Mark BonnamyTechnical Director at Ridgewall Ltd
Anonymous UserSenior Technical Product Manager at a tech services company
Mike ParsonsSenior CyberSecurity Architect and Mentor at BlueTeamAssess LLC
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Its most valuable features are its scalability and advanced threat protection for customers."
"I am told that we get over 100 million emails a month. This filters them down and allows only somewhere about three million emails, which is a great help."
"For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors."
"The most valuable features of this solution are the IPS and the integration with ISE."
"The simplicity of use is its most valuable feature. You can very clearly see things."
"The stability of the solution is perfect. I believe it's the most stable solution on the market right now."
"I am really satisfied with the technical support."
"It is a very stable program."
"If you open up an application or a web browser, it puts a container in a sandbox area. So if there's some malicious code, it'll stick there. It also has way better protection for ransomware because it uses heuristics that are pretty effective. We've done a lot of tests with live malware, and it works really well."
"The most valuable feature is the management of end-user machines."
"It really protects and does its job. It totally blocked every attack attempt, and no attack attempt was successful."
"We use Sophos Intercept X for Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) in our organization."
"It is easy to change the size of its capabilities, i.e. to expand processes or scale the size of users."
"We most value the price and interface quality with Sophos Intercept X. We focus on solution quality."
"The most valuable feature is the supervisory side of it where we can watch the throughputs, and even the loading of the device, to see how much traffic is happening."
"A valuable feature offered by Sophos is called Naked Security, and it entails the control managed by the firewall on the site regarding the desktop client interfacing with our cloud client."
"It is a practically maintenance free intelligent system that independently protects environments from malicious attacks."
"All of the features are very important for anyone who is supporting a large number of computers."
"After that, the client switched to Sophos to get the protection they lacked. It either works or it doesn’t and Sophos works."
"We would like to have an API integration with a SIEM solution, because as far as I know, it currently hasn't yet been released."
"I would like them to add whatever makes filtering more advanced in scanning and blocking for malware in emails."
"The solution needs more in-depth analytics."
"In the next version of this solution, I would like to see the addition of local authentication."
"The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device."
"In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened."
"The reporting and analytics areas of the solution need to be improved."
"I would like more seamless integration."
"Would be good to have a better understanding of what it is that you've got in quarantine."
"Their support is not very good because they are very late to reply."
"They need to enhance the performance of the agents. Currently, the performance is going low when the agent starts a full scan. The agent is consuming a lot of resources while scanning. When there are a lot of documents to check, it slows down the endpoint. This is the only thing that worries me about Comodo, but this issue is also there in other products. It is missing DLP, and I know that they are working on adding some data loss prevention capabilities. They have added some capabilities, but these capabilities are not yet mature. I hope they will enhance these capabilities because it is important to prevent the data from going out from inside. We are protected from the outside, but we also have to be protected from the inside out."
"They should work on the logs and events. Sophos Intercept X needs to increase the interface test so that it can export to a live event."
"Technical support can be improved. There could be shared support, i.e. where someone in Egypt can respond."
"Sophos needs to create a YouTube channel with educational material for technicians or engineers."
"In terms of the site-to-site VPN elements, they tend to concentrate. It's quite simple when there are Meraki devices at both ends of the VPN but if there is another user at one end, on another device, it can be a bit tricky. So they could really simplify that process a bit."
"The initial setup was not very user-friendly."
"The product defends very well on its own but could possibly use enhancement in giving users more controls."
"The price of this solution can be improved."
"They might want to offer an MSP model for licensing, to offer the solution as a software as a service."
"The costs of 50 licenses of AMP for three years is around $9,360."
"The price is very good."
"The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost."
"Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc."
"In our case, it is a straightforward annual payment through our Enterprise Agreement."
"Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection."
"There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization."
"The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."
"The price of this product should be lower."
"We renew the license for one year at $10,000."
"The price is pretty good."
"When you start going to the EDR technologies and the MTR, it is a little bit expensive. It's a very good technology, and obviously, you're going to pay for it, but the pricing could do a little bit of work."
"We were able to eliminate the ransomware using the one-month, full-featured trial license."
"Licensing is based on the number of users. They give a discount for editors who are considered as important members. From what I know, Sophos products are not expensive. If you have a license extension, you just need to contact the editor or partner to change the mode of licensing or extend the license to cover more people."
"Intercept X for endpoints is around $35 per user per year. The server version is $95 per server per year."
"I find the pricing to be a little bit expensive, although it is acceptable, for now."
"The price of this product should be reduced because it is a little high."
Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.
Comodo Advanced Endpoint Protection (AEP) delivers patent-pending auto-containment, where unknown executables and other files that request runtime privileges are automatically run in a virtual contain that does not have access to the host system's resources or user data.
Sophos Intercept X stops the widest range of attacks with a unique combination of deep learning malware detection, exploit prevention, anti-ransomware, and more.
Comodo Advanced Endpoint Protection is ranked 32nd in Endpoint Protection (EPP) for Business with 3 reviews while Sophos Intercept X is ranked 9th in Endpoint Protection (EPP) for Business with 33 reviews. Comodo Advanced Endpoint Protection is rated 7.6, while Sophos Intercept X is rated 8.6. The top reviewer of Comodo Advanced Endpoint Protection writes " Effective heuristics make for better ransomware protection". On the other hand, the top reviewer of Sophos Intercept X writes "Great reporting and good training with a pretty straightforward setup". Comodo Advanced Endpoint Protection is most compared with Symantec End-User Endpoint Security, Bitdefender GravityZone Ultra, CrowdStrike Falcon, Webroot Business Endpoint Protection and VIPRE Endpoint Security, whereas Sophos Intercept X is most compared with CrowdStrike Falcon, Carbon Black CB Defense, Microsoft Defender Antivirus, Bitdefender GravityZone Ultra and Symantec End-User Endpoint Security. See our Comodo Advanced Endpoint Protection vs. Sophos Intercept X report.
See our list of best Endpoint Protection (EPP) for Business vendors.
We monitor all Endpoint Protection (EPP) for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.