data,Symantec Endpoint Protection and McAfee Endpoint Security,Citrix NetScaler, Infoblox IPAM, SonicWall Web Content Filtering ServicesHappy Sophos AV End userThis product is being used across the whole organization. We mainly use it as an advanced anti-virus solution to protect end users from malware and viruses. It has cut our monthly infections down to almost 1 or 2 a month from being much higher before implementation,Cloud based management is much easier than its on-prem solution Easy to install and easy to get updates Easy on the CPU but still very powerful,The migration from on-prem sophos to cloud sophos, could have been a little more seamless Would love to get more insight on what was blocked or flagged and what it was trying to do Better and more granular feature management from group policies,9,Less time spent fixing malware related issues Able to meet requirements from NIST standards regarding use of anti-virus,ESET Endpoint Security and AVG AntiVirus Business Edition,Cisco Umbrella, JIRA Service Desk, XinkStrong capabilities and easy day to day administration.Sophos is being used across our entire organization. As we have distributed locations, having Sophos cloud helps us both deploy easily but also makes day to day management and remediation simpler. We were looking for a tool that was meaningful in the sense of security but also simple to manage and having a fast learning curve. Another benefit for us is that it has been easy to add capabilities such as protection against ransomware and more.,Cloud dashboard has easy UI and the product is generally easy to manage. The capabilities are strong, so we don't have to compromise between usability and features. We've been happy with the detection capabilities and feel generally well protected. The pricing has been fairly aggressive, which is welcome in a midsize organization. Alerts are meaningful, making it easy for us to act and re-mediate issues. The MacOS client has been just as strong as the Windows client.,We have to create new users in the access management part but Sophos also creates a new user based on every windows login. It'd be preferable if the system could automatically reconcile the user accounts. Special care needs to be used when planning when the client scans/updates, as this sometimes can be felt by the end-users. Would prefer if they didn't sell core security products separately, but included them all in one platform.,9,Sophos Endpoint Protection has enabled us to reach our compliance objective in regards to Anti-virus/Anti-malware. We have been able to decrease our internal time spent administrating our security portfolio with 60% due to faster work flows and better reporting. Pricing was aggressive, 40% below our previous security vendor. Enabling us to reduce both our upfront investment and man-hours.,Symantec Advanced Threat Protection, F-Secure Protection Service for Business, ESET Endpoint Security and Kaspersky Endpoint Security,GoToAssist, IBM MaaS360, Veritas Backup ExecBest in its classSophos Endpoint Protection is one of the industry leaders in providing information security services for enterprises. They offer a whole range of security features for an enterprise. We use their client end protection as well as more advanced firewall security. It offers real time protection for our IT resources including web, mail and all sorts of malware protection.,The company offers one stop service for all security related needs. Excellent Malware protection and recovery. Deployment and configuration is a breeze using the consolidated web management console.,Software can get bloated at times and consume lots of resources on machines, especially while performing incremental updates. Some emails and attachments are incorrectly flagged as dangerous. We had some issues while integrating Digital Guardian with Sophos, since it kept on blocking OS updates on the machines.,7,In our opinion Sophos offers excellent value for money spent towards protection of physical hardware as well as digital resources. The good point is that they offer a free version for home computers as well.,McAfee Enterprise Security Manager and McAfee Firewall Enterprise,JIRA Software, Atlassian Confluence, Google Analytics, Google Compute EngineSophos - Leader and TrustedSophos is a leader in the endpoint protection market. Manageability, system behavior, signature base are all top notch and can compete against any end-point protection software on the market. Sophos was a replacement for Kaspersky for enterprise-wide endpoint protection on workstations and servers. It is easy to deploy and is a reliable signature-based endpoint protection suite.,Malicious file identification Signature-based detection Web-based protection,Signature visibility Direct endpoint management - it seems this feature has gone away in recent versions,9,Great endpoint protection, reduction of malicious files on workstations and servers Central management is straight forward which reduces management times,Palo Alto Networks Traps, McAfee Endpoint Protection Suite and Symantec Advanced Threat Protection,RSA SecurID, Microsoft Project, OmniGraffleSophos Endpoint Protection ReviewSophos is a legitimate endpoint product. At first, I was skeptical by their claims of being able to block CryptoLocker, but seeing it work first hand was extremely impressive. Using this product has saved us countless hours recovering by encryption and they also offer a free home product that is just as good.,Preventing viruses Centrally identifying malicious behavior Backing up good files BEFORE a disaster,This is one of the best products in this area that I have seen, so not much room for improvement Software can always cost less, but they offer a free home version,9,Easy recovery from encryption Makes backups of files before they change Logging very decent,Symantec Endpoint Protection,Webroot, Symantec Endpoint EncryptionSophos EndPoint most awarded FeaturesSophos EndPoint Protection is widely used by organizations that want robust protection, along with other functionality. It resolves the problems of virus infection, web & mail downloads and mostly real-time protection. When customers ask me, "why