TrustRadius Insights
Sophos Endpoint Protection has become a widely-used and highly regarded solution for safeguarding machines in various environments. Users …
Starting at $28 per year per user
View PricingOverview
What is Sophos Intercept X?
Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Centralized Management (19)10.0100%
- Infection Remediation (19)9.898%
- Endpoint Detection and Response (EDR) (19)9.696%
- Anti-Exploit Technology (19)8.686%
Reviewer Pros & Cons
Pricing
Intercept X Advanced
$28
On Premise
per year per user
Intercept X Advanced with XDR
$48
On Premise
per year per user
Sophos Managed Threat Response
$79
On Premise
per year per user
Entry-level set up fee?
- No setup fee
For the latest information on pricing, visithttps://www.sophos.com/en…
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Starting price (does not include set up fee)
- $28 per year per user
Product Demos
CVE-2017-11826 0day exploit vs months old Sophos Intercept X
YouTube
How WannaCry ransomware works
YouTube
Features
Return to navigation
Product Details
- About
- Competitors
- Tech Details
- FAQs
What is Sophos Intercept X?
Built to stop the widest range of attacks, Sophos Intercept X has been proven
to prevent even the most advanced ransomware and malware by leveraging a
unique combination of next-generation techniques. This includes the ability to
detect never-before-seen malware with deep learning, stop ransomware with
Sophos anti-ransomware technology, and deny attacker tools with signatureless
exploit prevention. Intercept X also includes root cause analysis to provide
insight into threats, and instant malware removal to ensure no attack
remnants remain.
Sophos Intercept X Features
Endpoint Security Features
- Supported: Anti-Exploit Technology
- Supported: Endpoint Detection and Response (EDR)
- Supported: Centralized Management
- Supported: Infection Remediation
- Supported: Malware Detection
Sophos Intercept X Screenshots
Sophos Intercept X Video
Sophos Intercept X Demo
Sophos Intercept X Competitors
Sophos Intercept X Technical Details
| Deployment Types | On-premise |
|---|---|
| Operating Systems | Windows, Mac |
| Mobile Application | Apple iOS, Android, Windows Phone, Blackberry |
Frequently Asked Questions
Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.
Sophos Intercept X starts at $28.
Symantec Endpoint Security and Kaspersky Endpoint Security are common alternatives for Sophos Intercept X.
Reviewers rate Centralized Management highest, with a score of 10.
The most common users of Sophos Intercept X are from Mid-sized Companies (51-1,000 employees).
Comparisons
Compare with
Reviews and Ratings
(202)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
Sophos Endpoint Protection has become a widely-used and highly regarded solution for safeguarding machines in various environments. Users rely on this product to ensure that their systems are protected and receive regular updates from the Sophos Database. With its ability to send alerts when a system hasn't been updated in a while, it helps users identify computers that are not frequently used. This feature proves to be invaluable in maintaining the security of an organization's network.
One long-time user praises Sophos Intercept X as the most secure endpoint product on the market. Its ease of deployment and management, combined with its ability to catch everything, make it the preferred choice for both home and business use. By dramatically reducing instances of malware and ransomware, Sophos Intercept X has proven itself as a reliable defense against cyber threats. It also offers powerful administrative capabilities through the Sophos Central web console, allowing users to identify and address security issues effectively.
Sophos Endpoint Protection is widely used across industries for robust protection against virus infections, web and mail downloads, and real-time threats. The product adapts to the rapidly changing digital era by offering advanced features like Anti Exploit Prevention, which safeguards users against ransomware attacks. Whether deployed in the healthcare industry or small businesses, Sophos Intercept X provides peace of mind by effectively preventing malicious software issues. Furthermore, its non-invasive nature and quick response to potential threats make it an ideal choice for organizations seeking a reliable and user-friendly endpoint security solution.
Intercept X's comprehensive protection extends beyond traditional malware detection, with features such as content filtering, application management, and cloud management with MFA authentication. It ensures security compliance, preventing ransomware attacks on devices ranging from workstations to servers. Real-time protection against various forms of malware, including web and mail protection, contributes to Sophos Endpoint Protection's reputation as an industry leader in providing information security services for enterprises.
In addition to protecting against potential attacks, Sophos Endpoint Protection requires minimal user interaction, making it a hassle-free solution for organizations. Its cloud-based architecture simplifies deployment, management, and remediation across distributed locations. Users have reported successfully defending against CryptoLocker and significantly reducing monthly infections, resulting in a more secure environment. With its advanced features like malware identification and automatic quarantine, Intercept X enhances security measures and provides excellent protection against cyber threats.
