I use the solution in my company for endpoint protection or virus protection, as well as as an EDR tool. The product is mostly used in the manufacturing industry.
After adding layers of firewall protection, our network runs smoothly, effectively combating viruses and malware. Whenever issues arise, we can promptly diagnose them using the error logs provided. Additionally, Sophos Intercept offers Sophos Central, allowing us to access our firewall from anywhere. This accessibility enables us to provide support to our team remotely. The firewall's GUI is user-friendly and intuitive, making issue identification and resolution straightforward. Using Sophos Intercept, we can pinpoint and address network issues, such as blocked websites.
My company uses Active Directory to manage users and track whether they have installed any third-party applications or any malicious applications that need to be blocked before allowing for the installation of the application. My company informs users whether the tools they use have any malicious activities or products.
It's an endpoint AV solutions for Server, client win/mac, mobile devices (iOS, Android) with lot of advanced features like RansomWre protection, Threat protection, Deep Lerning, RealTime protection, Web Protection, Exploit Mitigation, Secure Web, Network Threat protection etc.
All these features are managed trough cloud Console available even fo MSP architecture, and integrates also Firewall devices (XG/XGS series) to allow a complete security management and integration trough Sophos Central Dashboard.
Sophos Intercept X is an endpoint security solution that protects devices and servers from various cyber threats, such as ransomware, malware, phishing, exploits, and more.
I use Sophos Intercept X for :
1. To prevent ransomware attacks and recover encrypted files with CryptoGuard and WipeGuard.
2. To block malicious web pages and emails with Web Security and Email Security
3. To stop unknown threats with deep learning malware analysis and cloud sandboxing
4. To protect servers from credential theft, privilege escalation, and lateral movement with Server Lockdown and Root Cause Analysis
5. To secure mobile devices and applications with Mobile Security and Mobile Threat Defense
We use it just for antivirus detection. There was a facility where you could send a fake email to find out who clicked on these links. So this option is not available. We just have a simple NDR.
Senior CyberSecurity Architect and Mentor at BlueTeamAssess LLC
Reseller
2022-08-12T22:26:43Z
Aug 12, 2022
When Intercept X came out, the primary use case was stopping ransomware. It was one of the first products to claim that capability. When I was evaluating them back then, it was the only one I considered effective at analyzing and identifying where the infection started. The synchronized security also helped because the firewall could isolate workstations that had the infection or were in the path of infection.
Sophos Intercept X is the antivirus protection of my choice and my client's choice because it does not only malware, antivirus, and Trojan protection but also anti-exploit protection. It has a quarantine process as well. It does all of the usual antivirus plus the anti-exploit and anti-ransomware processes.
IT Manager at a financial services firm with 51-200 employees
Real User
2022-02-17T18:37:00Z
Feb 17, 2022
The main use case is to have the reversible ransomware attack aspect of Intercept X. It's more of an antivirus solution rather than an EDR solution - a slightly different product to Carbon Black in that respect.
Cloud Solution Architect at a tech services company with 201-500 employees
Real User
2022-01-23T16:59:59Z
Jan 23, 2022
We use the solution for endpoint protection and particularly against ransomware. There is CryptoGuard capability within Intercept X. They're also competitive, so people actually leverage it to test the environment against ransomware. It also has the capability to send a warning in any attack. Say they want to assist in the environment so that we are able to run a case incident. I know what has happened, what's happening right now, and then probably what we need to be concerned about. We have used the solution on-premise previously, but we currently use it on cloud. I'm aware the on-premise is fading out, so I'm migrating other clients that are running companies to the cloud.
Inside Solutions Architect at a tech services company with 1,001-5,000 employees
Real User
2021-12-02T07:03:00Z
Dec 2, 2021
Our primary use cases for Sophos Intercept X are endpoint protection, corporate enterprise endpoint protection, EDR, and endpoint detection and response. And if you add the Sophos MTR to Sophos Intercept X, you could do managed threat response, as well.