Sophos EndPoint"? I answer; "Support is awesome, definitions are awesome, why not?". We are in a digital era where everything moves very quickly, Sophos has adopted to this situation, and convert it into a strengths by always keeping ahead of needs. For example, the latest module "Add On" that Sophos provides is Anti Exploit Prevention, to protect users against ransomware.,Malware Detection Awesome Performance (does not impact OS and/or Hardware performance). Top of the line worldwide Support. Multi OS Compatability with just one installer (for Windows) and Multi OS's compatability for management (one single console, centrally manages WinOS, MacOS, LinuxOS, etc).,The console is still based in local application, when many other vendors offers Web management Lots of room for default generated Reports Migration tools for end user to be able to migrate from one server to another (changing many parameters such as Server Name, IP Address, etc).,10,Once our technical and commercial areas got certified, the ROI over the time spent, is great. Actual customers, and/or new ones with other tools, feel safe and advised, once they get in touch with us. When Sophos EndPoint is being compared against Web Management Tools (competitors), we have failed to deliver, nevertheless, there is a version of Sophos Central (Cloud) which achieves this requirement at 100% and more, since is Cloud Based (on AWS). We are grateful to be on Sophos "Radar" as a Platinum Partner, and "The Americas" valued partner, we have seen our business grow, thanks to this kind of technology, throughout the years.,Symantec, Symantec Norton Security Premium, McAfee Endpoint Protection Suite, McAfee, Kaspersky Endpoint Security and Panda Security for Desktops,SafeGuard, Sophos Mobile Control, Sophos UTM, VMware ESXiSophos - No Nonsense Protection DeploymentSophos EndPoint is currently being utilized across the whole organization on all leased/purchased Windows based computers. It is deployed via scripting in Group Policy for OUs. It is providing adequate protection on our endpoints and provides peace of mind to end users knowing that their work PCs are being actively scanned for threats.,Deployment and implementation was relatively easy to do Reporting of issues to users via the desktop app and steps taken to remedy,The application just seems bloated and resource hungry. Four different app listings in programs and features for this protection. Malware remediation could be better. Doesn't remove infections of this type well.,6,Malwarebytes Endpoint Protection,Malwarebytes, Bomgar Remote Support SoftwareSophos - #1 Endpoint SecurityWe are using Sophos in our entire company on all of the desktops, laptops, and servers throughout our various offices and mobile sites. With its simple integration through MSSC we are able to automatically deploy it to all of the machines on our network, as well as any new computers we bring online and pretty much forget it is even there. It runs near silently in the background taking up very little computer power at idle and during your usual active scans. It does use a bit of CPU power when performing a full system scan, but that is to be expected. The email reports you can have set to alert you for various events assist greatly in helping fix issues before they become big problems which is especially invaluable with our field techs that we cannot just go visit. At times it will send out false positives, especially if the computer has been off, or offline for a long time (as can happen in the field) and will show being out of date, out of compliance, etc., as it comes back up - but false positives aside it always syncs up and runs like a champ.,Simple installation (MSSC compatible.) Removes all conflicting software automatically. Small system footprint. Powerful Scanner/Active Shields.,Email reports can be false positives - software should check itself and attempt to update/apply policies and then send out a notification if that fails, not before. It should not require admin privileges to run a manual scan. Email reports could use a little more detail on what exact policy/item is out of compliance to make issue easier to verify/fix.,10,Allowed us to remove our previous higher resource using Symantec software. Easy central management through an easily navigated portal. Peace of mind for our mobile workers who cannot always get online on a regular basis for updates that it will take care of itself.,McAfee Enterprise Security Manager and Symantec Endpoint Protection,TeamViewer, SalesBinder, Druva inSync, Jive Hosted VoIP, IBM MaaS360, Adobe Photoshop, Adobe Acrobat DC, Google Hangouts, Acronis Backup & Recovery, MalwarebytesSophos is very easy to use with WindowsWe use Sophos across our entire infrastructure. We have a mix of Windows, Linux, and Apple products. Deploying Sophos out to Windows machines is a fairly easy and seamless process that can simply be done through the enterprise console to a machine anywhere that's connected to your network. The package must be manually installed on Linux and Mac, but updates to all machines will be automated once the client is installed.,Automatically installed on Windows machines. Automatically updates. The console gives you lots of control over your deployment. Including things like what version of the client software you want to run on your machines. You can easily see what machines are, or aren't, checking in with the console.,It'd be nice if there was an automated deployment for Linux and Mac. Visibility into Mac/Linux machines from the console could be better. Basically the functionality with Mac/Linux is very limited. The enterprise console isn't very straight forward at first. It takes some time to get used to navigating the menus to find what you want.,8,We rarely have to think about Sophos when deploying Windows machines. The automated process does everything for us. On Mac and Linux we have to remember to manually install Sophos. Cleaning old machines from the console that longer exists can be tedious and time consuming at times.,,Malwarebytes
Unspecified
Sophos Intercept X
85 Ratings
Score 8.5 out of 101
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>

