The primary use case is for protection. We sell this solution to our customers.
Range and restriction features make this a good choice for customers who want endpoint protection
Pros and Cons
- "The most valuable features are the range and restriction."
- "To be a perfect product, the price would have to be a bit better."
What is our primary use case?
What is most valuable?
The most valuable features are the range and restriction. This is why our users choose Intercept X.
What needs improvement?
To be a perfect product, the price would have to be a bit better.
For how long have I used the solution?
I have been using this solution for two years.
Buyer's Guide
Intercept X Endpoint
December 2024
Learn what your peers think about Intercept X Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.
What do I think about the stability of the solution?
This solution is stable.
We haven't had any issues with Sophos Intercept X and we haven't had any complaints from our customers.
What do I think about the scalability of the solution?
This solution is scalable.
We have one customer who is scaling quickly, increasing by ten to twenty users each month. We sell them new licenses, put them in their client central, and all they have to do is pull it out to their new devices.
How are customer service and support?
We have contacted Sophos technical support in the past, but not Intercept X.
How was the initial setup?
For our customers, the deployment of Sophos Intercept X is easy and it's easy to manage.
What's my experience with pricing, setup cost, and licensing?
The price is pretty good.
Which other solutions did I evaluate?
For my customers who do not want the range and restriction features, I instead recommend using Windows Defender.
What other advice do I have?
I would recommend this solution if they want endpoint protection.
Always check the Sophos Central to make sure that the device is activated with the current updates and scanning.
Customers should log onto the portal to see if the scan has been updated.
I would rate this solution an eight out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
CIO LATAM at i-Track Systems Development, S.A. de C.V.
Enables us to watch the throughputs and the loading of the device to see how much traffic is happening
Pros and Cons
- "The most valuable feature is the supervisory side of it where we can watch the throughputs, and even the loading of the device, to see how much traffic is happening."
- "In terms of the site-to-site VPN elements, they tend to concentrate. It's quite simple when there are Meraki devices at both ends of the VPN but if there is another user at one end, on another device, it can be a bit tricky. So they could really simplify that process a bit."
What is most valuable?
The most valuable feature is the supervisory side of it where we can watch the throughputs and even the loading of the device, to see how much traffic is happening.
What needs improvement?
In terms of the site-to-site VPN elements, they tend to concentrate. It's quite simple when there are Meraki devices at both ends of the VPN but if there is another user at one end, on another device, it can be a bit tricky. So they could really simplify that process a bit.
For how long have I used the solution?
I've been using the solution for 18-20 months.
What do I think about the stability of the solution?
So far, the solution has been very stable.
What do I think about the scalability of the solution?
At the moment, we have no plans to expand further. We might in the next six months or so. I believe it will easily scale. We've just not gone into that yet but it looks promising. At the moment, we have around 50 users.
How are customer service and technical support?
I've only had to deal with technical support in relation to site-to-site VPN problems. I did find them to be very helpful.
What was our ROI?
At the moment, we don't have ROI because we've been given a very generous period of trial for this machine, we've not had to actually spend any money so far. So, in terms of return of the investment, it's not really applicable at the moment.
What other advice do I have?
In terms of advice, I would make sure that, in terms of capacity, to get the right version, to find the right level of device. MX64 is a fairly small business-scale device. We were a bit hesitant about going for that, given the scalability of it at that point. But, obviously, make sure that you go in with enough extra capacity to deal with any increases you have in traffic demand.
If you're setting up a VPN on the MX64, if both ends end up being a Meraki device, then it's simple to set it up. But when it isn't, it's a bit more complex. Eventually, it causes a lot of statistical information that they could provide if the devices are Meraki at both ends. If they could provide that same facility for setups where the network doesn't involve an MX64 or a Meraki device at both ends, that would be great.
I would rate this solution an 8 out of 10.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
Buyer's Guide
Intercept X Endpoint
December 2024
Learn what your peers think about Intercept X Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.
Founder, Director at a tech services company with 1-10 employees
A stable and scalable solution which is easy to install and allows for synchronized protection
Pros and Cons
- "One of the best use cases involves synchronized security staff, which allows us to manage both the firewall and the anti-virus features from the cloud."
What is our primary use case?
One of the best use cases involves synchronized security staff, which allows us to manage both the firewall and the anti-virus features from the cloud. They work in tandem with each other. So, if there is any threat detected by the endpoint, it communicates information concerning this change to the firewall. For that particular client, at the firewall, it can update all other endpoints into the network to check if the same threat is visible on any other machine. Then, corrective action can be taken collectively with a single click.
