Skip to main content
TrustRadius
Sophos Intercept X

Sophos Intercept X

Overview

What is Sophos Intercept X?

Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.

Read more
Recent Reviews

TrustRadius Insights

Sophos Endpoint Protection has become a widely-used and highly regarded solution for safeguarding machines in various environments. Users …
Continue reading
TrustRadius Insights
TrustRadius Insights
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 7 features
  • Centralized Management (19)
    10.0
    100%
  • Infection Remediation (19)
    9.8
    98%
  • Endpoint Detection and Response (EDR) (19)
    9.6
    96%
  • Anti-Exploit Technology (19)
    8.6
    86%

Reviewer Pros & Cons

View all pros & cons
Verified User
Administrator in Information Technology
Food & Beverages Company, 201-500 employees
Verified User
Administrator in Information Technology
Education Management Company, 201-500 employees
Return to navigation

Pricing

View all pricing

Intercept X Advanced

$28

On Premise
per year per user

Intercept X Advanced with XDR

$48

On Premise
per year per user

Sophos Managed Threat Response

$79

On Premise
per year per user

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.sophos.com/en…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Starting price (does not include set up fee)

  • $28 per year per user
Return to navigation

Product Demos

CVE-2017-11826 0day exploit vs months old Sophos Intercept X

YouTube

How WannaCry ransomware works

YouTube
Return to navigation

Features

Endpoint Security

Endpoint security software protects enterprise connected devices from malware and cyber attacks.

9.2
Avg 8.5
Return to navigation

Product Details

What is Sophos Intercept X?

Built to stop the widest range of attacks, Sophos Intercept X has been proven to prevent even the most advanced ransomware and malware by leveraging a unique combination of next-generation techniques. This includes the ability to detect never-before-seen malware with deep learning, stop ransomware with Sophos anti-ransomware technology, and deny attacker tools with signatureless exploit prevention. Intercept X also includes root cause analysis to provide insight into threats, and instant malware removal to ensure no attack remnants remain.

Sophos Intercept X Features

Endpoint Security Features

  • Supported: Anti-Exploit Technology
  • Supported: Endpoint Detection and Response (EDR)
  • Supported: Centralized Management
  • Supported: Infection Remediation
  • Supported: Malware Detection

Sophos Intercept X Screenshots

Screenshot of Screenshot of Screenshot of

Sophos Intercept X Video

Sophos Intercept X Demo

Sophos Intercept X Competitors

Sophos Intercept X Technical Details

Deployment TypesOn-premise
Operating SystemsWindows, Mac
Mobile ApplicationApple iOS, Android, Windows Phone, Blackberry

Frequently Asked Questions

Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.

Sophos Intercept X starts at $28.

Symantec Endpoint Security and Kaspersky Endpoint Security are common alternatives for Sophos Intercept X.

Reviewers rate Centralized Management highest, with a score of 10.

The most common users of Sophos Intercept X are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(202)

Community Insights

TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!

Sophos Endpoint Protection has become a widely-used and highly regarded solution for safeguarding machines in various environments. Users rely on this product to ensure that their systems are protected and receive regular updates from the Sophos Database. With its ability to send alerts when a system hasn't been updated in a while, it helps users identify computers that are not frequently used. This feature proves to be invaluable in maintaining the security of an organization's network.

One long-time user praises Sophos Intercept X as the most secure endpoint product on the market. Its ease of deployment and management, combined with its ability to catch everything, make it the preferred choice for both home and business use. By dramatically reducing instances of malware and ransomware, Sophos Intercept X has proven itself as a reliable defense against cyber threats. It also offers powerful administrative capabilities through the Sophos Central web console, allowing users to identify and address security issues effectively.

Sophos Endpoint Protection is widely used across industries for robust protection against virus infections, web and mail downloads, and real-time threats. The product adapts to the rapidly changing digital era by offering advanced features like Anti Exploit Prevention, which safeguards users against ransomware attacks. Whether deployed in the healthcare industry or small businesses, Sophos Intercept X provides peace of mind by effectively preventing malicious software issues. Furthermore, its non-invasive nature and quick response to potential threats make it an ideal choice for organizations seeking a reliable and user-friendly endpoint security solution.