Sophos Intercept X Reviews

Sophos Intercept X
85 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.5 out of 101

Do you work for this company?

Show Filters 
Hide Filters 
Filter 85 vetted Sophos Intercept X reviews and ratings
Clear all filters
Overall Rating
Reviewer's Company Size
Last Updated
By Topic
Industry
Department
Experience
Job Type
Role

Reviews (1-23 of 23)

Companies can't remove reviews or game the system. Here's why.
Jane Updegraff profile photo
Score 6 out of 10
Vetted Review
Verified User
Review Source
Sophos Intercept X is our chosen endpoint security solution for all of our Windows endpoints (Windows and Windows Server) across the entire enterprise. We were already using Sophos before, and we replaced an older Sophos appliance with the cloud-based "Sophos Control" version instead, and we abandoned our on-prem Sophos web appliance.
  • Sophos is a little too good at DLP. But it is indeed very good at not allowing our data to leave our endpoints without strict adherence to policy.
  • Sophos is very good at protecting endpoints against viruses and other malware.
  • Sopho is really good at informing us of what is happening on our endpoints. OOTB reporting is way better than expected.
  • Sophos OOTB policies are very strict and they don't offer anything less strict without you creating new custom policies. I'm sure this is deliberate because the product starts you out in the safest way possible but it means that you will have lots of calls to your tech support desk when you first deploy it unless you do somewhat extensive testing beforehand.
  • Sophos Intercept X is currently broken (at least the DLP component) by having secure boot turned on in the UEFI/BIOS. If any user wants to be able to write data to a USB drive or floppy from their PC (yes we still have a couple users who need to use floppies) we have to turn off secure boot on their PC, even if the DLP policy for that user/PC combination specifies that the user and PC are allowed to write to USB/floppy. This would be a very serious problem if it weren't for the fact that we have very few users who need to write files to USB. For us it's OK but I bet it would be a deal-breaker for others.
  • I don't see a whole lot of evidence that Intercept X is any different than any other anti-virus, so maybe their admin alerts just don't clearly identify when they have identified a zero-day threat or maybe we just haven't had any zero-day threats.
It works just as well as any other modern antivirus and it has a really nice web console that I find easy to use. I like the fact that the built-in OOTB stuff that you start with is really secure and pretty much complete right OOTB, so it's easy to get going fast. But I do not like that the sales and implementation staff did not make it clear that end users would no longer be able to write to USB or floppy (even when the operation that they want to do does not violate the DLP policy or the peripheral device policy in Sophos Intercept X) unless we turn off secure boot in the UEFI of each PC. That's something that has to be done manually on each PC and it's a pain. It makes sense that users can't drag data from a network share to a USB to write, that is not a secure operation, and I like that, but users should be able to copy and paste documents (that they own) from a folder on their own local PC to a USB stick without having to have someone from IT change their boot settings in their UEFI/BIOS. It's only doable for us because we have very few people that need to be able to transport files on physical media.
Read Jane Updegraff's full review
Ryhlen Schoeberl profile photo
Score 10 out of 10
Vetted Review
Verified User
Review Source
We use Sophos to protect all the machines in our environment. We also have the cloud set up so when our mobile users connect in the world we can make sure they get updates from the Sophos Database. We also get alerts if a system has not updated in a while which helps us find computers that are not used that often.

  • Licensing is per user not, machine. So a user could have multiple machines and not have to purchase so many licenses
  • Notifications for issues on devices where it has not contacted system in awhile
  • Notification when there is a threat that was cleaned and if any additional action is needed.
  • Blocking unwanted applications from running in the background when browsing the internet
  • I honestly cannot thing of anything negative about the Endpoint protection.
I like it in our environment. 2e paired it with Sophos Intercept X for added protection where it detects unusual changes and rollback from changes that threats have made. All the information is on the same interface as well easy to use and deploy. Not sure what scenario it would not be able to be used in.
Read Ryhlen Schoeberl's full review
Thayer Ramahi profile photo
Score 10 out of 10
Vetted Review
Verified User
Review Source
Sophos Intercept X has been added to the whole organization and all backend server as well (285 seats).
  • Block ransomware.
  • Notify administrators.
  • Revert back the data to the previous stat.
  • Blocks all executables from running.
  • It has to be used with Sophos AV & Sophos central to have an effective solution.
We have been using Sophos AV for the past 5 years, we love it and it is light on the work stations. Once Intercept X launched we purchased only for our workstation a week later we got hit twice with 2 different users and it was fantastic, no data was lost, the laptops got disconnected from the network, the team managed to clean the infection and no data was lost. a year later we deploy it on the server after testing the effect on the server performance and functionality (which has a light effect on the performance). 6 months later one of our physician's accounts was hacked and the hackers tried to deploy Phobos ransomware and were unsuccessful and it also blocked the network access.