Pre-sales manager at National Information Technology Company
Real User
Top 20
2021-10-15T11:47:32Z
Oct 15, 2021
It's an endpoint, which means it's an antivirus that you must install on your server, laptop, or customer PC. As a result, it can be on-premises for Windows or Linux. You can also install this endpoint if you host a server on that cloud. This is a sophisticated antivirus with numerous features. It has AI, (Artificial Intelligence), it can stop viruses, malware, and ransomware, as well as protect the PC you are using, the server you are using, and all of your workstations. Intercept X has versions, such as Intercept X, Intercept X Advanced, and Intercept X Advanced with XDR. It requires a long technical explanation, but in brief, it can protect you from being attacked or hacked, because it protects the OS, your operating system, from being compromised.
Technical Support at a tech services company with 11-50 employees
Real User
2021-09-23T09:23:00Z
Sep 23, 2021
We currently have about 13 staff using Intercept X. We use it to secure and protect our devices as well as monitor projects and do some product reviews. You can also use it to block devices as needed, like if you just want to block a work point category.
Cyber Security Analyst at a educational organization with 1,001-5,000 employees
Real User
2021-08-03T11:18:36Z
Aug 3, 2021
We have deployed Sophos Intercept X in our environment, both on desktop as well as server environments. We have set up policies in Sophos. For example, there is a web console that can allow or block websites, and you choose what peripheral control you want your desktop environment to connect to. We use threat protection and we configure the settings to what we want to enable or disable on a particular device. If a device had a threat on it we can disable the device. The application control allows us to limit the application that users can install on their devices.
My client is a BPO with three branches. One branch is in the US, and two branches are in India. We are using Sophos for the best connectivity. We are using Sophos for endpoint, DLP, and encryption. We are also using it for content filtering and managing security policies. Currently, we are using its latest version.
Director at a comms service provider with 201-500 employees
Real User
2021-03-30T10:43:56Z
Mar 30, 2021
We're currently implementing this solution in our company, but we generally implement it for our clients. I'm a director and we are resellers of Sophos Intercept X.
Hybrid Cloud Engineer at a tech services company with 51-200 employees
Real User
2021-02-23T08:01:01Z
Feb 23, 2021
We primarily brought on the solution to replace Symantec's product, as Symantec was purchased by Broadcom. The company in question has a lot of stuff, and 40 users, and is a pure Windows environment. They don't do anything on Mac or Linux, for example.
Chief Information Officer/Senior Vice President at a tech services company with 51-200 employees
Real User
2021-02-19T09:25:18Z
Feb 19, 2021
We have split our operations into work at home and on-premise. We have over 2,000 or 3,000 work-at-home agents. Some of them do not connect to us via a virtual private network. They connect directly to our CRM clients. In order for us to ensure that we have visibility and to be able to protect our PCs, we are using Sophos Intercept X via the cloud.
Founder and General Manager at a tech services company with 11-50 employees
Reseller
2021-01-27T07:12:27Z
Jan 27, 2021
We use the solution and we are also reseller of it. We offer it to our clients as well. We primarily use the solution for security in order to protect our users and our endpoints.
Manager of Information Security at a healthcare company with 1,001-5,000 employees
Real User
2021-01-24T08:31:02Z
Jan 24, 2021
We use it for all of its features, with the exception of mobile device management. We use it for DLP, malware protection, some forms of asset tracking, application blocking, and so forth. It is deployed on-premises and on the cloud. We are using its latest version.
Senior IT Analyst at a insurance company with 51-200 employees
Real User
Top 5
2021-01-15T20:02:42Z
Jan 15, 2021
We primarily use the solution as endpoint protection as well as for endpoint detection and response. It's like an EDR. It's basically used to prevent ransomware.