Overall, Sophos has gained praise from users as a reliable, easy-to-use, and effective endpoint solution. Whether deployed globally across entire companies or implemented organization-wide, the product delivers top-notch system behavior and manageability. It seamlessly integrates with desktops, laptops, and servers, running silently in the background without causing disruptions.
One standout feature of Sophos is its ability to send email reports that alert users of various events, allowing them to proactively address any issues before they become major problems. Users have successfully deployed Sophos across their entire infrastructure, including Windows, Linux, and Apple products. While deployment on Windows machines is easy through the enterprise console, Linux and Mac installation may require manual setup. Once installed, Sophos automatically updates all machines and runs smoothly without consuming excessive computer resources.
Intercept X, a module of Sophos Central, is widely used as an anti-malware and anti-virus agent on endpoint machines and servers. Its policy-setting capabilities for web and application access provide an additional layer of security. Small businesses rely on Sophos Intercept X not only for protection but also for timely notifications of potential threats. The product's effectiveness in preventing malicious software issues and providing a safety net against ransomware has made it the go-to solution for organizations seeking peace of mind.
Sophos Endpoint Protection has established itself as an industry leader in providing information security services for enterprises worldwide. Its real-time protection against various forms of malware, including web and mail protection, ensures a secure environment for users. Those who use Sophos Endpoint Protection have experienced successful protection against CryptoLocker, saving significant time and effort in recovery.
Overall, Sophos delivers excellent endpoint security with minimal user interaction required. Its cloud-based management simplifies deployment and remediation across distributed locations. With its reputation for robust protection and ease of use, Sophos Endpoint Protection continues to be highly regarded by organizations seeking top-notch security solutions.
Attribute Ratings
Reviews
(1-25 of 35)Companies can't remove reviews or game the system. Here's why
June 18, 2023
good and modern product - always updated.
We had another av, Symantec. Very old, acquired by Broadcom, and seems no more updated. Sophos seems very next-gen, with a lot of functionality to help IT's work, content filter, classic av, application management, and cloud management with MFA authentication. It's the product we are looking for. In the future, maybe we will integrate more services.
- Application control.
- Ease of use.
- Content filtering https.
- I like to automate the cleaning less.
- Some pc looks slower.
- More secure firewall function.
June 14, 2023
Sophos Intercept X Delivers On All Fronts!
We utilize Sophos Intercept X as our primary anti-virus product on all of our endpoint devices. This is an "upgrade" from the previous iterations of Sophos Anti-Virus, as Intercept X offers far more features than we had in the past. Sophos is fantastic at identifying malware and other undesirables attempting to execute malicious scripts that are out of the ordinary - and will automatically quarantine these threats so that they can be reviewed via the Admin portal. We also utilize Intercept X for it's web filtering/category-based options as a way of preventing work-from-home employees from circumventing our filtering policies while not in one of our buildings.
- Zero-Day Malware Detection
- Web Filtering
- End-User Device/hardware controls
- Email notifications of infected machines
- Health Status Compliance At The Device Level
- Machine and/or User-based policy control
- Logs and reports easily read
- Integration with Active Directory
- I'd love if a list of devices not running Sophos could be generated with the AD integration - so that the software could be pushed to the device. (Unsure if this exists, as I haven't found it personally).
August 25, 2022
Sophos Intercept X Endpoint Protection review
Score 8 out of 10
Vetted Review
Verified User
Sophos Intercept X is the end point proctection software we use at our company. We have been using this for over a year now and I have not had any problems. The portal is friendly and easy to use, it is easy to deploy to end users, and it barely takes any resources from the computers we are using. It also helps that the Sophos portal contains many other useful security features.
- Protects against ransomware
- Keeps PCs clean
- Easy to manage
- The site can be slow
- Higher pricing
November 06, 2021
Sophos Intercept X, Better than the rest
It is in my opinion, Sophos Intercept X is the most secure endpoint product on the market. I have used it for years and tell everyone I know that they need to be using it as well. Whether for home or business, Sophos Intercept X is my preferred endpoint and the only product I use. It's simple to deploy, easy to manage, and catches everything. I have run simulations against Sophos Intercept X and other products, and Sophos Intercept X always comes out.