Intercept X's comprehensive protection extends beyond traditional malware detection, with features such as content filtering, application management, and cloud management with MFA authentication. It ensures security compliance, preventing ransomware attacks on devices ranging from workstations to servers. Real-time protection against various forms of malware, including web and mail protection, contributes to Sophos Endpoint Protection's reputation as an industry leader in providing information security services for enterprises.

In addition to protecting against potential attacks, Sophos Endpoint Protection requires minimal user interaction, making it a hassle-free solution for organizations. Its cloud-based architecture simplifies deployment, management, and remediation across distributed locations. Users have reported successfully defending against CryptoLocker and significantly reducing monthly infections, resulting in a more secure environment. With its advanced features like malware identification and automatic quarantine, Intercept X enhances security measures and provides excellent protection against cyber threats.

Overall, Sophos has gained praise from users as a reliable, easy-to-use, and effective endpoint solution. Whether deployed globally across entire companies or implemented organization-wide, the product delivers top-notch system behavior and manageability. It seamlessly integrates with desktops, laptops, and servers, running silently in the background without causing disruptions.

One standout feature of Sophos is its ability to send email reports that alert users of various events, allowing them to proactively address any issues before they become major problems. Users have successfully deployed Sophos across their entire infrastructure, including Windows, Linux, and Apple products. While deployment on Windows machines is easy through the enterprise console, Linux and Mac installation may require manual setup. Once installed, Sophos automatically updates all machines and runs smoothly without consuming excessive computer resources.

Intercept X, a module of Sophos Central, is widely used as an anti-malware and anti-virus agent on endpoint machines and servers. Its policy-setting capabilities for web and application access provide an additional layer of security. Small businesses rely on Sophos Intercept X not only for protection but also for timely notifications of potential threats. The product's effectiveness in preventing malicious software issues and providing a safety net against ransomware has made it the go-to solution for organizations seeking peace of mind.

Sophos Endpoint Protection has established itself as an industry leader in providing information security services for enterprises worldwide. Its real-time protection against various forms of malware, including web and mail protection, ensures a secure environment for users. Those who use Sophos Endpoint Protection have experienced successful protection against CryptoLocker, saving significant time and effort in recovery.

Overall, Sophos delivers excellent endpoint security with minimal user interaction required. Its cloud-based management simplifies deployment and remediation across distributed locations. With its reputation for robust protection and ease of use, Sophos Endpoint Protection continues to be highly regarded by organizations seeking top-notch security solutions.

Attribute Ratings

Reviews

(26-35 of 35)
Companies can't remove reviews or game the system. Here's why
June 01, 2018

Strong capabilities and easy day to day administration.

Verified User
Vice-President in Information Technology
Marketing and Advertising Company, 51-200 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Sophos is being used across our entire organization. As we have distributed locations, having Sophos cloud helps us both deploy easily but also makes day to day management and remediation simpler. We were looking for a tool that was meaningful in the sense of security but also simple to manage and having a fast learning curve. Another benefit for us is that it has been easy to add capabilities such as protection against ransomware and more.
Pros and Cons
  • Cloud dashboard has easy UI and the product is generally easy to manage. The capabilities are strong, so we don't have to compromise between usability and features.
  • We've been happy with the detection capabilities and feel generally well protected.
  • The pricing has been fairly aggressive, which is welcome in a midsize organization.
  • Alerts are meaningful, making it easy for us to act and re-mediate issues.
  • The MacOS client has been just as strong as the Windows client.
  • We have to create new users in the access management part but Sophos also creates a new user based on every windows login. It'd be preferable if the system could automatically reconcile the user accounts.
  • Special care needs to be used when planning when the client scans/updates, as this sometimes can be felt by the end-users.
  • Would prefer if they didn't sell core security products separately, but included them all in one platform.
Likelihood to Recommend
Sophos Endpoint Protection is great for smaller and midsize companies. It offers well-rounded protection capabilities while also being user-friendly enough that small and medium companies can easily adopt and maintain it while offering a great overview of your devices. For larger enterprises, integrating with a directory seems to be essential to allow for reconciliation of user accounts.
June 01, 2018