What is most valuable?
We have not encountered any issues involving the solution. A point in its favor is that it has not slowed down our systems, such as occurred with McAfee, Symantec or even Quick Heal. This has been a positive experience for us. Also, the synchronized security, in which things work with each other, provides us with a pretty automated remediation methodology which cuts down on much of the manual steps and workload.
What needs improvement?
At present, the solution meets the needs of our business scale. Perhaps in the future, as we grow and face increased challenges, there would be a need to explore other options.
For how long have I used the solution?
We've been using Sophos Intercept X for around six months.
What do I think about the stability of the solution?
The solution is pretty stable.
What do I think about the scalability of the solution?
The solution is, indeed, scalable. As a cloud-based solution, it is all about scalability.
How are customer service and technical support?
We have yet to encounter a situation in which we had a need to call tech support.
How was the initial setup?
The solution is pretty straightforward and very easy to configure.
Installation took no more than two or three minutes.
What about the implementation team?
We, ourselves, are system integrators and we have a staff of around seven people, consisting of eight engineers and a person who is responsible for the accounts, meaning the support staff.
What's my experience with pricing, setup cost, and licensing?
One can pay for the license annually, or at two and five year intervals.
What other advice do I have?
The solution is cloud-based.
I would absolutely recommend this solution to others. So far, so good.
There are roughly 25 people making use of the solution in our organization.
I rate Sophos Intercept X as a ten out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
eResearch Solution Architect at a educational organization with 1,001-5,000 employees
A good heuristics solution
Pros and Cons
- "I consider the heuristics to be most valuable, the fact that the solution does not work solely on signatures."
- "We are considering switching from this solution as a result of the closer integration needed between the firewall systems and the EDR."
What is most valuable?
I consider the heuristics to be most valuable, the fact that the solution does not work solely on signatures.
What needs improvement?
We are considering switching from this solution as a result of the closer integration needed between the firewall systems and the EDR.
We are not talking about issues with the installation, documentation or interface, but with the existing combination between Sophos Intercept X and our firewalls. This is why we are considering other options.
Moreover, the solution does not offer support for a legacy SAN. However, as this is a legacy issue, it will likely resolve itself eventually.
For how long have I used the solution?
I have been using Sophos Intercept X for close to 15 years.
What do I think about the stability of the solution?
The stability is fine.
How are customer service and technical support?
We have had no problems with technical support.
How was the initial setup?
The installation was fine.
What's my experience with pricing, setup cost, and licensing?
As I am not responsible for paying the bills I cannot comment on the pricing.
What other advice do I have?
I would never rate a solution as a ten out of ten, so I give Sophos Intercept X a rating of eight.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Administrator
Good app control and threat protection
Pros and Cons
- "We find the app control and its threat protection to be the best features."
- "The choices offered for the on-premises and cloud-based platforms are the reverse of each other."
What is most valuable?
We find the app control and its threat protection to be the best features.
What needs improvement?
The app control in respect of the user interface could be improved, The choices offered for the on-premises and cloud-based platforms are the reverse of each other, such as the one responsible for allowing or denying access. This can be confusing initially, even though I later discovered that it is possible to set it back.
What do I think about the stability of the solution?
We are happy with the solution's stability.
What do I think about the scalability of the solution?
The solution is scalable. We continue to add devices to the several sites we have on it without any problem.
How are customer service and technical support?
I haven't had much cause to deal with technical support, although we sometimes require this concerning the email component, particularly in respect of the relay to Office 365.
Which solution did I use previously and why did I switch?
In our ten years we have not worked with another solution before using Sophos Intercept X.
How was the initial setup?
The initial setup was easy.
What's my experience with pricing, setup cost, and licensing?
While I do not have much experience dealing with the price, we have been entitled to a substantial discount on the solution in our use of it as an educational tool.
What other advice do I have?
Our organization has 1,500 end-users making use of the solution.
We require four to five administrators.
The solution sufficiently satisfies one's standard needs, including those of antivirus and app control.
I rate Sophos Intercept X as an eight out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Project Manager at a tech services company with 11-50 employees
Easy to use, straightforward to set up, and it's effective against critical problems including ransomware
Pros and Cons
- "The most valuable features are ease of use and the GUI."
- "We would like to deploy across a variety of machines simultaneously through the network."
What is our primary use case?
This security solution covers most of the critical problems such as ransomware.
What is most valuable?
