266 Sophos MDR Reviews
Overall Review Sentiment for Sophos MDR
Log in to view review sentiment.
I appreciate the various tools offered in the Sophos Portal, particularly the remote computer control and scanning capabilities. The Self Help Tool provides valuable computer-level information and I also find the threat graph and admin tools on the dashboard very useful. Review collected by and hosted on G2.com.
The user interface of the portal is quite cluttered, making it difficult to locate specific settings, information, or functions. When an app is blocked, allowing that application to run seems counterintuitive, even for an admin. Adding a website to the whitelist should enable access to that site. However, you must also change the category to access the site. Finally, the most significant challenge was installing the Sophos endpoint agent. Initially, Sophos customer service provided very little help unless we paid for support. They first directed me to a German-language YouTube video with subtitles. Fortunately, our Sophos Account Executive and Solution Engineer reached out to us and offered exceptional support and assistance, leveraging their wealth of knowledge and experience. Review collected by and hosted on G2.com.
What I like more of Sophos MDR is his combination of advanced technology and experts in segurity to give a integral and proactiv protection against the ciber threats. Review collected by and hosted on G2.com.
Some posible aspects to consider about Sophos MDR could be the cost to implement it, that can be hight, and the posibility of human errors when depending of the intervencion of experts in segurity. Review collected by and hosted on G2.com.
The customer services and features added to Sophos MDR make it a very compelling choice. I appreciate their promptness to respond and their attention to detail. It was also quite easy to implement and simple to use after some training. It is also easy to integrate with our other security products (aside from Netskope, which there is no integration for outside of sharing malicious hashes). Review collected by and hosted on G2.com.
We tend to get mostly false positives, but that's much better than having false negatives! Review collected by and hosted on G2.com.
I like that it has the flexablity of being a managed soluiton, while still allowing property level IT staff to perform investigations of their own. It integrates with our email soluion, firewalls, and virutal environments. We have even had a couple instances where we opened tickets with the MDR team to assist with workstation reviews that went to 'questionable' sites, just to have peace of mind. We get weekly reports for each of our properties that detail any investations that took place behind the scenses. Everything ties back to a central web portal, which makes manuvering between the endpoint soultion, threat hunting, email protection, and other tools fairly seemless. Review collected by and hosted on G2.com.
Some of the initial setup for the log collecting can be a bit confusing. However, the Sophos SE's are usually willing to jump in and assist without trying to nickle and dime you. When lumping multilpe sites together, you will need to create sub-estates, which sometimes makes it tricky to track your licensing per site for other sophos products, but for the antivirus/MDR solution, you can deploy a specific agent that will link a workstation/server to a specific sub-estate. Review collected by and hosted on G2.com.
Como ya éramos clientes de Sophos InterceptX Advanced con XDR, pasar a MDR es sólo añadir la licencia y configurar los métodos de contacto, por lo que la facilidad de integración es máxima.. Sophos se encarga de todo, es más, incluso hay un servicio de onboarding con el cual verificar que todo es correcto. Una vez configurado, Sophos se encarga de todo: revisar las detecciones, analizarlas y, si es necesario, responder en tiempo récord. MDR nos ha permitido ahorrar muchísimo tiempo, pues ya no nos es necesario revisar la consola diariamente, pues ellos lo hacen por nosotros. Review collected by and hosted on G2.com.
MDR de Sophos puede resultar algo estricto, en el sentido de equipos que sabemos tienen alguna deficiencia que nos piden resolver y debemos justificar el motivo por el cual deben seguir así. Entendemos que no es correcto su estado, pero por temas operacionales no es posible su cambio. Review collected by and hosted on G2.com.
I have to say, my experience with Sophos has been absolutely incredible. From the moment I started configuring the products with pro support, I knew I was in good hands. The pro support deployment made it so easy. Review collected by and hosted on G2.com.
The endpoint does not manage the firewall is one of my dislike about Sophos. Also there MDR team does do human threat huntting but it does not give you the indepth look as a full security operations center (SOC). For an example you will not get an alert from Sophos if a user log in from USA and then latter that day they log in from Ireland. Review collected by and hosted on G2.com.
Quick and easy installation of the individual endpoints. Good support during onboarding so that no questions remain unanswered. Little need for adjustment during operation, but if there is, this can easily be done via Sophos Central. Detected threats are resolved to our complete satisfaction. Telephone contacts at the highest escalation level helpful and absolutely competent, feels like an extension of our circle of colleagues. Review collected by and hosted on G2.com.
The associated NDR sensor was still relatively complicated to implement at the time of its introduction. However, when it is running, it does its job unobtrusively.
There is still room for improvement when it comes to activating false-positive detections, e.g. when accessing websites for an awareness campaign. The pages can be reported, but no feedback is given as to whether these pages are now free or not. As a result, our awareness campaign did not work properly, as training links were immediately blocked as unsafe. Review collected by and hosted on G2.com.
Sophos MDR offers a simple but extensive policy engine which allows our organisation to create policy which truely reflects our business. Implementation is straight forward with agent onboarding performed with a few clicks or an automated install script. Sadly (or not so sadly) I've not had to engage customer support much as the MDR product just works. As a daily driver of the product I'd have to say I am overall impressed with Sophos MDR solution Review collected by and hosted on G2.com.
Althought integration is straight forward the pay to integrate model is a hard pill to swallow, we have network services with a leading provider and we find that paying several thousand to bring that visability into the solution to be a bit unfair. Review collected by and hosted on G2.com.
In-depth analysis of all alerts and can investigate the traffic analysis due to its functionality. Reduce the triage and deep analysis time due to its various & indexed logs. Review collected by and hosted on G2.com.
Linux support and slow user interface. Some of the features are not available. Review collected by and hosted on G2.com.
Having an extra set of people and machines, watching your traffic and data is great for compliance and security. They are corralate all the data coming in from all the machines to better track and diagnose security attempts or breaches. Super easy to use the dashboards to get a good view of what is going on, on a daily bassis. Working with the MDR team makes it very easy to setup the integration, as they have tons of setup trainings, and videos. Working with support they review your settings to make sure everthing is setup correctly. Review collected by and hosted on G2.com.
Initial setup requires many hrs with support to make sure everthing is setup correctly and working as designed. If you are very savy, this can be a bit boring at times. Review collected by and hosted on G2.com.
