Intercept X Endpoint Reviews

We use Sophos Intercept X to protect the endpoint devices in our organization, such as PCs and MacBooks.

Sophos Intercept X is a full package. It's more than only an antivirus solution to find the malicious code. We also use it to filter malicious websites and detect applications that have been outlined in our corporate policy.

The most valuable feature of Sophos Intercept X is a web filtering and URL sanity checks. Overall the solution is well balanced with all its features.

The majority of our systems are MacBooks and their solution release cycle is slow to endorsing or support the MacBook's latest OS or hardware platform. For example, when Sophos macOS Big Sur version 11 was released, it took them a while to support this version of OS. A similar situation occurred when the MacBook M1 hardware CPU was released. They have not fully supported the native M1 CPU to this day. They need to speed up the solutions release cycle.

The majority of our systems are Apple-based, this issue is more noticeable on the Apple platforms.

I have been using Sophos Intercept X for approximately two years.

The stability or performance of Sophos Intercept X is good. However, sometimes users have needed to have their configuration fine-tuned to allow better performance.

We have approximately 50 users using this solution.

We use Sophos Intercept X extensively and we use everything the solutions offer.

The support I have experienced from Sophos Intercept X was great.

I would rate the support from Sophos Intercept X a five out of five.

I have used other solutions other than Sophos Intercept X in other organizations but it has been over two years ago.

I have been using Sophos Intercept X for over two years, in the beginning, the initial setup was straightforward but because they do not fully support the Apple platform, or they're pretty slow at supporting the Apple platform, the latest version supporting Apple is a little bit cumbersome to use. You need to walk the user through the process with some specific instructions or help the user directly. It's not as easy as it used to be.

I would rate the implementation process of Sophos Intercept X a four out of five.

We did the implementation of Sophos Intercept X in-house.

I do the maintenance of the solution. We are a smaller company and I am sufficient for the maintenance of the solution.

I have found the price of Sophos Intercept X to be reasonable.

I would advise others that they have to look at their environment to determine if this solution would be best suited. Sophos Intercept X for a small business that has a mix of PCs, MacBooks, and has the need for multiple security controls, this tool fits us well. For different environments, the organization might need other or additional tools. For example, if they may need threat protection. There are different vendors that may have an edge in certain areas than Sophos Intercept X has. For us, we need a balanced, multi-pronged approach for securing in our environment, Sophos Intercept X works well.

I rate Sophos Intercept X an eight out of ten.

It's an endpoint, which means it's an antivirus that you must install on your server, laptop, or customer PC. As a result, it can be on-premises for Windows or Linux. You can also install this endpoint if you host a server on that cloud.

This is a sophisticated antivirus with numerous features. It has AI, (Artificial Intelligence), it can stop viruses, malware, and ransomware, as well as protect the PC you are using, the server you are using, and all of your workstations.

Intercept X has versions, such as Intercept X, Intercept X Advanced, and Intercept X Advanced with XDR. It requires a long technical explanation, but in brief, it can protect you from being attacked or hacked, because it protects the OS, your operating system, from being compromised. 

It's a complete antivirus solution that has everything in it.

It is one of the best in terms of technicality.

If we can lower the price, it will be fantastic because it will generate more revenue for us.

We have been working with  Sophos Intercept X for the past eight years.

Sophos Intercept X is a stable product.

It's a scalable product. You can deploy 100, or you can deploy one, or even 1,000. It is very scalable. 

We have 30 customers and each customer has a different number of users. Some clients have hundreds of Intercept X, some have 50, and yet others have 10. As a result, it is dependent on the company. It depends on the number of computers they have. We have a wide range. One of the clients has 800 users, which is a ministry.

I don't have any issues with the technical support. 

Both the Dubai and UAE teams regularly check in with us to see how we're doing and if we require any assistance. They are constantly monitoring the GCC region. They are doing an excellent job.

We have other solutions such as Kaspersky, and Heimdal.

The setup is simple and straightforward. However, you must have at least an operating system that supports it, if not the most latest version of Windows. I don't mean XP or Vista, but something that is already supported, because Microsoft doesn't even support all of the operating systems. As a result, you won't be able to use it on Windows XP or Windows 7. It must be a current operating system, such as Mac, Linux, or Windows.