The most valuable features are ease of use and the GUI. The interface is very subjective. Personally, I am fine with it. However, some people don't like it. Generally speaking, I would say that it is easy to use.
They have a free version that is installed on mobile phones, which is very good.
The integration with my AP works well.
What needs improvement?
The price of this product should be reduced because it is a little high.
We would like to deploy across a variety of machines simultaneously through the network.
For how long have I used the solution?
We have been using Sophos Intercept X for the past month.
What do I think about the stability of the solution?
So far, I haven't seen any bugs in this product, so the stability is good.
What do I think about the scalability of the solution?
Scalability-wise, Sophos Intercept X is good. We have close to 100 users, who are mostly salespeople.
How are customer service and technical support?
We have not engaged with technical support.
How was the initial setup?
The initial setup is straightforward and not complicated. Deployment-wise, this solution is okay. It is easy to get the agents up.
One problem is that we want to know if there is a way to deploy the agent without going to every machine if I am upgrading from another product. Locally, I have to go machine by machine to complete the installation.
What about the implementation team?
We deployed by ourselves.
What other advice do I have?
My advice for anybody who is considering this product is that if you want ease of use for a good price, and something that addresses most of the endpoint protection needs, then this is the best solution to implement.
Generally, I like this product compared to other endpoint solutions and I don't have many complaints. The vendor just has to keep it up or continue to improve. That said, it cannot stop every virus so it is not perfect.
I would rate this solution a nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Service Delivery Engineer - Network Security Lead at a tech services company with 51-200 employees
Built-in AI, intelligent scanning, easy to use interface, and easy to manage from a single panel
Pros and Cons
- "This is really good because it's applicable to zero-day threats."
- "The security is good but the feature set is limited."
What is our primary use case?
We use this solution for endpoints and a firewall.
What is most valuable?
The most valuable feature is the AI functionality.
It really does intelligent scanning to know if it really is a threat or not.
This is really good because it's applicable to zero-day threats.
The engine that is behind the Intercept X is really good because it has AI in-built.
The UI, the user interface it's really simple and straightforward.
The management is quite simple. it is backed up on the cloud. From the cloud, you can manage all of your devices through the firewall, including the endpoint solution and the email solutions. They are all managed in one panel.
It's a straightforward product. I don't see anything that they can change.
One of the best parts of Sophos is manageability. You will find in the organization you just have one portal where we just manage all of the devices in one place.
It's very simple. You just run an agent with the machine that communicates with the cloud portal. it is very simple to manage.
What needs improvement?
When comparing the security, I feel that Fortinet has more features as compared to Sophos Intercept X. As such, the feature set needs improvement. They should offer more with the firewall.
For example, Fortinet has a web application, it has application control, it has antivirus, and it has anti-malware. It offers many features.
Sophos is a bit behind when it comes to the features of the firewall itself.
The security is good but the feature set is limited.
They can up their marketing strategies. They need to increase their marketing efforts.
For how long have I used the solution?
I have been using Sophos Intercept X for one year.
We are using the latest version.
What do I think about the stability of the solution?
It's a very stable product.
What do I think about the scalability of the solution?
It's a scalable solution.
We have 100 users in our organization.
We have plans to continue using this solution.
How are customer service and technical support?
Technical support is very good.
Which solution did I use previously and why did I switch?
I was using Kaspersky for endpoints. I changed back because Kaspersky was using too many resources on my machine. Also, I changed because of the complexity.
How was the initial setup?
The installation was straightforward.
It took a day and a half.
The deployment for a medium enterprise can be done by one engineer unless they are deploying several appliances.
What about the implementation team?
I implemented this solution myself. We did not use an integrator or vendor.
What's my experience with pricing, setup cost, and licensing?
Licensing costs are not expensive.
What other advice do I have?
They have the hardware for different products, different appliances for different specifications.
Sophos bought Cyberoam. People who were Cyberoam customers needed to migrate to the Sophos platform. They could migrate to the Sophos platform while they were still on the Cyberoam product or the Cyberoam appliances.
You can see the kind of work that went back into backward compatibility of the Sophos platform to the Cyberoam platform.
People could actually migrate from that Cyberoam to Sophos, and their licenses as well.
Overall, I am perfectly satisfied with the product. I have no complaints.
I would definitely recommend Sophos Intercept X to others who are interested in using it.
I would rate this solution an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
CTO & CISO at a tech vendor with 51-200 employees
A very complete solution with good functionalities and the capability to scale
Pros and Cons
- "There are products that are technically stronger. However, this product has everything in one solution, which makes it a strong endpoint option."
