Head of IT at International Tennis Integrity Agency
Real User
Good managment and stability with reasonable pricing
Pros and Cons
  • "The client isolation feature is a very effective feature."
  • "Technical support is too slow to schedule meetings."

What is our primary use case?

The solution is primarily used for endpoint. 

What is most valuable?

The client isolation feature is a very effective feature. There is a lot of information you can find in the console. Management is good. They're always giving you information on the products you have rather than trying to send you new products.

What needs improvement?


For how long have I used the solution?

I have been using Intercept X Endpoint for 3 months. 

Buyer's Guide
Intercept X Endpoint
March 2024
Learn what your peers think about Intercept X Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.

What do I think about the stability of the solution?

The solution is stable and I rate the stability an 8 out of 10. 

How are customer service and support?

I have only spoken to technical support during installation. 

When talking to sales support or technical people, I find that they're all very busy. It takes a few days to be able to actually have a meeting arranged. If I contact them that I want to have a meeting with somebody technical from Sophos to go over an implementation or something that I wanted to get out of the product, they may not be available for 6 or 7 days.

How would you rate customer service and support?

Neutral

How was the initial setup?

The initial setup is straightforward. 

What's my experience with pricing, setup cost, and licensing?

The pricing is actually quite reasonable.

Which other solutions did I evaluate?

I was looking at the Rapid7 and Darktrace before choosing Intercept. 

What other advice do I have?

Overall, I rate the solution an 8 out of 10. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
PeerSpot user
Technology Infrastructure Manager at a non-profit with 201-500 employees
Real User
Not resource-intensive and does a good job of stopping and preventing different threats from being triggered
Pros and Cons
  • "It is very easy to set up and easy to use. It is also not resource-intensive."
  • "Sophos has a lot of different features. Some of them are tied to different clients, which may mean that different prices or licenses have to be added on. It can be a little bit confusing if you're not familiar with the logic of how they work. They can make it a little bit clearer."

What is our primary use case?

We are using it for endpoint antivirus, hardening, and some DLP policies. Its version is the current one.

What is most valuable?

It is very easy to set up and easy to use. It is also not resource-intensive.

It has been very stable. It has done a good job of stopping and preventing different threats from being triggered.

What needs improvement?

Sophos has a lot of different features. Some of them are tied to different clients, which may mean that different prices or licenses have to be added on. It can be a little bit confusing if you're not familiar with the logic of how they work. They can make it a little bit clearer.

For how long have I used the solution?

I have been using this solution for about a year and a half. 

What do I think about the stability of the solution?

Systems have been stable during deployment. It is not resource-intensive, and it has been working well.

What do I think about the scalability of the solution?

It has been easy to add additional Sophos components. They all are using the same console. We have about 400 users who are using this solution.

Which solution did I use previously and why did I switch?

We were using Symantec. We switched because we just needed something that was a little bit more aggressive and next-generation from an antivirus perspective.

How was the initial setup?

It is very easy to set up.

What about the implementation team?

We had a third party that helped us set it up.

What's my experience with pricing, setup cost, and licensing?

It was fairly and reasonably priced.

What other advice do I have?

I would advise others to thoroughly vet out because Sophos has a lot of different features. It can be a little bit confusing in terms of licensing.

I would rate Sophos Intercept X a solid eight out of 10.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Intercept X Endpoint
March 2024
Learn what your peers think about Intercept X Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
Manager of Information Security at a healthcare company with 1,001-5,000 employees
Real User
Reliable, user-friendly, good price, and useful for malware protection and application blocking
Pros and Cons
  • "Malware protection and application blocking are absolutely great. The DLP and malware features are very helpful. It is also very user-friendly, reliable, and scalable. It is easy to set up. We are also happy with its price and support."
  • "Mobile device management is a challenging area, and it can be improved. Some areas in the DLP solution can also be improved. It has the DLP capability, but it is not an all-out DLP program. I would like to see them improve the DLP solution in terms of reporting and possibly network monitoring. Currently, they only do the reporting parts of it."

What is our primary use case?

We use it for all of its features, with the exception of mobile device management. We use it for DLP, malware protection, some forms of asset tracking, application blocking, and so forth.

It is deployed on-premises and on the cloud. We are using its latest version.

What is most valuable?

Malware protection and application blocking are absolutely great. The DLP and malware features are very helpful.

It is also very user-friendly, reliable, and scalable. It is easy to set up. We are also happy with its price and support.

What needs improvement?

Mobile device management is a challenging area, and it can be improved. Some areas in the DLP solution can also be improved. It has the DLP capability, but it is not an all-out DLP program. I would like to see them improve the DLP solution in terms of reporting and possibly network monitoring. Currently, they only do the reporting parts of it.