The best solution I ever use

Mauro Ruscelli | TrustRadius Reviewer
Mauro Ruscelli
IT Engineer / Network and Security Expert
La Perla Global Management (Apparel & Fashion, 1001-5000 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use Sophos endpoint for the protection of all the pc servers and Macs in the company in a worldwide environment. Not only in [our] corporate [office], but also in branches and all our stores spread around the world. We have worked with Sophos for many years without any problem, and this is what I search for in a software like this.
Pros and Cons
  • Web control on the client, also if it’s not connected to the company it works well
  • We use also the Intercept X module to prevent attacks on non-signature based [issues] . And it’s really powerful.
  • It’s multiplatform also for Mac
  • Doesn’t use a lot of hardware resources
  • The deploy in a large environment is not easy, with the on-premise central server sometimes the deployment doesn’t work.
  • With the cloud console, the deployment feature doesn’t exist, you must use third-party tools, but with a problem. The executable that must be downloaded expires after one month from the download and if you forget this the deploy in any new machine fails.
  • The web console need improvement is slow and with poor function.
Likelihood to Recommend
I suggest Sophos in any environment because I think that it’s doing good work and [provides] good protection. This is most important for an endpoint protection [tool].
May 31, 2018

Sophos Packs a Punch

Paul Li | TrustRadius Reviewer
Paul Li
Senior Associate
Stir Architecture (Architecture & Planning, 11-50 employees)
Score 6 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
In October of last year, our then IT consultants advised our Los Angeles office to switch from AVG to Sophos Endpoint protection. We were told that Sophos Endpoint Protection is a superior virus protection program. AVG had given us a number of problems by frequently detecting false positives and quarantining programs we use quite often in our organization. So AVG along with Malwarebytes were both uninstalled from all our workstations & our servers replaced by the single protection program Sophos Endpoint Protection.
Pros and Cons
  • Sophos Endpoint Protection provides a web portal for the administrator to login. Here the administrator can examine and track which computer devices are being protected from virus attacks.
  • The Sophos Endpoint Protection web portal provides a dashboard entry page that shows a summary of what viruses may have been detected and quarantined. In addition this dashboard landing page shows a summary of alert messages sent from the protected computers like when a reboot is needed from a server after software updates.
  • From the Sophos Endpoint Protection web portal various agents like for workstations as well as for servers can be downloaded for deployment. Here you can quickly find and install the agent for the Windows OS, Mac OS and even how to proceed with mobile device protections.
  • Though the Sophos Endpoint Protection agent for workstations is fairly competitive in cost, especially when with one agent we're protected from both viruses & malware intrusions, the agent to protect our servers are doubled in price. In order for Sophos Endpoint protection to compete with other comparable products, the price for server protection should be lowered.
  • Though Sophos Endpoint Protection is supposed to be a superior antivirus protection program, we did encounter slowness specifically when attempting to open PDFs using the Adobe Acrobat program. Further research did show that Adobe Acrobat with "Protected Mode" enabled may cause this problem. The solution was to switch to other PDF applications and the problem was resolved.
  • Unfortunately, Sophos is just not as well known as some of its competitors like AVG & Symantec. Perhaps more marketing from the company would help make this very powerful virus protection program become more of a household name.
Likelihood to Recommend
Sophos Endpoint Protection is more well suited for larger organizations where they require protection from serious attacks, especially on the server side. With their robust high powered agent specifically designed for the server, large corporations would have no problems in paying a more heftier price to protect their servers compared to their workstations.

May 30, 2018

Best in its class

Verified User
Employee in Information Technology
Financial Services Company, 201-500 employees
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Sophos Endpoint Protection is one of the industry leaders in providing information security services for enterprises. They offer a whole range of security features for an enterprise. We use their client end protection as well as more advanced firewall security. It offers real time protection for our IT resources including web, mail and all sorts of malware protection.
Pros and Cons
  • The company offers one stop service for all security related needs.
  • Excellent Malware protection and recovery.
  • Deployment and configuration is a breeze using the consolidated web management console.
  • Software can get bloated at times and consume lots of resources on machines, especially while performing incremental updates.
  • Some emails and attachments are incorrectly flagged as dangerous.
  • We had some issues while integrating Digital Guardian with Sophos, since it kept on blocking OS updates on the machines.
Likelihood to Recommend
I think it's an excellent all in one antivirus protection software. It filters out malware and flags potentially dangerous websites as well.