- Detects Malware
- Protects against Ransomware
- Centrally managed
- Easy to deploy
- Support is knowledgeable but can take some time to reach a person
- False Positives can be improved
- Add Templates
November 05, 2021
Sophos Intercept X Endpoint Review
We are in the healthcare industry and need to provide security for our users from malicious cyber attacks. These attacks include malware, viruses and ransomware. We have deployed the agent for all our users to ensure they are protected from the bad guys. Sophos Intercept X also has a data loss prevention component that allows us to monitor and detect when users are sharing information insecurely.
- virus scanning
- malware detection
- Data loss prevention
- add phishing scanning
December 31, 2020
It does the job!
Sophos Intercept X is being used by our entire organization as endpoint management. It is very helpful and non-invasive to the end users. Sophos Intercept X is very responsive to any indication of a possible threat reaching the end user's machine. We have had no issues with the software and are very happy with it. The price for the product is perfect! Customer service is world class as well!
- Stays up to date
- Does not spam with notifications
- Auto-remediation
- Not heavy on consuming resources
- Could be optimized for better performance
- Slows the machine it's running on when performing a scan
April 23, 2020
A great centralized security platform.
Being used as anti-virus for both customers and internally, to ensure security compliance and prevent ransomware on devices (including workstations and servers).
- Ransomware prevention.
- Antivirus protection.
- Automated removal of majority of viruses.
- Tamper protection.
- Improved partner access to Central Portal (times out every hour or two).
- Streamline new "features" into existing subscriptions, rather than more bolt ons (e.g. MTR and EDR).
- Improved support in Australia.
March 13, 2020
Sophos Intercept X is to antivirus as Rod Woodson is to cornerbacks - it intercepts everything.
Sophos Intercept X is an all-in-one endpoint solution that has dramatically decreased malware and ransomware instances across our organization. Since we put it into place it has found thousands of potential infections that would have infected us via RATs, worms, emails, and malicious webpages. When you combine the power of Intercept X with the Sophos Central web console, it gives incredible administrative power to discover who the biggest problems are and then allows you to better target training and mitigation efforts where the problems originate.
- Sophos Intercept X is great at preventing malware infections and rolling back their effects. I have seen this happen hundreds of times since we installed it
- When combined with Sophos Central, you have an easy to use dashboard where you can manage all installations from a single pane of glass.
- It's easy to deploy on machines and stays updated.
- Good reporting features including alerts sent to the admin if there's ever something wrong with it.
- It can be a bit resource-intensive, especially on machines that are a little older. I've seen it take up too many CPU cycles and bog down the rest of the machine.
- Initial setup to get it working can be challenging if you do anything other than the default settings.
- Sometimes won't update on client machines, so they have to be brought in for a manual reinstall.
January 23, 2020
Intercept X intercepts everything
Intercept X is being used by clients as an endpoint security agent. For new infections in the wild and partial threat matches, nothing is more aggressive.
- Partial threat detection.
- Low CPU cycles during scan.
- The UI is still cumbersome.
- The management plane could be better.
January 23, 2020
Sophos Intercept X Review
We use Sophos Intercept X to help protect both our endpoints and servers from malicious activities. It helps to keep our environment protected and safe.
- It is easy to deploy.
- It is easy to manage.
- Sometimes the client takes up quite a bit of space on the systems it runs on.
January 19, 2020
Sophos Intercept X will give you peace of mind
We are using Sophos Intercept X across the whole organization, from POS devices at the restaurant level, to user PCs and servers. It addresses the worrying problem of detecting and intercepting malicious software that may not have a known signature and stopping it before it damages any files or computers. We have been using it for 2 years now, and so far we have had no malicious software issues, and we have been able to stop a few that have tried. Now that ransomware is a huge issue in the industry, we are happy to have this safety net.
- It can detect malicious software even if it does not have a known signature in the endpoint database. This is a big strength.
- It works while being imperceptible by users. Another big strength.
- It used to be a separate add on to the endpoint, but they have already addressed this, and t is included in the enterprise-level endpoint.
- It will do its job without alerting you, so you may think it is not working. It makes you a little anxious.
I believe it is the best-integrated solution for ransomware protection for the price point. This makes it suitable for small, medium, or large businesses. The endpoint bundle, including the intercept x, has a very competitive price, and may be cheaper than solutions that offer less. Security is a very important aspect of running a business today, and having something you can count on brings peace of mind.
January 15, 2020
Sophos is Supreme Program
We deploy Sophos Intercept X too small businesses to ensure they are protected, and we are notified if something comes up on their machines so we can clean/address it.