We are very pleased with Intercept X it was an investment worth every penny.
Read Thayer Ramahi's full review
No photo available
Score 8 out of 10
Vetted Review
Verified User
Review Source
We use Sophos Intercept-X company-wide for our endpoint security solution and it has been doing an excellent job in thwarting off potential attacks.
  • Easy migration from Symantec to Sophos Intercept-X. A simple .msi file allowed for the automatic uninstall of Symantec.
  • Sophos Central makes it very simple to mitigate potential issues immediately. I can log in and remediate from anywhere.
  • Most vulnerabilities are blocked and removed without IT Helpdesk needing to touch a machine. The reporting capabilities after the fact are informative.
  • There are a bunch of running Sophos processes on machines with the software installed. Some take up quite a bit of memory at times.
  • Although the process to correct is easy and relatively quick, I've noticed quite a few false positives when it comes to web filtering.
  • Setting up policies is a little clunky at first.
If a company has compliancy requirements for reporting security breaches, Sophos Intercept-X has some nice reporting capabilities. It's usually easy to find the root cause and it shows the process for cleaning up the threat.
Read this authenticated review
No photo available
Score 7 out of 10
Vetted Review
Verified User
Review Source
Sophos is utilized across the whole organization. It provides the layer of protection needed for endpoints and servers against various forms of viruses and attacks that batter the technology industry. The need for protection of assets is well provided with the Sophos product and its components with little interaction or annoying notifications to users.
  • Alert notifications can be sent directly to email as soon as any suspicious activity or files are discovered.
  • The endpoint agent is delivered in one installer package, allowing for ease of deployment.
  • Sophos works with common SIEM products and integrates well, giving visibility of events to security analysts for pattern detection.
  • Sophos is heavy on resource utilization for scanning and detecting.
  • Upon installation and use, there are approximately 17 services that are installed and run the product.
  • Sophos could make it easier on deployment by being able to scan a domain and push the agent out to assets that don't have protection.
Sophos works well in smaller organizations where the number of assets to be protected can be managed. If assets are not higher-end technology/memory, Sophos will "slow down" the asset with its scanning and detecting. There are, however, global settings to "tune" the product and disable scanning from files, folders, and processes that are known to be good. This does greatly alleviate utilization problems.
Read this authenticated review
No photo available
Score 10 out of 10
Vetted Review
Verified User
Review Source
We have been using Sophos Intercept X with EDR for the past 3 or so months and it is an excellent platform. It provides protection and prevention for all my servers as well as all client workstations over 80+ sites. The product also serves as a web filtering platform for the business, with easy to use and set up web filtering rules.
  • Antivirus
  • EDR
  • Web Filtering
  • Integration with SIEM (AlienVault USM Anywhere)
  • The tamper protection is very clunky. I understand why it was done, however, you should be allowed to set up your own anti-tamper password.
  • The Sophos Central (the web management interface) is a bit confusing, especially when it gets to creating groups to organize your assets.
  • Not easy to get into the administrator interface on the clients.
It is a great product. Excellent as an antivirus solution, does a great job (so far) as an EDR and the best is that the version we have also acts as a web filter, which is difficult to be circumvented by the user (by using VPNs etc.). Highly recommended and when you add all the features, actually cost-effective.
Read this authenticated review
Alex Farling profile photo
Score 10 out of 10
Vetted Review
Reseller
Review Source
We use Sophos Endpoint Protection on our internal equipment, as well as client computers/servers. The product enables us to manage AntiVirus, Encryption, and Next Gen AntiMalware in a single portal with a single agent. The protection we get from this combo is second to none, and that's where the real value of this product comes through - tight integration to the entire platform...
  • Simple Installation.
  • Clean reporting.
  • Single pane of glass management with other Sophos products.
  • Client can occasionally be more resource intensive than we would like...
We use it everywhere, including mixed environments / Mac and Linux deployments. Where it may not be well suited is for extremely budget-conscious customers who are not willing to adopt the whole solution stack - that said, you get what you pay for and Sophos is cost competitive against other solutions.
Read Alex Farling's full review
Neil Taylor profile photo
Score 9 out of 10
Vetted Review
Verified User
Review Source
Sophos is used globally across the entire company. We really on Sophos to provide endpoint protection to all desktops and servers plus the entire AWS estate. This provides us with our primary AV defense from internal users and malicious internet content. This is managed by multiple teams who can interact with the cloud-based solution and closely monitor all devices for compliance.
  • Simple to setup and configure leaving engineers free to worry about other tasks.
  • Sophos automatically discovered all our AWS servers with very little input enabling a clear picture of what servers we have over which sites and which are protected.
  • Very easy to configure specific policies either by server type, location or office specific for end users.
  • Automatic reporting of non-compliance devices could be improved as such that the engineer managing the estate can quickly see what is out of compliance and what needs to be done to fix it.
  • A single pane of glass interface to see all devices would be useful as switching between servers and desktops could be simplified.
  • With multiple policies being created the interface gets very busy and determining which policy is active for a particular device is not always clear.
Sophos is particularly well suited to small engineering teams where a minimum amount of training is required and ongoing monitoring is simple and easy to conduct. The interface is intuitive (sometimes a little cluttered), easy to use and easy to quickly identify any potential issues and vulnerabilities that may be detected. When you have detected an issue, isolation and/or cleanup of the device is very simple with just a few mouse clicks and false positives are kept to a minimum
Read Neil Taylor's full review
Eric V. Zarghami profile photo
Score 9 out of 10
Vetted Review
Verified User
Review Source
It's being used across the whole organization.
  • Centralized management of endpoint security
  • Easy to understand dashboards
  • Protection against ransomware
  • Nice graphical analysis for malware behavior and the vectors involved in the attack
