Try our new research platform with insights from 80,000+ expert users

CylanceGUARD vs Sophos MDR comparison

BlackBerry and Sophos are both solutions in the Managed Detection and Response (MDR) category. BlackBerry is ranked #51, while Sophos is ranked #5 with an average rating of 8.7. BlackBerry holds a 0.2% mindshare in MDR, compared to Sophos’s 6.0% mindshare. Additionally, 100% of BlackBerry users are willing to recommend the solution, compared to 100% of Sophos users who would recommend it.
CylanceGUARD
Read 1 CylanceGUARD review
  • 211 Views
  • 211 Comparison Views
100% willing to recommend
Sophos MDR
Read 32 Sophos MDR reviews
  • 3,393 Views
  • 3,393 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between CylanceGUARD and Sophos MDR based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, Huntress, Field Effect and others in Managed Detection and Response (MDR).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Managed Detection and Response (MDR) Report (Updated: September 2025).
Buyer's Guide
Managed Detection and Response (MDR)
September 2025
Download the complete report
Helped 867,676 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CylanceGUARD
Ranking in Managed Detection and Response (MDR)
51st
Average Rating
8.0
Reviews Sentiment
6.1
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Sophos MDR
Ranking in Managed Detection and Response (MDR)
5th
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
32
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of September 2025, in the Managed Detection and Response (MDR) category, the mindshare of CylanceGUARD is 0.2%, down from 0.2% compared to the previous year. The mindshare of Sophos MDR is 6.0%, down from 6.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Managed Detection and Response (MDR) Market Share Distribution
ProductMarket Share (%)
Sophos MDR6.0%
CylanceGUARD0.2%
Other93.8%
Managed Detection and Response (MDR)
 

Featured Reviews

reviewer1521510 - PeerSpot reviewer
Reasonable price, scalable, useful for Malops detections, and helpful for layered defense
We are not satisfied with their support. We are facing some challenges. They should be proactive, but we have to chase them a lot. This is where there is room for improvement. They should be proactively serving their customers. We had some batch update issues, and we're still working on them. We are almost there, but it took a couple of email exchanges in order to achieve it.
Read full review
Shaun Gordon - PeerSpot reviewer
Extensive data lake, ease of use is great and you can really get started very quickly
Sophos MDR is a service. MDR is managed detection and response. It's a managed security service. So instead of having an anti-malware, which in Sophos' case would be Intercept X, with MDR, they add human-led threat hunting. It's a managed service. So it's not a product that you sell the client per se. You're selling them a service, which is almost like an SLA, and that includes Cloud MDR. MDR is not a product. It's a service. The reality is that when it comes to the likes of SentinelOne, McAfee, CrowdStrike, ESET, and all the other players out there, they're single-product security companies. CrowdStrike is an anti-malware. That's one thing. ESET, same thing. But if you look at the other vendors, within the appliances, you're looking at Fortinet, Palo Alto, and Checkpoint. They only sell firewalls. That's all they do. When you deal with Sophos, they are the entire product suite. They sell firewalls. They sell Intercept X, which is their anti-malware, Intercept X for Server with anti-malware, email protection with ties into Office 365, and Sophos Plus encryption. All of these security products pull telemetry. So every time somebody hits a firewall, it's called, for argument's sake, that goes into their central data lake. All the firewalls around the world add that information to a data lake. Now, when you're dealing with Sophos, because of their exposure, because they've got so many different products, their data lake is a lot more extensive than competing vendors because they're not relying on one threat factor. They're not relying on one area of expertise. They're a global company. So, I can't compare their telemetry, for instance, to the likes of CrowdStrike. If CrowdStrike has probably started doing appliances, then the users will get that benefit as well. Sophos is the only vendor that does do that. It's like hiring a security team. Sophos do things differently in that they've got more telemetry and more insight into a network because they offer a variety of products. The other part about it is Sophos MDR; the service, unlike other vendors like CrowdStrike, is not limited to their products. If you are running CrowdStrike in your company, for instance, you can get their integration packs, in which case Sophos will manage your CrowdStrike system for you. Whereas with CrowdStrike, it's only CrowdStrike. You are locked into that vendor. So Sophos offers that flexibility. It's a multi-vendor service as opposed to SentinelOne or CrowdStrike, which is a single-vendor service. For instance, if I'm running Sophos, I would like to go with CrowdStrike MDR. I would have to remove my entire security investment, in this case, Sophos, and reinstall CrowdStrike in order to use their service. Sophos doesn't have that problem. If you've got CrowdStrike and you've already invested in CrowdStrike, cool. You stay on CrowdStrike. They will still manage it for you.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It has a lot of things for Malops detections."
"Sophos MTR will stop the threat as it is happening. Intercept X, which is a part of it, has the ability to roll back, so the attack is undone. And then the advanced edition of MTR lets me handle the threat by talking on the phone. I don't have to deal with it. I don't have to just go through emails back and forth. We don't have to pay extra for Rapid Response services. If something is happening, they're right on top of it."
"The initial setup is quick and simple. A couple of clicks, and you're up and running."
"The solution is stable."
"There is a feature called XDR Central. With this, Sophos can connect to third-party security solutions."
"The product’s most valuable features are integration and endpoint protection."
"The user doesn't need a technician; it offers 24/7 support to identify and manage your infrastructure and take complete care of any technological incidents."
"It provides reliable protection and clear data on its performance metrics, enabling straightforward communication of its capabilities."
"The most valuable feature is the ability to integrate multiple functions into a single dashboard regardless of the vendors being integrated."
More Sophos MDR pros
 