- "The ADR functionalities feel like they aren't mature enough. It hasn't been a long time since Sophos has offered reproduction. Due to the fact that it's so young, it has fewer functionalities than other and more mature ADR solutions."
What is our primary use case?
We primarily use the solution to protect our company from ransomware and malware attacks.
What is most valuable?
The product is very complete.
There are products that are technically stronger. However, this product has everything in one solution, which makes it a strong endpoint option.
There are good functionalities for advanced incorporation and good ADI functionalities that work well specifically against dangerous strains of malware and ransomware.
Since 2015, Sophos is trying to integrate its products with synchronized security. The communication from UTM to the agent goes both ways. It allows the platform to gain a very high amount of data about the Endpoint's telemetry and to give the administrators a lot of visibility. A lot of other platforms cannot synchronize with other security ICT solutions and cannot guarantee the same visibility at all.
What needs improvement?
The ADR functionalities feel like they aren't mature enough. It hasn't been a long time since Sophos has offered reproduction. Due to the fact that it's so young, it has fewer functionalities than other and more mature ADR solutions.
Sophos would benefit from a cloud server implementation on top of the cloud provider (whether it's Google, Amazon, Azure, etc.). The solution is great, however, it's still intended for traditional off-cloud usage. It's focused on endpoint protection of the end-user. It's less targeted on servers, especially Linux or newer implementations that have microservices contained within the environment.
For how long have I used the solution?
I've been using the solution for about five years now.
What do I think about the stability of the solution?
The stability is good. We haven't seen any issues that would make us believe it is unreliable. We haven't had crashes. I don't really recall bugs or glitches.
What do I think about the scalability of the solution?
The solution really targets medium-sized enterprises. Therefore, it's not a problem to scale until it reaches 5,000 users. Most of the Italian market would fit into this category, and therefore, it works pretty well for most organizations here.
How are customer service and technical support?
I can say that I'm happy with the level of technical support we've received so far. In my experience, they are quick. There also isn't a language barrier. There is an Italian support team, which means we can speak with them in Italian. It's always easier than trying to explain difficult problems in other languages. They are quite efficient so I'm quite satisfied.
What other advice do I have?
I am a customer, however, I also have a partnership relationship with Sophos due to the fact that we are a security system integrator and post-security system integrator. That means we not only use Sophos, but we also propose it to our clients.
I'd rate the solution nine out of ten.
I would recommend Sophos as one of the platforms to take into account when looking for a solution that would work for a mid-sized company. Whether it's the ideal solution or not depends on what objectives and goals the organization has. Those need to be taken into account when evaluating a potential solution.
That said, generally speaking, I would recommend Sophos. If you compare the environment, the scope, objectives, and goals of the organization, you'll be able to decide if Sophos would be right for you.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Disclosure: My company has a business relationship with this vendor other than being a customer: partner
Buyer's Guide
Download our free Intercept X Endpoint Report and get advice and tips from experienced pros
sharing their opinions.
Updated: December 2024
Product Categories
Endpoint Protection Platform (EPP) Endpoint Detection and Response (EDR) ZTNA Managed Detection and Response (MDR) Extended Detection and Response (XDR) Ransomware ProtectionPopular Comparisons
CrowdStrike Falcon
Microsoft Defender for Endpoint
Cisco Secure Endpoint
SentinelOne Singularity Complete
Fortinet FortiClient
Cortex XDR by Palo Alto Networks
Symantec Endpoint Security
Trend Vision One Endpoint Security
Trellix Endpoint Security
Kaspersky Endpoint Security for Business
ESET Endpoint Protection Platform
Check Point Harmony Endpoint
VMware Carbon Black Endpoint
Buyer's Guide
Download our free Intercept X Endpoint Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Sophos Intercept X or Symantec End-User Endpoint Security - which is the better solution?
- Can Sophos Intercept X and Carbon Black be used side by side on endpoints?
- Which endpoint solution is more effective in terms of protection and remote administration: Sophos Intercept X or Kaspersky Endpoint Security?
- How does Crodwstrike Falcon compare with Sophos Intercept X?
- Sophos Intercept X: renewal cost for a security system integrator
- What is the biggest difference between EPP and EDR products?
- Can Cylance be used with Symantec or Kaspersky endpoint solutions without conflict?
- When evaluating Endpoint Security, what aspect do you think is the most important to look for?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- Which Endpoint Protection Solution offers Zero Trust (ZTN) as a feature?