It is an endpoint. So it's antivirus and DLP, and all those integrated in one.
Head of Technology at Speed enterprises
Stops data leaks, highly stable and scalable solution
Pros and Cons
- "It is quite scalable. You can always add more users. I would rate the scalability a nine out of ten."
- "It's a bit heavy on the computers. So once you install it, the computer slows down. It is a resource-intensive solution."
What is our primary use case?
What is most valuable?
It is like an antivirus. So it stops viruses. DLP stops data leaks in the organization.
What needs improvement?
It's a bit heavy on the computers. So once you install it, the computer slows down. It is a resource-intensive solution.
For how long have I used the solution?
I have been using this solution for two to three years now. We use the latest version.
Buyer's Guide
Intercept X Endpoint
November 2024
Learn what your peers think about Intercept X Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,192 professionals have used our research since 2012.
What do I think about the stability of the solution?
It is a stable solution. I would rate the stability a nine out of ten.
What do I think about the scalability of the solution?
It is quite scalable. You can always add more users. I would rate the scalability a nine out of ten.
How was the initial setup?
The initial setup is easy. The server, the main server, is online. And then the agent is on the premises.
After online configuration, the agent installation takes only ten minutes. It is a very quick installation.
The configuration takes around two hours.
What about the implementation team?
I do maintenance for this solution. A team of four engineers handles the maintenance and deployment.
What's my experience with pricing, setup cost, and licensing?
The pricing is quite expensive compared to the rest. I would rate the pricing a four out of ten; one is expensive, and ten is cheap.
What other advice do I have?
It's a good product. So, link it with the security policies because you can link it with the firewall. The endpoint can communicate with the hardware firewall. So that's one of its strong points.
Overall, I would rate the solution an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer:
Beneficial central endpoint view, simple configuration, and good security
Pros and Cons
- "The most valuable features of Sophos Intercept X are the minimal configuration needed for the end user and the central view of all the endpoints. There are plenty of tools to control and manage the endpoints. Additionally, there is the capability of connecting the endpoint to the CLI."
- "The graphical interface could improve. Additionally, adding less expensive mobile device support would be helpful. Other solutions have this feature."
What is most valuable?
The most valuable features of Sophos Intercept X are the minimal configuration needed for the end user and the central view of all the endpoints. There are plenty of tools to control and manage the endpoints. Additionally, there is the capability of connecting the endpoint to the CLI.
What needs improvement?
The graphical interface could improve. Additionally, adding less expensive mobile device support would be helpful. Other solutions have this feature.
For how long have I used the solution?
I have been using Sophos Intercept X for approximately three years.
What do I think about the stability of the solution?
There are minor scalability elements that could improve. However, overall it is good.
I rate the stability of Sophos Intercept X a seven out of ten.
What do I think about the scalability of the solution?
We do not have too many workstations, we have approximately 300 and we have not had an issue with the scalability. However, if there were more workstations there could be some issues.
I rate the scalability of Sophos Intercept X a seven out of ten.
How are customer service and support?
We had support but it was through local support vendors. It could improve.
I rate the support from Sophos Intercept X a five out of ten.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I have used Comodo and it is a good solution. When the agents are installed on the endpoints it provides inventory management. However, in Sophos Intercept X it is possible but you need to export and do it manually. The Comodo solution has better email, asset, and website management capabilities. Overall, Sophos has good security when compared to other solutions.
What's my experience with pricing, setup cost, and licensing?
The price of Sophos Intercept X is expensive. The license is paid on an annual basis. There are extra features that can be added depending on the endpoints. The solution is priced twice as much as the Comodo solution.
What other advice do I have?
We have recently moved to a less expensive solution, which was half the price.
I rate Sophos Intercept X an eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Intercept X Endpoint
November 2024
Learn what your peers think about Intercept X Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,192 professionals have used our research since 2012.
