Intercept X Endpoint Reviews

We primarily use the solution for security. We protect the computer network from threats as some users had some kinds of malicious threats. We have some policies for web control. and have used this solution to find some unwanted traffic and some unwanted site access by some users. 

The server protection has been great. That's been the best thing for us.

The reporting has been very useful.

 We have found that the EDR functionality has been very good.

The setup process has been very simple. 

The solution has been very stable so far.

You can scale the solution if you need to, and it is an easy process.

We have found the pricing to be reasonable.

We would like the solution to be more complete so that we don't have to involve so many third parties.

We would like more application control in order to be able to schedule times and access. For example, we'd like to set it so that certain documents can only be accessed between 8 AM and 4 PM.

We did a POC with the solution that lasted six months. It's been in the production environment for three months. Therefore, for almost nine months we have been running on Sophos.

The solution is very stable. There are no bugs or glitches. It doesn't crash or freeze. It's reliable. 

We have about 450 devices on this solution.

Currently, we have 3 administrators. There are only 2 super admins and 2 other users for the control panels, et cetera.

We use this solution on a daily basis.

The product is scalable. After we purchased only one user license, we decided to do an installed service also. It's a one or two-minute process in order to provide a temporary license for 1 month and, after that, we hope to stay covered. Therefore, we do have plans to increase usage.

Technical support has been good. During the installation process, we had the principal change, and it didn't affect the process. They have been very helpful so far. We have no complaints. 

We did use Kaspersky.

There were ultimately some issues with the Kaspersky team in Sri Lanka and with the principal in Kenya. We didn't have support from the principal. We had issues for two or three years. We ended up having to change the product and we were with Kaspersky for maybe 8 years.

The initial setup is not difficult to manage. It's very easy and very straightforward. 

With six people we were able to complete the setup.

So far, the maintenance has been little to now. The deployment that is connected to the internet automatically updates, and sort of maintains itself.

We did have some external help for the implementation process. 

The pricing is good.

For testing purposes, we did try a variety of solutions. This product, however, was simple, the cloud was good, and the pricing was reasonable. 

We are using the latest version of the solution.

We are using the cloud version of Sophos, however, there are some computers that are not connected to the internet, so we have to install something locally on-site as well. We are half on-premise and half in the cloud.

I would recommend the solution to other companies.

We've been satisfied with its capabilities. I would rate it at a nine out of ten.

We are using it for endpoint antivirus, hardening, and some DLP policies. Its version is the current one.

It is very easy to set up and easy to use. It is also not resource-intensive.

It has been very stable. It has done a good job of stopping and preventing different threats from being triggered.

Sophos has a lot of different features. Some of them are tied to different clients, which may mean that different prices or licenses have to be added on. It can be a little bit confusing if you're not familiar with the logic of how they work. They can make it a little bit clearer.

I have been using this solution for about a year and a half. 

Systems have been stable during deployment. It is not resource-intensive, and it has been working well.

It has been easy to add additional Sophos components. They all are using the same console. We have about 400 users who are using this solution.

We were using Symantec. We switched because we just needed something that was a little bit more aggressive and next-generation from an antivirus perspective.

It is very easy to set up.

We had a third party that helped us set it up.

It was fairly and reasonably priced.

I would advise others to thoroughly vet out because Sophos has a lot of different features. It can be a little bit confusing in terms of licensing.

I would rate Sophos Intercept X a solid eight out of 10.

We mainly use it on our endpoints. We use it for Windows machines and laptops. They have a server version for the servers.

I like the way it goes beyond the office space. Being a cloud-based solution makes it very easy to manage your endpoints within the office. In this time of COVID, you can also very effectively manage people who are working from home.

I have not done it, but integrating it with authenticating the users on the Windows system looks a bit complicated to me. It could be because I don't understand it.

Its installation takes a bit longer for each of the vendors. I don't know whether it is because of the internet connection. I don't know if it is just for me or it is the same for every other user.

I have been using this solution for two years.

It is very stable.

It is very scalable. There are around 120 users and devices. 

I have never contacted them about this new product. I used to contact them before, and I don't have issues with their technical support. They respond, and their response is good.

We were previously using Sophos Central. It was on-premises, so we migrated from that solution to this solution. It is pretty much the same thing that we were doing before, but now it is cloud-based.

A new device installation is very easy. During installation, when you download the installation file from the web, the registration works so well, but the installation takes a bit longer for each of the vendors. I don't know whether it is because of the internet connection. It looks like it is the web installer that takes longer. I don't know if others have experienced the same issue. 

We also had a few challenges during migration. Because we were doing a migration of the site, we wanted just to maintain what we were doing before. 