If you have a small environment, you need one person to maintain it. If you have a large environment, you need two or three. It really depends on when you want to complete it. If for example, you have a building and you want to build it in one year, you will need 20 to 40 people to maintain it. 

If you have a building that you want to be built within 10 years, you can have two to maintain it. It all depends on the environment, the customer, and the deadline set for the project's completion.

It is an annual subscription, rather than a monthly one. It's paid annually.

You can pay monthly, but most of our customers choose annual subscriptions because they are less expensive.

It could be less expensive. We would be grateful because there are cheaper antivirus solutions and cheaper endpoint solutions on the market, but they do not have the same features. We defend Sophos to our customers and explain why they should choose Sophos.

There are also products that are more expensive on the market. Sophos is not the cheapest, and it is not the most expensive. It's in the middle.

We deploy all Sophos products.

I would definitely recommend Sophos Intercept and Sophos Intercept X, as well as Sophos Intercept X Advanced and other variants to our customers, this is what we do. We do this for current customers who do not have Sophos and show them the difference and benefits.

Sophos Intercept X is managed from the cloud. Today, 10 years back, seven years back, or eight years back, you had to have a server to control the Intercept X.

We haven't had any issues. We have other antivirus solutions, but this is the best-selling product so far. 

Many customers who had been hacked had abandoned their previous antivirus, and we deployed Sophos Intercept Advanced with XDR for them, including ministries and the public sector in Kuwait.

Because everything is in the cloud, you can manage your deployed Intercept X from a single console. As a result, my score is 10 out of 10.

I use the solution for endpoint security.

Overall, it is a good product. The solution's performance, integration, and customization features are okay, in my opinion.

Compared to Kaspersky, some points, like application lists, are missing. So, we should have the option for listing all the applications that are installed on the client's side. I would like to see future improvements related to the aforementioned point.

I have been using Sophos Intercept X for three years. Also, I am using the solution's latest version. I am an end user of the solution.

I rate the solution's stability a seven out of ten. Stability-wise, we had issues with some clients which had to be dealt with manually. The issue was with that installation part.

There are around 100 users in my company using the solution. Scalability-wise, I rate the solution an eight out of ten.

We were able to solve the solution's installation-related issues within a few hours, so we did not have to contact technical support. We didn't face any issues that prompted us to contact support. I rate the technical support an eight out of ten.

Positive

We were previously using Kaspersky. We switched to Sophos Intercept X due to compliance issues.

The solution's initial setup process was straightforward.

The solution is deployed on a cloud that belongs to Sophos. Per machine, the deployment process may take around ten minutes.

The solution's maintenance can be done by one person who can be an administrator.

Though I haven't seen a direct ROI using the solution, since it's an antivirus, it restricts viruses.

There is a yearly payment to be made. For each client, it costs around 15 dollars. There are no additional costs besides the licensing price we pay to use the solution.

I can recommend the product to those planning to use it. I rate the overall solution a seven out of ten.

We're creating a software center. I just install the Sophos engine software and make the policies, like threat protection policies, for example.

The configuration is quite useful. All of our events are managed centrally from Sophos. We can manage security from there. 

Policies are flexible and very user-friendly. The dashboard is user-friendly as well. 

It is simple to set up. 

The solution is stable.

It is not overly expensive. 

I'm not clear on what features need improvement. Everything is mostly fine. 

I've been using the solution for two years. 

It's a very light application and very stable. It's reliable. There are no bugs or glitches. It doesn't crash or freeze. 

We're a partner, and a lot of our clients are on this solution. 

The last client we deployed for had 4,000 users. However, each company differs in terms of the number of users. 

We also deal with Trend Micro. 

The setup is straightforward. It is not overly complex or difficult. 

The deployment was pretty quick. You just have to set up the policies. Depending on the additional policies you have to set up, it may take longer. 

We are able to deploy the solution for our clients. I've worked on various deployments for clients. 

The pricing varies. It's different from client to client, depending on their environment and needs. It's not overly expensive. 

We're Sophos partners. 

I'd 100% recommend the solution to potential users. It's great for protecting devices and offers great security. There are a lot of malicious threats online right now. Companies need to protect themselves, and Sophos can help. 

