Intercept X Endpoint Reviews

We have a script that deploys the solution on machines when a user joins the local Active Directory domain. We manage it from Sophos Central in the cloud.

The solution protects us. The performance and stability are good.

The solution can tie up a computer. We're software developers. Sometimes, when we do a build, it has a lot of files. The scanning can slow it down quite a bit. We put exceptions to stop the tool from looking at those folders.

The cloud management console could be a little more user-friendly. There is a graph showing what happens when something is discovered. It's interesting, but I think the information could be presented better and that there could be more information.

I have been using the solution for about 18 years.

The tool’s stability is fine.

The tool is scalable. We use it to protect 40 endpoints, and we have other customers who have more than 100 endpoints. Our technical team needs two people.

The support is good.

The setup is straightforward. If we're installing it locally on a computer that's just joined to the domain, it would require a script. Setting up the script is quite simple. Setting up, testing, and getting it right takes about half an hour. It works out of the box.

If we have to set up a computer that has not joined our domain, we must log on to the cloud portal and choose to protect the computer. We can download the file that we run on the computer. It's pretty straightforward. We don't need any external help. The deployment is seamless across our organization's endpoints.

The product is moderately priced. We pay a yearly license fee.

We haven’t had any major incidents. The product occasionally picks up and prevents something from happening. We're lucky not to have had any major incidents. Every now and again, the solution pops up and tells us that it stopped something, but we don't keep data on it. We wouldn't know how it's impacted us.

I wouldn't recommend the solution because we are investigating alternatives. We are considering MDR solutions. We might choose Microsoft Defender because it is included with other Microsoft products. In an ideal world, the product has no benefit. It's like insurance. We hope we never have to use it. Overall, I rate the solution an eight out of ten.

We've been selling Intercept X Endpoint for eight years now. It's best suited for customers already using Sophos Firewall or considering one. Deploying both solutions offers synchronized security, where the firewall and endpoint communicate to enhance security posture. If an endpoint is attacked, it sends a signal to the firewall to isolate it until it's clean. This setup is especially helpful for users lacking security expertise. We've deployed this successfully for over fifty customers, and it's proven to be a great product.

I highly recommend Intercept X Endpoint for real-world incident response scenarios. It's a top-performing product recognized by industry leaders like Gartner and Forrester. Sophos has a strong global presence and market share and offers Managed Detection and Response services for customers who lack the budget or infrastructure to implement it themselves including a 24/7 operations team to help prevent incidents effectively.

The Managed Detection and Response service provided by Intercept X Endpoint is highly valuable. With a team of 600-700 individuals monitoring systems, they swiftly respond to attacks, either informing us to isolate or directly removing threats. This full MDR service is especially recommended for sectors like finance, where data security is critical. The deep learning technology within Intercept X Endpoint enhances our security posture by analyzing behaviors and algorithms to differentiate between legitimate users and threats, effectively preventing attacks on our network infrastructure.

I recommend that Intercept X Endpoint should include a patch assessment feature. Various vendors offer virtual patching solutions, which could be a game-changer, especially for the financial sector where frequent service restarts are challenging. These solutions allow patching servers without the need for restarts. Incorporating these features into Intercept X Endpoint would enhance its effectiveness in securing endpoints and servers.

We haev been working with Intercept X Endpoint since 2016. 

Intercept X Endpoint is a highly stable product.

It's scalable to meet varying needs. We've deployed it for over fifty customers.

In terms of scalability, I would rate it 9 out of 10.

The technical support provided by Intercept X Endpoint is excellent. They offer prompt assistance whenever needed. 

Implementing Intercept X Endpoint is straightforward and doesn't require advanced technical knowledge. In terms of ease of deployment and management, I would rate it 9 out of 10, as it's very convenient and straightforward to deploy.Deployment can be done easily through the cloud console by downloading and installing the agent. 

Intercept X Endpoint has had a positive impact on our system.

Customers need to pay for a license for Intercept X Endpoint based on the number of users and servers they have. The pricing is considered normal and not overly expensive.

I rate Intercept X Endpoint a 9 out of 10. My advice for those starting to use it is to evaluate the product thoroughly; it offers great value for its price and features. As for additional features, I would like to see improved patch management and virtual patching capabilities in future releases.

The product is used for security. It is like an antivirus.

The product learns the user’s behavior. It is an intelligent tool.

The product must also focus on other operating systems like Linux and macOS. The tool is not stable on Linux systems. It is heavy. It slows down the machine if the machine doesn't have good specifications.