We went with the cloud version of the software suite instead of hosting it on premises. It has an extremely simple all in one web management console. Sophos End Point Protection suite comes with a very well designed and comprehensive web management console. It is the single point of access for numerous services.
April 04, 2018

Sophos - Leader and Trusted

Alex Waitkus, CISSP-ISSAP, OSCP | TrustRadius Reviewer
Alex Waitkus, CISSP-ISSAP, OSCP
Security Architect
Securicon, LLC (Computer & Network Security, 51-200 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Sophos is a leader in the endpoint protection market. Manageability, system behavior, signature base are all top notch and can compete against any end-point protection software on the market. Sophos was a replacement for Kaspersky for enterprise-wide endpoint protection on workstations and servers. It is easy to deploy and is a reliable signature-based endpoint protection suite.
Pros and Cons
  • Malicious file identification
  • Signature-based detection
  • Web-based protection
  • Signature visibility
  • Direct endpoint management - it seems this feature has gone away in recent versions
Likelihood to Recommend
I cant think of any endpoint protection scenarios where Sophos Endpoint Protection is not appropriate for deployment, perhaps restricted deployments that only allow one-way traffic (data diodes). Sophos is great for Mac, Windows, Linux, and server environments. It is easy to deploy and manage through its admin utility. Some direct endpoint management functionality has disappeared in recent versions.
March 21, 2018

Sophos Endpoint Protection Review

Verified User
Director in Information Technology
Legal Services Company, 11-50 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Sophos is a legitimate endpoint product. At first, I was skeptical by their claims of being able to block CryptoLocker, but seeing it work first hand was extremely impressive. Using this product has saved us countless hours recovering by encryption and they also offer a free home product that is just as good.
Pros and Cons
  • Preventing viruses
  • Centrally identifying malicious behavior
  • Backing up good files BEFORE a disaster
  • This is one of the best products in this area that I have seen, so not much room for improvement
  • Software can always cost less, but they offer a free home version
Likelihood to Recommend
We have successfully used this in small to medium sized companies. It is hands down one of the best solutions out there in this area. Restorations are simple, central management is a breeze as well as deployment. Pricing is reasonable as well, as the ROI is very high (especially if a user gets an infection).
April 18, 2017

Sophos EndPoint most awarded Features

Juan Carlos Sanchez Pignalosa | TrustRadius Reviewer
Juan Carlos Sanchez Pignalosa
CEO And Founder
Advisor Consulting Group Corp (Computer Networking, 1-10 employees)
Score 10 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
Sophos EndPoint Protection is widely used by organizations that want robust protection, along with other functionality. It resolves the problems of virus infection, web & mail downloads and mostly real-time protection. When customers ask me, "why Sophos EndPoint"? I answer; "Support is awesome, definitions are awesome, why not?". We are in a digital era where everything moves very quickly, Sophos has adopted to this situation, and convert it into a strengths by always keeping ahead of needs. For example, the latest module "Add On" that Sophos provides is Anti Exploit Prevention, to protect users against ransomware.
Pros and Cons
  • Malware Detection
  • Awesome Performance (does not impact OS and/or Hardware performance).
  • Top of the line worldwide Support.
  • Multi OS Compatability with just one installer (for Windows) and Multi OS's compatability for management (one single console, centrally manages WinOS, MacOS, LinuxOS, etc).
  • The console is still based in local application, when many other vendors offers Web management
  • Lots of room for default generated Reports
  • Migration tools for end user to be able to migrate from one server to another (changing many parameters such as Server Name, IP Address, etc).
Likelihood to Recommend
Sophos EndPoint exceeds today's IT Needs and protection, since it outperforms competitors on many levels, such as detection and performance. It is difficult to find tools that perform so well, and also to detection. ISophos EndPoint is suitable for every organization since enterprise grade protection and communication exist (via SUMs "Sophos Update Managers") for remote offices and branch offices. Sophos EndPoint is less suitable for small companies, which only needs anti-malware. Sophos EndPoint Protection, at its most basic level, offers Web and multiple modules of protection.
March 14, 2017

