We performed a comparison between Darktrace and Sophos Email based on real PeerSpot user reviews.
Find out in this report how the two Email Security solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."There are several features that I consider valuable."
"The technical support is good and quick to resolve issues."
"Defender for Office 365 has helped eliminate having to look at multiple dashboards and that is the aspect I like most about it. It is simpler, effective, and convenient. The users like the process efficiency."
"The deployment capability is a great feature."
"At the moment we are satisfied with this product. It's a stable, scalable, and resilient solution for us."
"The initial setup was easy."
"Threat Explorer is one of the features that I very much like because it is a real-time report that allows you to identify, analyze, and trace security attacks."
"I would say that 90% of the spam and phishing attack emails get blocked right off the bat."
"We liked their approach to identifying intrusions or network anomalies using AI."
"The most valuable feature is that it gives us visibility of rogue traffic that is on the network."
"In terms of features, the data or information they collect and unsupervised machine learning are very valuable. Its unsupervised machine learning has reduced our team's effort. Both Darktrace and Vectra work on unsupervised machine learning that learns the behavior or develops a profile on its own, which allows our security team to do some other tasks rather than spending time on Darktrace or Vectra. Because of unsupervised machine learning, its detection capability is quite good. Along with that, if we utilize the integration feature properly, the automated incident response capability of Darktrace is quite useful."
"A simple, powerful AI solution that just does all the work for you when you turn it on."
"I particularly like Antigena and the analytics around the real-time monitoring of our network. I also like its reporting because it has got a seven-day reporting period within the system. Every time you run the reports, it gives you the data about the previous seven days. I like that because it is in real-time. I enjoy reading those reports and getting a very clear and decisive idea of what's happening on my network on a real-time basis. I like the actual real-time monitoring of spoofing and things like that. I also like the user monitoring as well as the network logging capabilities."
"One thing I appreciate is Antigena Email, which is for email protection."
"I have used multiple solutions, but its graphical user interface is quite interesting and quite descriptive. There are a lot of video animations, and we can easily see how the data is transferred between various points. That's something really interesting. It is also quite easy to understand for a new user."
"The most valuable feature is the solution's ability to trim out the false positives and point your attention to the real important stuff."
"Sophos Email provides both inbound and outbound filtering."
"It's easy to use and the configuration is straightforward."
"I have found Sophos Email to be scalable."
"There are many features that are important, but among those, the spam protection feature is very valuable. It help us to safeguard the email against phishing and ensures that there is maximum security enabled for our communication processes. It has a huge role in protecting our emails from potential threats."
"The anti-malware, risk scanning has been pretty spot on."
"The most valuable feature of Sophos Email is the sandbox. We're able to scan the file, isolate it, and look at it before it is delivered. It is highly effective."
"The most significant aspect is the response filtering concerning attachments and links."
"I cannot guarantee any email by its name. It can be spam. Sophos Email helps to double-check whether an email is spam or not. It has a dashboard which gives an overview of the alerts."
"Several simulation options are available within 365, and the phishing simulation could be better."
"In one of the reports I can get the exact place where a vulnerable file resides. But for that, I need to explicitly go into the device and check. If they could include that file part in the report, without my having to go to the device itself, that would help."
"Microsoft wants its well-paying customers to finish testing some of its half-baked products, find bugs, and report bugs back to Microsoft's team, which is a little frustrating for those who have to manage it and roll it up to thousands of people across the organization."
"You should be able to deploy Defender for every subscription without the need to add servers."
"The product must provide better malware detection."
"There is room for improvement with the UI."
"Microsoft Defender for Office 365 must improve the overall management style, including the GUI. It also needs to change the filters so that it is easy to whitelist and blacklist data."
"They can improve their security in a way where a customer can know if all their attachments are safe or not to open through a report. The solution does its job perfectly, but it never reports to the customer whether those attachments have been stopped before or not."
"This product needs more in terms of prevention. The detection capabilities work well but once a threat has been detected, Darktrace should work to prevent it from doing anything malicious."
"I would like to see a feature where the tool ingests information from an anti-malware product that is present at the endpoint."
"This is quite an expensive product so the pricing is something that can be improved."
"The dashboard and reporting for this solution could be improved as it is currently complex. The GUI for this solution could also be improved."
"The user interface and the configuration are a bit complex and should be improved or simplified."
"I think there is some MSSP missing."
"The initial setup is more complex and time-consuming than some solutions."
"It should be easier to access the Darktrace portal and its documentation. Only the customer can access their portal and support. It could be cheaper."
"I would like to see improvements in the initial setup process, ensuring better compatibility with diverse customer infrastructures."
"Sophos Email can improve mail security."
"Their technical support is slow to respond."
"Servicing and support are areas with shortcomings where the solution needs to improve."
"Sophos Email could better detect fake emails, especially when the domain names are similar. It needs to improve spotting spoofed domains, like when one letter differs in a domain name. It also needs to incorporate AI detection. Barracuda detects suspicious emails better. However, malware scanning is better in Sophos Email."
"It was sometimes hard to find the settings in the solution's interface."
"The tool's integration becomes an issue when the internet connection is weak."
"The security of the solution could improve."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
Darktrace is ranked 13th in Email Security with 65 reviews while Sophos Email is ranked 10th in Email Security with 26 reviews. Darktrace is rated 8.2, while Sophos Email is rated 8.0. The top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". On the other hand, the top reviewer of Sophos Email writes "Provides good identity proxy features, but sandboxing and spam control features could be improved". Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Cisco Secure Network Analytics, whereas Sophos Email is most compared with Microsoft Exchange Online Protection (EOP), Fortinet FortiMail, Proofpoint Email Protection and Barracuda Email Security Gateway. See our Darktrace vs. Sophos Email report.
See our list of best Email Security vendors.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.