Sophos MDR Reviews

In the future, I would like to see a better integration between the endpoint and firewall, just like how web proxy is available inside the antivirus and the endpoint protection. There is also security or protection for the gateway and the border gateway in Sophos that we need to configure separately. In general, the gateway, firewall, and endpoint Sophos offers are not optimized, which I feel can function better together.

I have been using Sophos MDR for a year. My company is a platinum partner in Switzerland for Sophos.

It is a stable solution.

It is a scalable solution.

The support from the MDR team works satisfactorily.

I rate the technical team an eight out of ten points.

Positive

It is easy to deploy Sophos MDR.

The solution's deployment process takes four to eight hours, considering that my company has around ten customers with varying infrastructure sizes who need our service regarding the solution's deployment process. The deployment can be done in four hours for some of our company's smaller customers, while it may take eight to twelve hours to configure all the parameters for the bigger ones consisting of 300 to 400 users.

Sophos MDR is not a cheap product. Compared with other solutions in the market, Sophos MDR is available at a good price, especially considering its performance.

I am satisfied with the overall solution. So far we have had very few queries from Sophos. But these have always been handled quickly and satisfactorily.

It is a good thing that Sophos offers many products, along with the automatic integration of all the telemetry data. With other competitors or products like Fortinet in the market, you have to pay extra to integrate the MDR services offered.

I rate the overall product an eight out of ten.

Sophos MDR is used to take care of security, monitor the environment, and show it is safe and secure.

A lot of organizations in Africa have been in very bad shape. Some experienced staff might suddenly drop their registration letters, making it a challenge to find somebody new. That is one of the cases where Sophos MDR comes into play. Organizations do not necessarily have to invest too much in in-house personnel because Sophos takes care of the first channel of security that you require. You don't need entry or mid-level security personnel in-house.

A lot of organizations have also experienced attacks like ransomware. This has led to more than the loss of data. We face legal implications. We have our integrity damaged. These attacks come with a lot of financial implications, and Sophos addresses that aspect by offering up to $1 million in case of any environmental breach. Other organizations can take server insurance or integrate it to give them confidence that they can land on their feet if anything happens.

There is a feature called XDR Central. With this, Sophos can connect to third-party security solutions. This way, clients do not need to spend on a separate security OEM. Sophos MDR naturally integrates with any third party, and clients get the value they need from the solution.

With the level of AI in the hands of cybercriminals today, they have had a lot of success, and they continue to improve on their success. Hence, the only way forward is for any security solution to continue increasing the amount of data they have access to. Threat intelligence is one area any security company needs to expand because the better the data we have, the more precise a difference they can make regarding security. Threat intelligence is an area for improvement for MDR. Sophos MDR also needs to add more automation functions.

I have used Sophos MDR for three years.

I rate the stability of the solution a nine-point-six out of ten.

I rate Sophos MDR's scalability a ten out of ten. It is straightforward to increase the number of protected devices. You don't need to redeploy anything. It is automatically pushed from the central to all devices. It is seamless.

Sophos MDR cuts across every type of organization, from a small to a large enterprise organization. Large enterprises gain value because when it comes to cost, the higher you buy, the less you pay. For a large enterprise, it will make the price cheaper. Regarding capability, one of the recommendations is called synchronized security, which is the ability of your endpoint to communicate with the firewall and share intelligence. That's one of the things Sophos has been able to achieve. It has some of the components or architecture I require in the environment for large organizations and enterprises, but Sophos MDR speaks to enterprises and smaller to medium companies.

Customer support is top-notch.

Today, the best way to deploy a cloud solution like Sophos MDR for a large enterprise environment is to have it leverage soft packing on deployment. It is quite easy for customers using Sophos to add additional features to it because you don't need to redeploy. From the portal, you can push licenses to every endpoint you have. Sophos has made some advances in that aspect, but sadly, it depends on third parties to make deployment more seamless.

MDR is a complete enterprise solution, and compared to other OEMs, it is one of the cheapest. I rate the pricing a nine out of ten because it is affordable.

