Sophos Central Reviews

I use the solution in my company to manage client firewalls. It is also used to manage all the endpoints.

The solution's most valuable feature is the ease with which admins can monitor and troubleshoot issues related to any emails coming into our environment with malware or viruses. The malware and viruses get blocked with the antivirus endpoint functions offered by Sophos.

I am okay with the product. I don't need any more features in the solution since it is already too large of a system.

The solution has new services that are a big improvement from Sophos and Tron, but my company hasn't utilized them because we don't need them. There are no customizations that we need to deal with in the product. My company is satisfied with the current features offered by the tool.

Compared to GFI KerioControl, Sophos Firewall can be made much faster at setting up VPN clients and site-to-site VPNs.

I have been using Sophos Central since 2017. My company operates as a reseller of the product. My company has a partnership with Sophos.

It is a very stable solution. Stability-wise, I rate the solution a ten out of ten.

There is no need to scale up the product since it is a robust tool.

My company works mostly with e-commerce businesses, retailers, and accounting professionals.

There is no limit if we want to increase the use of the product since all we need to do is just add desktops or new computers for each customer every time they acquire a new device.

The solution's technical support is good. I rate the technical support a ten out of ten.

Positive

My company has used only two products, GFI KerioControl and Sophos. We only use Sophos for the endpoints. If we talk about firewall products, there are two different computations in GFI KerioControl and Sophos Firewall. Both the tools are easy to maintain, but compared to Sophos Firewall, GFI KerioControl is much faster at setting up VPN clients and site-to-site VPNs. Both the tools are pretty good for protecting offices with site-to-site connectivity.

The product's initial setup phase is straightforward. If ten were the easiest, I would rate the setup phase as a ten on a scale of one to ten.

Once you have the endpoint software through Splashtop SOS on the client's desktop, install and download the program. In less than five minutes, it can be installed and protected.

Only one person is required to deploy the product through Splashtop SOS.

The product does not require maintenance since it is not an automatically managed process.

The solution is deployed using the cloud services offered by Sophos.

In terms of ROI, the tool pays off within a few months. The tool has big clients with good businesses that are maintained on the tool, so the firewalls are not that much for them.

There is a one-time fee for the hardware and an annual subscription fee, which is pretty good because we can get free updates.

In terms of the product's integration capabilities with other security tools, I would say that they are centralized and easy to manage. You just click on the customer and launch that customer, and you will see everything from that customer, including all the endpoints and firewalls that are being monitored.

I don't know whether the product offers any AI features.

I am not really keen to find out if the product offers features like predictive analytics or automated responses.

As an admin, it will give you a feeling of ease since your endpoints are protected, meaning the real computers are protected from viruses and malware.

I rate the tool a ten out of ten.

I've been involved in installing and supporting Sophos Central for customers, particularly focusing on server security.

I have experience using Sophos Central for endpoint security management, particularly in two major companies: Dunkin' Brothers and Shop Up Limited. Dunkin' Brothers has approximately 500 support center users, while Shop Up Limited has around 700 users. On a scale of one to ten, I would rate my experience with Sophos Central as a six or seven at most, with six being the average.

We've observed significant improvements in threat detection and response capabilities since implementing Sophos Central, especially when compared to other endpoint solutions like Fortinet. This enhanced capability has made Sophos Central a highly sought-after solution in Bangladesh. Customers appreciate the effectiveness and efficiency of Sophos Central's threat response compared to other options in the market. One notable example is a client of ours who experienced attempted hacking. Sophos Central promptly detected and blocked the intrusion, alerting our client to the potential threat. Our client appreciated the proactive response and effective blocking of the hacker, highlighting the superior quality of support provided by Sophos Central.

Sophos Central's automated threat response played a crucial role in mitigating security risks, as exemplified in a recent case at Popular Pharmaceutical Limited. With nearly 300 users relying on endpoint security with threat response and managed detection, they detected suspicious activity indicating potential hacking attempts from external networks. Thanks to Sophos Central's automated response, the malicious traffic was promptly blocked, and the IT team was alerted to the suspicious behavior. Additionally, when a ransomware attack occurred on one system, Sophos Central's support center swiftly isolated the affected system, preventing the further spread of the attack.