Sophos - No Nonsense Protection Deployment

Evan Miller | TrustRadius Reviewer
Evan Miller
Systems Support Engineer
College of William & Mary (Higher Education, 1001-5000 employees)
Score 6 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Sophos EndPoint is currently being utilized across the whole organization on all leased/purchased Windows based computers. It is deployed via scripting in Group Policy for OUs. It is providing adequate protection on our endpoints and provides peace of mind to end users knowing that their work PCs are being actively scanned for threats.
Pros and Cons
  • Deployment and implementation was relatively easy to do
  • Reporting of issues to users via the desktop app and steps taken to remedy
  • The application just seems bloated and resource hungry. Four different app listings in programs and features for this protection.
  • Malware remediation could be better. Doesn't remove infections of this type well.
Likelihood to Recommend
For larger enterprises, the deployment capabilities of this protection suite are well suited. If you are in a smaller business or IT shop there are probably other more cost-effective and better-suited protection suites available.
April 12, 2016

Sophos - #1 Endpoint Security

Kyle Farago | TrustRadius Reviewer
Kyle Farago
IT Support Specialist
Loenbro (Construction, 501-1000 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We are using Sophos in our entire company on all of the desktops, laptops, and servers throughout our various offices and mobile sites. With its simple integration through MSSC we are able to automatically deploy it to all of the machines on our network, as well as any new computers we bring online and pretty much forget it is even there. It runs near silently in the background taking up very little computer power at idle and during your usual active scans. It does use a bit of CPU power when performing a full system scan, but that is to be expected. The email reports you can have set to alert you for various events assist greatly in helping fix issues before they become big problems which is especially invaluable with our field techs that we cannot just go visit. At times it will send out false positives, especially if the computer has been off, or offline for a long time (as can happen in the field) and will show being out of date, out of compliance, etc., as it comes back up - but false positives aside it always syncs up and runs like a champ.
Pros and Cons
  • Simple installation (MSSC compatible.)
  • Removes all conflicting software automatically.
  • Small system footprint.
  • Powerful Scanner/Active Shields.
  • Email reports can be false positives - software should check itself and attempt to update/apply policies and then send out a notification if that fails, not before.
  • It should not require admin privileges to run a manual scan.
  • Email reports could use a little more detail on what exact policy/item is out of compliance to make issue easier to verify/fix.
Likelihood to Recommend
Sophos offers protection for nearly every setting, from a single home computer to a small 10 computer business to a thousand computer company. It is a stable system, it has high customization, and is simple to use for your average home user or an IT professional. The only situation in which Sophos may not be a good fit is for a computer that is never connected to the internet and never has anything connected to it from the outside world. Not many standalone systems like that are present.
February 23, 2016

Sophos is very easy to use with Windows

Dan Lepinski | TrustRadius Reviewer
Dan Lepinski
Systems Engineer
NativeX (Marketing and Advertising, 51-200 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use Sophos across our entire infrastructure. We have a mix of Windows, Linux, and Apple products. Deploying Sophos out to Windows machines is a fairly easy and seamless process that can simply be done through the enterprise console to a machine anywhere that's connected to your network. The package must be manually installed on Linux and Mac, but updates to all machines will be automated once the client is installed.
Pros and Cons
  • Automatically installed on Windows machines.
  • Automatically updates.
  • The console gives you lots of control over your deployment. Including things like what version of the client software you want to run on your machines.
  • You can easily see what machines are, or aren't, checking in with the console.
  • It'd be nice if there was an automated deployment for Linux and Mac.
  • Visibility into Mac/Linux machines from the console could be better. Basically the functionality with Mac/Linux is very limited.
  • The enterprise console isn't very straight forward at first. It takes some time to get used to navigating the menus to find what you want.
Likelihood to Recommend
It's much more well suited in a Windows environment; simply because it was clearly built around supporting Windows machines. If you have a lot of Macs and/or Linux machines, you may want to consider looking elsewhere if you need the install process to be automated. Knowledge around scripting would obviously help a lot in that scenario. However, I'm not sure if there is an endpoint protection product out there that works seamlessly and is automated for Linux/Mac out of the box.
Return to navigation