- A powerful virus cleaner
- It stops Modern Threats
December 04, 2019
Can’t go wrong with Sophos!
We use many modules of Sophos Central but Intercept X is used on all endpoint machines and servers in our environment. It is our anti-malware and anti-virus agent. It also allows us to set policies for web access and application access.
- Application control.
- Web control.
- Threat remediation.
- Better integration with active directory both on premise and Azure.
October 23, 2019
Superb ransomware detection and analysis!
Intercept-X is used across the whole organization and on-top of Sophos' excellent EndPoint protection, it primarily addresses the increased threat that ransomware is presenting to our Charity. After running a number of ransomware tests against Sophos Intercept-X, it outperforms a number of market leaders and helps me get to sleep at night knowing our AV product is protecting us.
- Identifies ransomware
- Gives in-depth analysis on current and detected threats
- Very easy to configure on top of existing products
- GUI not very simple
- Information regarding threats often unclear and hard to decipher at basic level
- False positives on occassion
October 16, 2019
Sophos Intercept-X Works Great!
We use Sophos Intercept-X company-wide for our endpoint security solution and it has been doing an excellent job in thwarting off potential attacks.
- Easy migration from Symantec to Sophos Intercept-X. A simple .msi file allowed for the automatic uninstall of Symantec.
- Sophos Central makes it very simple to mitigate potential issues immediately. I can log in and remediate from anywhere.
- Most vulnerabilities are blocked and removed without IT Helpdesk needing to touch a machine. The reporting capabilities after the fact are informative.
- There are a bunch of running Sophos processes on machines with the software installed. Some take up quite a bit of memory at times.
- Although the process to correct is easy and relatively quick, I've noticed quite a few false positives when it comes to web filtering.
- Setting up policies is a little clunky at first.
October 02, 2019
Sophos' cloud offering works well but Secure Boot messes it up
Sophos Intercept X is our chosen endpoint security solution for all of our Windows endpoints (Windows and Windows Server) across the entire enterprise. We were already using Sophos before, and we replaced an older Sophos appliance with the cloud-based "Sophos Control" version instead, and we abandoned our on-prem Sophos web appliance.
- Sophos is a little too good at DLP. But it is indeed very good at not allowing our data to leave our endpoints without strict adherence to policy.
- Sophos is very good at protecting endpoints against viruses and other malware.
- Sopho is really good at informing us of what is happening on our endpoints. OOTB reporting is way better than expected.
- Sophos OOTB policies are very strict and they don't offer anything less strict without you creating new custom policies. I'm sure this is deliberate because the product starts you out in the safest way possible but it means that you will have lots of calls to your tech support desk when you first deploy it unless you do somewhat extensive testing beforehand.
- Sophos Intercept X is currently broken (at least the DLP component) by having secure boot turned on in the UEFI/BIOS. If any user wants to be able to write data to a USB drive or floppy from their PC (yes we still have a couple users who need to use floppies) we have to turn off secure boot on their PC, even if the DLP policy for that user/PC combination specifies that the user and PC are allowed to write to USB/floppy. This would be a very serious problem if it weren't for the fact that we have very few users who need to write files to USB. For us it's OK but I bet it would be a deal-breaker for others.
- I don't see a whole lot of evidence that Intercept X is any different than any other anti-virus, so maybe their admin alerts just don't clearly identify when they have identified a zero-day threat or maybe we just haven't had any zero-day threats.
September 10, 2019
Quick alerting and automated responses for better security
Sophos is utilized across the whole organization. It provides the layer of protection needed for endpoints and servers against various forms of viruses and attacks that batter the technology industry. The need for protection of assets is well provided with the Sophos product and its components with little interaction or annoying notifications to users.
- Alert notifications can be sent directly to email as soon as any suspicious activity or files are discovered.
- The endpoint agent is delivered in one installer package, allowing for ease of deployment.
- Sophos works with common SIEM products and integrates well, giving visibility of events to security analysts for pattern detection.
- Sophos is heavy on resource utilization for scanning and detecting.
- Upon installation and use, there are approximately 17 services that are installed and run the product.
- Sophos could make it easier on deployment by being able to scan a domain and push the agent out to assets that don't have protection.
June 12, 2019
Intercept X is a game changer for our organization
Sophos Intercept X has been added to the whole organization and all backend server as well (285 seats).
- Block ransomware.
- Notify administrators.
- Revert back the data to the previous stat.
