Sophos MDR Reviews

Sophos MDR enhances our clients' cybersecurity. Our clients do not have to worry about security threats like malware or intruder activity because the Sophos MDR team is very experienced and takes immediate action. The solution provides an easier VPN connection.

The solution's integration should be made easier because it is difficult. Sophos MDR should improve its artificial intelligence capabilities. Sophos MDR uses artificial intelligence in cybersecurity, but it should be made more attractive or scalable.

I have been using Sophos MDR for six months.

I rate the solution’s stability an eight out of ten.

Around five clients use Sophos MDR.

I rate the solution’s scalability a nine out of ten.

The solution’s technical support is very good.

Positive

The solution's initial setup is not easy. It is quite difficult to integrate the tool. The solution's deployment takes around one and a half to two hours. Sometimes, my senior helps me with the installation. Other times, I deploy the tool by myself.

Sophos MDR is less expensive than other products like Fortinet or Palo Alto.

Sophos MDR is very helpful for remote help, security pickup, policy editing, or policy deployment. I would recommend Sophos MDR to other users because it helps detect suspicious network activity.

Clients don't trust Sophos MDR because it is a new cloud product that has been around for one and a half years.

Overall, I rate the solution a seven out of ten.

We use Sophos MDR to secures the network with every application and software.

The authentication it offers minimizes the risk of access.

The security component is a critical aspect of the hardware. It includes all necessary features, emphasizing security. Sophos MDR provides excellent security solutions to manage users and various tasks.

Due to the growing complexity of the digital landscape, Sophos MDR needs to address the increasing use of VPN proxy connections and virtual networks. They must enhance their systems to handle these technologies because users are introducing new technologies that bypass current security measures.

I have been using Sophos MDR for two years.

The product is stable. I rate the solution a nine out of ten.

500 users are using this solution. I rate the solution's scalability a ten out of ten.

The initial setup is very easy. It is a good product, but familiarity with all security protocols and procedures is required. I rate the solution's deployment a ten out of ten.

When we started the configuration, we had to minimize downtime. With MDR, one project at a time, up to ten security products can integrate and work on your premises. Initially, we needed around two to three days to configure, and then implementation required minimal downtime.

The solution is affordable. It costs around 130 bucks per license.

Since Sophos has stopped the risk, we are saving money and protecting ourselves from potential threats. We also saved our files.

Sophos MDR is focused on the significant challenge posed by AI in cybersecurity. Since AI has virtually no limits and can perform a wide range of tasks, it can bypass security measures. Sophos is well-versed in understanding how AI operates and what it can do, which is crucial in the modern landscape where AI can both aid and threaten security systems.

Sophos MDR serves as a critical layer of defense, ensuring robust security and firewalls when new technologies are introduced. Sophos can better predict and mitigate risks by understanding AI's capabilities. For instance, if AI were misused to compromise a company's security, Sophos MDR's robust security measures and flexible, adaptive systems are designed to detect and neutralize such threats.

In healthcare, we have many systems and devices. We need to know all their functionalities and the work involved in securing them. Security measures can block or bypass functions and potentially stop your work or system. Therefore, we must be familiar with all the system protocols, ports, and mechanisms to ensure smooth configuration and operation. 

Overall, I rate the solution a ten out of ten.

The product saves us a lot of money. I do not have to engage any employees for cybersecurity monitoring. The product also provides insurance. The team responds frequently to any attacks. They call us, inform us about the issues, and guide us on what to do. I do not have to worry about it. The product gives us good visibility into what is happening inside the company.

Endpoint protection is very slow. When we copy something, it takes too much time. Sometimes the email gateway is down, and the emails return to the sender. These are the two problems we face frequently.

The solution should release a feature similar to Zscaler, which would route all the traffic through my firewall when we connect to VPN. The product should provide zero trust.

My organization started using the solution recently.

The tool is stable.

As soon as we send the purchase order, the team adds the license fee, and we start using the solution. The tool is scalable. More than 1000 people in our organization are using the solution.

Support is good.

We have switched to Sophos in our UK plant too. Earlier, we were using SentinelOne. We switched to Sophos because of its dashboard. We can see everything in a single dashboard. That is the beauty of Sophos.

The initial setup is very easy. It is not complex.

We can download and implement the product easily. It is only a one-line command. It's not a big task for me. Frequently, we check the servers and the dashboard. We can find any discrepancies easily. It is easy to maintain the tool.

I am comfortable with the pricing. Compared to other tools, Sophos has a pretty good price.

We are using the latest version of the product. We have a hands-on experience with the solution. We get all controls like endpoint, firewall, and email gateway on a single dashboard. Overall, I rate the solution an eight out of ten.

