I use the solution in my company as an EPP or an endpoint protection platform and for management purposes.

The solution's most valuable feature is that we use it predominantly for monitoring and anomaly detection. The tool also makes some recommendations regarding what action to take for those anomalies.

I will also have to check with my operational team to see what enhancements they want to see in the product.

The solution's performance drops at times because it is a SaaS-based tool, making it an area that requires improvement. Some customers have complained about the tool's slowness. When we click on certain menus, it gets really slow, and when my company reached out to Sophos's team, they said that this is normal behavior. Customers have always complained about the product's slowness.

I have been Sophos Central using for a year and a half.

I have not faced any stability issues with the product. Sometimes, the product gets slow.

It is a SaaS-based tool that can scale up quite easily without a problem.

My company deals with SMB-level customers who use the product.

The technical support for the solution is good, and they responded pretty quickly since our company has a good relationship with Sophos. At times, whenever we need some urgent support, we can push it to our own local contacts. I rate the technical support an eight out of ten.

Positive

It is difficult for me to compare Sophos Central with other solutions at the moment because we haven't worked much on other tools.

As Sophos Central is a SaaS-based tool, we don't have to deploy it. We just have to onboard the devices on it and start monitoring it. Get the right link configured, onboard the devices, and then we are good to go.

It is difficult for me to speak about the tool's ROI. The tool is cost-effective.

The tool is competitively priced.

My company chose to work with Sophos Central over the other products in the market since my company has a good relationship with Sophos and also because it offers good support. Our team is also well-versed in the tool, so we are comfortable deploying it to our various customers.

In terms of the benefits derived from the use of the product, I would say that we have a good kind of expertise with Sophos Central, so that is why we are comfortable with the tool internally within our organization.

The tool improves security posture overall since Sophos has multiple products, such as a firewall, SASE, and SD-WAN. The tool integrates very well with many products. The solution can serve as one or a single integrated tool for managing multiple products. The tool is mostly integrated with the suite of products offered by Sophos, not with some other solutions.

The tool provides very good visibility of all the endpoints. The product offers anti-ransomware capabilities.

The product has some AI features that help give recommendations to users. The tool has some automation options.

I rate the tool an eight out of ten.

The Central manager oversees multiple client sites, with one of them being located in Colombo. Once accessed, this entry point enables management of both virtual and physical environments across all three sites from a single interface.

Utilizing Sophos Central for endpoint security management for our customers, we've installed it for a client with three sites. Within this client, there are four companies under the same group. With Sophos Central, we can seamlessly communicate between the separate locations of these companies, such as Company 1, Company 2, and so forth.

Sophos Central has enhanced our client's organization's threat detection and response capabilities significantly. The solution requires minimal resources, with very low data usage, ensuring minimal impact on daily operations. It swiftly identifies advanced threats, with zero data loss during testing, and enables easy deduction of other potential threats.\

The Central interface greatly simplifies the management of our security policies and procedures. It's remarkably straightforward and intuitive, making it easy to understand and navigate quickly. I've personally noticed this simplicity reflected in the ease with which others grasp it. Once guided through the initial steps, users can comfortably navigate and continue managing tasks with little to no difficulty.

I find the biggest advantage of Sophos Central is the absence of physical hardware requirements, which alleviates the headache associated with managing server rooms, PCs, and other hardware. This eliminates any potential issues related to maintenance and upkeep. Additionally, in terms of cost, Sophos Central is competitively priced compared to alternatives like CrowdStrike and SandBlast by Checkpoint.

Sophos Central Reporting and Analytics are highly effective in delivering quick and valuable insights. However, one area that requires improvement is in addressing the increasing frequency of yearly attacks. Apart from that, the signature detection methods and other aspects function seamlessly.

There's no need for any upfront hardware costs with Sophos Central. By leveraging cloud-based solutions, we can significantly reduce expenses.

One of the most valuable features of Sophos Central for maintaining our cybersecurity posture is its ease of use. In my experience, managing Central is simple and can be done from anywhere, at any time. This accessibility is crucial for administrators, as it facilitates seamless communication and control.

In terms of improvement, there are several areas to focus on. Firstly, addressing market perception issues is crucial. From a technical perspective, one key area for improvement is strengthening its defense against zero-day attacks. Having and option for endpoint security on mobile devices, it would be advantageous.

I have been working with it for three years.

It provides good stability capabilities.

It is scalable.