For how long have I used the solution?

I have been using this solution for close to two years.

What do I think about the stability of the solution?

It is a very reliable solution.

What do I think about the scalability of the solution?

It is very easily scalable. We have scaled it, and we had very minor problems in expanding it across the organizations and new acquisitions.

How are customer service and technical support?

They provide a great response. They are available through email and phone calls. After you create a ticket, they will respond within 24 hours.

Which solution did I use previously and why did I switch?

We've only used Symantec. Symantec is nowhere near this solution.

How was the initial setup?

The initial setup was straightforward.

What about the implementation team?

Our team did the deployment. We got the training from them, and we did the deployment ourselves.

What's my experience with pricing, setup cost, and licensing?

Compared to other solutions, such as CrowdStrike, we are most certainly happy with its pricing. We did a three year-business deal.

What other advice do I have?

I most certainly would recommend this solution. One of the recommendations would be to make sure that you have a plan and a dedicated team to be able to manage all of the functions that are in the Sophos solution.

I would rate Sophos Intercept X an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
PeerSpot user
Technical & Pre-Sales Manager at GateLock
Real User
Top 5Leaderboard
Provides dependable, intelligent attack defenses and is easy to manage and work with
Pros and Cons
  • "It is a practically maintenance free intelligent system that independently protects environments from malicious attacks."
  • "The product defends very well on its own but could possibly use enhancement in giving users more controls."

What is our primary use case?

We are providing this product and support for it in many sectors like health care, retail, sports, and communication sectors. We are also working with Sophos, but with Sophos Endpoint, not XG, or Sophos UTM. We work with Raya (Contact Center) that provides services here in Egypt (they are also using Sophos 550 XG models).

How has it helped my organization?

It improves organizations by providing dependable, intelligent attack defenses.

What is most valuable?

The most valuable feature in Intercept is its engine for machine learning. It is awesome. Its detection capabilities are saving many of our customers' databases from ransomware and other random attacks. The most interesting thing in the Sophos center is the EDR. It is easy to manage and work with. There is no need to have a cyber-security team define its tasks. In the next few years, it will be an agent EDR.

What needs improvement?

I guess really the best part of the package is the same thing that could use the most improvement. The machine learning is good and it is already developed in the database and its engine. I guess they already have processes to cover more intelligent attacks. I am not sure about the improvements possible in this area. They have developed it to discover new attacks. But it is just an engine. There are no features that users have to look inside it. I think allowing more user modification could improve this at least for purposes of customization. But I don't know if it is possible and it is just to continue to improve on what already works.

As far as added features, I would like to see some type of event management in the product. It should not just depend on the logs only. It would be something to deal with the events on PCs in a similar way to enhance the effectiveness of Intercept X and EDR. 

For how long have I used the solution?

I have been using Sophos Intercept for six years

What do I think about the stability of the solution?

The stability of the product is very good as is the performance. As it works in the background there is never instability in the form of hanging at the work stations or producing false positives. It is very easy to deploy, very simple to use, very light on the operating systems' resources. But there are some guidelines that customers or anyone making the deployment have to keep in mind. They have to make rules and use the product intelligently to avoid any extra false positives or any performance issues. For example, they will want to make full scanning of the environment in times where there is a lower load on the system — in off-hours and not during the prime-time hours. But that responsibility is on the operator. 

The performance of the product itself is very stable and very good.

What do I think about the scalability of the solution?

Scalability can happen in one click. If you have another device to add to the environment, you just make the deployment from the server on-premises. The customer does not have to depend only on the cloud server to scale. They also have an on-premise server that makes the rules between the cloud and the LAN environment to avoid any internet disconnects, or bandwidth and performance issues. They can depend on the cache server to communicate on behalf of the client to the on-cloud dashboards.

How are customer service and technical support?

I personally think the company's technical support is perfect. They always address issues satisfactorily.

How was the initial setup?

The initial setup is very straightforward.

What about the implementation team?

I am not just using it in our department, we are also dealing with installations for customers. We play the role of IT. We enable Sophos products for partners. We do all the work if the customer doesn't have a technical team. We make projects for implementation and providing training.

What other advice do I have?

On a scale from one to ten, I would rate Intercept X as a nine out of ten. I don't think I can rate any software security product a ten because nothing in software security is100%. 

