Sophos Mobile Reviews

End users must know their devices are vulnerable rather than relying on administrators to patch them. A two-way notification system should alert both the engineer and the administrator about vulnerabilities. Sometimes, administrators manage many devices and might overlook issues, so having end users also receive notifications can help ensure that vulnerabilities are addressed more promptly.

It would be helpful to have a dashboard that can be quickly exported to Excel or PDF. This dashboard should summarize activities, including usage, internet usage, vulnerabilities, threats, and patch coverage. The goal is to simplify reporting for administrators so they don’t have to sort and pick data manually. This makes it easier for management and auditors to review and assess the organization's status efficiently.

I have been using Sophos Mobile for two years.

The product is stable.

I rate the solution’s stability an eight out of ten.

It is scalable. The situation is challenging for SMEs, as they often want to remain loyal to their service providers but struggle with scaling due to high costs. It would be helpful for providers to offer buyback options or discounts for SMEs to support their growth and make scaling more manageable.

I rate the solution’s scalability as four out of ten.

The initial setup is not complex. It aligns well with client needs and takes less than thirty minutes. This includes configuring from the initial stages, such as setting up from Linux to GRIM mode. Clients often request additional features or changes, which can extend the setup time.

I rate the product’s pricing a six out of ten, where one is cheap and ten is expensive.

The impact of currency fluctuations is significant. In regions where the local currency is weak against the dollar, the cost of licensing and other expenses increases when the currency value drops. Manufacturers should consider adjusting their pricing strategies for the African market to account for these challenges. Keeping prices stable or more affordable could ease the financial burden on businesses in these regions.

I recommend the solution. If the client requests something else, I'll always pitch and stuff.

Overall, I rate the solution an eight out of ten.

We primarily use Sophos Mobile to deal with lost devices. If we lose a device, we want to lock it down and export all the content. We don't need it for antivirus because we're using Sophos on Windows machines, and the built-in Windows antivirus is enough. 

Sophos can block the Wi-Fi connection on a mobile device. That's one feature we wanted, but the main thing is the ability to disable the device if it's lost or stolen. We need to shut down PayPal, so it can't be used to make unauthorized purchases. 

Setting up Sophos Mobile wasn't easy. If you configure the device incorrectly, you need to start over from scratch.

We've used Sophos Mobile for about five years.

I wouldn't say it's unstable, but sometimes the enrollment gets lost. You're out of luck if that's the case, and I've had trouble getting support from them.

We haven't deployed Sophos Mobile on a large scale. We only have it on a  few machines, so I can't imagine how difficult it would be. 

I rate Sophos support six out of 10. It takes a long time to get a response. Our support reps are based in the Philippines, and it's hard to connect with them sometimes. It took me about two months to resolve my issue, so it wasn't a good experience. 

A Sophos representative sends you a URL, you open it, and you're enrolled in the system. After that, you need to configure your profile settings. For example, you can disable wireless connectivity on a mobile device. Once you create a profile, you can send it to the machine you want. It sounds easy enough, but I made some errors and had to redo the whole device. It's more difficult than I thought it would be.

I don't recall the exact price, but it's a few thousand dollars for 30 licenses. 

I rate Sophos Mobile seven out of 10. I'm okay with it, but I would probably use something else if it were my decision. I stick with Sophos Mobile because it's what the university uses. There are some other decent brands, but I never get to use them.

We are doing Sophos endpoints, Sophos access points, Sophos Mobile, Sophos Firewall, and Safeguard. We build solutions with all these products to have a centralized dashboard on the cloud console for managing all these devices.

Sophos Mobile is very effective in providing alerts for network spikes. It offers free access to customers, which gives visibility to users and helps in recommending the solution to others. It also facilitates security by allowing the security hardware to communicate, which includes the firewall, access points, and endpoint security.

Sophos Mobile is efficient in threat detection. It has detected threats while browsing on Chrome, and is lighter compared to other security applications like McAfee. Its threat protection is something I appreciate greatly.