Network Administrator at a manufacturing company with 51-200 employees
Useful central management, fantastic technical support, and priced well
Pros and Cons
- "The most valuable feature of Sophos Intercept X is cloud management."
- "Sophos Intercept X could improve on its setup process. They could make it easier to have a baseline set up for the system, or at least provide more understanding of what the baseline is when you first install it. This could be a matter of lack of training on my part, but it's difficult to receive training on solutions that are not Cisco. Cisco is the only vendor with classes or courses."
What is our primary use case?
We use Sophos Intercept X on all of our end-user PCs and servers.
What is most valuable?
The most valuable feature of Sophos Intercept X is cloud management.
Sophos Intercept X used to be managed through the Sophos UTM, and they moved it. They moved the endpoint security strictly to the cloud, and it is a lot better that way it is more functional. Before all it did was download the software. Now that we have full management of the clients, you can easily update them remotely. There's a lot of additional policy functionality that was not there before. However, sometimes a little too much, but not as much as a solution, such as Cisco.
For how long have I used the solution?
I have been using Sophos Intercept X for approximately six years.
How are customer service and support?
Sophos technical support has always been fantastic. I've never had an issue, they have been great, and they are tremendously helpful. They are very hands-on, and they dive in to help to fix your problem if you need them to.
Which solution did I use previously and why did I switch?
I have used many other solutions, such as Cisco.
When comparing Cisco to Sophos Intercept X, Cisco solutions are more difficult.
How was the initial setup?
Sophos Intercept X could improve on its setup process. They could make it easier to have a baseline set up for the system, or at least provide more understanding of what the baseline is when you first install it. This could be a matter of lack of training on my part, but it's difficult to receive training on solutions that are not Cisco. Cisco is the only vendor with classes or courses.
When we set it up, we made very few changes from the baseline setup, and mainly that's to allow other software to operate. Sometimes the endpoint security software interferes with your software that needs to be running in addition to the bad software. You have to set up and configure the software and the policies to allow for the software you want to operate.
What about the implementation team?
We typically have one person that does the implementation and maintenance of Sophos Intercept X.
What's my experience with pricing, setup cost, and licensing?
The cost of Sophos Intercept X is reasonable.
I would rate the price of Sophos Intercept X an eight out of ten.
What other advice do I have?
I would recommend others to try the solution, we have had a very good experience with it.
I rate Sophos Intercept X a nine out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Head Of Information Security at a manufacturing company with 1,001-5,000 employees
Easy to set up and stable but lacks responsive technical support
Pros and Cons
- "The initial setup is pretty straightforward."
- "They don't have the full stack of offerings as compared to the other competitive products that we see."
What is our primary use case?
We are using Sophos as an endpoint protection solution.
What is most valuable?
It's too early for me to really evaluate the solution at this company, as I've only been at the organization for a month. That said, I have used Sophos before.
So far, the protection aspect seems to be good.
I have used Sophos in my previous job and it has been a stable product.
The product scales well.
The initial setup is pretty straightforward.
What needs improvement?
The challenge with Sophos is whenever there's an escalation to a level 3 or level 4 or a certain kind of important issue, or if you want to reach out to the leadership, it's difficult to do so.
They don't have the full stack of offerings as compared to the other competitive products that we see.
For how long have I used the solution?
While I've only been at the organization for about one month, it's my understanding that the company has been using the solution for about a year.
What do I think about the stability of the solution?
The solution is stable. From what I have witnessed, it doesn't crash or freeze and there are no bugs or glitches. Historically, the performance has been good and I've found it to be reliable.
What do I think about the scalability of the solution?
The solution is very scalable. If a company needs to expand it, it can do so. It's not a problem.
We have about 5,000 users on the solution currently.
How are customer service and technical support?
The support on offer isn't ideal. In terms of the support on offer, for example, if there was a zero-day kind of attack or something, the turnaround time that Sophos offers is not acceptable. They should improve their responsiveness. We are not 100% satisfied.