IT Manager at a construction company with 201-500 employees
Real User
2020-12-19T22:05:49Z
Dec 19, 2020
The main use cases of this solution are for protection from ransomware and malware. Although we don't have EDR because of its high cost, we do have the capability to filter the website. Our use case is more about capturing crypto and the like that can encrypt files. I'm a system administrator and we are customers of Sophos.
This product is basically used for detecting ransomware. It will monitor all of the ransomware threats. Since the first ransomware attack happened in 2017, WannaCry, it has been a global threat. It is a vulnerability that is impacting a lot of devices and computers in the network. Ransomware threats have been identified as one of the first priorities in the entire info security segment. Information security consists of various things including endpoint detection, threat detection, and then your SIEMs like QRadar or ArcSight. At the early point of detection, Sopho is going to stop the ransomware. The question that has been there since 2017 is how it will identify the ransomware and how does it stop the attack from happening to the network. WannaCry was the first large ransomware attack, which has impacted various regions and is a very high severity threat. Since then, a lot of things have been lined up for mitigating the risk, like WannaCry.
Founder at a tech services company with 1-10 employees
Real User
2020-09-22T07:16:15Z
Sep 22, 2020
We are a small consulting group. We are not really end-users but we sell to them. We are primarily recommending Sophos Central Intercept X as a client solution for endpoint security. They are going to be using it for the security apps, their desktops, and there is a server version as well. I would think that someone buying the server product would expect that to include endpoint security, including ransomware protection, advanced threat protection, and zero-day threat protection. Many of our users also use Sophos firewalls and the solutions integrate with each other nicely.
Manager of Information Security at a healthcare company with 1,001-5,000 employees
Real User
2020-09-22T07:16:09Z
Sep 22, 2020
The EDR (Enhanced Data Detection and Response) and the DLP (Data Loss Prevention) components are probably the biggest areas of the product that we employ. We also make use of web content filtering and application control as well.
IT Infrastracture Consultant at a healthcare company with 201-500 employees
Consultant
2020-09-16T08:18:33Z
Sep 16, 2020
We were recently the target of a ransomware attack and we used this product to clean it from our environment. Our in-place endpoint protection is just signature-based and it was not able to identify which device had passed the malware. I am in charge of monitoring at this time.
Senior CyberSecurity Architect and Mentor at BlueTeamAssess LLC
Reseller
2020-09-16T08:18:29Z
Sep 16, 2020
The primary use case is basically having a synchronized perspective on what's going on between endpoints, firewalls, and whatever other types of preventative measures the customer has.
Network Administrator at a tech services company with 51-200 employees
Reseller
2020-08-23T08:17:00Z
Aug 23, 2020
We use Intercept X Advanced along with Sophos EDR (Enhanced Data Detection and Response). We use it for our servers and clients as advanced protection. It is not just a simple virus scanning product. We use it to work with clients and it is installed on five servers. At this time we have only installed it at one customer site. But we plan to continue to expand.
Security Engineer at a tech services company with 51-200 employees
MSP
2019-09-26T04:12:00Z
Sep 26, 2019
I work with a number of Sophos products, mainly those managed through Sophos Central. I provide general support for this solution, and my experience is with deployment and some configuration. I have been using the premium edition at home for more than a year, and have been dealing with training and support for approximately six months. We are using this solution for cloud-based support, and using a cloud-based deployment.
We are providing this product and support for it in many sectors like health care, retail, sports, and communication sectors. We are also working with Sophos, but with Sophos Endpoint, not XG, or Sophos UTM. We work with Raya (Contact Center) that provides services here in Egypt (they are also using Sophos 550 XG models).
Network Security Engineer at Andalusia Hai Aljamea Hospital
Real User
2019-06-27T06:06:00Z
Jun 27, 2019
We use the on-premise version of Sophos Intercept X for intercepting bad network traffic requests. Sophos has two versions: one for on-premise, one for the cloud. Many of our customers prefer to have the on-premise solution.