Sophos Central's reporting and analytics capabilities greatly contribute to providing actionable insights to our customers. I genuinely appreciate the effectiveness of Sophos in generating comprehensive reports, which cover all aspects efficiently. I would rate this feature as an eight out of ten for its robustness and usability.

The interface of Sophos Central has significantly contributed to the ease of managing security policies and procedures. In my experience, I've found it to be highly efficient, especially when compared to other solutions like Fortinet. The features such as system heartbeat and automatic system updates are particularly commendable.

One of the significant advantages of Sophos is its affordability compared to other technologies like Check Point and Fortinet. This makes it a preferred choice for businesses, especially government and smaller operations.

The most popular features of Sophos Central are its heartbeat functionality, threat response and detection capabilities, and its rule management system. Notably, the rule management system is not limited to servers but extends to client systems as well. These three components are highly valued for their effectiveness. Additionally, the ability to manage rules through a drag-and-drop system adds further convenience to our administration tasks.

One feature that I find particularly valuable for maintaining our cybersecurity posture is the automatic update functionality. This feature ensures that our systems are consistently up to date with the latest security patches and enhancements. Additionally, the ability to push updates to every software center by default is highly convenient and efficient in ensuring that all endpoints are properly secured.

Although Sophos Central is well-established, there's a shortage of engineers available locally, which has hindered our ability to effectively support and implement solutions. I believe there's room for improvement, especially in terms of traffic monitoring. If Sophos Central could provide detailed traffic monitoring based on user counts, similar to what is available in Fortinet, it would enhance the overall value proposition for our customers. Sophos could potentially provide more detailed insights into user activity, such as the number of users currently logged into the system and those already under protection. Additionally, it would be beneficial to have visibility into network traffic, including guest networks, and identify any suspicious activities or attempts to access unauthorized resources. The main drawback lies in the weak after-sales support system.

I have been working with it for two years.

I find Sophos to be quite stable, especially considering its widespread usage in Bangladesh, with approximately 1.8 million devices currently relying on it. This stability is particularly beneficial for small businesses or offices seeking security solutions.

It provides good scalability capabilities.

The installation process in Sophos Central is significantly easier compared to other solutions. It's straightforward and hassle-free – we can simply download the necessary plugins from the Central warehouse and install them with ease.

The deployment time for Sophos Central varies depending on factors such as the number of users, desktops, or nodes being connected. For smaller deployments involving around ten or twenty users connecting to Sophos Central, the process typically takes a maximum of two to two and a half hours. During this time, the network may need to be disconnected temporarily. Once logged into Sophos, the license can be installed, and then the PCs will automatically receive installation prompts via email. Each computer usually requires around fifteen to twenty minutes to complete the installation of Sophos Central nodes. 

During our previous deployment, there were three of us, including myself, working as senior system engineers. Both of my colleagues had approximately two years of experience with Sophos. With such expertise within our team, deployment tasks were typically straightforward and didn't require much effort. However, when faced with customer requests for complex rules or configurations beyond our capabilities, we would engage with our local vendor and service partners for assistance.

The pricing of Sophos is quite reasonable and generally cheaper compared to competitors like Fortinet and Check Point. However, it's important to note that certain licenses may come with higher costs, which can be a drawback.

I believe incorporating Sophos Central into security infrastructure could further enhance the defenses. However, considering customers' perspectives and budget constraints, particularly for small and medium-sized organizations, it's essential to ensure cost-effectiveness. In Bangladesh, there's a growing preference for Sophos due to its suitability for various environments and budget scales. Therefore, I suggest focusing on improving sales and after-sales support to meet the increasing demand and effectively deploy Sophos solutions across Bangladesh. Overall, I would rate it six out of ten.