I would rate the solution eight out of ten. 

When Intercept X came out, the primary use case was stopping ransomware. It was one of the first products to claim that capability. When I was evaluating them back then, it was the only one I considered effective at analyzing and identifying where the infection started. 

The synchronized security also helped because the firewall could isolate workstations that had the infection or were in the path of infection.

The most valuable feature of Intercept X its ability to stay ahead of the infection. By the time the ransomware spreads to the next machine in line, the data has already been encrypted on that workstation. It didn't matter what the ransomware did because could go in and get it back. 

Sophos made such good headway with it because it wasn't traditional endpoint protection. It has a lot of additional capabilities, including web content filtering. It also has the ability to understand the traffic it was seeing at the endpoint, 

It's sitting on the endpoint, so you don't have to worry about encryption messing up the intelligence that it could get out of the traffic. It was able to pinpoint where the infection was able to get ahead of Intercept X. It was called Intercept X because it can get ahead of the ransomware attack and encrypt the data on clients in the path of the infection.

It's hard to say what could be improved because we're in the middle of an endpoint protection arms race, and there are constant improvements on all fronts in Fortinet, Sophos, and products.

They should keep doing what they're doing. Both of them have entered the EDR/MDR space, and they're keeping up with their competitors. I have a hard time understanding why their capabilities aren't garnering more attention.

I have been using Intercept X since it came out. It hasn't been out that long. Sophos has always had an endpoint client, but Intercept X added new technology. The whole idea of being able to drill down to do a root cause analysis was a novel approach to the endpoint game. 

Intercept X is highly stable

Sophos has the flexibility to scale from one user to a data center, but I've primarily used Sophos for small to medium-sized businesses.

I was impressed the last time I called Sophos support. They have a "follow the sun" philosophy with coverage from tech support centers from around the world. Sophos began as a British company, and Fortinet is a Canadian company. 

Sophos and Fortinet have a firewall solution that can work in small business or home office situations, where you might have only one or two people protected by the techn. Still, yout you can look at it through a single pane of glass and see all of the different work sites you're protecting. 

Sophos goes one step further with what it calls its RED product, which basically is a hardware firewall that travels with somebody. Say you have an executive in your company and you want to zero in to protect his or her workstation from infection and have control over it to manage its defenses. RED is a great product to do that. Fortinet and Sophos both have strong management capabilities for remote offices and offer centralized management through a cloud application.

The basic setup is decent by itself. I have not had to do a lot of tweaking with either one of these products.

I rate Sophos Intercept X nine out of 10. Its reporting, alterts, and configuration capabilities make it a formidable product. It's a great product that works as advertised. I haven't seen any serious conflicts between it and other products, whereas I wouldn't put some endpoint protection products on the same endpoint.

You have to do some work there, but generally speaking, there's always been a case where I've been able to have more than one product. It's probably the best of all the products that I work with because I've had Malwarebytes installed together with Sophos and FortiClient without undue pain. There are some others that I won't mention without that same track record.

We use Sophos Intercept X on all of our end-user PCs and servers.

The most valuable feature of Sophos Intercept X is cloud management. 

Sophos Intercept X used to be managed through the Sophos UTM, and they moved it. They moved the endpoint security strictly to the cloud, and it is a lot better that way it is more functional. Before all it did was download the software. Now that we have full management of the clients, you can easily update them remotely. There's a lot of additional policy functionality that was not there before. However, sometimes a little too much, but not as much as a solution, such as Cisco.

I have been using Sophos Intercept X for approximately six years.

Sophos technical support has always been fantastic. I've never had an issue, they have been great, and they are tremendously helpful. They are very hands-on, and they dive in to help to fix your problem if you need them to.

I have used many other solutions, such as Cisco. 

When comparing Cisco to Sophos Intercept X, Cisco solutions are more difficult.

Sophos Intercept X could improve on its setup process. They could make it easier to have a baseline set up for the system, or at least provide more understanding of what the baseline is when you first install it. This could be a matter of lack of training on my part, but it's difficult to receive training on solutions that are not Cisco. Cisco is the only vendor with classes or courses.

