Intercept X Endpoint Reviews

We use Intercept X Advanced along with Sophos EDR (Enhanced Data Detection and Response).  

We use it for our servers and clients as advanced protection. It is not just a simple virus scanning product.  

We use it to work with clients and it is installed on five servers. At this time we have only installed it at one customer site. But we plan to continue to expand.  

The most valuable part of the solution in our use case is client isolation. It is a good feature.  

What I think Sophos can improve is with the data-loss feature, especially when it comes to using USB sticks and USB hard disks. The feature blocks access to these USB sticks and disks and there seems to be no immediate workaround for that. Our customer was not satisfied with the feature. We actually ended up having to deactivate this feature because it is too aggressive and could not meet the client's needs.  

We started using Sophos Intercept X in December of 2019.  

We have not had a problem at all with the stability.  

It is easy to scale this product. As far as the typical organization size that it fits, I would say it is suited for smaller and medium-sized companies. We have not yet installed it at a large customer site, so I cannot answer about large or enterprise companies specifically.  

To this point, I have not had a need to use Sophos support for Intercept X specifically.  

I have used Sophos support for other products that we use. Sophos support for XG is okay if it is just regarding questions about the product. I did not have any problems with them in getting a good answer to questions about the product or installations. But when it comes to device defects, then it can take four to six weeks to get a solution. In that case, the support is really not satisfactory. It does not satisfy me and it is really unacceptable.  

We did use other solutions in the past, including Trend Micro, Symantec, and Kaspersky. The main difference between Sophos Intercept X and the other products is the client reservation feature. I believe that is a standalone point for Sophos as it is the only product that has it. It allows particular hosts to always use the same IP address which is sometimes desirable.  

The administration of Trend Micro is one thing which I like about that product. It is very easy to use. I would say that Trend Micro is better than Sophos on that point.  

We switched to Sophos because we are selling Sophos firewalls already. The Sophos Intercept X product works better with these firewall solutions than other virus scanning products from different vendors. We decided to keep to the same vendor for a more unified solution.  

We started to work with Sophos Endpoint Protection originally and we are on Bonfire XG as well. It is convenient to expand out working with the brand as a partner.  

The initial setup for the product is not simple. It is medium to complex to install and setup.  

After deploying it takes only me and the customer team for maintenance. Really one person can do it. So there is just one person at my company and I have communication with one colleague at the customer site.  

We did not need outside help from a vendor to handle the deployment. I did it myself and we are a partner with Sophos.  

Advice that I would have for people considering using virus scanning is that I, personally, would not use Sophos Endpoints. That is the simplest edition of the Sophos virus protection product line. I would use Intercept X Advanced as the entry-level product as the other, simpler product, is not robust enough to provide acceptable protection for businesses in my estimation.  

On a scale from one to ten where one is the worst and ten is the best, I would rate Sophos Intercept X as a seven. First, I never give a ten because every product can be improved. Second, I subtract two points because of my experience with the data loss feature and how it behaves with USB drives.  

I'm the technical director and we are partners with Sophos. 

This solution is an EDR antivirus with some artificial intelligence, security metrics and a lot of information gathered to make decisions. Without Intercept X, I think Sophos would have lost the antivirus fight and stayed as a UTM vendor. The solution has a very good detection rate. With the new threats, if you don't have Intercept X, you won't be protected from attacks. 

I think this solution needs more flexible reporting, particularly for medium to large size companies and I'd like to see some varied options for making reports. Communication with all the antivirus vendors could be improved. We need lateral communication with other antivirus and security products. We need to communicate from one site to the other, possibly nothing will be required as a result, but it would be good to have this information and to have it easily transferred. 

I rate this solution a nine out of 10. 

Their support is located in Egypt, so we like this aspect.

It's a good antivirus software and has a lot of features. It now integrates with their on-premises firewall, which is perfect.

It is stable and easy to use as well.

The main real-time scanning is taking most of the processing power of my notebook. This is a big problem.

It would be nice if Sophos Intercept X could provide some of their other features for free. For example, when I wanted to add another feature, like zero-day attack, I was told that I would need to add the license.

Also, it would be good to have a lot more resources.

I've been using it for about four or five years.

It's a cloud-based solution.

The technical support staff are excellent.

I used Symantec antivirus, but when they ended the corporate product of Symantec, I was not able to contact them. It was very difficult to reach them and get support or purchase the antivirus, so I switched.

The installation is straightforward.