- Blocks all executables from running.
- It has to be used with Sophos AV & Sophos central to have an effective solution.
We use Sophos to protect all the machines in our environment. We also have the cloud set up so when our mobile users connect in the world we can make sure they get updates from the Sophos Database. We also get alerts if a system has not updated in a while which helps us find computers that are not used that often.
- Licensing is per user not, machine. So a user could have multiple machines and not have to purchase so many licenses
- Notifications for issues on devices where it has not contacted system in awhile
- Notification when there is a threat that was cleaned and if any additional action is needed.
- Blocking unwanted applications from running in the background when browsing the internet
- I honestly cannot thing of anything negative about the Endpoint protection.
March 09, 2019
Sophos: Simple and efficient, does what it says
Sophos is used globally across the entire company. We really on Sophos to provide endpoint protection to all desktops and servers plus the entire AWS estate. This provides us with our primary AV defense from internal users and malicious internet content. This is managed by multiple teams who can interact with the cloud-based solution and closely monitor all devices for compliance.
- Simple to setup and configure leaving engineers free to worry about other tasks.
- Sophos automatically discovered all our AWS servers with very little input enabling a clear picture of what servers we have over which sites and which are protected.
- Very easy to configure specific policies either by server type, location or office specific for end users.
- Automatic reporting of non-compliance devices could be improved as such that the engineer managing the estate can quickly see what is out of compliance and what needs to be done to fix it.
- A single pane of glass interface to see all devices would be useful as switching between servers and desktops could be simplified.
- With multiple policies being created the interface gets very busy and determining which policy is active for a particular device is not always clear.
December 19, 2018
Sophos is more than your legacy AV.
It's being used across the whole organization.
- Centralized management of endpoint security
- Easy to understand dashboards
- Protection against ransomware
- Nice graphical analysis for malware behavior and the vectors involved in the attack
- SAML login support for cloud console
- Manual malware cleanups can be frustrating
- Feature to enable reinstall from the portal if need be.
December 13, 2018
Sophos Endpoint - An essential component in a modern antimalware/security platform.
We use Sophos Endpoint Protection on our internal equipment, as well as client computers/servers. The product enables us to manage AntiVirus, Encryption, and Next Gen AntiMalware in a single portal with a single agent. The protection we get from this combo is second to none, and that's where the real value of this product comes through - tight integration to the entire platform...
- Simple Installation.
- Clean reporting.
- Single pane of glass management with other Sophos products.
- Client can occasionally be more resource intensive than we would like...
October 01, 2018
Sophos makes financial and security sense.
We implemented Sophos Endpoint Protection across our organization a couple of years ago and it has been the best solution we have seen to date.
We installed this across our entire company and even implemented it into a new company that was recently acquired. Security is obviously at the fore-front of all of our minds, and Sophos has given us peace of mind.
We installed this across our entire company and even implemented it into a new company that was recently acquired. Security is obviously at the fore-front of all of our minds, and Sophos has given us peace of mind.
- Sophos Endpoint Protection installs very easily
- Sophos Endpoint Protection is very unobtrusive on the clients and doesn't get in the way of doing any other tasks.
- We have had no breaches since we installed Sophos and feel very confident in its protection
- It may be nice to have a weekly/monthly digest to see what is going on and how the protection is holding up.
September 07, 2018
The easiest and most reliable security software out there!
We use Sophos Endpoint Protection to provide an extra layer of security for our users. We deployed this software to our entire organization. The great thing is, I do not believe the majority of users are even aware that it exists. It runs completely silent in the background. It also makes management and monitoring very easy since all instances can be modified and changed in the cloud.
- Easy, simple, centralized management makes this software a breeze to administer.
- The latest definitions update quietly and frequently. This provides great peace of mind knowing that your users will be protected from the latest threats.
- Deployment is very easy! It's a quick install and it simply does not malfunction once it's installed.
- I literally have nothing negative to say about this software.
August 17, 2018
Happy Sophos AV End user
This product is being used across the whole organization. We mainly use it as an advanced anti-virus solution to protect end users from malware and viruses. It has cut our monthly infections down to almost 1 or 2 a month from being much higher before implementation
- Cloud based management is much easier than its on-prem solution
- Easy to install and easy to get updates
- Easy on the CPU but still very powerful
- The migration from on-prem sophos to cloud sophos, could have been a little more seamless
- Would love to get more insight on what was blocked or flagged and what it was trying to do
- Better and more granular feature management from group policies