I've only been at this company for one month and have yet to contact technical support on behalf of this company.
How was the initial setup?
The installation process is very simple and straightforward. It's not overly complex or difficult. A company should have any issues handling deployments.
Which other solutions did I evaluate?
Currently, we are considering other solutions and may move away from this product.
What other advice do I have?
We're just customers and end-users. The company does not have a business relationship with Sophos.
I cannot speak to the exact version of the solution we're using. My understanding is that we are on whatever the latest version is.
I'd rate the solution at a seven out of ten.
I wouldn't recommend the solution at this time as we are considering going to another solution.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
System Administrator at Finlays
Cloud-based, very stable, and makes it very easy to manage your endpoints
Pros and Cons
- "I like the way it goes beyond the office space. Being a cloud-based solution makes it very easy to manage your endpoints within the office. In this time of COVID, you can also very effectively manage people who are working from home."
- "I have not done it, but integrating it with authenticating the users on the Windows system looks a bit complicated to me. It could be because I don't understand it."
What is our primary use case?
We mainly use it on our endpoints. We use it for Windows machines and laptops. They have a server version for the servers.
What is most valuable?
I like the way it goes beyond the office space. Being a cloud-based solution makes it very easy to manage your endpoints within the office. In this time of COVID, you can also very effectively manage people who are working from home.
What needs improvement?
I have not done it, but integrating it with authenticating the users on the Windows system looks a bit complicated to me. It could be because I don't understand it.
Its installation takes a bit longer for each of the vendors. I don't know whether it is because of the internet connection. I don't know if it is just for me or it is the same for every other user.
For how long have I used the solution?
I have been using this solution for two years.
What do I think about the stability of the solution?
It is very stable.
What do I think about the scalability of the solution?
It is very scalable. There are around 120 users and devices.
How are customer service and technical support?
I have never contacted them about this new product. I used to contact them before, and I don't have issues with their technical support. They respond, and their response is good.
Which solution did I use previously and why did I switch?
We were previously using Sophos Central. It was on-premises, so we migrated from that solution to this solution. It is pretty much the same thing that we were doing before, but now it is cloud-based.
How was the initial setup?
A new device installation is very easy. During installation, when you download the installation file from the web, the registration works so well, but the installation takes a bit longer for each of the vendors. I don't know whether it is because of the internet connection. It looks like it is the web installer that takes longer. I don't know if others have experienced the same issue.
We also had a few challenges during migration. Because we were doing a migration of the site, we wanted just to maintain what we were doing before.
What about the implementation team?
We did it ourselves. I'm part of a larger group, and my colleagues had done its implementation.
What's my experience with pricing, setup cost, and licensing?
We have bought a three-year license.
What other advice do I have?
I would very much recommend this solution. I would rate Sophos Intercept X a nine out of 10.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Information Security Senior Expert at Wafaassurance
Analyzes APTs and the endpoint behavior and provides detailed information
Pros and Cons
- "It provides a feature for scanning and analyzing endpoints, which is a value-add for our infrastructure. With the advancements in the Advanced Persistent Threats (APTs), Sophos Intercept X analyzes an APT and the behavior of the endpoints. It then gives us a detailed dashboard with more information about the endpoints and their security and risk level. While deploying Sophos Intercept X, we identified a lot of vulnerability and risky endpoints that our previous solution didn't cover, which proved that this solution is the best."
- "It would be a value-add if they can include integration with other technologies or solutions, like Fortinet, Blue Coat, etc."
What is most valuable?
It provides a feature for scanning and analyzing endpoints, which is a value-add for our infrastructure. With the advancements in the Advanced Persistent Threats (APTs), Sophos Intercept X analyzes an APT and the behavior of the endpoints. It then gives us a detailed dashboard with more information about the endpoints and their security and risk level.