I deployed it myself with some technical support. They were able to provide what I needed.

If I were to rate Sophos Intercept X on a scale from one to ten, I would rate it at eight. I would recommend this solution.

We upgraded the EDR and so far it's doing good. It patches the things that we weren't able to patch in previous antivirus hardships.

The solution has very useful response modules where we can get the recommendation on what needs to be done every day around detection.

The patches on offer are very helpful.

It's pretty good at protecting us as an anti-virus.

We've had difficulty with uninstalling the solution. When we try to uninstall an old version of the basic Sophos Antivirus, it doesn't seem to uninstall completely. Due to this issue, when we installed Intercept X, we had installation conflicts. The company needs to figure out a way to make installing their old products easier and more complete.

We bought this solution in the middle of last year. It hasn't been an extremely long amount of time.

The only issue we had with Sophos during installation was a problem around removing old versions of Sophos products from machines so that we could properly install Intercept X. There seemed to be some residual aspects of the older version, and that affected our ability to install the newer version. It was quite a headache for us.

We've been looking at Symantec and have been looking for information to compare it to Sophos. We're trying to decide which of these we'd use as the standard solution.

We're just a customer and end-user. We don't have a special business relationship with Sophos.

Overall, I would rate the solution at a nine out of ten. We've had a very positive experience so far.

Aside from issues with overwriting old Sophos versions, it's been a pretty solid product.

Our primary use case for this solution is to offer a complete and monitored solution regarding ransomware protection to all my clients & servers.

Sophos improved our organization allowing us to setup a very efficient solution, cloud managed, introducing a new modern concept: Syncronized Security (between Firewall and end-point)

A valuable feature offered by Sophos is called Naked Security and it entails the control managed by the firewall on the site regarding the desktop client interfacing with our cloud client. So we have a central management console where we can observe and act and manage all our customers. It's like a proper perfect solution.

Something that could be improved is to better integrate all different platform available at the moment (not only allow pcs, servers but also other o.s. platforms, Android & IOS and so on too). It should be more user-friendly, automated and able to manage and analyze the logging of the operation, provided that Intercept X is one part of a more complete security solution (Syncronized Security - between firewall, endpoint, mobile devs). Logging & reporting is very important for us, especially in Italy.

I am satisfied with the program's stability. There were some maintenance problems, but very rarely. We generally receive an alert from Sophos when there will be maintenance operations, so we can plan accordingly.

The program is very scalable. We have about 300 computers, servers, work stations and mobile devices in our company. We have one staff member who is responsible for maintenance. We are all system integrators in our office and we plan to increase our usage soon.

The support wasn't very good initially, but they became better. Compared to other brands' support, I'm quite satisfied about the support we get now.

We used a few different products to achieve one objective, but now, with Sophos Intercept, we've solved our problem, reducing dramatically manual monitoring activities.

The initial setup was not very user-friendly, but it improved during the evolution. It was rather difficult at first. Our deployment took half a day. Especially if we consider the Intercept X inside the final solution. We had to plan the setup. It all depends on the number of clients, of course. We did everything by ourselves because we are certified partners; we don't need external consultants.

We pay an annual license fee.

My advice to others would be to get certification over time because without certification, it's not so easy to setup and use. Users should familiarize themselves with all the features of the program. On a scale of one to ten, my rating is nine, because of the few missing features that I think should be added in a close future.

We use the tool for complete surface deployment. My company uses it not only to manage endpoints but for mobile management as well. 

I am impressed with the tool's common dashboard feature. The solution is also easy to deploy and manage. Reporting is also easy with the software. 

The tool should be made compatible with Linux and Microsoft operating systems. 

I have been working with the tool for five years. 

The product's stability is really good. It is a solid solution. I would rate the solution's stability a nine out of ten. 

The tool is scalable. I would rate its scalability a nine out of ten. 

The product's tech support is good. 

The product's deployment is easy and straightforward. The tool's deployment is quick and gets completed in an hour. 

The solution offers both a three-year license and an annual license. I would rate the product's pricing a one out of ten. 

I would rate the solution a nine out of ten. The tool is a really good product. If you are looking to use the solution, give it a try. You will not be disappointed with its use. Most of the tool's competitors have either difficulty in management or installation. We have used all of them. 

We are using Sophos Intercept X for network and system security.

The key factor that attracted me to Sophos Intercept X was the multi-platform. I have multiple clients that have mixed environments of Mac and Windows. I am able to deliver a standard solution, regardless of the platform.