Cons

"Their support needs improvement. We have to chase the Customer Success Manager a lot to get things done. It should have more features in terms of portability. It should be more scalable on other endpoints such as mobile devices and BYOD."
"The technical team for Sophos MDR is not so good since they take a long time, like a week, to provide a solution to a simple case or problem we face in our company."
"Endpoint protection is very slow."
"Sophos MDR's support and basic training of their devices could be improved."
"The solution is expensive for customers."
"They should improve XDR and threat protection capabilities for zero-day attacks."
"Sophos is not integrating the same console and umbrella with its product."
"The product's stability needs improvement."
"Threat intelligence is an area for improvement for MDR."
More Sophos MDR cons
 

Pricing and Cost Advice

"Its price is reasonable, but there are other products that are cheaper than this."
"It is an expensive platform."
"Compared to other tools, Sophos has a pretty good price."
"I would rate the price of Sophos MDR as a nine out of ten, with ten being the most expensive."
"The price falls somewhere in the middle range."
"MDR is a complete enterprise solution, and compared to other OEMs, it is one of the cheapest."
"Sophos MDR is not a cheap product. Compared with other solutions in the market, Sophos MDR is available at a good price, especially considering its performance."
"Sophos MDR is a cheap solution."
"Sophos MDR could be more affordable."
More Sophos MDR pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Managed Detection and Response (MDR) solutions are best for your needs.
See recommendations
867,676 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Computer Software Company
17%
Manufacturing Company
9%
Educational Organization
6%
Comms Service Provider
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business23
Midsize Enterprise3
Large Enterprise8
 

Questions from the Community

Ask a question
Earn 20 points
What do you like most about Sophos MDR?
The user doesn't need a technician; it offers 24/7 support to identify and manage your infrastructure and take complete care of any technological incidents.
See all answers
What needs improvement with Sophos MDR?
I don't have many suggestions for improvement in Sophos MDR as it performs quite well. It would be beneficial to have the ability to pull a report of all incident responses within a tenant, with ca...
See all answers
What advice do you have for others considering Sophos MDR?
I believe Sophos MDR pricing is reasonable for my customers. I would recommend those planning to use Sophos MDR to consider what financial impact a compromise could have on their organization and c...
See all answers
 

Comparisons

No data available
CrowdStrike Falcon Complete MDR vs Sophos MDR Logo
CrowdStrike Falcon Complete MDR vs Sophos MDR
Compared 16% of the time
SentinelOne Vigilance vs Sophos MDR Logo
SentinelOne Vigilance vs Sophos MDR
Compared 10% of the time
Intercept X Endpoint vs Sophos MDR Logo
Intercept X Endpoint vs Sophos MDR
Compared 8% of the time
Huntress Managed EDR vs Sophos MDR Logo
Huntress Managed EDR vs Sophos MDR
Compared 7% of the time
Bitdefender MDR vs Sophos MDR Logo
Bitdefender MDR vs Sophos MDR
Compared 7% of the time
More Sophos MDR Competitors
 

Product Reports

Buyer's Guide
Managed Detection and Response (MDR)
September 2025
CylanceGUARD reportDownload CylanceGUARD product report
Buyer's Guide
Sophos MDR
August 2025
Sophos MDR reportDownload Sophos MDR product report
 

Also Known As

No data available
Sophos Managed Threat Response
 

Overview

CylanceGUARD is a subscription-based 24x7 managed XDR service that provides actionable intelligence for customers to prevent threats quickly while minimizing alert fatigue without requiring additional resources. This service is fully integrated with CylancePROTECT, CylanceOPTICS, CylancePERSONA, CylanceGATEWAY, and 3rd party vendors that provide holistic telemetry across all endpoints enabling our highly skilled BlackBerry analysts to threat-hunt through customer environments to find and contain threats, prevent major breaches, and allow organizations to mature their security posture. BlackBerry has the strategy, expertise, and technology to analyze and guard an organization by preventing and containing threats as well as large-scale breaches.

BlackBerry

Threat Notification Isn’t the Solution – It’s a Starting Point
Other managed detection and response (MDR) services simply notify you of attacks or suspicious events. Then it’s up to you to manage things from there.

With Sophos MTR, your organization is backed by an elite team of threat hunters and response experts who take targeted actions on your behalf to neutralize even the most sophisticated threats.

Sophos
 

Sample Customers

Blue Bird Group, Patterson Companies Inc. Afrasia, Colorado Retina, Schneider Electric, ABB
Information Not Available
Buyer's Guide
Managed Detection and Response (MDR)
September 2025
Download Free Report
Find out what your peers are saying about CrowdStrike, Huntress, Field Effect and others in Managed Detection and Response (MDR). Updated: September 2025.
DOWNLOAD NOW
867,676 professionals have used our research since 2012.
See our list of best Managed Detection and Response (MDR) vendors.

We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.