Sophos is one of the first security OEMs to recognize security perfectly through a single management platform whereby organizational security solutions can think and be managed from a single dashboard. That gives Sophos an edge over so many other OEMs. This is what MDR leverages today. Another point of note is that a few years ago, when ransomware software became rampant, Sophos released a component dedicated to helping providers combat any new variants of ransomware, which any other OEM could use. And Sophos was able to work with third-party security solutions, meaning that an organization currently using another OEM can still leverage the Sophos interface to ensure they are safe regarding ransomware. This gave Sophos an edge with MDR. Today they have XDR Central. XDR Central works with third-party security solutions and enables organizations to carry out forensic and threat-hunting analyses on those companies' devices and networks. These are things that give Sophos an edge over many other OEMs out there.

I rate Sophos MDR a nine out of ten.

We are a distributor of Sophos products in Pakistan. Our customers use Sophos MDR when they require a unified dashboard for integrating multiple vendors' solutions, enabling them to have visibility across all their systems. Sophos MDR is particularly valuable for organizations that lack an in-house expert to manage and secure their network.  

The most valuable feature is the ability to integrate multiple functions into a single dashboard regardless of the vendors being integrated.

Sophos MDR lacks integration with MDM solutions.

Sophos should provide a demo of MDR so that potential customers can utilize it through a free trial for POC.

I have been using Sophos MDR for five months.

I would rate the scalability of Sophos MDR a seven out of ten.

The initial setup is a seven out of ten.

Sophos MDR is expensive, and due to the financial instability in Pakistan, many customers prefer to opt for Intercept X Advanced with XDR. This allows them to have a comprehensive LDR solution rather than MDR.

I would rate the price of Sophos MDR as a nine out of ten, with ten being the most expensive.

I would rate Sophos MDR eight out of ten.

People are expecting Sophos MDR to be available on-premises as well, due to an existing compliance issue in Pakistan. This is a crucial aspect that customers have requested from me. Historically, two to three years ago, or even four years ago, our solution was on-premises; however, currently, we have already transitioned to the cloud. Now, in the banking sector of Pakistan, there are policies that prohibit hosting anything on the cloud. This presents a significant challenge for us in the Pakistani market, as we aim to offer and impress them with cloud-based solutions. Many other vendors provide their solutions in three ways: hybrid, on-premises, or on the cloud. Therefore, the drawback of Sophos MDR is that we don't offer an on-premises option. Nevertheless, despite this limitation, we can still provide Sophos MDR by adapting it to function on a highly secure server or in air gap mode.

Sophos MDR offers a 24/7 threat experts team that protects customers' networks from attacks or vulnerabilities. This feature is ideal for organizations that do not have a cybersecurity team. 

We use Sophos MDR for DLP (Data Loss Prevention), NGIPS (Next-Generation Intrusion Prevention System), URL filtering, application control, and visibility.

I like Sophos MDR's inbuilt feature for DLP (Data Loss Prevention). Just a subscription is enough to get a dedicated device for it.

Sophos MDR's support and basic training of their devices could be improved. The solution's curriculum does not give clear information about its certifications.

I have been using Sophos MDR for six months.

Sophos MDR is not quite stable.

I rate Sophos MDR a seven out of ten for stability.

Sophos MDR is a scalable solution. However, its integration with other devices is not as good as Cisco's. Our clients for Sophos MDR are medium manufacturing businesses.

I rate Sophos MDR a six out of ten for scalability.

Unlike Cisco, the initial setup of Sophos MDR is easy.

Sophos MDR is a cheap solution. I rate Sophos MDR a five out of ten for pricing.

Sophos MDR doesn't necessarily address the full-scale network requirements in terms of security. I recommend the solution for small to medium enterprises but not for large enterprises. With Sophos MDR, you get what you buy.

Overall, I rate Sophos MDR a seven out of ten.

The product’s most valuable feature is ease of use.

The product's pricing could be less expensive.

We have been using Sophos MDR for almost a year.

It is a stable product due to timely and automatic updation.

We have 100 clients for Sophos MDR. It is a scalable product.

The technical support services are customer-friendly.

The initial setup is easy and can be done immediately.

The product generates a good return on investment.

It is an expensive platform.