Most of my clients I have central management, they receive updates automatically.

There are not any solutions that are a 10 out of 10. A 10 would be perfect protection with no impact on the performance of the device. This is not the case, there is some impact on the performance of the device.

I have been using Sophos Intercept X since it has been released, it has been many years.

Sophos Intercept X is very stable. However, we had a few issues when Apple released Big Sur. At the time the version of Sophos Intercept X that was running on the Macs wouldn't work properly with Big Sur. We had to install a beta, but that problem was resolved fairly quickly.

Sophos Intercept X is highly scalable.

I have found the Sophos office staff to be far more responsive than other vendors, such as Sonic Wall which is awful. I dealt with them for a number of years and I finally couldn't stand it anymore. I felt that Dell destroyed them.

I have been very pleased with tech support. As a partner, I have access directly to their engineers and developers. Their technical support is superior.

The initial setup is very straightforward.

In the centrally managed environments, you create a downloadable install that you can either email to the end-user or, can have available on thumb drives for customers to install. Once it's installed, it's automatically kept up to date with the most current version.

The price of Sophos Intercept X is competitive.

I'm looking at moving to the EDR version of Sophos because I have a number of clients that have extremely critical data. One of them handles a lot of money for their clients, and the others are lawyers. The security of not only their own information, but their client information, is critical to them. The Intercept X EDR offering is starting to look like it might be a good solution for several of them because of the live monitoring of the threat attempts on their endpoints.

The EDR is an additional managed service that's a component of the antivirus, where depending upon which level you choose, you either have a team that is monitoring responses from your system, or at a higher level, you have dedicated resources that are monitoring your systems. If there's an alert, they immediately respond to that alert and research it, not only quarantine it, the AV quarantines it, but with the EDR function, it alerts the Sophos team that there has been a potential issue, and they'll immediately begin to research it.

My advice to others would be to use centralized management because it makes it much easier to implement, manage, track the installations, and the day-to-day usage. With the central management, you can see every PC or Mac that's connected, any activity, and any issues. You can narrow any issue down to the computer if it's had to quarantine anything. Additionally, you can tell how long it's been since the computer last communicated. It's a very powerful tool, I would recommend it. To the extent their clients are willing to accept the central manager, it is the best option.

I rate Sophos Intercept X a nine out of ten.

The solution is deployed concerning all our users, of which there are between 500 and 600. We utilize it for whoever is making use of our company assets. 

Sophos Intercept X has a host of valuable features,  which is why we selected it. These include the prevention of lost data, device and web control, and the application level controls with the anti-malware feature. The anti-malware feature was key for us and we benefit from all these other attendant ones.

Features that should be improved in the upgrade involve the excessive consumption of the the solution's processor, RAM and resources. 

We have often encountered pain points, such as field users having insufficient resources at their disposal. Their system may offer, say, i3 processor or four GB of RAM, and become slow, owing to the large number of features. While it is okay that this results in the system slowing down, it remains a challenge for us, as our users and employees are complaining that it is becoming progressively slower.

In the next release it would be great to also see VPN integrated or in-built in the solution.

We have been deploying Sophos Intercept X for nearly two years. 

We have not expanded the solution. As nearly two-and-a-half years have elapsed, the number of users have already been added. We have not increased the number of users in the past year. There is no increase in increment planned for now but, perhaps, there will be in six months' time. 

As mentioned, we consider the solution's technical support to be good.

The initial setup was straightforward and easy.

Since prior to using Sophos Intercept X we were using the on-premises solution of Sophos Central, our use has exceeded two years.

The deployment took from five to ten days.

The licensing is annual, which means that we have already procured licenses for three years.

We are happy with the pricing across all Sophos products. Comparatively, the cost is very low.

Prior to going with Sophos Intercept X, we evaluated McAfee, Trend Micro, Seqrite and Symantec. 

Sophos Intercept X does not have any specific version. It started out on-premises but is now cloud-based. As such, we are using it on the cloud, meaning, Sophos Intercept X Advanced.

We use EDR for both solutions.

There are currently around 550 to 600 users making use of the solution across our company.

For someone contemplating implementing the solution who is looking for a single product containing many features, Sophos Intercept X is the best available. It has features like web, application, and device control, as well as DLP. For someone solely interested in an anti-malware solution, but without DLP, Sophos Intercept X would be so-so.

I would rate Sophos Intercept X as an eight out of ten.