We did it ourselves. I'm part of a larger group, and my colleagues had done its implementation.

We have bought a three-year license.

I would very much recommend this solution. I would rate Sophos Intercept X a nine out of 10. 

I have found the most valuable feature to be the EDR.

The solution is heavy in the usage of resources, you can notice the performance decrease. This should prove in the future.

I have been using this solution for approximately five years.

I have found the solution to be stable.

The solution is scalable. We have multiple clients and have approximately 1,000 users using the solution.

We have not had a good experience with technical support. The quality of support we received was not what someone would expect from a leading solution provider.

We have used McAfee and Trend Micro previously. The customer's environment would determine what is the best option that we would recommend. For example, if the customer has a Sophos firewall and other Sophos products, then it would be better to go with Sophos Intercept X.

The price of this solution is a little high compared to competitors because they do not have a proper pricing structure.

I rate Sophos Intercept X an eight out of ten.

The main use cases of this solution are for protection from ransomware and malware. Although we don't have EDR because of its high cost, we do have the capability to filter the website. Our use case is more about capturing crypto and the like that can encrypt files. I'm a system administrator and we are customers of Sophos. 

I've found that the most valuable feature is the anti-virus that captures malicious threats and the next generation firewall which is more aggressive in terms of not only looking for viruses, but also for SaaS and the movement of equipment. If something strange comes up we're automatically notified and it's either blocked or quarantined. It enables you to prevent future viruses and enables us to inform the user of malicious websites they have visited.

To date, we haven't had any incidents related to viruses or any types of attacks and we barely get any false positives. It's good to know that any malicious anti-virus detected is automatically blocked, although it makes things more difficult for our IT department.

There is an issue when deploying on cloud because it needs to be done manually. For an enterprise company that can have 10,000 or even 50,000 end users, it's a lot to deploy manually. An additional feature they might include would be the ability to control the lockdown on hardware; to control all the entry points such as a USB, a camera or any external storage. 

I've been using this solution for three years. 

I think this solution is stable. It doesn't allow you to do anything that may cause a problem. If you try to download something that is prone to hacking, the solution won't allow it. It's important to use the admin lock to prevent malicious programs being downloaded. It's good at preventing remote users from downloading malware. 

The solution is very scalable because they don't generally deal with small size office deployments of 10 or 15 users. The solution can scale to 100,000 or even up to 200,000 users.  

Initially we didn't have phone support, but now it's part of the enterprise portfolio which we have. We only use the support if we have an issue with the server. It's the benefit of the cloud, there are no concerns about the server whereas on-premise you need to synchronize your server or upgrade the new version to get those features.

We migrated from Symantec enterprise to Sophos and SentinelOne. The approach is the same for all of them. 

Initial setup for the cloud is very straightforward because it's managed by the company. It's just a matter of downloading the agent and installing to your end point. The on-premise implementation is more difficult, particularly if you're not familiar with it but the support is very helpful. I believe there's a way to roll out without the need to visit individual users. I believe they integrate with an active directory, and then post from there. Deployment time depends on availability of the user's desktop or and/or laptop. If it's on premise, you can push that one, it would take less than 15 minutes. To deploy in a company would take less than a month. 

If you start with the standard solution, move to Intercept X, and then go to the EDR version, it's almost double the price in comparison to other vendors. It's a choice for any company. Check Point's SandBlast, for example, has two payables but the additional payable includes encrypting your hard drive - not everyone needs that feature. 

This is a good product but it comes at a high price. As a result, I would rate this solution an eight out of 10.

The most valuable features of Intercept X are server lockdown, auto-remediation, and encryption monitoring. Server lockdown prevents malware installation and automatically removes any unauthorized software. Auto-remediation reverses encryption attempts by malware, ensuring data integrity.

In terms of improvements, Intercept X could enhance its support services, particularly in terms of response time and resource allocation. While the product itself is solid, better support documentation and faster response times would be beneficial.

I have been working with Intercept X Endpoint for four years.

I would rate the stability of the solution as a nine out of ten.

I would rate the scalability of the solution as a ten out of ten.

I would rate the technical support as a seven out of ten.

Neutral

While I found Symantec easier to implement and manage, it is not a fair comparison to say it is better than Sophos. My experience with Symantec's interface was good, but both products have their strengths.

Configuring Intercept X is generally straightforward and user-friendly. It is designed to be easy to understand and use. I would rate the easiness of the initial setup as an eight out of ten.

The deployment time for Intercept X varies depending on factors like network complexity and organizational policies. Typically, for around 100 users, it can be completed in a day or two. Maintenance is generally straightforward unless support assistance is required, which can sometimes be challenging to coordinate.

