Carbon Black Managed Detection and Response vs Sophos MDR comparison

VMware and Sophos are both solutions in the Managed Detection and Response (MDR) category. VMware is ranked #34, while Sophos is ranked #4 with an average rating of 8.8. VMware holds a 0.7% mindshare in MDR, compared to Sophos’s 6.0% mindshare. Additionally, 100% of VMware users are willing to recommend the solution, compared to 100% of Sophos users who would recommend it.

Carbon Black Managed Detect...

Read 4 Carbon Black Managed Detection and Response reviews

493 Views
493 Comparison Views

100% willing to recommend

Sophos MDR

Read 32 Sophos MDR reviews

3,472 Views
3,472 Comparison Views

100% willing to recommend

Carbon Black Managed Detect...

Sophos MDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 3, 2024

Sophos MDR and Carbon Black Managed Detection and Response are cybersecurity solutions. Sophos MDR is favored for its customer support and pricing, while Carbon Black is preferred for its comprehensive feature set.

Features: Sophos MDR offers automated incident responses, threat hunting, and seamless firewall integration. It provides real-time threat visibility and centralized management. Carbon Black Managed Detection and Response offers advanced analytics, extensive integration capabilities with existing tools, and detailed asset visibility.

Room for Improvement: Sophos MDR could enhance its integration options, offer more customizable features, and improve analytics detail. Carbon Black Managed Detection and Response could streamline its deployment process, enhance user interface usability, and provide more competitive entry-level pricing.

Ease of Deployment and Customer Service: Sophos MDR is noted for easy deployment and responsive customer service, aiding quick implementation. Carbon Black Managed Detection and Response offers comprehensive customer support despite its complex deployment process, ensuring users receive necessary guidance.

Pricing and ROI: Sophos MDR is competitively priced, offering potential high ROI with lower setup costs. Carbon Black Managed Detection and Response requires a higher initial investment but offers extensive features that may lead to increased long-term ROI.

To learn more, read our detailed Carbon Black Managed Detection and Response vs. Sophos MDR Report (Updated: July 2025).

Buyer's Guide

Carbon Black Managed Detection and Response vs. Sophos MDR

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Carbon Black Managed Detect...

Ranking in Managed Detection and Response (MDR)

34th

Average Rating

8.8

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

No ranking in other categories

Sophos MDR

Ranking in Managed Detection and Response (MDR)

4th

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of August 2025, in the Managed Detection and Response (MDR) category, the mindshare of Carbon Black Managed Detection and Response is 0.7%, down from 1.0% compared to the previous year. The mindshare of Sophos MDR is 6.0%, down from 6.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Managed Detection and Response (MDR)

Featured Reviews

Dejan Zecevic

Service Delivery Director at SKY EXPRESS IT Security Company

Easy to install, runs smoothly, and offers good performance

Carbon Black was sold to Broadcom, and VMware basically was the owner of the Carbon Black. Now Broadcom is the owner of VMware. As the solution has changed hands, I expect some changes in licensing and in support. It remains to be seen if that will be good or bad.

Read full review

Shaun Gordon

Chief Security Officer at Duxbury

Extensive data lake, ease of use is great and you can really get started very quickly

Sophos MDR is a service. MDR is managed detection and response. It's a managed security service. So instead of having an anti-malware, which in Sophos' case would be Intercept X, with MDR, they add human-led threat hunting. It's a managed service. So it's not a product that you sell the client per se. You're selling them a service, which is almost like an SLA, and that includes Cloud MDR. MDR is not a product. It's a service. The reality is that when it comes to the likes of SentinelOne, McAfee, CrowdStrike, ESET, and all the other players out there, they're single-product security companies. CrowdStrike is an anti-malware. That's one thing. ESET, same thing. But if you look at the other vendors, within the appliances, you're looking at Fortinet, Palo Alto, and Checkpoint. They only sell firewalls. That's all they do. When you deal with Sophos, they are the entire product suite. They sell firewalls. They sell Intercept X, which is their anti-malware, Intercept X for Server with anti-malware, email protection with ties into Office 365, and Sophos Plus encryption. All of these security products pull telemetry. So every time somebody hits a firewall, it's called, for argument's sake, that goes into their central data lake. All the firewalls around the world add that information to a data lake. Now, when you're dealing with Sophos, because of their exposure, because they've got so many different products, their data lake is a lot more extensive than competing vendors because they're not relying on one threat factor. They're not relying on one area of expertise. They're a global company. So, I can't compare their telemetry, for instance, to the likes of CrowdStrike. If CrowdStrike has probably started doing appliances, then the users will get that benefit as well. Sophos is the only vendor that does do that. It's like hiring a security team. Sophos do things differently in that they've got more telemetry and more insight into a network because they offer a variety of products. The other part about it is Sophos MDR; the service, unlike other vendors like CrowdStrike, is not limited to their products. If you are running CrowdStrike in your company, for instance, you can get their integration packs, in which case Sophos will manage your CrowdStrike system for you. Whereas with CrowdStrike, it's only CrowdStrike. You are locked into that vendor. So Sophos offers that flexibility. It's a multi-vendor service as opposed to SentinelOne or CrowdStrike, which is a single-vendor service. For instance, if I'm running Sophos, I would like to go with CrowdStrike MDR. I would have to remove my entire security investment, in this case, Sophos, and reinstall CrowdStrike in order to use their service. Sophos doesn't have that problem. If you've got CrowdStrike and you've already invested in CrowdStrike, cool. You stay on CrowdStrike. They will still manage it for you.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The valuable features are threat hunting, threat intelligence feeds, and it culls all the activities of the endpoint. Additionally, the ML and AI engines are really good."