Regarding technical support in my region, there are two separate entities, one being Indian-based. Unfortunately, the quality of support from the Indian region is lacking, although I have worked with other providers such as Check Point. In comparison, the support provided by Check Point surpasses that of the Indian-based support. Locally, we have two distributors available, but we currently only collaborate with one. While we generally find satisfaction with their services at the local level, there are occasions when issues arise that they cannot resolve on their own, particularly with Sophos Central. During these times, we encounter significant challenges, often experiencing prolonged wait times for responses and resolution. I would rate it four out of ten.

Neutral

We used CheckPoint. When comparing Sophos with other solutions, one significant advantage is that they offer similar features for the same price.

The initial setup is straightforward.

Initially, we begin with a Proof of Concept phase, followed by a one-month trial period using the free license. If the results are satisfactory, we proceed to purchase the EDR solution from the distributor. Once purchased, we simply update the license using the provided link. Deployment time varies depending on the size of the company. For instance, in a company with a thousand users spread across three locations, deployment typically takes less than two hours if there are no issues with endpoint communication and the network has a high bandwidth internet connection. Maintenance is straightforward.

Our customers find Sophos Central to offer excellent value for money, and they are highly satisfied with the service it provides.

The price is reasonable.

Overall, I would rate it eight out of ten.

It is very useful to deploy policies centrally and monitor the status of our appliances, especially given that we are the main branches. With Sophos Central, you can centrally manage and deploy security policies and updates, saving time and eliminating the need for the technical team to travel to each branch individually.

The product needs to improve monitoring since it gives false positives. It needs also to improve pricing. 

I have been using the product for four years. 

Sophos Central is stable. 

Sophos Central is scalable. My company has 300-400 users. 

We contact our partner for support. 

Sophos Central's deployment is easy and takes one month to complete. 

Our three in-house resources and one partner resource managed the deployment. 

Pricing is on a device basis. 

I rate the solution an eight out of ten. 

The solution is used to create intelligent policies and users, and to manage bandwidth. You can also use it to deploy wireless access points. I use it to deploy the access points and also control them, linking it with my active directory for authentication purposes.

The most valuable feature is that it protects my IT infrastructure from attacks.

SSID authentication has to be improved. 

I have been using Sophos Central since 2021. 

It is a highly stable solution. I rate the stability a nine out of ten. 

The scalability is good. Ninety users are using the solution. I rate the scalability a nine out of ten. 

The initial setup is easy. 

It is an affordable solution. 

Overall, I would rate the solution an eight out of ten. 

My role is to bridge the gap between customer needs and my team's technical expertise. We collaborate to design and implement solutions that fit their specific requirements.

We cater to a wide range of organizations, from large enterprises in banking to small and medium businesses, call centers, and warehouses. Essentially, any company registered in Pakistan that requires endpoint security, next-generation firewalls, or other cybersecurity solutions can consider us.

The ransomware protection is exceptional, offering a strong defense against outsider attacks and viruses. This has proven extremely valuable to customers facing ransomware threats.

One significant advantage is its competitive dashboard compared to Trend Micro. 

I did encounter a limitation during a Proof of Concept with a large customer. The DLP (Data Loss Prevention) functionality wasn't fully functional when enabled in the central dashboard. I reported this to the distributor and technical team but couldn't get a definitive answer.

In future releases, I would like to see a complete XDR solution in Sophos. I want to see its capability. I want to understand how it works compared to Trend Micro, specifically its features and how it gears up.

Moreover, integration options with Trend Micro would be ideal, too.

I've been with Sophos Central for about three and a half years now, so I've been exposed to Sophos Central through customer interactions and team collaborations.

We work with a range of solutions, including Sophos XDR, Endpoint Protection (both cloud and on-prem), and Central. Additionally, we've sold the XG Firewall in the past.

The stability is almost a ten out of ten. We haven't encountered any issues.

The solution has been very stable. 

I would rate the scalability a ten out of ten. It is very good in terms of scalability.

We have around seven to eight customers using this solution.  We have large enterprises and small to medium enterprises as our customers.

The OEM support is excellent, and the second-level distributors like SoftStack and Avan Distribution have the technical expertise. 

As a partner, we also have sales and after-sales teams with expertise in troubleshooting and resolving customer issues. 

Positive

Setting it up is easy. Compared to Kaspersky or Trend Micro, it's no more difficult. Sophos is user-friendly. 

I would rate my experience with the setup a nine out of ten; one is difficult, and ten is easy. It is very easy; there's always room for improvement.

We have both cloud and on-premises deployment models. The cloud is a bit expensive compared to the on-premises version. The deployment model depends on the customers. 

We actually operate as a cloud solution provider ourselves. We have a sister company called CloudKind, and we offer various cloud environments through our own data centers. We deploy HCI solutions and complete cloud solutions and even offer VM solutions for customers. They can get Infrastructure as a Service, Platform as a Service, Software as a Service, Disaster Recovery as a Service... everything comes from our cloud, not AWS or any other external provider.