We develop software for brands and some enterprise companies. We need Sophos Intercept X to create hardware and software solutions. We need to create research for a next-generation firewall security solution. We offer software and hardware solutions for banks, enterprises, and big companies.
Sophos Intercept X Endpoint is a comprehensive cybersecurity solution that combines the power of artificial intelligence (AI) with Sophos' deep expertise in cybersecurity to provide unmatched protection against sophisticated cyber threats, including ransomware, malware, exploits, and zero-day vulnerabilities. Sophos Intercept X Endpoint stands out for its innovative approach to endpoint security, leveraging advanced technologies and expert services to provide comprehensive...
I use the solution in my company for endpoint protection or virus protection, as well as as an EDR tool. The product is mostly used in the manufacturing industry.
I'm a partner with Sophos for Intercept X Endpoint. Our use cases are for main security needs, client needs, and handling urgent concerns.
After adding layers of firewall protection, our network runs smoothly, effectively combating viruses and malware. Whenever issues arise, we can promptly diagnose them using the error logs provided. Additionally, Sophos Intercept offers Sophos Central, allowing us to access our firewall from anywhere. This accessibility enables us to provide support to our team remotely. The firewall's GUI is user-friendly and intuitive, making issue identification and resolution straightforward. Using Sophos Intercept, we can pinpoint and address network issues, such as blocked websites.
My company uses Active Directory to manage users and track whether they have installed any third-party applications or any malicious applications that need to be blocked before allowing for the installation of the application. My company informs users whether the tools they use have any malicious activities or products.
It's an endpoint AV solutions for Server, client win/mac, mobile devices (iOS, Android) with lot of advanced features like RansomWre protection, Threat protection, Deep Lerning, RealTime protection, Web Protection, Exploit Mitigation, Secure Web, Network Threat protection etc.
All these features are managed trough cloud Console available even fo MSP architecture, and integrates also Firewall devices (XG/XGS series) to allow a complete security management and integration trough Sophos Central Dashboard.
Sophos Intercept X is an endpoint security solution that protects devices and servers from various cyber threats, such as ransomware, malware, phishing, exploits, and more.
I use Sophos Intercept X for :
1. To prevent ransomware attacks and recover encrypted files with CryptoGuard and WipeGuard.
2. To block malicious web pages and emails with Web Security and Email Security
3. To stop unknown threats with deep learning malware analysis and cloud sandboxing
4. To protect servers from credential theft, privilege escalation, and lateral movement with Server Lockdown and Root Cause Analysis
5. To secure mobile devices and applications with Mobile Security and Mobile Threat Defense
The product is used for security. It is like an antivirus.
The solution is used to protect organizations from malware and phishing emails.
We use it just for antivirus detection. There was a facility where you could send a fake email to find out who clicked on these links. So this option is not available. We just have a simple NDR.
We use the product to protect endpoints and cloud-based servers.
We use the solution for antivirus threat detection and response.
We use the tool for complete surface deployment. My company uses it not only to manage endpoints but for mobile management as well.
We use the solution for endpoint and server security.
The solution is used for security.
We're creating a software center. I just install the Sophos engine software and make the policies, like threat protection policies, for example.
We primarily use the solution for our employees. It was packaged with our solution provider.
When Intercept X came out, the primary use case was stopping ransomware. It was one of the first products to claim that capability. When I was evaluating them back then, it was the only one I considered effective at analyzing and identifying where the infection started. The synchronized security also helped because the firewall could isolate workstations that had the infection or were in the path of infection.
Sophos Intercept X is the antivirus protection of my choice and my client's choice because it does not only malware, antivirus, and Trojan protection but also anti-exploit protection. It has a quarantine process as well. It does all of the usual antivirus plus the anti-exploit and anti-ransomware processes.
We use a normal EDR solution in the office: Sophos Intercept X, for endpoint detection and response, email protection, and data loss prevention.