The most important area for improvement is the mobile threat detection, especially regarding Instagram and Facebook hacks. There's a need for better protection against hackers trying to access key accounts such as bank accounts.

I have been familiar with Sophos Mobile for more than three to four years.

The solution is stable overall.

Before Sophos, I was working with Cyberarm, which was acquired by Sophos. We predominantly focus on Sophos now, with ten percent of business spread between SonicWall and Fortinet.

The product is free.

I recommend everybody, including all users, to use Sophos Mobile, as it helps in protecting their devices. The product is something I keep on recommending to users.

I'd rate the solution seven out of ten.

The solution is used for mobile endpoint protection.

I like the security features. We can customize the network and web policies. The solution is quite user-friendly.

The setup should be made easier.

I have been using the solution for one month.

The solution is quite stable. I haven’t faced any problems yet. It advises me about threats.

The tool’s scalability is okay. It is useful for Android, macOS, and tablets. Only one person used the product in our organization.

The support team is very hard to get. Once we get in contact with the team, the support is very fast.

The setup is a bit complex. We must go through the certificate. The solution can be deployed in 40 minutes or an hour.

I configured the tool by myself. To deploy the tool, we must have the right version. We must configure the certificate, including the name and certificate authority. Then, once we push the agent, the process is straightforward.

One of my partners was doing the POC. He canceled it. People who want to use the solution must go ahead with it. Some tools use a third-party antivirus, but Sophos has its own antivirus. Everything will be on one platform. It is much more stable. We won’t have a lot of resource intensity. Overall, I rate the product a ten out of ten.

Sophos handles the security through AI-Synchronized Security AI Deep Learning/Security Heart Beat, DLP, Easy Enrollment (DEP, KME, Google Zero Touch), App management, VPN per App, iOS, Android, Windows 10 clients, and Mac. It is easy to set up, enroll users, and manage.

The Secure Workspace (GDPR Compliance / separation of corporate data from personal data) / (container with corporate apps like secure e-mail, calendar, contact persons, and corporate browser etc.) is easy to manage. It takes only a few minutes to get started. With the "instant action" and support for TeamViewer, mobile support has never been easier. 

The central admin helps us to save resources and add more time to other projects. The administration of mobile devices has been reduced by thirty-five hours per week, and we only have to focus on deviation/alerts. Sophos handles all of the security, cleaning up automatically, and sending alerts. There is no need for awareness while Sophos is in control. We can even upload our corporate apps into the Sophos MDM/MAM/EMM/EEM.

The management and enrollment process is great, and with the asset management and instant action menu, we can easily maintain and support the users.

As a corporate manager, we now have corporate ownership of all devices and can easily distribute profiles, apps, documents, and compliance rules. The user interface is very logical and easy to work with.

The most important feature for us is that Sophos Mobile Device Management is a part of the Sophos concept of Synchronized Security / Intercept-X. It handles Firewalls, Wi-Fi, Servers, virtual servers, Unix, Linux, cloud, endpoints+EDR (PC and Mac), Web Gateway, E-mail gateway, and DLP (Data loss protection) / CryptoGuard (Military standards). It also supports integration with corporate AD, SIEM solution, with the best AV and Ransomware defender on the market. It provides Asset Management, Reporting, alerts, subscription, dashboard, a fantastic Root Cause analysis tool, Application control, Sandboxing, Patch Management, and even a Phishing module. It is even possible to design and automate Phishing campaigns for educating users. 

With Easy Enrollment through "Apple" ABM/DEP, Samsung KME and Google Zero Touch which covers all smart-phone brands, we are not spending time on enrollment or setting up the smart-phones (Security, Apps, Documents, VPN, O365, Mail) or secure workbrowser. 

The ROI has been calculated to more than 500% / less 12 months pay-back - AND additionally saved time on reporting and documentation by using the reporting and asset management.

We are looking forward to additional Patch Management, which has been announced for release in Q3-2020.