Sophos Central serves as an integrated security management platform, providing centralized administration and oversight for a suite of Sophos security products. This comprehensive solution delivers advanced threat protection across desktops, laptops, and servers, encompassing proactive prevention, robust detection mechanisms, and efficient response protocols against diverse threats, including ransomware. Extending its security prowess to mobile devices, Sophos Central ensures a resilient defense against mobile-specific threats, safeguarding data privacy. The platform's seamless integration with web and email security solutions fortifies the organization's resilience against online threats. Notably, Sophos Intercept X augments the security posture with advanced features such as anti-ransomware and deep learning technologies for heightened threat detection capabilities. The inclusion of robust reporting and analytics tools, exemplified by Cloud Optix, furnishes valuable insights into security events. This strategic approach enables Sophos Central to execute a unified response strategy, harmonizing security measures across the entirety of the organizational landscape.

Sophos Central has significantly enhanced our organizational security posture by swiftly detecting and alerting on suspicious activities, accompanied by comprehensive logging of pertinent data. The expeditious identification of these potential security threats serves as a proactive mechanism, enabling our security analysts to promptly investigate and implement requisite measures to mitigate the identified risks. The frequency of such incidents underscores the efficacy of Sophos Endpoint Protection in consistently identifying and responding to security threats, thereby fortifying our overall security resilience.

A particularly noteworthy feature of Sophos Central is its emphasis on robust indexing capabilities, strategically crafted for the efficient management of reports and logs across a substantial range of endpoints, typically ranging from 500 to 1,000. This includes adept handling of Windows 10 hosts within our network.

The platform's meticulous focus on indexing plays a pivotal role in optimizing our reporting processes. By providing swift and granular access to critical data, it enables our security and IT teams to conduct thorough analyses of security events and operational activities. This, in turn, enhances our overall operational efficiency, facilitating timely responses to emerging security threats.

Moreover, the versatility of Sophos Central's indexing feature proves invaluable in our day-to-day operations. It allows us to navigate seamlessly through the extensive volume of endpoint data, empowering us to identify patterns, anomalies, and potential security risks efficiently. This level of visibility is paramount for maintaining a proactive security posture and ensuring the integrity of our network.

While Sophos Central has demonstrated commendable functionality, there is room for improvement in the realm of automation. Specifically, addressing ransomware attacks often requires leveraging external tools, deploying virtual machines, and utilizing supplementary tools like Caliper Analytics for operations and security communication. The integration of these essential functionalities directly into the software would represent a significant enhancement, streamlining the incident response process and bolstering the platform's comprehensive threat mitigation capabilities.

Furthermore, a valuable addition to future releases could involve augmenting the new screen component with advanced capabilities such as XML utilization and rule integration. This enhancement, especially pertinent to tools involved in sandboxing and virtual machines within the investigation process, would greatly streamline the analysis of logs and reports. This would prove particularly beneficial in the context of email analysis, spam attack detection, and other critical security aspects. By incorporating these features, Sophos Central could further elevate its utility in facilitating in-depth security analyses and response strategies.

I have been using it for one year.

It provides good stability capabilities and I would rate it eight out of ten.

We oversee the management of approximately 400 to 500 endpoint devices, leveraging Sophos Central's robust scalability features. In our assessment, we would rate the platform's scalability at seven out of ten. Additionally, the implementation of firewalls further contributes to our comprehensive network security strategy.

The effectiveness of technical support is contingent upon the internal capabilities of our organization. We rely on our proficient IT team for supplementary information and any physical interventions required for device maintenance.

The initial setup was straightforward.

Deployment is highly efficient, requiring only one person to identify all the endpoint systems.

The client benefits from cost-effective ROI as the firewall infrastructure is efficiently maintained with a small team managing 500 devices. This approach is valuable for management, optimizing resource use, and managing time.

The cost is quite affordable.

Overall, I would rate it eight out of ten.

The Central manager oversees multiple client sites, with one of them being located in Colombo. Once accessed, this entry point enables management of both virtual and physical environments across all three sites from a single interface.

Utilizing Sophos Central for endpoint security management for our customers, we've installed it for a client with three sites. Within this client, there are four companies under the same group. With Sophos Central, we can seamlessly communicate between the separate locations of these companies, such as Company 1, Company 2, and so forth.