In the future, I would like to see a better integration between the endpoint and firewall, just like how web proxy is available inside the antivirus and the endpoint protection. There is also security or protection for the gateway and the border gateway in Sophos that we need to configure separately. In general, the gateway, firewall, and endpoint Sophos offers are not optimized, which I feel can function better together.

I have been using Sophos MDR for a year. My company is a platinum partner in Switzerland for Sophos.

It is a stable solution.

It is a scalable solution.

The support from the MDR team works satisfactorily.

I rate the technical team an eight out of ten points.

Positive

It is easy to deploy Sophos MDR.

The solution's deployment process takes four to eight hours, considering that my company has around ten customers with varying infrastructure sizes who need our service regarding the solution's deployment process. The deployment can be done in four hours for some of our company's smaller customers, while it may take eight to twelve hours to configure all the parameters for the bigger ones consisting of 300 to 400 users.

Sophos MDR is not a cheap product. Compared with other solutions in the market, Sophos MDR is available at a good price, especially considering its performance.

I am satisfied with the overall solution. So far we have had very few queries from Sophos. But these have always been handled quickly and satisfactorily.

It is a good thing that Sophos offers many products, along with the automatic integration of all the telemetry data. With other competitors or products like Fortinet in the market, you have to pay extra to integrate the MDR services offered.

I rate the overall product an eight out of ten.

The product has substantially improved endpoint protection and threat management capabilities. We have effectively addressed previous issues related to firewalls and endpoints, resulting in the current solution functioning very well. It provides reliable protection and clear data on its performance metrics, enabling straightforward communication of its capabilities.

One of the MDR's most effective features is its integration with a specific analytics tool, which provides comprehensive reports and insights. This capability enhances our understanding of the evolving threat landscape, ensuring we are well-prepared to address potential security issues.

The service could enhance its scope, particularly in managing firewalls. While it effectively identifies endpoint threats, it does not extend to firewall management. Improving this aspect would significantly bolster our overall security posture and response capabilities.

Scalability for the solution is achievable, but it often hinges on the business's financial model. While the technology can support scalability, the associated costs may pose significant challenges. Many companies in Brazil face constraints in expanding their networks due to high expenses despite the availability of technical capabilities.

The support system is responsive and prioritizes business needs over mere product functionality. Having local support personnel who speak Portuguese significantly enhances the experience, allowing for efficient escalation and resolution of issues. This level of service distinguishes them from many other vendors in the market.

Positive

Setting up MDR is somewhat complex. It requires detailed information about the customer's environment, including the topology and configurations. For instance, my experience with First Wave highlighted the need for an initial assessment to define the environment thoroughly. This process involved extensive feedback and recommendations to ensure secure and efficient deployment.

Generally, the maintenance is manageable. However, challenges may arise with significant network changes, such as integrating new business units. If the network environment remains stable, it is relatively straightforward. Yet, companies may encounter difficulties without adequate personnel to address these changes.

The return on investment can be substantial, especially since hiring local employees in Brazil is considerably more expensive than in other regions. By leveraging MDR solutions, organizations can mitigate staffing costs while enhancing their security posture, which is particularly crucial given the current economic climate in Brazil.

The service excels in its delivery and response times. Alerts are typically managed within minutes, ensuring prompt threat mitigation. I have noted that the service maintains a clean environment and offers a robust management solution that aligns well with our needs.

MDR solutions can be limited, especially when focusing solely on the LYNX scope. While they excel in specific areas, such as endpoint management using platforms like Azure from Sophos, they often need to provide a comprehensive operational solution. My team manages not only endpoints but also firewalls and other services. This division of responsibilities is essential for obtaining accurate information, particularly in complex environments.

Overall, I rate it a nine out of ten. 

We use Sophos MDR to protect our office environment.

The product’s most valuable features are integration and endpoint protection.

The product's stability needs improvement.

We have been using Sophos MDR since February.

The product takes up more RAM space while adding more users.

We have 125 Sophos MDR users. It is a scalable product.

The initial setup process is easy. It is deployed on the Sophos cloud.

I rate Sophos MDR an eight out of ten.

We use it for managed services, primarily for customers who lack resources. MDR is a tool that not only identifies and shows the impact of viruses but also requires no technical staff for operation. 

So, the user doesn't need a technician; it offers 24/7 support to identify and manage your infrastructure and take complete care of any technological incidents.

We don't need to invest in manpower. For example, if we are investing in an IT guy for endpoint solution security, we are investing our money in a guy. And the ROI will not be much because they will only do analytics parts. But what happens when the engine has a ransomware attack is that they will not be able to resolve the ransomware, which Sophos MDR will help you resolve very quickly.

Sophos MDR is very flexible. It works on top of existing EDR and XDR solutions. You don't need to buy Sophos's EDR or XDR products specifically. It can integrate with other EDR, XDR, and even Application Firewalls from other vendors. That's a big advantage in terms of compatibility.