We are deploying Intercept X on Cloud, not on-premises. The reason for this is because the previous versions of Sophos made the agents different between the anti-virus, endpoint and the Intercept X. Now with the Cloud, Sophos is making one agent for the three technologies — the endpoint, Intercept X, and EDR (Intelligent Endpoint Detection and Response). The three components are in one agent and managed by one dashboard, Sophos Central.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
PeerSpot user
Inside Solutions Architect at a tech services company with 1,001-5,000 employees
MSP
Good price with robust and stable cloud console
Pros and Cons
  • "What I have found the most valuable about Sophos Intercept X is the ease of use with management administration and the solution's ability to stop exploits and ransomware."
  • "Sophos Intercept X doesn't have its own firewall that utilizes the Windows Firewall or intrusion prevention."

What is our primary use case?

Our primary use cases for Sophos Intercept X are endpoint protection, corporate enterprise endpoint protection, EDR, and endpoint detection and response. And if you add the Sophos MTR to Sophos Intercept X, you could do managed threat response, as well. 

What is most valuable?

What I have found the most valuable about Sophos Intercept X is the ease of use with management administration and the solution's ability to stop exploits and ransomware. Sophos Intercept X has great exploit prevention capabilities.

What needs improvement?

Sophos Intercept X doesn't have its own firewall that utilizes the Windows Firewall or intrusion prevention.

For how long have I used the solution?

I have been using Sophos Intercept X for four or five years.

What do I think about the stability of the solution?

Sophos Intercept X is stable. The cloud console they have been creating for a while is both stable and robust.

What do I think about the scalability of the solution?

Sophos Intercept X is definitely scalable for all enterprises, from small to large.

How are customer service and support?

I do not engage with Sophos Intercept X's technical support too often. I would say that they are okay. They are certainly not the best out there or the worst, so they are good.

How was the initial setup?

The initial setup is straightforward in terms of the ability to integrate with an active directory and add users and put them into a default profile. You have to do a bit of learning to know which additional settings to activate sometimes, but the default settings are a good start.

What's my experience with pricing, setup cost, and licensing?

I would say that Sophos Intercept X is comparable to other solutions out there, but it is a premium business product. The pricing reflects that.

What other advice do I have?

If you are using other Sophos technology, it is worth it to take a look at Sophos Intercept X because of the integration and XDR technology capabilities.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
IT Technician at Zimbabwe School of MInes
Real User
A scalable, stable and easily installable solution
Pros and Cons
  • "The solution is scalable."
  • "Through Sophos Central I would like to see the ability to zero in and produce a report about the challenges being faced by a particular machine and user, to know if a virus is appearing only on that specific machine or also on others."

What is our primary use case?

I am not in the office at the moment and would have to check which version we are using. 

What is most valuable?

We have a firewall, for which we will be adding support and integration capabilities. 

What needs improvement?

Through Sophos Central I would like to see the ability to zero in and produce a report about the challenges being faced by a particular machine and user, to know if a virus is appearing only on that specific machine or also on others. This way I could know if a virus or issue is a result of an identifiable program that the user may have downloaded. 

Also, while the tamper protection is a very good feature, it requires of me to first login to Sophos Central and then look for the Sophos protection password for the particular machine I wish to use. While this is definitely good, this could pose an issue when the internet connection is not working up to speed, something which is occasionally problematic for some of us here in Africa. 

For how long have I used the solution?

I have been using Sophos Intercept X for three years.

What do I think about the stability of the solution?

From what I can observe, I would say that the solution is stable. 

What do I think about the scalability of the solution?

The solution is scalable. 

How are customer service and technical support?

You provide us with technical support through our partner relationship. 

How was the initial setup?

The initial set up for me was not an issue. I found it to be simple and straightforward, although I cannot recall how long it took, as it has been a while. 

What other advice do I have?

I would recommend the solution to others.

I rate Sophos Intercept X as a ten out of ten. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Muzamil Yakub - PeerSpot reviewer
Chief Executive Officer at Infoview Limited
Real User
Beneficial policy management, automatic endpoint updates, simple installation
Pros and Cons
  • "Sophos Intercept X is a very effective solution and its being cloud-based is a benefit. Wherever my users are, I can apply policies to them. In the era of mobility, when users are out of the office or they're in different locations, it doesn't matter."
  • "From the management side, we receive detailed information. Sophos has many features, such as Threat Hunting but that comes with the XDR version of the solution. There's Sophos Intercept X and then there's Sophos Intercept X with XDR technology. We bought the XDR and then now the MTR, Managed Threat Response version available too. They have different packages for clients which gives them different options to pick from. If Sophos could combine more features into one package it would be beneficial."

What is our primary use case?

We are using Sophos Intercept X for endpoint protection.

What is most valuable?