We would like to see graphics showing the use of each device. It would also be helpful to have a tool for designing mobile device screens, and a tool for handling which numbers the users are allowed to use.

Otherwise, we have everything we need.  

3 Years

As it is running on Sophos Cloud (AWS), the performance is outstanding.

Sophos MDM can handle everything from five users up to ten thousand.

We have had no need for technical support as we have prepared the project. We did, however, spend some time with the vendor while setting up the firewall for App-VPN. We have no complaints.

We did not use another solution prior to this one.

Within thirty minutes we had the first ten users enrolled (including corporate Apple setup, corporate Knox setup, AD-integration, and Corporate TeamViewer-setup). Once you have made DEP and KME integration, the enrollment process runs automatically. As an admin, you are saving a LOT of time with no more phone setup, enrollment, etc. As all iOS devices has to be "managed" / Supervised we have made automation in all the Supervised processes and compliance rules. 

We created an internal team for understanding, implementing, and managing Sophos. This included the setup process, defining compliance rules, and deciding which apps and profiles we would use. Once we were comfortable, we started the process.  

We have made a ROI calculation with all aspects of the mobile handling, administration and security which surprisingly is above 500% and a payback within the first year by (>300%). With these numbers nobody can afford NOT to invest in Sophos MDM. (Calculations are available on request). 

In Sophos, a user can have more devices (Laptop, PC, Mac, iPad, iPhone, Android, and even Chromebook), but you only have to pay for the numbers of users. 

We have been evaluating Microsoft Intune and IBM Maas360.

The Synchronized Security / Sophos Central provides ONE platform for management of Firewall, Wifi, Servers, Endpoints, Unified Mobile Devices (some using ONE App only and some are enrolled in Apple DEP / ABM with company specific policies (blueprints). Some have been enrolled in Samsung KNOX and we are working on the Google Zero-Touch Enrollment program+ Windows-10 / Office 365), Cloud (Azure) and AWS, Encryption and have the best anti-ransomware engine on the market (Intercept-X). Additionally you have a Threat Analysis Center from where you will have a perfect overview if the company should be under attack both from the outside and from the inside of the network. We have optimized our SD WAN (Sophos XG Firewall). By taking advantage of the Sophos cloud platform, the device asset-management and integration with the company Active Directory makes it easy to enroll all kind of users and on the same time, we have a perfect overview of all devices, where they are, who are using them and even serial numbers etc. for each device. 

We were attempting to safeguard corporate data as it leaves our walls. We already have encrypted laptop hard drives, so we were trying to extend that to cell phones for One Drive, Outlook, and One Note. All that is corporate data. And if you lose your cell phone or somebody steals it or you dump it in the toilet or any number of things that could happen to your cell phone, we want to be able to block access, delete the corporate data, do all those things that good security people are supposed to do.

In terms of valuable features, we liked the lock feature, the roll-out white feature, and the find feature. I think that Sophos had a GPS locator, so you could figure out where the phone was from a GPS location.

In terms of what could be improved, the initial configuration and setup of the environment could probably be made a little bit easier. There are so many pieces that go into it. Intune is absolutely insane and Sophos is better, but it still is a bit complex to get it all set up correctly because you need to have certain certificates for Apple in order for you to connect to their device. And then you've got to have policies for this and rules for that and it is very complicated. We eventually get there, but their wizards just keep asking you questions, "Well, I don't know what that is." It's like, "Why do I need that?" Or "Where does that come from?" It's just so much.

I would like to have seen them, like several other packages I've seen, give you a set of basic rules and policies that most people use, so that in 10 minutes I could have the environment set up and have basic protection.

For most of the mobile device management, you pop the box and you've got to figure out what your policy is going to be, what your rules are going to be, and what software are you going to use. Are you going to do the full phone or a container? You've got to go figure out all these things because nobody tells you anything. My experience is that even after reading manuals and trying to figure out what pieces of data go where, or checking the support website, then you go look at the wizard or the interface, and it's different. They described things differently. There's a piece of data that you need that's required that the documentation doesn't say that is supposed to go in there. And it just drives me insane when the documentation doesn't exactly match what I'm looking at on the screen.