Secondly, Sophos MDR offers a high degree of automation for cyber threat activity. They also provide cyber insurance for system downtime, but that's a separate service.

When it comes to the incident response processes, their response time is 38 minutes. They also have a three-step process, with the first tier being called "Rapid Response Services." This means for incidents that happen very quickly, they will prioritize those.

Sophos MDR integrates well with various tools, including Sophos firewalls, Microsoft products, and other third-party solutions, ensuring seamless authentication.  It offers straightforward integration, whether it's with another firewall or different data authentication needs. The process is quite simple.

What I really like is the centralized management console. It is a single management console. You don't have to deal with multiple management tools. Even if you have firewall support, you can just use the same console to access your firewall, MDR, EDR, encryption, and NDR – everything can be managed in a single dashboard. 

You don't need to jump between multiple tools. That's one of the best things I like and something I would definitely recommend to customers. 

Sophos MDR also offers 24/7 monitoring features. But 24/7 is part of a package. Sophos MDR has two service tiers, I forget the exact names, but one is a basic option. It integrates with other EDR/XDR solutions a customer might have, along with standard Sophos support. The other tier is a complete MDR service, with rapid response and full cybersecurity protection.

One aspect I'm examining is the MDR network detection with Sophos Firewall, which works well. I understand it can also integrate with other firewalls, but it's optimal with Sophos products, given the slight drawbacks when using non-Sophos solutions.

I've worked with Sophos Encryption and Sophos MDR.

I haven't faced any issues with its stability.

It is a scalable product. Our customers typically look for solutions like Sophos that can grow with their needs. Many wonder about the necessity of investing in a separate security operations center (SOC) or a third-party vendor for management. 

They question what tools are available to protect their devices from various threats, including those from the internet and specific applications. Sophos MDR, with its automation capabilities, often emerges as the best fit for their needs.

The customer service and support are very good. 

Positive

The setup process is straightforward and not complex for us.

We have a small team of four or five people who manage the deployment.

The deployment involves a careful preparation process, where we gather all necessary product information and follow specific technical procedures. We ensure our customers are well-informed about the process before beginning. The steps involve coordination with our team to ensure everything is uploaded and configured correctly.

The deployment process currently doesn't require many resources. The deployment timeframe varies but is not extensive. It generally takes three to four hours. We spend time gathering detailed information from the customer to ensure a comprehensive implementation plan. 

Depending on the complexity and the need for third-party integrations, the process can take from two to five days, though most tasks are completed within two days. Delays may occur if specific files or integrations are required and not immediately available. For example, sometimes, when we need Fortinet integration and it is not available, it might delay things. 

Maintenance is minimal and manageable.

There are cost savings when it comes to Sophos MDR. For example, a ransomware attack happens, and you're completely locked out. Your IT people don't know when or where it happened. They have to research it, which can take an hour or even a day. They might not be specialists in handling incidents. MDR takes care of that. Any suspicious activity or attack triggers their monitoring. They investigate, resolve it, and even isolate infected systems. This saves you completely.

I use this analogy: Imagine you invest in four IT staff who can't resolve an incident. It takes them hours, and they might not be trained in analytics. That investment could cost more than MDR. I tell managers that buying four resources is a higher cost in the long run, even though MDR is a recurring cost. They can resolve your issue 24/7, and it's a mid-range cost compared to potentially failing to resolve an incident.

Therefore, the ROI is definitely there. 

It's good, the offer and everything about it is satisfactory. I would definitely recommend using it. 

Overall, I would rate the solution a ten out of ten. 

We use Sophos MDR for intrusion detection and prevention.

The product's most valuable feature is its ability to view environmental activities. It has an engine to monitor the challenges.

They should improve XDR and threat protection capabilities for zero-day attacks.

We have been using Sophos MDR since 2021.

I rate Sophos MDR’s stability a seven out of ten.

The product is scalable for small and medium businesses. They should improve this particular area for the enterprise environment. I rate its scalability a six out of ten.

The technical support team connects us with the channel partners within our region. They can solve the problem quickly.

Positive

The initial setup is easy. I rate the process a ten out of ten. We have deployed the product on-premises and in a hybrid environment with a VPN setup using the Microsoft Azure platform. The deployment time depends on the size of the infrastructure. For 50 users, it takes five to ten minutes. You should get all the basic information for a specific setup and check all the ports and VLAN connections during installation.

Sophos MDR could be more affordable. It has a mid-range price. That is the reason many companies deploy it.

I recommend Sophos MDR to others and rate it an eight out of ten. I advise others to get the product to manage the complete security services of their businesses. It has instant security features and a good return on investment.