Intercept X falls within the average price range compared to other solutions on the market. While not the cheapest option available, it also isn't considered expensive.

Intercept X has enhanced our ability to prevent malware and ransomware infections. It is a top-notch product, providing robust protection against various threats, including zero-day attacks, while also monitoring encryption levels.

Intercept X has been instrumental in managing and responding to ransomware attacks. I have witnessed multiple organizations using Intercept X remain completely secure when ransomware incidents hit the news. 

Deep learning technology enhances our security posture by providing a deeper analysis of malware behavior. It monitors and analyzes malware actions in real time, leveraging extensive threat intelligence data collected since 1985. This comprehensive approach improves our ability to detect and respond to malware threats effectively.

The exploit prevention capabilities of Intercept X effectively safeguard against various attack methods, including SQL injection and CodeSight scripting. It continuously monitors system vulnerabilities and application processes to prevent exploitation attempts. 

For those considering Intercept X Endpoint, I would recommend prioritizing its comprehensive protection and user-friendly experience. Even after transitioning from server management, I continue to use Intercept X for mobile security, highlighting its effectiveness and versatility.

Overall, I would rate Intercept X as an eight out of ten.

It is an endpoint. So it's antivirus and DLP, and all those integrated in one.

It is like an antivirus. So it stops viruses. DLP stops data leaks in the organization.

It's a bit heavy on the computers. So once you install it, the computer slows down. It is a resource-intensive solution. 

I have been using this solution for two to three years now. We use the latest version. 

It is a stable solution. I would rate the stability a nine out of ten. 

It is quite scalable. You can always add more users.  I would rate the scalability a nine out of ten.

The initial setup is easy. The server, the main server, is online. And then the agent is on the premises. 

After online configuration, the agent installation takes only ten minutes. It is a very quick installation. 

The configuration takes around two hours. 

I do maintenance for this solution. A team of four engineers handles the maintenance and deployment. 

The pricing is quite expensive compared to the rest. I would rate the pricing a four out of ten; one is expensive, and ten is cheap. 

It's a good product. So, link it with the security policies because you can link it with the firewall. The endpoint can communicate with the hardware firewall. So that's one of its strong points.  

Overall, I would rate the solution an eight out of ten. 

This product is basically used for detecting ransomware. It will monitor all of the ransomware threats. Since the first ransomware attack happened in 2017, WannaCry, it has been a global threat. It is a vulnerability that is impacting a lot of devices and computers in the network.

Ransomware threats have been identified as one of the first priorities in the entire info security segment. Information security consists of various things including endpoint detection, threat detection, and then your SIEMs like QRadar or ArcSight.

At the early point of detection, Sopho is going to stop the ransomware. The question that has been there since 2017 is how it will identify the ransomware and how does it stop the attack from happening to the network. WannaCry was the first large ransomware attack, which has impacted various regions and is a very high severity threat. Since then, a lot of things have been lined up for mitigating the risk, like WannaCry.

improved considerably

Machine learning is used to detect the threat and it does so by prioritizing the suspicious activities. There is no human intervention in some cases, which is the trend that is happening with most of these products. High-end products and sophisticated products include machine learning capabilities for detecting the threats.

There are hackers who hack the artificial intelligence component using artificial intelligence itself. These sophisticated hackers are using AI capabilities, and the problem is that with no human intervention, machine learning can be defeated. The consequence is that somebody still has to keep watch and monitor the detection from the threat scanning.

Better protection in the endpoint, server, and mobile is needed. Those three areas should be fully protected. It should stop ransomware from installing, it should stop it from deploying, and it should also block unauthorized file encryption. In summary, it should have more protection, better detection, and better response.

We have been using Sophos Intercept X for more than two and a half years.

Sophos Intercept-X is a stable solution and we plan to continue using it in the future.

This is a scalable product and we have more than 7,500 devices connected to the network.

The technical support is 24x7 and it is good. They have different points of contact within the support regions like India, Singapore, and various other regions.

We have Sophos running in parallel with Sophos Cloud, in some of the regions.

The initial setup is quite simple and it will take a couple of hours.

I and my team deploy and maintain this solution. The deployment happens on the cloud.

This is a good solution but that said, there are breaches that are happening, and they are happening using AI. So, the attackers are also that sophisticated and it means that somebody has to sit and do the human check as well.

Ultimately, what happens is that the threats are found, and then the response action is taken based on the outcome of all these steps.

This is a product that I can recommend to others. The DR has better capabilities, as it's powered by machine learning.

I would rate this solution a seven out of ten.