Sophos Central has enhanced our client's organization's threat detection and response capabilities significantly. The solution requires minimal resources, with very low data usage, ensuring minimal impact on daily operations. It swiftly identifies advanced threats, with zero data loss during testing, and enables easy deduction of other potential threats.\

The Central interface greatly simplifies the management of our security policies and procedures. It's remarkably straightforward and intuitive, making it easy to understand and navigate quickly. I've personally noticed this simplicity reflected in the ease with which others grasp it. Once guided through the initial steps, users can comfortably navigate and continue managing tasks with little to no difficulty.

I find the biggest advantage of Sophos Central is the absence of physical hardware requirements, which alleviates the headache associated with managing server rooms, PCs, and other hardware. This eliminates any potential issues related to maintenance and upkeep. Additionally, in terms of cost, Sophos Central is competitively priced compared to alternatives like CrowdStrike and SandBlast by Checkpoint.

Sophos Central Reporting and Analytics are highly effective in delivering quick and valuable insights. However, one area that requires improvement is in addressing the increasing frequency of yearly attacks. Apart from that, the signature detection methods and other aspects function seamlessly.

There's no need for any upfront hardware costs with Sophos Central. By leveraging cloud-based solutions, we can significantly reduce expenses.

One of the most valuable features of Sophos Central for maintaining our cybersecurity posture is its ease of use. In my experience, managing Central is simple and can be done from anywhere, at any time. This accessibility is crucial for administrators, as it facilitates seamless communication and control.

In terms of improvement, there are several areas to focus on. Firstly, addressing market perception issues is crucial. From a technical perspective, one key area for improvement is strengthening its defense against zero-day attacks. Having and option for endpoint security on mobile devices, it would be advantageous.

I have been working with it for three years.

It provides good stability capabilities.

It is scalable.

Regarding technical support in my region, there are two separate entities, one being Indian-based. Unfortunately, the quality of support from the Indian region is lacking, although I have worked with other providers such as Check Point. In comparison, the support provided by Check Point surpasses that of the Indian-based support. Locally, we have two distributors available, but we currently only collaborate with one. While we generally find satisfaction with their services at the local level, there are occasions when issues arise that they cannot resolve on their own, particularly with Sophos Central. During these times, we encounter significant challenges, often experiencing prolonged wait times for responses and resolution. I would rate it four out of ten.

Neutral

We used CheckPoint. When comparing Sophos with other solutions, one significant advantage is that they offer similar features for the same price.

The initial setup is straightforward.

Initially, we begin with a Proof of Concept phase, followed by a one-month trial period using the free license. If the results are satisfactory, we proceed to purchase the EDR solution from the distributor. Once purchased, we simply update the license using the provided link. Deployment time varies depending on the size of the company. For instance, in a company with a thousand users spread across three locations, deployment typically takes less than two hours if there are no issues with endpoint communication and the network has a high bandwidth internet connection. Maintenance is straightforward.

Our customers find Sophos Central to offer excellent value for money, and they are highly satisfied with the service it provides.

The price is reasonable.

Overall, I would rate it eight out of ten.

In my company, the solution is used for the firewall. The tool is used to monitor and create firewalls for the organization's internet since the company's network is on the internet.

Sophos Central Identity Integration Pack is a very accommodating and easy-to-understand feature for blocking other websites, especially the social media website. The features of the tool are good for protecting our organization from websites like social media websites or social engineering websites. I find the ability to use the product to test websites to be useful for our organization's network.

The high price of the tool is a drawback that can be considered for improvement.

I have been using Sophos Central for two months. I am a customer of the solution.

There are around 20 users of the solution in my organization.

I use Sophos Central and the Sophos Firewall XG Series.

When I joined the organization, I found Sophos Central already installed in the company's environment. Considering the installation of the product was easily done on an on-premises version, the hardware components from Sophos were connected to the network cables of the organization, and it was easy to understand everything when I saw it for the first time.

The product's installation phase was easy.

The solution is deployed on an on-premises model.

It is an expensive tool.

Based on the advancement in technologies, security reasons, and cybersecurity, my organization wanted a tool that ensured us a more secure environment.

The tool does work in managing security for multiple devices since the product is available at multiple prices and there are multiple licensing models. In my organization, the tool is used to manage around 30 devices easily.

I rate the overall tool a ten out of ten.

Our primary focus at this site is on enhancing security measures through the acquisition of a firewall. We are specifically addressing security needs at the moment, with other aspects being managed using existing solutions.

