Intercept X Endpoint Reviews

We use the solution to prevent ransomeware attacks and those from unknown sources. 

Sophos Intercept X is a complete endpoint solution. It represents the combination of two products in one, offering the same configuration and management. 

While the solution does not seem to lack any features, it should offer better security updates. It could be more secure, something which holds true for any solution. 

Also, the support could be faster. 

We have been using Sophos Intercept X over the course of the past year. While it is very new in my current company, we made use of it for four years in my previous one. 

The solution is stable. 

The solution is scalable. 

Technical support could be faster.

We used Trend Micro and Symantec in the past. 

The solution was installed together with Endpoint, as a single agent, meaning the licensing covers two products. Similar to Endpoint, the installation was very easy. 

We have an annual subscription. 

We have 300 users making use of the solution.

I would definitely recommend its use to others. 

We find all features valuable. It has zero-day protection, which is the most valuable feature of Intercept X.

We have Intercept X with EDR. EDR is a very important feature. It gives an idea about the source of a particular attack. An administrator gets to know everything, which helps in understanding the things that need to be done or protected in the organization. Based on this information, an administrator can decide what needs to open or allowed in the network. Without EDR, Intercept X is like an antivirus, and the administrator won't get to know the things going on at the organizational level. I recommend purchasing an EDR solution for every organization.

It would be better if it can automatically generate a report for each and every user so that the users get to know the things that shouldn't be accessed from their PCs. It can have information about malicious and non-malicious sites so users are aware of them, and they don't access malicious websites. Such reports can be generated at the end of the day.

We should also be able to get through to their support team quickly. Currently, it takes more than half an hour to get through to a technical person.

I have been using Intercept X with EDR for the last one year. We have its latest version. It is automatically updated through Sophos Central.

If an endpoint has at least 4GB RAM and the latest OS, the stability and performance are better. If RAM is too less, there is slowness.

We have implemented it for so many customers. One of them has more than 1,500 users. In an on-prem solution, scalability could be challenging. For example, if you are using 1,000 endpoints and want to add 500 more, you need to expand the server memory or RAM. In a cloud solution, you don't need to do any such thing.

They have a very less number of people in their technical team. When I call the Sophos team, it takes more than half an hour to connect to a technical person, which is very challenging. We should be able to get through to them quickly.

Its initial setup is fine. If an end-user is using an old OS version, you need to download the latest patches and all other things. For Windows 10 and higher versions, only the client is downloaded from Sophos Central, and it will automatically sync with the cloud.

I have implemented this solution for so many customers. I am pretty confident in the implementation of Intercept X.

Its price depends on the scenario. It is very expensive, but it is not more expensive than other vendors. The price of Check Point and other vendors is much higher than Sophos.

I would recommend Sophos Intercept X as well as Check Point. 

I would rate Sophos Intercept X a ten out of ten. It is a good and reliable solution.

We develop software for brands and some enterprise companies. We need Sophos Intercept X to create hardware and software solutions. 

We need to create research for a next-generation firewall security solution. We offer software and hardware solutions for banks, enterprises, and big companies.

We had some technical problems. Maybe in the new update of this solution, they could fix some technical bugs. 

Sophos Intercept X has slow internal processes that could be better. Because of this, it hasn't improved our organization.

We most value the price and interface quality with Sophos Intercept X. We focus on solution quality.

This product has room for improvement in business areas for brand enterprises. Sophos Intercept X could improve in areas dealing with business, i.e. their internal processes.

For the stability of the solution, I had some problems with uptime.

Technical support could be of better quality.

The initial setup was complex. Our deployment took six months to one year. It took us around one year to fully set up Sophos and get it running to take action for work.

For the deployment, I set it up myself.

Sophos needs to create a YouTube channel with educational material for technicians or engineers.

I would rate Sophos Intercept X at seven out of ten because of the technical problems that we have experienced.

I have found the most valuable feature to be the EDR.

The solution is heavy in the usage of resources, you can notice the performance decrease. This should prove in the future.

I have been using this solution for approximately five years.

I have found the solution to be stable.

The solution is scalable. We have multiple clients and have approximately 1,000 users using the solution.

We have not had a good experience with technical support. The quality of support we received was not what someone would expect from a leading solution provider.