Sophos Intercept X is a very effective solution and its being cloud-based is a benefit. Wherever my users are, I can apply policies to them. In the era of mobility, when users are out of the office or they're in different locations, it doesn't matter. 

Whenever a user gets infected, as an admin, we get notified. We have many options to pick from, the ability to send policies to the endpoints is a very good feature that they have.

Whenever there is an update all the agents on the end-users systems automatically update.

We have the option of caching updates on the network, which allows us to save on bandwidth. For example, if we have 100 people in the office, we can deploy an internal caching server or a message link server, so not all computers need a connection to Sophos onto the cloud.

Sophos Intercept X integrates with their other solution very well, such as the XG Firewall. The feature is called Synchronized Security.

What needs improvement?

From the management side, we receive detailed information. Sophos has many features, such as Threat Hunting but that comes with the XDR version of the solution. There's Sophos Intercept X and then there's Sophos Intercept X with XDR technology. We bought the XDR and then now the MTR, Managed Threat Response version available too. They have different packages for clients which gives them different options to pick from. If Sophos could combine more features into one package it would be beneficial.

For how long have I used the solution?

I have been using Sophos Intercept X for approximately five years.

What do I think about the stability of the solution?

Sophos Intercept X is highly stable.

What do I think about the scalability of the solution?

I have found Sophos Intercept X to be scalable.

We have approximately 40 clients using this solution.

How are customer service and support?

I'm a Sophos certified architect to myself, and as a partner, from the vendor, we have excellent support. We have not had a problem with the technical support, they are always available for communication, such as online chat or on-call.

Which solution did I use previously and why did I switch?

We have used Kaspersky, ESET, Bitdefender, and Symantec solutions.

How was the initial setup?

The installation is very easy. If someone is not on the network, you can send them an invite by email and they would only need to install the agent, and everything will work perfectly.

The time the installation takes depends on the internet connection. Sometimes it takes only five minutes and other times it can take up to 10 minutes. It all depends on the connection because it has to download the installer.

What about the implementation team?

The end-user can install the solution themself. It is very easy. It is only a two to three-step process it is complete. 

Many people are using this solution and some customers don't even have IT managers, we provide them manage services I this case.

What was our ROI?

The solution has great protection against anti-ransomware and all of the zero-day threats. The ROI is very good.

What's my experience with pricing, setup cost, and licensing?

There is a license required to use this solution.

If it's a managed services provider contract that we have with the customer, then they pay monthly. Depends on the customer, what the requirements are. They can pay either monthly or annually to us, but we have to pay annually to the vendor.

Which other solutions did I evaluate?

Before choosing Sophos Intercept X we evaluated Kaspersky, ESET, Bitdefender, and Symantec. For some of our clients who are using the other products, now they've shifted to Sophos Intercept X.

What other advice do I have?

I would recommend this solution to others.

I rate Sophos Intercept X a ten out of ten.

Which deployment model are you using for this solution?

Private Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Technical Support at a tech services company with 11-50 employees
Real User
Smart protection and machine learning capabilities are good
Pros and Cons
  • "Intercept X's smart prevention it's very good as so are its machine learning capabilities for troubleshooting channels and files."
  • "Intercept X needs more reporting and device management features, so I can get messages from PCs that let me know if I need to do something with them."

What is our primary use case?

We currently have about 13 staff using Intercept X. We use it to secure and protect our devices as well as monitor projects and do some product reviews. You can also use it to block devices as needed, like if you just want to block a work point category.

What is most valuable?

Intercept X's smart prevention it's very good as so are its machine learning capabilities for troubleshooting channels and files.

What needs improvement?

Intercept X needs more reporting and device management features, so I can get messages from PCs that let me know if I need to do something with them. For example, they could add a report that shows me the versions of the devices on the infrastructure server, so I can make sure all the devices are updated. 

For how long have I used the solution?

I've used Intercept X for three years.

What do I think about the stability of the solution?

Intercept X is good in terms of both performance and stability. It's not constantly updating the device or using up too many resources.

What do I think about the scalability of the solution?

I would say that Intercept X is easy to scale.

How are customer service and support?

Sophos support is very good. I don't talk to them that much, though. I can usually handle everything because it's not complicated. However, in the past, I have contacted support because there were some features I didn't know how to use or configure. 

How was the initial setup?

The setup was simple. I deployed this by myself. Though my team and I got some help from the vendor for new features that I didn't know about. 

What other advice do I have?

I would rate Intercept X eight out of 10

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Intercept X Endpoint Report and get advice and tips from experienced pros sharing their opinions.
Updated: March 2024
Buyer's Guide
Download our free Intercept X Endpoint Report and get advice and tips from experienced pros sharing their opinions.