We have been using Sophos Mobile for the last 12 months.

I called their technical support on occasion, but calling tech support is like pulling teeth or having a root canal. It's painful because you have to go through level one and you explain in excruciating detail exactly what your problem is. And then they write it all down and they give you a support case number. And then they have to pass it on to level two. Who knows what their technical acumen is, because level one can't fix the problem. Then they have to pass it on to level two. And it's not, "Hold the phone a minute and I'll go get this person for you." It's hang up and they'll call you when they get to you.

It's absolutely terrible. Like I said, I've been in the business for a long time so I do not call tech support until I'm really, really stuck or it's really, really broken. And it's offensive to me to have to go through a level one and answer juvenile questions of stuff I've already done and not even be able to speak to a level two or an actual engineer about fixing my problem. I could get it fixed in five minutes if they just let me have a phone call.

The initial implementation was done by me and I'll tell you why. It's money. Budgets are extremely tight right now, especially with this COVID stuff that's been going on. I don't have the luxury of a budget to spend a thousand dollars on a consultant to come in and do stuff that I have the technical capability to do. So if I spend money on a license, I've got to be able to handle the configuration. Plain and simple.

On a scale of one to ten, I would rate Sophos Mobile a four.

They need to make it easier.

I've been in this industry for 30 years, so I'm not stupid by any manner of means. But like most IT personnel, I've got more on my plate than I can shake a stick at. I don't have time to spend the three or four days to read volumes of support articles and figure out configurations and then mess with the GUI and screw it up and have to figure out how to fix it and how to push out rules that I really need. I don't have time to do all that. So the easier they can make an out of the box solution, the better. I suppose I could delegate it to somebody, but they are busier than I am. So it's the same situation.

It serves as a robust endpoint protection on mobile devices. Whether you want comprehensive virus protection or full management capabilities for Azure mobile, it works well. Additionally, if you need to implement work profile management, Sophos ensures a separation between personal and work information. In this setup, a distinct work profile is created, containing only the necessary work-related applications, leaving personal applications unaffected.

The utmost importance lies in mobile security and its performance.

There may be necessary adjustments that need to be made because we are facing certain restrictions within the work profile.

We are currently deploying it.

The stability is good, but I did face certain issues regarding its work profile. I would rate it eight out of ten.

The scalability is satisfactory.

While not all cases prompt an immediate response, if you escalate an issue to a critical level, the support team tends to address it promptly. For issues categorized as high or low priority, the resolution time might extend to around twenty-four hours or even less.

Positive

The initial setup is straightforward. 

The deployment process is streamlined – we gather the user requirements and proceed with deployment based on those needs and the physical setup. We formulate a policy and incorporate it into a task bundle. In this process, the CapEx details are included in the task bundle. Through the policy, the MDM  solution is integrated. This ensures that is installed in one go along with the required management solution. Whether it's work profile or full management, both solutions are implemented seamlessly with a single policy, offering a comprehensive approach.

Overall, I would rate it nine out of ten.

If somebody wants to access visual data on their mobile, we can separately configure MDM. We can use the product to protect data. The users cannot take screenshots or copy official data on their mobile devices.

The solution provides us with data protection. Otherwise, people could download attachments and forward them to WhatsApp or any other social media app. If an employee leaves the company, we can remotely erase the official data on their devices. It is a convenient solution.

The product does not work well in iOS.

I have been using the solution for four years.

The tool’s stability is good.

The tool is scalable. More than 20 to 25 people in my organization are using the solution.

Support is good. We get personalized support frequently.

The initial setup is not complicated. It is manageable.

My team deploys the solution in the organization. The maintenance is not complicated.

The pricing is good. We can buy the product as a bundle. It is a cost-effective solution.

The solution has the basic features we need. Overall, I rate the product an eight out of ten.