The main use case is to have the reversible ransomware attack aspect of Intercept X. It's more of an antivirus solution rather than an EDR solution - a slightly different product to Carbon Black in that respect.
We use the solution for endpoint protection and particularly against ransomware. There is CryptoGuard capability within Intercept X. They're also competitive, so people actually leverage it to test the environment against ransomware. It also has the capability to send a warning in any attack. Say they want to assist in the environment so that we are able to run a case incident. I know what has happened, what's happening right now, and then probably what we need to be concerned about. We have used the solution on-premise previously, but we currently use it on cloud. I'm aware the on-premise is fading out, so I'm migrating other clients that are running companies to the cloud.
We are solution providers. Sophos Intercept X is used as an endpoint antivirus solution and ransomware protection.
Our primary use cases for Sophos Intercept X are endpoint protection, corporate enterprise endpoint protection, EDR, and endpoint detection and response. And if you add the Sophos MTR to Sophos Intercept X, you could do managed threat response, as well.
It's an endpoint, which means it's an antivirus that you must install on your server, laptop, or customer PC. As a result, it can be on-premises for Windows or Linux. You can also install this endpoint if you host a server on that cloud. This is a sophisticated antivirus with numerous features. It has AI, (Artificial Intelligence), it can stop viruses, malware, and ransomware, as well as protect the PC you are using, the server you are using, and all of your workstations. Intercept X has versions, such as Intercept X, Intercept X Advanced, and Intercept X Advanced with XDR. It requires a long technical explanation, but in brief, it can protect you from being attacked or hacked, because it protects the OS, your operating system, from being compromised.
We currently have about 13 staff using Intercept X. We use it to secure and protect our devices as well as monitor projects and do some product reviews. You can also use it to block devices as needed, like if you just want to block a work point category.
We are using Sophos as an endpoint protection solution.
The primary use of the solution is to block threats. It contains a quick queries engine that can help us figure out where all threats are coming from.
We are using it for endpoint antivirus, hardening, and some DLP policies. Its version is the current one.
I'm the technical director and we are partners with Sophos.
Our primary use case is for securing the endpoints or endpoint users and Sophos servers.
We have deployed Sophos Intercept X in our environment, both on desktop as well as server environments. We have set up policies in Sophos. For example, there is a web console that can allow or block websites, and you choose what peripheral control you want your desktop environment to connect to. We use threat protection and we configure the settings to what we want to enable or disable on a particular device. If a device had a threat on it we can disable the device. The application control allows us to limit the application that users can install on their devices.
We use the solution to prevent ransomeware attacks and those from unknown sources.
We mainly use it on our endpoints. We use it for Windows machines and laptops. They have a server version for the servers.
My client is a BPO with three branches. One branch is in the US, and two branches are in India. We are using Sophos for the best connectivity. We are using Sophos for endpoint, DLP, and encryption. We are also using it for content filtering and managing security policies. Currently, we are using its latest version.
We're currently implementing this solution in our company, but we generally implement it for our clients. I'm a director and we are resellers of Sophos Intercept X.
We use this solution for endpoints and a firewall.
We primarily brought on the solution to replace Symantec's product, as Symantec was purchased by Broadcom. The company in question has a lot of stuff, and 40 users, and is a pure Windows environment. They don't do anything on Mac or Linux, for example.
We have split our operations into work at home and on-premise. We have over 2,000 or 3,000 work-at-home agents. Some of them do not connect to us via a virtual private network. They connect directly to our CRM clients. In order for us to ensure that we have visibility and to be able to protect our PCs, we are using Sophos Intercept X via the cloud.
We use the solution and we are also reseller of it. We offer it to our clients as well. We primarily use the solution for security in order to protect our users and our endpoints.
We use it for all of its features, with the exception of mobile device management. We use it for DLP, malware protection, some forms of asset tracking, application blocking, and so forth. It is deployed on-premises and on the cloud. We are using its latest version.