While deploying Sophos Intercept X, we identified a lot of vulnerability and risky endpoints that our previous solution didn't cover, which proved that this solution is the best.
What needs improvement?
It would be a value-add if they can include integration with other technologies or solutions, like Fortinet, Blue Coat, etc.
For how long have I used the solution?
We have been using this solution for two years.
What do I think about the stability of the solution?
It is stable.
What do I think about the scalability of the solution?
It is scalable. We have 250 users in our company.
How are customer service and technical support?
Sophos technical support is very helpful. There are many ways to contact them. When I worked with Cyberoam, in the console, you can directly contact technical support through chat. A consultant joins the chat, and you can give them the control to your appliance to verify the configuration and do other checks and troubleshooting for resolving your issue. This is a strong point in Sophos technologies.
Which solution did I use previously and why did I switch?
We migrated from Kaspersky to Sophos Intercept X. While deploying Sophos Intercept X, we found a lot of vulnerability and risky endpoints that Kaspersky didn't cover.
How was the initial setup?
The initial setup is not complex. The deployment and testing took us one month.
You start by deploying the server, and then you can install or deploy an endpoint. There are many ways to deploy endpoints. A roaming user can use just the email with the link, or the support team can move the endpoint or assist the user by phone.
What about the implementation team?
We had consultants. For implementation, I coordinated with a consultant from Atos and a consultant from Sophos. Atos is our infrastructure manager and service provider.
What's my experience with pricing, setup cost, and licensing?
Licensing is based on the number of users. They give a discount for editors who are considered as important members. From what I know, Sophos products are not expensive. If you have a license extension, you just need to contact the editor or partner to change the mode of licensing or extend the license to cover more people.
What other advice do I have?
I would recommend using this solution. It is an antivirus and anti-ransomware solution. It has many functions and features. Antivirus is its major feature. The anti-ransomware module is its advanced function.
It has been a good solution so far. It has a very good score in NSS Labs, which is a laboratory that tries and tests all security solutions and gives them a scoring. Many other companies have also started to deploy this solution.
We plan to continue using Sophos solutions. I am in touch with new users, and they appreciate this solution. We have a meeting tomorrow with Sophos to share with our technology roadmap and choose the new technologies to deploy in our company. We will do a proper proof of concept of the solution to evaluate technical aspects, technical features, offerings, limitations, and strong points.
I would rate Sophos Intercept X a nine out of ten. It is a good product.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Senior Network Engineer at Excel Technologies ltd
User-friendly, easy to configure, and offers flexible policies
Pros and Cons
- "The dashboard is user-friendly."
- "I'm not clear on what features need improvement. Everything is mostly fine."
What is our primary use case?
We're creating a software center. I just install the Sophos engine software and make the policies, like threat protection policies, for example.
What is most valuable?
The configuration is quite useful. All of our events are managed centrally from Sophos. We can manage security from there.
Policies are flexible and very user-friendly. The dashboard is user-friendly as well.
It is simple to set up.
The solution is stable.
It is not overly expensive.
What needs improvement?
I'm not clear on what features need improvement. Everything is mostly fine.
For how long have I used the solution?
I've been using the solution for two years.
What do I think about the stability of the solution?
It's a very light application and very stable. It's reliable. There are no bugs or glitches. It doesn't crash or freeze.
What do I think about the scalability of the solution?
We're a partner, and a lot of our clients are on this solution.
The last client we deployed for had 4,000 users. However, each company differs in terms of the number of users.
Which solution did I use previously and why did I switch?
We also deal with Trend Micro.
How was the initial setup?
The setup is straightforward. It is not overly complex or difficult.
The deployment was pretty quick. You just have to set up the policies. Depending on the additional policies you have to set up, it may take longer.
What about the implementation team?
We are able to deploy the solution for our clients. I've worked on various deployments for clients.
What's my experience with pricing, setup cost, and licensing?
The pricing varies. It's different from client to client, depending on their environment and needs. It's not overly expensive.