It is highly effective because it operates in real-time, swiftly detecting malware and viruses on both endpoints and firewalls. The synchronization between endpoint detection and firewall response is a key advantage. For instance, if malware is identified on an endpoint, the information is seamlessly synchronized and applied to the firewall, allowing for immediate group-level blocking. This integrated approach is immensely beneficial as it eliminates the need for separate management of endpoints and firewalls, streamlining our security operations.

There is considerable room for service improvement, especially based on a recent experience with the RMX. The device we requested took seven to ten days to be delivered, and the inconvenience continued as we had to travel over thirty kilometers to pick it up. The current service level is not as efficient as desired, but we acknowledge that it presents an area for improvement, particularly in terms of support concentration. Occasionally, the firewall seems to cause a complete traffic halt, even though the system indicates that traffic is flowing. To resolve this, we have to restart the Sophos firewall. It would be beneficial if Sophos could provide options for shorter-term licenses, such as one or two months, allowing for more adaptability in licensing and cost management.

I have been using it for three years.

The stability of the system has been a concern as we had to reboot Sophos in random scenarios. Instances of traffic getting stuck and load-balancing issues have been observed. It's worth noting that load-balancing is not automated in my current device; instead, I have to configure it manually.

I would rate its scalability abilities seven out of ten. 

The technical support provided is commendable, even though it might take some time. The support team demonstrates a high level of expertise and foundation, earning them a score of nine out of ten in terms of skill level.

Positive

In comparison to our previous use of CyberArk, the current system proves to be significantly better. CyberArk is excellent, especially in an enterprise context. While I won't make direct comparisons with other solutions like Tabidoo, FortiGate, or Cisco, FortiGate stands out as a strong and competitive option.

The initial setup was straightforward.

The deployment process may take more than three to four hours, but it's relatively straightforward. A single engineer should be able to configure the firewall model without encountering any issues.

Apart from the mentioned licensing issue, Sophos has proven to be a very effective and cost-saving solution. The dashboard provides a wealth of reports, including customer reports, at almost no additional cost. The integration between the endpoint and CyberArk through the support center has resulted in significant cost savings. The return on investment is impressive, especially considering the quick access to comprehensive reports on malware attacks and other issues within our virtual settings. It has provided substantial benefits and streamlined our operations effectively.

Sophos is more cost-effective than other vendors. However, we've encountered an issue regarding license flexibility. For our corporate offices and multiple sites across India, we sometimes need short-term licenses due to the nature of our projects. While purchasing a new firewall solution, we requested a license for the next two months, but Sophos only offers licenses for one or two years. This lack of flexibility can be a hindrance, especially when considering the cost implications.

Overall, I would rate it eight out of ten.

My role is to bridge the gap between customer needs and my team's technical expertise. We collaborate to design and implement solutions that fit their specific requirements.

We cater to a wide range of organizations, from large enterprises in banking to small and medium businesses, call centers, and warehouses. Essentially, any company registered in Pakistan that requires endpoint security, next-generation firewalls, or other cybersecurity solutions can consider us.

The ransomware protection is exceptional, offering a strong defense against outsider attacks and viruses. This has proven extremely valuable to customers facing ransomware threats.

One significant advantage is its competitive dashboard compared to Trend Micro. 

I did encounter a limitation during a Proof of Concept with a large customer. The DLP (Data Loss Prevention) functionality wasn't fully functional when enabled in the central dashboard. I reported this to the distributor and technical team but couldn't get a definitive answer.

In future releases, I would like to see a complete XDR solution in Sophos. I want to see its capability. I want to understand how it works compared to Trend Micro, specifically its features and how it gears up.

Moreover, integration options with Trend Micro would be ideal, too.

I've been with Sophos Central for about three and a half years now, so I've been exposed to Sophos Central through customer interactions and team collaborations.

We work with a range of solutions, including Sophos XDR, Endpoint Protection (both cloud and on-prem), and Central. Additionally, we've sold the XG Firewall in the past.

The stability is almost a ten out of ten. We haven't encountered any issues.

The solution has been very stable. 