When we set it up, we made very few changes from the baseline setup, and mainly that's to allow other software to operate. Sometimes the endpoint security software interferes with your software that needs to be running in addition to the bad software. You have to set up and configure the software and the policies to allow for the software you want to operate.

We typically have one person that does the implementation and maintenance of Sophos Intercept X.

The cost of Sophos Intercept X is reasonable.

I would rate the price of Sophos Intercept X an eight out of ten.

I would recommend others to try the solution, we have had a very good experience with it.

I rate Sophos Intercept X a nine out of ten.

We are using it for endpoint antivirus, hardening, and some DLP policies. Its version is the current one.

It is very easy to set up and easy to use. It is also not resource-intensive.

It has been very stable. It has done a good job of stopping and preventing different threats from being triggered.

Sophos has a lot of different features. Some of them are tied to different clients, which may mean that different prices or licenses have to be added on. It can be a little bit confusing if you're not familiar with the logic of how they work. They can make it a little bit clearer.

I have been using this solution for about a year and a half. 

Systems have been stable during deployment. It is not resource-intensive, and it has been working well.

It has been easy to add additional Sophos components. They all are using the same console. We have about 400 users who are using this solution.

We were using Symantec. We switched because we just needed something that was a little bit more aggressive and next-generation from an antivirus perspective.

It is very easy to set up.

We had a third party that helped us set it up.

It was fairly and reasonably priced.

I would advise others to thoroughly vet out because Sophos has a lot of different features. It can be a little bit confusing in terms of licensing.

I would rate Sophos Intercept X a solid eight out of 10.

The main use cases of this solution are for protection from ransomware and malware. Although we don't have EDR because of its high cost, we do have the capability to filter the website. Our use case is more about capturing crypto and the like that can encrypt files. I'm a system administrator and we are customers of Sophos. 

I've found that the most valuable feature is the anti-virus that captures malicious threats and the next generation firewall which is more aggressive in terms of not only looking for viruses, but also for SaaS and the movement of equipment. If something strange comes up we're automatically notified and it's either blocked or quarantined. It enables you to prevent future viruses and enables us to inform the user of malicious websites they have visited.

To date, we haven't had any incidents related to viruses or any types of attacks and we barely get any false positives. It's good to know that any malicious anti-virus detected is automatically blocked, although it makes things more difficult for our IT department.

There is an issue when deploying on cloud because it needs to be done manually. For an enterprise company that can have 10,000 or even 50,000 end users, it's a lot to deploy manually. An additional feature they might include would be the ability to control the lockdown on hardware; to control all the entry points such as a USB, a camera or any external storage. 

I've been using this solution for three years. 

I think this solution is stable. It doesn't allow you to do anything that may cause a problem. If you try to download something that is prone to hacking, the solution won't allow it. It's important to use the admin lock to prevent malicious programs being downloaded. It's good at preventing remote users from downloading malware. 

The solution is very scalable because they don't generally deal with small size office deployments of 10 or 15 users. The solution can scale to 100,000 or even up to 200,000 users.  

Initially we didn't have phone support, but now it's part of the enterprise portfolio which we have. We only use the support if we have an issue with the server. It's the benefit of the cloud, there are no concerns about the server whereas on-premise you need to synchronize your server or upgrade the new version to get those features.

We migrated from Symantec enterprise to Sophos and SentinelOne. The approach is the same for all of them. 

Initial setup for the cloud is very straightforward because it's managed by the company. It's just a matter of downloading the agent and installing to your end point. The on-premise implementation is more difficult, particularly if you're not familiar with it but the support is very helpful. I believe there's a way to roll out without the need to visit individual users. I believe they integrate with an active directory, and then post from there. Deployment time depends on availability of the user's desktop or and/or laptop. If it's on premise, you can push that one, it would take less than 15 minutes. To deploy in a company would take less than a month. 

If you start with the standard solution, move to Intercept X, and then go to the EDR version, it's almost double the price in comparison to other vendors. It's a choice for any company. Check Point's SandBlast, for example, has two payables but the additional payable includes encrypting your hard drive - not everyone needs that feature. 

This is a good product but it comes at a high price. As a result, I would rate this solution an eight out of 10.