  • SAML login support for cloud console
  • Manual malware cleanups can be frustrating
  • Feature to enable reinstall from the portal if need be.
It`s ideal for small to big IT shops where a trained individual can pretty much oversee the endpoint health and get real-time data on their security posture.
Due to its centralized management nature and immense visibility into endpoints well-being, it requires constant monitoring and timely reaction (like any other security tool) which can be a daunting task if not done regularly as it easily piles up into thousands of action items that could take days/weeks to complete. With more visibility comes more responsibility of-course.
Read Eric V. Zarghami's full review
Frank William profile photo
Score 8 out of 10
Vetted Review
Verified User
Review Source
We use Sophos Endpoint Protection for threat detection and prevention. It's deployed across our endpoints and other resources to provide antimalware protection, monitor our web resources and emails in real time and to protect us against ransomware attacks. After being a victim of ransomware attack, we switched to Sophos endpoint protection and it has been able to provide complete protection against ransomware and malware attacks over the years, thus providing peace of mind for us.
  • This product provides excellent protection against malware and its database is usually updated regularly to provide protection against even the newest malware
  • This product gives far less false positive alerts than most products I've used
  • Sophos Intercept X is a wonderful artificial intelligence solution that works better than most competing product's solutions. It provides excellent protection against ransomware attacks and hasn't failed since we steered using it
  • The web console looks dated and surely needs some improvements
  • Support is very slow to respond
  • It lacks customization when compared to some other popular solutions
It's well suited for mainly small and midsized organizations concerned about protecting their computers and other resources from everyday threats such as malware, viruses and ransomware attacks.
Read Frank William's full review
Matt Rogers profile photo
Score 10 out of 10
Vetted Review
Verified User
Review Source
We use Sophos Endpoint Protection to provide an extra layer of security for our users. We deployed this software to our entire organization. The great thing is, I do not believe the majority of users are even aware that it exists. It runs completely silent in the background. It also makes management and monitoring very easy since all instances can be modified and changed in the cloud.
  • Easy, simple, centralized management makes this software a breeze to administer.
  • The latest definitions update quietly and frequently. This provides great peace of mind knowing that your users will be protected from the latest threats.
  • Deployment is very easy! It's a quick install and it simply does not malfunction once it's installed.
  • I literally have nothing negative to say about this software.
I think this software has a place at both large and small organizations. It is easily able to be scaled to any number of clients. It is great if you want to employ centralized management of your security software. It is great in scenarios where the IT staff simply does not have the time to troubleshoot software that should just work. I cannot think of a scenario where this software would not be beneficial!
Read Matt Rogers's full review
Jon Shurtliff profile photo
Score 8 out of 10
Vetted Review
Verified User
Review Source
We implemented Sophos Endpoint Protection across our organization a couple of years ago and it has been the best solution we have seen to date.
We installed this across our entire company and even implemented it into a new company that was recently acquired. Security is obviously at the fore-front of all of our minds, and Sophos has given us peace of mind.
  • Sophos Endpoint Protection installs very easily
  • Sophos Endpoint Protection is very unobtrusive on the clients and doesn't get in the way of doing any other tasks.
  • We have had no breaches since we installed Sophos and feel very confident in its protection
  • It may be nice to have a weekly/monthly digest to see what is going on and how the protection is holding up.
Sophos has been great for our Medium-sized company and has allowed us to focus on other tasks instead of worrying about security.
Read Jon Shurtliff's full review
Paul Li profile photo
Score 6 out of 10
Vetted Review
Verified User
Review Source
In October of last year, our then IT consultants advised our Los Angeles office to switch from AVG to Sophos Endpoint protection. We were told that Sophos Endpoint Protection is a superior virus protection program. AVG had given us a number of problems by frequently detecting false positives and quarantining programs we use quite often in our organization. So AVG along with Malwarebytes were both uninstalled from all our workstations & our servers replaced by the single protection program Sophos Endpoint Protection.
  • Sophos Endpoint Protection provides a web portal for the administrator to login. Here the administrator can examine and track which computer devices are being protected from virus attacks.
  • The Sophos Endpoint Protection web portal provides a dashboard entry page that shows a summary of what viruses may have been detected and quarantined. In addition this dashboard landing page shows a summary of alert messages sent from the protected computers like when a reboot is needed from a server after software updates.
  • From the Sophos Endpoint Protection web portal various agents like for workstations as well as for servers can be downloaded for deployment. Here you can quickly find and install the agent for the Windows OS, Mac OS and even how to proceed with mobile device protections.
  • Though the Sophos Endpoint Protection agent for workstations is fairly competitive in cost, especially when with one agent we're protected from both viruses & malware intrusions, the agent to protect our servers are doubled in price. In order for Sophos Endpoint protection to compete with other comparable products, the price for server protection should be lowered.
  • Though Sophos Endpoint Protection is supposed to be a superior antivirus protection program, we did encounter slowness specifically when attempting to open PDFs using the Adobe Acrobat program. Further research did show that Adobe Acrobat with "Protected Mode" enabled may cause this problem. The solution was to switch to other PDF applications and the problem was resolved.
  • Unfortunately, Sophos is just not as well known as some of its competitors like AVG & Symantec. Perhaps more marketing from the company would help make this very powerful virus protection program become more of a household name.
Sophos Endpoint Protection is more well suited for larger organizations where they require protection from serious attacks, especially on the server side. With their robust high powered agent specifically designed for the server, large corporations would have no problems in paying a more heftier price to protect their servers compared to their workstations.