We have used McAfee and Trend Micro previously. The customer's environment would determine what is the best option that we would recommend. For example, if the customer has a Sophos firewall and other Sophos products, then it would be better to go with Sophos Intercept X.

The price of this solution is a little high compared to competitors because they do not have a proper pricing structure.

I rate Sophos Intercept X an eight out of ten.

One of the best use cases involves synchronized security staff, which allows us to manage both the firewall and the anti-virus features from the cloud. They work in tandem with each other. So, if there is any threat detected by the endpoint, it communicates information concerning this change to the firewall. For that particular client, at the firewall, it can update all other endpoints into the network to check if the same threat is visible on any other machine. Then, corrective action can be taken collectively with a single click.

We have not encountered any issues involving the solution. A point in its favor is that it has not slowed down our systems, such as occurred with McAfee, Symantec or even Quick Heal. This has been a positive experience for us. Also, the synchronized security, in which things work with each other, provides us with a pretty automated remediation methodology which cuts down on much of the manual steps and workload. 

At present, the solution meets the needs of our business scale. Perhaps in the future, as we grow and face increased challenges, there would be a need to explore other options. 

We've been using Sophos Intercept X for around six months.

The solution is pretty stable. 

The solution is, indeed, scalable. As a cloud-based solution, it is all about scalability. 

We have yet to encounter a situation in which we had a need to call tech support. 

The solution is pretty straightforward and very easy to configure.

Installation took no more than two or three minutes. 

We, ourselves, are system integrators and we have a staff of around seven people, consisting of eight engineers and a person who is responsible for the accounts, meaning the support staff. 

One can pay for the license annually, or at two and five year intervals. 

The solution is cloud-based.

I would absolutely recommend this solution to others. So far, so good. 

There are roughly 25 people making use of the solution in our organization. 

I rate Sophos Intercept X as a ten out of ten. 

I consider the heuristics to be most valuable, the fact that the solution does not work solely on signatures.

We are considering switching from this solution as a result of the closer integration needed between the firewall systems and the EDR.

We are not talking about issues with the installation, documentation or interface, but with the existing combination between Sophos Intercept X and our firewalls. This is why we are considering other options. 

Moreover, the solution does not offer support for a legacy SAN. However, as this is a legacy issue, it will likely resolve itself eventually. 

I have been using Sophos Intercept X for close to 15 years.

The stability is fine. 

We have had no problems with technical support. 

The installation was fine. 

As I am not responsible for paying the bills I cannot comment on the pricing. 

I would never rate a solution as a ten out of ten, so I give Sophos Intercept X a rating of eight.

We primarily brought on the solution to replace Symantec's product, as Symantec was purchased by Broadcom. The company in question has a lot of stuff, and 40 users, and is a pure Windows environment. They don't do anything on Mac or Linux, for example.

So far, the solution has been working quite well.

Sophos offers a manuscript response. 

The product has three tiers that you can choose from when you buy. The highest is a Managed Threat Response. We chose the middle range, which offers Intercept X and is more than just Malware protection.

This solution is a kind of Next-Gen anti-virus.

The product has some web filtering, which blocks people from going to websites they shouldn't be going to. 

It supports the Windows 10 server platform. 

The solution offers a centralized view of the status of protection, via a central console for users to check the status or the health of the endpoints.

So far, the solution has met all our expectations. It's blocked malicious websites effectively and stopped people from going to places online that they shouldn't be going to. It's automatic. We simply took the default settings and we were finding people right away that were going to illicit sites, and we were able to see that easily in the console.

The package we use also comes with spam filtering features, which are quite useful.

We're still new to the solution. We haven't come across any weakness yet. There aren't features that are missing.

The initial setup can be a bit challenging.

I just deployed the solution a few weeks ago. It's quite new at this point. We've had it now for a little over a month.

The solution is extremely stable. It doesn't crash or freeze. There aren't bugs and glitches. It's kept us safe. Nothing has gotten through. It's reliable.

Currently, the company only has 40 users, and therefore there are no scalability issues so far. However, it's a cloud-based centralized console, so that will help with scaling in the future if the company decides to expand. It wouldn't be hard to do. It's completely achievable.