I focus on commercial aspects like pitching features and convincing customers. Once we receive a confirmed order and payment, we send it to our distributor, EZ Technology, which handles license key distribution and activation over email. The post-sales team then takes over, working with the customer to configure and manage the deployment based on their specific needs and devices.

The deployment usually takes around three to four weeks. It's safe to say three to four weeks. It depends on our team's workload and the customer's availability. Since customers are running live applications, they usually provide us access outside their working hours, like after 6:00 P.M. or 8:00 PM. That's why deploying the DDR and Central dashboard solution takes three to four weeks.

I would rate the pricing a seven out of ten, with one being the cheapest and ten being the most expensive. It is rather expensive. 

Compared to Kaspersky's EDR and centralized solution, which offers more discounts, Sophos Central seems a bit more expensive. That's our observation so far.

I always tailor my advice to the customer's specific needs. If their top priority is protection against ransomware and ICS/IDH attacks, I recommend Sophos. 

For complex networks with a large threat landscape, Trend Micro's XDR solution might be a better fit. Ultimately, I analyze the customer's network and requirements before suggesting the most suitable solution. I don't favor any specific brand like Trend Micro, IBM, or Kaspersky.

Overall, I would rate the solution an eight out of ten.

While the platform offers a comprehensive suite of security features, its central role in our scenario revolves around safeguarding our extensive network of endpoints.

It is a cloud-based security solution with a flexible deployment that accommodates local servers and updates caches for minimized internet traffic. The user-friendly interface simplifies tasks like configuring exclusions and root cause analysis. The product goes beyond antivirus, offering granular control over peripheral devices, application management, data loss prevention, web filtering, and updates. It ensures a phased update rollout and provides Extended Detection and Response functionality, including a cloud-based data lake for threat hunting. Sophos Central also manages Sophos firewalls, aiming to be a comprehensive security solution with a single-pane-of-glass approach.

The level of protection offered by this antivirus product is highly commendable. One notable aspect is its innovative approach to file scanning, utilizing intelligent HTTPS mechanisms for real-time insights into files. This next-gen antivirus product stands out by eschewing reliance solely on static properties or files, a departure from traditional antivirus models that relied heavily on signatures. The product ensures constant communication with Sophos labs, providing the latest intelligence about files through a feature called "Live Protection." This real-time connection, coupled with the integration of artificial intelligence, specifically deep learning, enhances its effectiveness. Moreover, the ability to export this information into a CSV file, detailing all the relevant files, processes, and other executable-related information, adds a layer of sophistication.

I've encountered minor challenges in grouping endpoints for policy applications. It currently lacks synchronization with centralized identity management platforms, but users can request features, and integration is reportedly in progress. Additionally, Sophos Central can be resource-intensive, demanding servers with a minimum of eight gigabytes of RAM, which may pose considerations for larger organizations dealing with legacy applications tied to specific OS and hardware configurations.

I have been working with it for four years now.

It is generally stable, with very rare issues. In my four years of directly managing it, I can't recall a significant instance where we were unable to access the console or modify settings. If there were any such occurrences, they were likely brief, and Sophos provides a dedicated Sophos Central status page for users to check the infrastructure's status. However, I must be honest about recent experiences—we've encountered some bugs, particularly with threat alerts, such as unknown threats, and we've communicated these issues directly to Sophos. While these bugs are typically version-specific and resolved with upgrades, there has been an uptick in such issues recently, which has been reported to the development team.

It is highly scalable, allowing easy expansion as needed. Creating different service states and consoles is straightforward, and establishing the relationship between a console and its assigned endpoints is simple. The ease of deployment ensures endpoints are efficiently placed in the correct groups, crucial for applying the right policies promptly.

When seeking technical support for Sophos Central, initial interactions typically involve level-one engineers, and may sometimes take time to reach the right experts. There are instances where I proactively provide comprehensive details, yet initial responses request information already shared. Despite such minor issues, specifying the priority of the problem helps streamline the process. If you can connect with the right people promptly, support is generally good. To refine the rating, considering level-one engineers, I would rate the support experience at around seven out of ten.