We primarily use the solution as endpoint protection as well as for endpoint detection and response. It's like an EDR. It's basically used to prevent ransomware.
We primarily use the solution in order to check the correct flow of the workstations.
The main use cases of this solution are for protection from ransomware and malware. Although we don't have EDR because of its high cost, we do have the capability to filter the website. Our use case is more about capturing crypto and the like that can encrypt files. I'm a system administrator and we are customers of Sophos.
We primarily use the solution for malware protection.
We use it mostly for software protection.
This product is basically used for detecting ransomware. It will monitor all of the ransomware threats. Since the first ransomware attack happened in 2017, WannaCry, it has been a global threat. It is a vulnerability that is impacting a lot of devices and computers in the network. Ransomware threats have been identified as one of the first priorities in the entire info security segment. Information security consists of various things including endpoint detection, threat detection, and then your SIEMs like QRadar or ArcSight. At the early point of detection, Sopho is going to stop the ransomware. The question that has been there since 2017 is how it will identify the ransomware and how does it stop the attack from happening to the network. WannaCry was the first large ransomware attack, which has impacted various regions and is a very high severity threat. Since then, a lot of things have been lined up for mitigating the risk, like WannaCry.
This product is primarily used for endpoint security.
This security solution covers most of the critical problems such as ransomware.
Our primary use case is endpoint protection.
We are a small consulting group. We are not really end-users but we sell to them. We are primarily recommending Sophos Central Intercept X as a client solution for endpoint security. They are going to be using it for the security apps, their desktops, and there is a server version as well. I would think that someone buying the server product would expect that to include endpoint security, including ransomware protection, advanced threat protection, and zero-day threat protection. Many of our users also use Sophos firewalls and the solutions integrate with each other nicely.
The EDR (Enhanced Data Detection and Response) and the DLP (Data Loss Prevention) components are probably the biggest areas of the product that we employ. We also make use of web content filtering and application control as well.
Our primary use case is to enhance existing security.
We were recently the target of a ransomware attack and we used this product to clean it from our environment. Our in-place endpoint protection is just signature-based and it was not able to identify which device had passed the malware. I am in charge of monitoring at this time.
The primary use case is basically having a synchronized perspective on what's going on between endpoints, firewalls, and whatever other types of preventative measures the customer has.
We use Intercept X Advanced along with Sophos EDR (Enhanced Data Detection and Response). We use it for our servers and clients as advanced protection. It is not just a simple virus scanning product. We use it to work with clients and it is installed on five servers. At this time we have only installed it at one customer site. But we plan to continue to expand.
We primarily use the solution to protect our company from ransomware and malware attacks.
The primary use case is for protection. We sell this solution to our customers.
Clients primarily use the solution for ransomware.
I work with a number of Sophos products, mainly those managed through Sophos Central. I provide general support for this solution, and my experience is with deployment and some configuration. I have been using the premium edition at home for more than a year, and have been dealing with training and support for approximately six months. We are using this solution for cloud-based support, and using a cloud-based deployment.
We are providing this product and support for it in many sectors like health care, retail, sports, and communication sectors. We are also working with Sophos, but with Sophos Endpoint, not XG, or Sophos UTM. We work with Raya (Contact Center) that provides services here in Egypt (they are also using Sophos 550 XG models).
Our primary use case for this solution is to offer a complete and monitored solution regarding ransomware protection to all my clients & servers.
We use the on-premise version of Sophos Intercept X for intercepting bad network traffic requests. Sophos has two versions: one for on-premise, one for the cloud. Many of our customers prefer to have the on-premise solution.
Our primary use case is the interception solution in Sophos Intercept X.
We develop software for brands and some enterprise companies. We need Sophos Intercept X to create hardware and software solutions. We need to create research for a next-generation firewall security solution. We offer software and hardware solutions for banks, enterprises, and big companies.