"The installation process is quick and easy."

"The greatest value of MDR involves the tests, reporting and alerts, so that we may respond immediately."

"Carbon Black provides an overview of all our assets and their status."

"The rapid response team acts quickly to relieve customers."

"It is a scalable solution."

"The solution is stable."

"The product’s most valuable feature is rapid response."

"It is a stable solution...It is a scalable solution."

"The product’s most valuable features are integration and endpoint protection."

"Sophos MDR directly provides a service monitoring system 24/7 and can configure automatic responses even if the customer is not available."

"The product as a whole is truly outstanding and it excels in detecting and responding to various types of cyberattacks."

More Sophos MDR pros

Cons

"Carbon Black's support could be better."

"In the future, it would be great if they could provide endpoint management and the ADR solution together in this package."

"As the solution has changed hands, I expect some changes in licensing and in support. It remains to be seen if that will be good or bad."

"The product's stability needs improvement."

"Maybe the reporting needs improvement."

"Once in a great while, an update fails."

"It is a bit expensive. It could be cheaper. There are many competitive products in the market, like Kaspersky, McAfee Antivirus, and more."

"The reports should be more comprehensive and easier to organize."

"Endpoint protection is very slow."

"The product's pricing could be less expensive."

"They should improve XDR and threat protection capabilities for zero-day attacks."

More Sophos MDR cons

Pricing and Cost Advice

"The price of this solution is inexpensive compare with others. The company went out of its way to provide us with a favorable discount. However, there is room for improving the current licensing model and the price of some of the fees. The model is complex and could be streamlined."

"Compared to other tools, Sophos has a pretty good price."

"I would rate the price of Sophos MDR as a nine out of ten, with ten being the most expensive."

"The solution has subscription-based pricing plans."

"Sophos MDR could be more affordable."

"Sophos MDR is not a cheap product. Compared with other solutions in the market, Sophos MDR is available at a good price, especially considering its performance."

"It is an expensive platform."

"I rate Sophos MDR’s pricing a seven or eight out of ten."

"Sophos MDR is a cheap solution."

More Sophos MDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Managed Detection and Response (MDR) solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

11%

Comms Service Provider

10%

University

Computer Software Company

17%

Manufacturing Company

Educational Organization

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Ask a question

Earn 20 points

What do you like most about Sophos MDR?

The user doesn't need a technician; it offers 24/7 support to identify and manage your infrastructure and take complete care of any technological incidents.

See all answers

What needs improvement with Sophos MDR?

I don't have many suggestions for improvement in Sophos MDR as it performs quite well. It would be beneficial to have the ability to pull a report of all incident responses within a tenant, with ca...

See all answers

What advice do you have for others considering Sophos MDR?

I believe Sophos MDR pricing is reasonable for my customers. I would recommend those planning to use Sophos MDR to consider what financial impact a compromise could have on their organization and c...

See all answers

Comparisons

Arctic Wolf Managed Detection and Response vs Carbon Black Managed Detection and Response

Compared 30% of the time

Secureworks Taegis Managed XDR / MDR vs Carbon Black Managed Detection and Response

Compared 26% of the time

Blackpoint Cyber MDR vs Carbon Black Managed Detection and Response

Compared 23% of the time

Huntress Managed EDR vs Carbon Black Managed Detection and Response

Compared 21% of the time

More Carbon Black Managed Detection and Response Competitors

CrowdStrike Falcon Complete MDR vs Sophos MDR

Compared 16% of the time

SentinelOne Vigilance vs Sophos MDR

Compared 10% of the time

Huntress Managed EDR vs Sophos MDR

Compared 8% of the time

Bitdefender MDR vs Sophos MDR

Compared 7% of the time

Intercept X Endpoint vs Sophos MDR

Compared 7% of the time

More Sophos MDR Competitors

Product Reports

Buyer's Guide

Managed Detection and Response (MDR)

August 2025

Carbon Black Managed Detection and Response report

Download Carbon Black Managed Detection and Response product report

Buyer's Guide

Sophos MDR

July 2025

Download Sophos MDR product report

Also Known As

Carbon Black Cloud Managed Detection Deliver

Sophos Managed Threat Response

Overview

Our MDR security solution provides critical insight into attacks using automated machine learning algorithms to validate and prioritize alerts and uncover new threats. Our world-class team of security experts monitors threats in VMware Carbon Black Cloud, and provides rapid response along with threat containment during an incident and policy recommendations to remediate threats.

VMware

Threat Notification Isn’t the Solution – It’s a Starting Point
Other managed detection and response (MDR) services simply notify you of attacks or suspicious events. Then it’s up to you to manage things from there.

With Sophos MTR, your organization is backed by an elite team of threat hunters and response experts who take targeted actions on your behalf to neutralize even the most sophisticated threats.

Sophos

Sample Customers

Coincheck, Mednax, Charles River, Chick-fil-A, Netflix, Domino's Pizza

Information Not Available

Buyer's Guide

Carbon Black Managed Detection and Response vs. Sophos MDR

July 2025

Free Report: Carbon Black Managed Detection and Response vs. Sophos MDR

Find out what your peers are saying about Carbon Black Managed Detection and Response vs. Sophos MDR and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Carbon Black Managed Detection and Response vs. Sophos MDR report.

See our list of best Managed Detection and Response (MDR) vendors.

We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.