Deployment in our environment is streamlined through a single source using a compact file. This file is shared with our deployment team for execution. The deployment team requires either internet access, access to the Sophos portal, or an in-house setup for update caching, also known as message relay in certain network configurations. In cases where the network is restricted and lacks internet access, the deployment team utilizes message relay, functioning as a proxy between the endpoints and the Sophos cloud. This deployment approach is flexible, accommodating both on-premises and cloud components. Essentially, we initiate the installation with a small local installer file, and the subsequent files are retrieved either from an update cache or directly from the internet, making it a seamless process for our large-scale deployments. The process is adaptable and caters to various business functions through dedicated consoles. Using a scripted "blank installation" method, deployment is tailored to specific service states, ensuring endpoints align with the correct policies. Policy management during deployment is efficient, allowing for seamless assignment to relevant groups. The maintenance is straightforward due to its cloud-based nature, minimizing on-premises infrastructure needs. Periodic checks and verifications within the console simplify the process, making it hassle-free, especially when no specific network architectures require on-premises components.

Meticulous planning is essential before onboarding devices onto Sophos Central, involving careful grouping and allocation to dedicated consoles or sub-states. Migration from another product requires precise policy migration, facilitated by Sophos's CRT. Mass deployment is streamlined, especially if the old product's central protection is disabled. Sophos Central extends beyond antivirus, offering cloud security and XDR functionalities, seamlessly integrating with SOC teams for effective EDR and XDR. The platform, known for scalability and user-friendliness, supports advanced features like threat hunting and live response. Continuously evolving, it consistently introduces new features through ongoing development. Overall, I would rare it eight out of ten.

We are a vendor. In the last company, we were a platinum partner of Sophos. So we provided services to other businesses, like corporate businesses or many businesses.

I have deployed it in many scenarios. Many customer days come to us, and they're migrating their services, like, services to Sophos, like the other firewall to Sophos. They deploy a new one. So we tried different scenarios, like an active firewall with central services, central with active-active firewall, and the support central endpoint services. There are so many scenarios.

Sophos Central is good. It's also free for all those firewalls because, from Sophos Central, we manage the firewalls and push the policies to the firewall. 

Also, we manage the Endpoint with the endpoint and firewall, with Sophos Central in view, monitoring all the policies, logs, and various features in the Sophos Central orchestration features. 

We can push templates to all the firewalls, and they are updated automatically with the Central. It syncs automatically, and all the firewalls appear in Sophos firewall in our environment. So we can manage all firewalls, push policies, log our endpoint to endpoints, and update endpoints. Also, see the protection policy and all the various features.

There are areas of improvement because there are license restrictions.

In future releases, I would like to see more awareness about this product. Most customers don't know about Sophos Central. Sometimes, I have to ask customers to use Sophos Central because they don't know it exists. 

It's not well-marketed, so many customers don't know about this feature. Many vendors use firewalls, but they don't use Sophos Central. For example, if you have five firewalls, the reporting limit might be reached. So, many customers don't know about Sophos Central, and I sometimes have to force them to use it.

The stability of Sophos Central is generally good. Sometimes, issues arise due to server distribution, particularly from my region in Pakistan. There are two data centers, which can cause browsing delays. Overall, most of the time, it functions well, but there are occasional lapses due to these data center issues. Overall, I would rate the stability as seven out of ten.

I've noticed regional difficulties, such as high latency from the vendor's server. Generally, it's about eighty percent effective, but there are times when it's problematic.

I would rate its scalability an eight out of ten. As a partner, we handle multiple scenarios. Sometimes it's hundreds of end users, sometimes thousands, and sometimes it's even more. The number of end users varies from time to time.

The support is good. Initially, they escalate issues through the L1 and L2 engines. Often, the first few emails or days can be less productive, but after that, the L2 team becomes more engaged. For partners, I suggest a different support channel, which should allow direct quality reporting.

Neutral

We worked with Kaspersky and other key solutions. Each has its strengths, but for robust security and support features, Sophos Central is preferable. I find its antivirus software and firewall solutions to be highly effective.

The initial setup is easy. It's very user-friendly. We can push policies through the GUI, like threat protection and file protection. Scanning protection begins with the GUI. It's no problem. 

But for deployment, it's difficult, just like deployment purposes. If you're going to deploy the endpoint, it is difficult to deploy the central. We can go through the systems or through the active directory or something, but there are no other features like this.

There's no need to deploy. It's on the cloud. We have to create an account and sync our antivirus. It takes about three to five minutes to sync.

The pricing is very competitive. When compared to other vendors like Fortinet, Sophos stands out, especially in terms of firewall and endpoint pricing. It's more affordable than other American brands, and while not as cheap as Chinese brands, the quality and pricing balance is excellent.

On a scale, I would rate it a ten out of ten.  I would emphasize the range of features like DLP, file label protection, and user policies that align with your organizational needs. Sophos Central offers comprehensive protection and a variety of policy-based solutions that are highly beneficial for any organization.