I have been using the solution for eight to nine years. I am using the latest version of the solution.

The product is stable on Windows machines. I rate the stability a seven out of ten.

We have around 55 users from different departments. I rate the tool’s scalability a seven out of ten.

Support is okay.

The deployment is easy. I rate the ease of deployment a nine out of ten. The process is centralized. We have three engineers to maintain the tool. The frequency of maintenance depends on the alerts we receive about updates or viruses.

The solution is not expensive. The pricing is manageable. We have to pay an annual subscription fee. I rate the pricing a six out of ten.

I will recommend the solution to others. It is centrally managed. We do not have to go to the users’ machines to manage the product. Overall, I rate the product an eight out of ten.

It is an endpoint. So it's antivirus and DLP, and all those integrated in one.

It is like an antivirus. So it stops viruses. DLP stops data leaks in the organization.

It's a bit heavy on the computers. So once you install it, the computer slows down. It is a resource-intensive solution. 

I have been using this solution for two to three years now. We use the latest version. 

It is a stable solution. I would rate the stability a nine out of ten. 

It is quite scalable. You can always add more users.  I would rate the scalability a nine out of ten.

The initial setup is easy. The server, the main server, is online. And then the agent is on the premises. 

After online configuration, the agent installation takes only ten minutes. It is a very quick installation. 

The configuration takes around two hours. 

I do maintenance for this solution. A team of four engineers handles the maintenance and deployment. 

The pricing is quite expensive compared to the rest. I would rate the pricing a four out of ten; one is expensive, and ten is cheap. 

It's a good product. So, link it with the security policies because you can link it with the firewall. The endpoint can communicate with the hardware firewall. So that's one of its strong points.  

Overall, I would rate the solution an eight out of ten. 

We're a Sophos partner and generally use Intercept X software.

In my experience, it is a good product. Sophos family has many offerings, and the selling model is interesting for us as an MSP or Flex partner.

For end customers, you have a centralized controller providing access to every aspect of the deployment. While the platform isn't the easiest to use, if you properly set up the policies, it's very efficient. Sometimes, the platform itself can prevent security risks due to the product's capabilities.

It works very well against ransomware and similar threats.

I appreciate the ability to use the latest endpoint protection features in case of an infection or cyber threat. This is especially true when using the product with a Sophos firewall solution, like the XG series. They collaborate effectively in the event of a cyber threat.

Its ability to continuously query the data lake is beneficial. So, the deep learning technology in Intercept X Endpoint enhances threat detection capability.

However, the automated threat response for incident response times can be better if the user subscribes to Sophos service called EDR... I think it's called Managed Threat Response (MTR). There is a higher layer of support available.  For big customers, this could a good option.

The price could always be better. 

I have experience with this solution. I have been using it for a lot of years. 

It is a stable product.

It is a scalable product. It covers laptops and essentially any Windows platform – servers, clients, and even home users. So, it protects a huge number of potential platforms.

There are around 300 endpoints. 

The customer service and support could be improved in regards to response time. It could be faster.

The complexity of the setup depends on the environment. 

For single deployments, it's quite easy to set up. You can organize customers using separate payments and policies for each through the centralized console. Integrating the product with other Sophos offerings makes it very efficient. 

Customers mostly use the cloud solution. On-premises is probably less common among Sophos users.

It's difficult to have major issues with deployment. Problems usually arise due to the age of the platform. If you have older systems, support can be more expensive. Sophos might support older platforms for a while, but you'll likely have to pay additional subscriptions.

We have seen an ROI. We consider it a strategic product for our organization.

We operate as an MSP, so we pay yearly. However, if the end customer is part of the Sophos Flex program, they have more flexibility and can adopt a monthly payment process.

I suggest investing in training. It's a good product, but unlocking its full potential requires some training time.

Overall, I would rate the solution a nine out of ten.

We use the solution for endpoint and server security.

From a security standpoint, it provides me the visibility to see what is happening on all my endpoints and server.

I have the ability to interact directly with potentially infected machines from the network.

It is easy to set up. 

The solution offers fair pricing.

Technical support is helpful and responsive.

It is stable.

The solution scales well. 

Initially, when I started, I had a lot of performance challenges. They need to work on performance to the endpoints. 

We tried to set up Sophos Zero Trust within my Sophos central cloud. It only works with Microsoft and I use Google. I'd like to see Google added. 

I've been using the solution since 2019. I've used it for three to four years. 