What other advice do I have?
We're Sophos partners.
I'd 100% recommend the solution to potential users. It's great for protecting devices and offers great security. There are a lot of malicious threats online right now. Companies need to protect themselves, and Sophos can help.
I would rate the solution eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Disclosure: My company has a business relationship with this vendor other than being a customer:
Senior CyberSecurity Architect and Mentor at BlueTeamAssess LLC
Reliable, scalable and very simple to set up
Pros and Cons
- "The thing that I like about it is the synchronized security. You can tie endpoint protection and firewalls and a whole range of other services and products. You can get your servers taken in under this."
- "The problem is that if you have a lot of different components going on, each managed under a different umbrella, then you're going to be spending a lot of time hopping back and forth between the different components to see, "Well, I got hit here. What did my firewall see? I got hit in the firewall, the firewall says it allowed that attack in, did it land on anything to compromise any of my endpoints?""
What is our primary use case?
The primary use case is basically having a synchronized perspective on what's going on between endpoints, firewalls, and whatever other types of preventative measures the customer has.
How has it helped my organization?
The fewer panes of glass you've got to go to to try to investigate an event, the better off you are. If there's some automation that goes on within the fabric, or whatever you want to call it, this coordinated effort, then you're going to come out ahead as a small organization. Sophos has one pane of glass, so it gives good visibility. There's less time spent in front of the screen because I have confidence in the automation that's going on.
What is most valuable?
It's been pretty reliable. There's been a few times when it hasn't just taken care of problems. The automation is very convenient.
There's Sophos Central where the customer has a single pane of glass. You can manage everything.
The thing that I like about it is the synchronized security. You can tie endpoint protection and firewalls and a whole range of other services and products. You can get your servers taken in under this.
It has a Linux version that's available.
What I look for in dealing with small businesses, is for something that is not going to add to their staffing requirements significantly in terms of management. That's true with both Sophos as with Fortinet.
There's great situational awareness within all the other components. If I have a workstation, usually they're just taking care of everything without me even knowing about it unless I go into the logs and see what's been cleaned up. I don't care if something gets cleaned up, I do care if something doesn't get cleaned up. My reporting is set to an on exception basis to ensure I don't have a firehose of information pointed at me to overwhelm me. Customers don't generally want to know every little thing that's happening on their network. What they want to know is if something has happened that puts their environment or their infrastructure in jeopardy. Sophos does this exceptionally well.
The pricing of the solution is quite good.
What needs improvement?
The problem is that if you have a lot of different components going on, each managed under a different umbrella, then you're going to be spending a lot of time hopping back and forth between the different components to see, "Well, I got hit here. What did my firewall see? I got hit in the firewall, the firewall says it allowed that attack in, did it land on anything to compromise any of my endpoints?" I see that all the time. That's a question I always have in the reports I give my customers. "Okay. So this happened last month. And as you can see, there were all these attacks knocking at the door, but none were allowed through." If someone got through, then I'm going to be concerned.
For how long have I used the solution?
I've been working with this solution alongside a customer for two years now.
What do I think about the stability of the solution?
The stability is great. We've never had issues with its reliability. It doesn't crash or freeze. There aren't bugs or glitches. It protects us well.
What do I think about the scalability of the solution?
The solution scales really well. They have great resources on hand for managing it within the cloud. I haven't found any issues with capacity. I've never heard of anyone ever having issues in that regard.
Typically we deal with small businesses. When I say "small business" I am referring to a company of around 250 people.
How are customer service and technical support?
Technical support has been very, very good. They're reliable and knowledgable. We've been satisfied with the level of service provided.
Which solution did I use previously and why did I switch?
We also have experience with Fortinet. Fortinet has what they call their security fabric, which does about the same thing. Basically you have a number of different products, different solutions, and it's all under a single pane of glass and everything's coordinated so that any member or any component of that fabric or synchronized security is aware, has situational awareness of what other components are experiencing. If there's an attack that breaks out in one place, then there's going to be the opportunity for basically isolating that particular component so that it doesn't allow lateral movement.