Read Paul Li's full review
Mauro Ruscelli profile photo
Score 9 out of 10
Vetted Review
Verified User
Review Source
We use Sophos endpoint for the protection of all the pc servers and Macs in the company in a worldwide environment. Not only in [our] corporate [office], but also in branches and all our stores spread around the world. We have worked with Sophos for many years without any problem, and this is what I search for in a software like this.
  • Web control on the client, also if it’s not connected to the company it works well
  • We use also the Intercept X module to prevent attacks on non-signature based [issues] . And it’s really powerful.
  • It’s multiplatform also for Mac
  • Doesn’t use a lot of hardware resources
  • The deploy in a large environment is not easy, with the on-premise central server sometimes the deployment doesn’t work.
  • With the cloud console, the deployment feature doesn’t exist, you must use third-party tools, but with a problem. The executable that must be downloaded expires after one month from the download and if you forget this the deploy in any new machine fails.
  • The web console need improvement is slow and with poor function.
I suggest Sophos in any environment because I think that it’s doing good work and [provides] good protection. This is most important for an endpoint protection [tool].
Read Mauro Ruscelli's full review
No photo available
Score 9 out of 10
Vetted Review
Verified User
Review Source
This product is being used across the whole organization. We mainly use it as an advanced anti-virus solution to protect end users from malware and viruses. It has cut our monthly infections down to almost 1 or 2 a month from being much higher before implementation
  • Cloud based management is much easier than its on-prem solution
  • Easy to install and easy to get updates
  • Easy on the CPU but still very powerful
  • The migration from on-prem sophos to cloud sophos, could have been a little more seamless
  • Would love to get more insight on what was blocked or flagged and what it was trying to do
  • Better and more granular feature management from group policies
It is ranked highly by Gartner for a reason, the cost and performance are great. They stay up to date with virus engines. Every company really should have anti-virus even Mac computers. We run Sophos on sensitive computers too because it is not hard on the CPU and is pretty silent when its working well
Read this authenticated review
No photo available
Score 9 out of 10
Vetted Review
Verified User
Review Source
Sophos is being used across our entire organization. As we have distributed locations, having Sophos cloud helps us both deploy easily but also makes day to day management and remediation simpler. We were looking for a tool that was meaningful in the sense of security but also simple to manage and having a fast learning curve. Another benefit for us is that it has been easy to add capabilities such as protection against ransomware and more.
  • Cloud dashboard has easy UI and the product is generally easy to manage. The capabilities are strong, so we don't have to compromise between usability and features.
  • We've been happy with the detection capabilities and feel generally well protected.
  • The pricing has been fairly aggressive, which is welcome in a midsize organization.
  • Alerts are meaningful, making it easy for us to act and re-mediate issues.
  • The MacOS client has been just as strong as the Windows client.
  • We have to create new users in the access management part but Sophos also creates a new user based on every windows login. It'd be preferable if the system could automatically reconcile the user accounts.
  • Special care needs to be used when planning when the client scans/updates, as this sometimes can be felt by the end-users.
  • Would prefer if they didn't sell core security products separately, but included them all in one platform.
Sophos Endpoint Protection is great for smaller and midsize companies. It offers well-rounded protection capabilities while also being user-friendly enough that small and medium companies can easily adopt and maintain it while offering a great overview of your devices. For larger enterprises, integrating with a directory seems to be essential to allow for reconciliation of user accounts.
Read this authenticated review
No photo available
May 30, 2018