The product is user-friendly and cost-effective. I advise others to add MDR, XDR, and EDR solutions for complete security. I recommend the product to others and rate it an eight out of ten.

The product’s most valuable feature is rapid response. Most of the companies are targeted by ransomware attacks. Sophos MDR provides us with better data protection services than other providers.

Sophos MDR’s pricing is the biggest factor that needs improvement per customers and technical professionals. There could be a package or bundled subscription similar to Trend Micro. It will allow us to customize the package according to specific requirements.

We have been using Sophos MDR for more than two years.

I rate the product’s stability an eight out of ten.

The product is highly scalable. It is suitable for medium businesses. I rate its scalability an eight out of ten.

The initial setup is easy. The deployment time depends on the availability of resources from the client's end. We can complete the process in a day if everything is set up properly.

I rate Sophos MDR’s pricing a seven or eight out of ten. From a technical perspective, I understand that AI integration makes the product a little expensive. However, from customers’ perspective, it also needs to fit in their budgets.

I rate Sophos MDR a ten out of ten. I advise others to go for it. With more experience working on it, they will understand why it is expensive.

We are using Sophos Managed Threat Response for network security and firewalls.

The most valuable feature of the Sophos Managed Threat Response is the central management capabilities and monitoring.

Multitenancy features of Sophos Managed Threat Response should be improved. You cannot use the solution for multiple clients.

I have been using Sophos Managed Threat Response for approximately 

The solution is stable.

Sophos Managed Threat Response is a scalable solution.

I am satisfied with the technical support.

I have not used other similar solutions

The initial setup of Sophos Managed Threat Response is reasonably difficult. It takes approximately a day or two to have it properly set up.

To do the implementation I would recommend having at least one certified technician available.

We have seen a return on investment using this solution.

I rate Sophos Managed Threat Response an eight out of ten.

We use Sophos MTR for three of our customers, and we're proposing it for a fourth. We sell Sophos Intercept X Advanced with EDR and MTR Advanced. All of this is managed through Sophos Central and just integrated into the endpoint for both workstations and servers, so we see alerts, problems, and cases opened. 

Sophos MTR will stop the threat as it is happening. Intercept X, which is a part of it, has the ability to roll back, so the attack is undone. And then the advanced edition of MTR lets me handle the threat by talking on the phone. I don't have to deal with it. I don't have to just go through emails back and forth. We don't have to pay extra for Rapid Response services. If something is happening, they're right on top of it. And there are all the automatic features of the firewall that are interconnected with the endpoints. The firewall has the ability to isolate a compromised workstation and stop it from communicating anywhere on the network. It's called Synchronized Security and we implemented that everywhere we can. The firewall management and the endpoint management are all in the Sophos Central

I don't have really anything to offer as far as improvements. With every customer I can, I deploy Intercept X. It works. It protects the workstation. It protects the server. The client doesn't take a big hit in terms of performance on a workstation or server. The deployment is simple.

I've been using Sophos MTR since it first became a product, so two or three years now.

It's cloud-based, it's a monitoring solution. Nothing MTR does affect the workstation. It's the antivirus scanning agent that is called Sophos Central Intercept X. That's what's on the workstation. Once in a great while, an update fails, but by and large, it's rock solid. We've had no problems with it compared to some of the other products that we're trying to get customers to move away from as renewals fall off. Again, I won't mention the product, but I've got a customer with 900 plus workstations, and I can say for quite a bit of money, she'll just consider changing. But so far she hasn't been able to find the bandwidth to change.

As far as we know, it has unlimited scalability.

The MTR tech support has been phenomenal.

The setup is literally nothing as long as you're using Intercept X on the endpoint as well as the Intercept access to Sophos Central Intercept X that is installed and running on each of your workstations servers and workstations. And those are managed from within the Sophos Central Cloud. If you don't have that, then there would be a lot of setup. But if you're already a Sophos Central customer, engaging with MTR is basically just accepting the contract. It's really nothing more than that.

It competes very well with other similar products. One of the Sophos products I put in for a customer was two and a half times less expensive than the competing product. 

I would rate Sophos MTR as a 10 out of 10 based on my experience with customers.