I've used other solutions. The reason that I like Sophos is mostly due to the synchronized security and cloud management. Other solutions that I've dealt with have been point solutions. I've needed to figure out how to get that situational awareness between the different points. You have to do that. The name of the game these days is to evade the parameter. I have to not only protect the endpoint as if there was no firewall, but I also have to make sure that I've got as much intelligence going on about the state of my internal network so that everybody knows what's happening next door to them.
How was the initial setup?
The initial setup was a piece of cake. It wasn't complex at all. It's very straightforward.
What's my experience with pricing, setup cost, and licensing?
I can justify the pricing for customers and I can explain what they're doing from a pricing standpoint in terms of the different risks that they're handling. I'm all about risk management. Unfortunately, we lose awareness of that, the calculus that goes into that when nothing's going wrong.
You have to ask: what are you trying to protect? What are you willing to spend to protect that, and what's your expected loss if something happens? You have to look at all things and then decide if the number is fair. I'd argue that it is.
What other advice do I have?
We're partners with Sophos. We're a consulting company and we provide some managed services. Sophos products are some that I deploy and manage for my customers.
I don't have the EDR or any of the really sophisticated stuff. The client doesn't think that they have a need to go to another level.
I don't have EDR or MTR deployed for the customer. I work primarily with small businesses. So sometimes it's kind of hard to get them to invest more than what they feel comfortable doing.
Other organizations should give it serious consideration if they are looking for a solution. The price point is not unreasonable and the management and the continued evolution that I see within the product means that they're not sitting on their haunches waiting for the next big thing. They're constantly moving forward, trying to keep abreast of what's going on.
We're in an arms race when it comes to cybersecurity. When you look at SophosLabs out of the UK and the work that they're doing in their blogs like Naked Security and whatnot, they're constantly in the forefront, constantly trying to find different threats. It's impressive, to say the least. All of that percolates down into their product because that's what drives their product.
I'd rate the solution at eight out of ten. The solution is consistently showing me that it has a very effective rubric that it follows through on in terms of identifying and remediating, particularly in the area of ransomware. They can handle everything without having to have somebody get down in the weeds and recover things. I like the automation that it brings into the work that's done. That was the wow factor that drew me to them, to begin with.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Intercept X Endpoint Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Endpoint Protection Platform (EPP) Endpoint Detection and Response (EDR) ZTNA Managed Detection and Response (MDR) Extended Detection and Response (XDR) Ransomware ProtectionPopular Comparisons
CrowdStrike Falcon
Microsoft Defender for Endpoint
Cisco Secure Endpoint
SentinelOne Singularity Complete
Fortinet FortiClient
Cortex XDR by Palo Alto Networks
Symantec Endpoint Security
Trend Vision One Endpoint Security
Trellix Endpoint Security
Kaspersky Endpoint Security for Business
ESET Endpoint Protection Platform
VMware Carbon Black Endpoint
Check Point Harmony Endpoint
Buyer's Guide
Download our free Intercept X Endpoint Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Sophos Intercept X or Symantec End-User Endpoint Security - which is the better solution?
- Can Sophos Intercept X and Carbon Black be used side by side on endpoints?
- Which endpoint solution is more effective in terms of protection and remote administration: Sophos Intercept X or Kaspersky Endpoint Security?
- How does Crodwstrike Falcon compare with Sophos Intercept X?
- Sophos Intercept X: renewal cost for a security system integrator
- What is the biggest difference between EPP and EDR products?
- Can Cylance be used with Symantec or Kaspersky endpoint solutions without conflict?
- When evaluating Endpoint Security, what aspect do you think is the most important to look for?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- Which Endpoint Protection Solution offers Zero Trust (ZTN) as a feature?