Best in its class

Score 7 out of 10
Vetted Review
Verified User
Review Source
Sophos Endpoint Protection is one of the industry leaders in providing information security services for enterprises. They offer a whole range of security features for an enterprise. We use their client end protection as well as more advanced firewall security. It offers real time protection for our IT resources including web, mail and all sorts of malware protection.
  • The company offers one stop service for all security related needs.
  • Excellent Malware protection and recovery.
  • Deployment and configuration is a breeze using the consolidated web management console.
  • Software can get bloated at times and consume lots of resources on machines, especially while performing incremental updates.
  • Some emails and attachments are incorrectly flagged as dangerous.
  • We had some issues while integrating Digital Guardian with Sophos, since it kept on blocking OS updates on the machines.
I think it's an excellent all in one antivirus protection software. It filters out malware and flags potentially dangerous websites as well.

We went with the cloud version of the software suite instead of hosting it on premises. It has an extremely simple all in one web management console. Sophos End Point Protection suite comes with a very well designed and comprehensive web management console. It is the single point of access for numerous services.
Read this authenticated review
Alex Waitkus, CISSP-ISSAP, OSCP profile photo
Score 9 out of 10
Vetted Review
Verified User
Review Source
Sophos is a leader in the endpoint protection market. Manageability, system behavior, signature base are all top notch and can compete against any end-point protection software on the market. Sophos was a replacement for Kaspersky for enterprise-wide endpoint protection on workstations and servers. It is easy to deploy and is a reliable signature-based endpoint protection suite.
  • Malicious file identification
  • Signature-based detection
  • Web-based protection
  • Signature visibility
  • Direct endpoint management - it seems this feature has gone away in recent versions
I cant think of any endpoint protection scenarios where Sophos Endpoint Protection is not appropriate for deployment, perhaps restricted deployments that only allow one-way traffic (data diodes). Sophos is great for Mac, Windows, Linux, and server environments. It is easy to deploy and manage through its admin utility. Some direct endpoint management functionality has disappeared in recent versions.
Read Alex Waitkus, CISSP-ISSAP, OSCP's full review
No photo available
Score 9 out of 10
Vetted Review
Verified User
Review Source
Sophos is a legitimate endpoint product. At first, I was skeptical by their claims of being able to block CryptoLocker, but seeing it work first hand was extremely impressive. Using this product has saved us countless hours recovering by encryption and they also offer a free home product that is just as good.
  • Preventing viruses
  • Centrally identifying malicious behavior
  • Backing up good files BEFORE a disaster
  • This is one of the best products in this area that I have seen, so not much room for improvement
  • Software can always cost less, but they offer a free home version
We have successfully used this in small to medium sized companies. It is hands down one of the best solutions out there in this area. Restorations are simple, central management is a breeze as well as deployment. Pricing is reasonable as well, as the ROI is very high (especially if a user gets an infection).
Read this authenticated review
Juan Carlos Sanchez Pignalosa profile photo
Score 10 out of 10
Vetted Review
Reseller
Review Source
Sophos EndPoint Protection is widely used by organizations that want robust protection, along with other functionality. It resolves the problems of virus infection, web & mail downloads and mostly real-time protection. When customers ask me, "why Sophos EndPoint"? I answer; "Support is awesome, definitions are awesome, why not?". We are in a digital era where everything moves very quickly, Sophos has adopted to this situation, and convert it into a strengths by always keeping ahead of needs. For example, the latest module "Add On" that Sophos provides is Anti Exploit Prevention, to protect users against ransomware.
  • Malware Detection
  • Awesome Performance (does not impact OS and/or Hardware performance).
  • Top of the line worldwide Support.
  • Multi OS Compatability with just one installer (for Windows) and Multi OS's compatability for management (one single console, centrally manages WinOS, MacOS, LinuxOS, etc).
  • The console is still based in local application, when many other vendors offers Web management
  • Lots of room for default generated Reports
  • Migration tools for end user to be able to migrate from one server to another (changing many parameters such as Server Name, IP Address, etc).
Sophos EndPoint exceeds today's IT Needs and protection, since it outperforms competitors on many levels, such as detection and performance. It is difficult to find tools that perform so well, and also to detection. ISophos EndPoint is suitable for every organization since enterprise grade protection and communication exist (via SUMs "Sophos Update Managers") for remote offices and branch offices. Sophos EndPoint is less suitable for small companies, which only needs anti-malware. Sophos EndPoint Protection, at its most basic level, offers Web and multiple modules of protection.