It is very stable. There are no bugs or glitches, and it doesn't crash or freeze.

It has scaled well. We haven't had issues in that respect.

We have about 950 endpoints and 57 users.

We have plans to increase usage.

I've used technical support. They are fine. I speak to the country manager directly in Nigeria, and they are very responsive. 

I'm also using Digital Guardian. The combination of Sophos and this solution may have affected performance. 

It has two components. While it is n the cloud, all agents are deployed on-premises. 

I have definitely seen an ROI while using this solution. 

The pricing is fair. It's not overly expensive. 

I'm using the latest version. It updates automatically online. 

I'd advise new users to deploy Intercept X with EDR on your endpoints. 

I'd rate the solution nine out of ten.

This product is basically used for detecting ransomware. It will monitor all of the ransomware threats. Since the first ransomware attack happened in 2017, WannaCry, it has been a global threat. It is a vulnerability that is impacting a lot of devices and computers in the network.

Ransomware threats have been identified as one of the first priorities in the entire info security segment. Information security consists of various things including endpoint detection, threat detection, and then your SIEMs like QRadar or ArcSight.

At the early point of detection, Sopho is going to stop the ransomware. The question that has been there since 2017 is how it will identify the ransomware and how does it stop the attack from happening to the network. WannaCry was the first large ransomware attack, which has impacted various regions and is a very high severity threat. Since then, a lot of things have been lined up for mitigating the risk, like WannaCry.

improved considerably

Machine learning is used to detect the threat and it does so by prioritizing the suspicious activities. There is no human intervention in some cases, which is the trend that is happening with most of these products. High-end products and sophisticated products include machine learning capabilities for detecting the threats.

There are hackers who hack the artificial intelligence component using artificial intelligence itself. These sophisticated hackers are using AI capabilities, and the problem is that with no human intervention, machine learning can be defeated. The consequence is that somebody still has to keep watch and monitor the detection from the threat scanning.

Better protection in the endpoint, server, and mobile is needed. Those three areas should be fully protected. It should stop ransomware from installing, it should stop it from deploying, and it should also block unauthorized file encryption. In summary, it should have more protection, better detection, and better response.

We have been using Sophos Intercept X for more than two and a half years.

Sophos Intercept-X is a stable solution and we plan to continue using it in the future.

This is a scalable product and we have more than 7,500 devices connected to the network.

The technical support is 24x7 and it is good. They have different points of contact within the support regions like India, Singapore, and various other regions.

We have Sophos running in parallel with Sophos Cloud, in some of the regions.

The initial setup is quite simple and it will take a couple of hours.

I and my team deploy and maintain this solution. The deployment happens on the cloud.

This is a good solution but that said, there are breaches that are happening, and they are happening using AI. So, the attackers are also that sophisticated and it means that somebody has to sit and do the human check as well.

Ultimately, what happens is that the threats are found, and then the response action is taken based on the outcome of all these steps.

This is a product that I can recommend to others. The DR has better capabilities, as it's powered by machine learning.

I would rate this solution a seven out of ten.

We mainly use it on our endpoints. We use it for Windows machines and laptops. They have a server version for the servers.

I like the way it goes beyond the office space. Being a cloud-based solution makes it very easy to manage your endpoints within the office. In this time of COVID, you can also very effectively manage people who are working from home.

I have not done it, but integrating it with authenticating the users on the Windows system looks a bit complicated to me. It could be because I don't understand it.

Its installation takes a bit longer for each of the vendors. I don't know whether it is because of the internet connection. I don't know if it is just for me or it is the same for every other user.

I have been using this solution for two years.

It is very stable.

It is very scalable. There are around 120 users and devices. 

I have never contacted them about this new product. I used to contact them before, and I don't have issues with their technical support. They respond, and their response is good.

We were previously using Sophos Central. It was on-premises, so we migrated from that solution to this solution. It is pretty much the same thing that we were doing before, but now it is cloud-based.

A new device installation is very easy. During installation, when you download the installation file from the web, the registration works so well, but the installation takes a bit longer for each of the vendors. I don't know whether it is because of the internet connection. It looks like it is the web installer that takes longer. I don't know if others have experienced the same issue. 

We also had a few challenges during migration. Because we were doing a migration of the site, we wanted just to maintain what we were doing before. 

We did it ourselves. I'm part of a larger group, and my colleagues had done its implementation.

We have bought a three-year license.

I would very much recommend this solution. I would rate Sophos Intercept X a nine out of 10.