I would rate the scalability a ten out of ten. It is very good in terms of scalability.

We have around seven to eight customers using this solution.  We have large enterprises and small to medium enterprises as our customers.

The OEM support is excellent, and the second-level distributors like SoftStack and Avan Distribution have the technical expertise. 

As a partner, we also have sales and after-sales teams with expertise in troubleshooting and resolving customer issues. 

Positive

Setting it up is easy. Compared to Kaspersky or Trend Micro, it's no more difficult. Sophos is user-friendly. 

I would rate my experience with the setup a nine out of ten; one is difficult, and ten is easy. It is very easy; there's always room for improvement.

We have both cloud and on-premises deployment models. The cloud is a bit expensive compared to the on-premises version. The deployment model depends on the customers. 

We actually operate as a cloud solution provider ourselves. We have a sister company called CloudKind, and we offer various cloud environments through our own data centers. We deploy HCI solutions and complete cloud solutions and even offer VM solutions for customers. They can get Infrastructure as a Service, Platform as a Service, Software as a Service, Disaster Recovery as a Service... everything comes from our cloud, not AWS or any other external provider.

I focus on commercial aspects like pitching features and convincing customers. Once we receive a confirmed order and payment, we send it to our distributor, EZ Technology, which handles license key distribution and activation over email. The post-sales team then takes over, working with the customer to configure and manage the deployment based on their specific needs and devices.

The deployment usually takes around three to four weeks. It's safe to say three to four weeks. It depends on our team's workload and the customer's availability. Since customers are running live applications, they usually provide us access outside their working hours, like after 6:00 P.M. or 8:00 PM. That's why deploying the DDR and Central dashboard solution takes three to four weeks.

I would rate the pricing a seven out of ten, with one being the cheapest and ten being the most expensive. It is rather expensive. 

Compared to Kaspersky's EDR and centralized solution, which offers more discounts, Sophos Central seems a bit more expensive. That's our observation so far.

I always tailor my advice to the customer's specific needs. If their top priority is protection against ransomware and ICS/IDH attacks, I recommend Sophos. 

For complex networks with a large threat landscape, Trend Micro's XDR solution might be a better fit. Ultimately, I analyze the customer's network and requirements before suggesting the most suitable solution. I don't favor any specific brand like Trend Micro, IBM, or Kaspersky.

Overall, I would rate the solution an eight out of ten.

We incorporate it into our demo for its cloud-based security solution, similar to Trend Micro Logistics, ensuring robust security for both client machines and servers. The inclusion of features enhances the user experience, providing a friendly and intuitive interface.

It's highly valuable as it ensures that no unauthorized installations occur without the IT team's permission, maintaining a secure environment. This allows for precise application of security measures, similar to a firewall, where connectivity and application definitions are meticulously managed. The protection and enterprise-level features are commendable, offering robust control and firewall management for designated machines. Additionally, encryption can be applied seamlessly through the support center, providing comprehensive control over all aspects of security. The backend protection further enhances the overall security posture.

Vulnerability protection and monitoring any changes are crucial aspects that require attention. Considering the specific requirements of the banking sector where constant internet usage may not be permissible, it might be worthwhile for the company to reconsider offering an on-premises solution. This would cater to users who prefer or require an in-house solution due to security and permission concerns associated with internet networks. The DLP feature is present, but it may not be considered a comprehensive DLP solution and it should be improved.

I would rate its stability capabilities seven out of ten.

It caters to a wide range of customers, including small and medium enterprises. It is versatile and adaptable, working effectively in various scenarios and meeting the diverse needs of its user base, regardless of the size or type of business.

I would rate its customer service and support eight out of ten.

Positive

The initial setup posed some complexities in the process.

Being a cloud solution eliminates the need to set up client-server arrangements for databases as everything is readily available. You just need to create a login account, sign in, download or deploy the agent on servers, and apply policies. However, a lightweight agent is essential to prevent any adverse impact on machine performance during evaluation. The deployment process can be completed in five minutes.

The price is relatively affordable. When compared to other vendors, it is a more cost-effective option. I would rate it six out of ten.

If you're focused on client security, I recommend opting for Sophos Central. Overall, I would rate it seven out of ten.