Read Juan Carlos Sanchez Pignalosa's full review
Evan Miller profile photo
Score 6 out of 10
Vetted Review
Verified User
Review Source
Sophos EndPoint is currently being utilized across the whole organization on all leased/purchased Windows based computers. It is deployed via scripting in Group Policy for OUs. It is providing adequate protection on our endpoints and provides peace of mind to end users knowing that their work PCs are being actively scanned for threats.
  • Deployment and implementation was relatively easy to do
  • Reporting of issues to users via the desktop app and steps taken to remedy
  • The application just seems bloated and resource hungry. Four different app listings in programs and features for this protection.
  • Malware remediation could be better. Doesn't remove infections of this type well.
For larger enterprises, the deployment capabilities of this protection suite are well suited. If you are in a smaller business or IT shop there are probably other more cost-effective and better-suited protection suites available.
Read Evan Miller's full review
Kyle Farago profile photo
Score 10 out of 10
Vetted Review
Verified User
Review Source
We are using Sophos in our entire company on all of the desktops, laptops, and servers throughout our various offices and mobile sites. With its simple integration through MSSC we are able to automatically deploy it to all of the machines on our network, as well as any new computers we bring online and pretty much forget it is even there. It runs near silently in the background taking up very little computer power at idle and during your usual active scans. It does use a bit of CPU power when performing a full system scan, but that is to be expected. The email reports you can have set to alert you for various events assist greatly in helping fix issues before they become big problems which is especially invaluable with our field techs that we cannot just go visit. At times it will send out false positives, especially if the computer has been off, or offline for a long time (as can happen in the field) and will show being out of date, out of compliance, etc., as it comes back up - but false positives aside it always syncs up and runs like a champ.
  • Simple installation (MSSC compatible.)
  • Removes all conflicting software automatically.
  • Small system footprint.
  • Powerful Scanner/Active Shields.
  • Email reports can be false positives - software should check itself and attempt to update/apply policies and then send out a notification if that fails, not before.
  • It should not require admin privileges to run a manual scan.
  • Email reports could use a little more detail on what exact policy/item is out of compliance to make issue easier to verify/fix.
Sophos offers protection for nearly every setting, from a single home computer to a small 10 computer business to a thousand computer company. It is a stable system, it has high customization, and is simple to use for your average home user or an IT professional. The only situation in which Sophos may not be a good fit is for a computer that is never connected to the internet and never has anything connected to it from the outside world. Not many standalone systems like that are present.
Read Kyle Farago's full review
Dan Lepinski profile photo
Score 8 out of 10
Vetted Review
Verified User
Review Source
We use Sophos across our entire infrastructure. We have a mix of Windows, Linux, and Apple products. Deploying Sophos out to Windows machines is a fairly easy and seamless process that can simply be done through the enterprise console to a machine anywhere that's connected to your network. The package must be manually installed on Linux and Mac, but updates to all machines will be automated once the client is installed.
  • Automatically installed on Windows machines.
  • Automatically updates.
  • The console gives you lots of control over your deployment. Including things like what version of the client software you want to run on your machines.
  • You can easily see what machines are, or aren't, checking in with the console.
  • It'd be nice if there was an automated deployment for Linux and Mac.
  • Visibility into Mac/Linux machines from the console could be better. Basically the functionality with Mac/Linux is very limited.
  • The enterprise console isn't very straight forward at first. It takes some time to get used to navigating the menus to find what you want.
It's much more well suited in a Windows environment; simply because it was clearly built around supporting Windows machines. If you have a lot of Macs and/or Linux machines, you may want to consider looking elsewhere if you need the install process to be automated. Knowledge around scripting would obviously help a lot in that scenario. However, I'm not sure if there is an endpoint protection product out there that works seamlessly and is automated for Linux/Mac out of the box.
Read Dan Lepinski's full review

Feature Scorecard Summary

Anti-Exploit Technology (5)
9.0
Endpoint Detection and Response (EDR) (5)
9.0
Centralized Management (5)
8.4
Hybrid Deployment Support (2)
7.5
Infection Remediation (5)
9.0
Vulnerability Management (3)
7.7
Malware Detection (5)
9.2

About Sophos Intercept X

Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.
Categories:  Antivirus,  Endpoint Security

Sophos Intercept X Technical Details

Operating Systems: Unspecified
Mobile Application:No