I mainly use Sophos Central to keep our clients' digital world safe. I focus on three main things: making sure emails are protected, managing the firewall, and handling endpoint protection to stop viruses and other threats on devices. These are my key areas, but I'm also familiar with other parts of Sophos' tech to ensure our clients have solid overall security.

Sophos Central made it easier to manage the multitude of Sophos Solutions currently in the market. It easy to switch between different products to quickly address alerts or make policy changes.

The best thing about Sophos Central is how it brings all its security solutions together in one place. It is like having a control center for everything. Since Sophos has been doing this for a while and has many tools, having them all in one platform makes my job a lot simpler. It beats jumping around different tools all the time. Having it all in one spot is a game-changer.

One area that could use some work in Sophos Central is the user experience. Despite the continuous improvements, the user interface could be more intuitive and user-friendly. It feels like there is still room to make it smoother and simpler for users to navigate and manage security settings.

I have been using Sophos Central for ten months.

In terms of stability, Sophos is generally solid and robust. However, during significant system updates or internal migrations by the Sophos team, there can be some shakiness. Overall, the solution has been reliable with minimal downtime or performance issues. I would rate its stability at a nine out of ten.

I would rate the scalability of Sophos Central as an eight out of ten. In my experience, if a client needs to scale up, like adding more licenses to protect additional devices, it is a relatively smooth process. Communication with the Sophos team and getting things in order doesn't take too long. So, in terms of scalability, it has been quite effective in adapting to changing needs. There are eight to ten users within our organization.

I would rate the support as a six out of ten. They do respond when necessary, but it seems like they are often busy. While they are continuously improving their technology, there are times when they don't respond promptly. If they don't reply immediately, it usually takes them until the next day to get back to you. There is room for improvement in terms of responsiveness, but they eventually address the issues.

Neutral

We previously used IBM Reaqta now formally known as IBM Security QRadar EDR for our endpoint protection and response. We always had Sophos Central but made the switch not too long ago.

The initial setup of Sophos Central depends on the specific technology being implemented. For software-based solutions like Intercept X or email protection, it is generally straightforward, with the bulk of the work handled by the software agents. However, if something goes unplanned, it may require a bit more technical know-how to troubleshoot. On the other hand, setting up hardware like firewalls varies based on deployment methods, each with its own challenges. It can be more complex, requiring a good understanding of deployment methods to navigate through the setup process. All in all, the ease or difficulty of the setup depends on the specific technology and deployment approach. The deployment time for Sophos solutions varies based on the type of technology. In my experience, it usually takes about three to five days to complete the installation and configuration for a hardware-based solution.

Sophos solutions are generally affordable, especially considering that we manage them in South Africa and Africa at large. The pricing is particularly favorable for software-based solutions, while the hardware side can be a bit more challenging. Overall, for software-based Sophos solutions, the pricing is reasonable and not overly expensive.

My advice for those looking into using Sophos Central for the first time would be to invest time in training. Sophos, particularly through its partner program, offers training courses for most of its solutions. From my experience, these courses are comprehensive, self-explanatory, and often include practical labs. Some are free, and some may have a cost, but they provide valuable material and hands-on experience. For newcomers, I highly recommend going through these training sessions to navigate the maze of Sophos solutions effectively. Overall, I would rate Sophos Central as an eight out of ten.

We use Sophos Central to ensure compliance activity.

Sophos Central is a user-friendly solution, and its configuration is very easy. The most valuable features of Sophos Central are total threat hunting and detection response.

Sophos Central must incorporate a diagrammatic graphical user interface for its practices and compliances.

I have been using Sophos Central for two years.

I rate Sophos Central a nine out of ten for stability.

Sophos Central is a scalable solution. Around 1,500 users are using the solution in our organization.

I rate Sophos Central a nine out of ten for scalability.

The solution’s technical support is very good.

Positive

The solution’s initial deployment is very easy.

One engineer can deploy the solution in around three days.

We have seen a return on investment with Sophos Central because its threat-hunting detection is very good. The solution has saved around 60% of our organization’s money.

Sophos Central is moderately priced. We have to pay a yearly licensing fee for the solution.

On a scale from one to ten, where one is cheap and ten is expensive, I rate Sophos Central's pricing a six to seven out of ten.

Before choosing Sophos Central, we evaluated other options like SonicWall, Juniper, and WatchGuard. We chose Sophos Central because of the cost and better endpoint detection.

Sophos Central is deployed on-cloud in our organization. The solution’s maintenance is easy and can be done by one person.

As the endpoint and applications increase in an organization, Sophos Central can detect and protect from Trojans, viruses, and spyware.

Overall, I rate Sophos Central an eight out of ten.