Technical support is okay. I'd give them higher scores if I didn't have to contact them about the initial console setup. That said, they were helpful. Their service so far has been about average.

We previously used Symantec.

We switched solutions for a few reasons. The first one is that Symantec was bought by Broadcom and there were some unknowns about what would happen with the product. Support typically gets worse when Broadcom buys a product, and we wanted to step away on the off-chance that could happen in the near future. 

We were also looking to consolidate and to find a replacement but to also get something that had spam protection and something that was easily obtainable for a small business. Sophos ultimately could hit all those checkmarks.

The initial setup with the centralized console was a little bit challenging. It wasn't complex per se, however, due to the fact that the instructions weren't clear, you can get stuck at certain points. I opened up a case for support, and at that point, I was able to get under the console. You could say the onboarding of additional administrators was a challenge. The centralized console was also a bit difficult.

After that, the implementation was pretty easy. You simply remove the old one, add the new one, and then, with the new one, you could send the user an email link, or you could send them a path to where the software is. 

I do not know the exact costs offhand, however, it's my understanding that their pricing is listed publicly on their site and would be easy to find. Sophos seemed surprised that their pricing was public. They were shocked that I could just Google it and it came up.

There are extra add-ons you can purchase over and above this product. The add-ons cost a bit more, however, they offer extra security advantages.

We are a reseller.

We deployed the latest version of the solution. I don't have the version number on hand, however.

It's a good product to consider if a company is looking to also do spam filtering. What Sophos has as well as a firewall, and it'll give a company a little bit of tighter integration, and that's good. Having those additional security tools as add-ons is an excellent option. We personally haven't gotten their firewall yet, however, it is nice that that is an option.

I would rate the solution at an eight out of ten. Overall, in the short amount of time we've used it, we've had a positive experience.

We were recently the target of a ransomware attack and we used this product to clean it from our environment. Our in-place endpoint protection is just signature-based and it was not able to identify which device had passed the malware.

I am in charge of monitoring at this time.

Once we installed Intercept X, it was able to detect and remove malware that could not be found by the simple endpoint security solution.

The most valuable feature is the behavioral, non-signature-based threat detection.

We like Sophos Central, where you have access to a security console. It provides you with information such as recommendations on what to do next. Using this, we were able to trace the affected devices, which were then cleaned. If new alerts are given then we know which devices are still affected and we can take the appropriate action.

Sophos Central also shows us which alerts have not yet been attended to, which is nice.

Sophos Central does not provide all of the information that is available, so it requires us to take the additional step of retrieving details from the firewall. It would be more productive if the information between Sophos products were automatically correlated and updated in Sophos Central.

When there is an event generated by either the firewall or Intercept X, and the originating IP address is the same, these should be merged into a single event rather than two. Automatically correlating these events would save us time.

We began using Sophos Intercept X a few days ago.

We use Intercept X on a daily basis and it is quite stable.

My impression is that this product is scalable.

We have only deployed Intercept X at one hospital, which has about 300 people that it protects. We have approximately six hospitals for which we are recommending its use.

We have only dealt with the sales team in the Philippines. Our concerns were commercial in nature, for the most part, rather than technical.

Prior to Intercept X, we were using the signature-based endpoint protection by Sophos. Our license was just recently up for renewal and we are in the process of upgrading to Intercept X.

In my previous company, we were using Cisco AMP. The beauty of Sophos Intercept X is that it does both signature-based on behavioral threat protection in one agent. With some other solutions, you have to install a different product for each approach.

The initial setup is very simple. We were able to install it in a few minutes and then it automatically begins detection. Completing the initial scan involves rebooting the computer a couple of times, so it takes a little while to complete and clean out the malware if it is there.

The interface is very user-friendly and we were able to deploy and operate it ourselves.

Our company does not have 24/7 monitoring, so we are now looking at a managed SOC that we can subscribe to. Ideally, this type of service will give recommendations, above simply alerting us to problems.

We were able to eliminate the ransomware using the one-month, full-featured trial license. Our intention now is to upgrade our systems to the full product. We were given a corporate rate.

Our licensing includes local support for each of our offices, nationwide. This something that we like.

Overall, this is a good product that seems to address our concerns and I can recommend it.

I would rate this solution a nine out of ten.