Try our new research platform with insights from 80,000+ expert users

Darktrace vs Sophos Email comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 9, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.2
Microsoft Defender for Office 365 enhances email protection, reduces costs, and increases productivity, offering invaluable data security.
Sentiment score
7.3
Users of Darktrace experience high returns and savings, enhanced system visibility, threat detection, and improved cybersecurity cost-effectiveness.
Sentiment score
8.7
Sophos Email delivers cost-efficient security and reduces unsolicited emails, enhancing ROI, particularly valuable for government contracts.
It has also decreased our time to detection and response by about 15 to 20 percent.
Overall, cost of owning and operating our system goes down.
It's hard to quantify the return on investment we've seen from Microsoft Defender for Office 365.
Using this solution provides financial benefits by securing from server attacks, which offers indirect savings.
 

Customer Service

Sentiment score
7.0
Microsoft Defender for Office 365 offers reliable support, praised for responsiveness, despite some challenges with clarity and third-party resolutions.
Sentiment score
7.7
Darktrace's customer support is highly rated for responsiveness and proficiency, with minor improvements suggested for complex deployments and specific regions.
Sentiment score
6.4
Sophos Email support is responsive but requires improvements in speed and expertise; users can contact via phone, chat, or email.
Over the past two years, there have been no critical problems.
we opened tickets, and they typically resolve them quickly.
Customer service and support have been fantastic.
The technical support from Darktrace is of high quality.
Darktrace provides excellent technical support with a monthly meeting to review platform incidents, ensuring the system functions as expected.
The challenge lies in waiting for a response after logging a ticket.
When I reported a problem with our firewall, they acted promptly and delivered another piece of equipment.
 

Scalability Issues

Sentiment score
8.2
Microsoft Defender for Office 365 scales seamlessly across configurations, supporting thousands of users with effortless integration and optimal performance.
Sentiment score
7.6
Darktrace is highly scalable, adaptable to enterprise environments, and supports both cloud-based and on-premise expansion with careful management.
Sentiment score
7.3
Sophos Email is scalable and reliable for SMEs, though licensing and server maintenance can be challenging for larger use.
We have never faced scalability problems, and Microsoft manages it effectively.
Microsoft Defender for Office 365 scales transparently for us, as we grew from 1,000 users to 3,000 users, and we didn't notice much difference.
Darktrace has high scalability, and I would rate it a nine out of ten.
Since it's cloud-based, it expands easily.
For scalability, I would rate it an eight out of ten because they integrate with many technologies.
 

Stability Issues

Sentiment score
7.7
Microsoft Defender for Office 365 is highly reliable, offering stable performance, quick issue resolution, and high user satisfaction ratings.
Sentiment score
8.5
Darktrace is highly stable, reliable, with 99.9% uptime, efficient performance, and excellent monitoring, rated favorably by users.
Sentiment score
8.1
Sophos Email is reliable and stable, highly rated for handling significant email activity despite minor issues and update requests.
The solution is stable, as we have been using it for the past two years.
I would assess the stability and reliability of Microsoft Defender for Office 365 as very stable, with barely any issues.
Overall, the stability and reliability of Microsoft Defender for Office 365 are good.
The stability of Darktrace is excellent, rated ten out of ten.
The appliance itself has never let me down.
For stability, I would rate Darktrace an eight out of ten.
 

Room For Improvement

Microsoft Defender for Office 365 needs enhanced virus protection, compatibility, UI, integration, reporting, and cost transparency to improve user experience.
Darktrace needs better integration, interface, pricing, reporting, user-friendliness, automation, documentation, and collaboration to reduce false positives and improve protection.
Sophos Email needs better security, user interface, compatibility, and performance, with improvements in pricing and reporting features.
The main area for improvement is simplifying the implementation and rollout process.
Microsoft could improve by offering recommendations for domain spoofing attacks, especially scenarios where DNS records like SPF, DKIM, and DMARC are not properly published.
There is a different console for different things; I just want one consolidated console.
There is no dedicated salesperson in Egypt, and having one would help to improve focus on this market.
They say they can integrate with most firewalls, but when we did an integration with Meraki MX firewalls, that integration didn't work and still doesn't work to this day.
Darktrace could improve by integrating with email security gateways like Mimecast or Ironscales.
Sophos Email does not work with split delivery.
 

Setup Cost

Enterprise users find Microsoft Defender for Office 365 pricing complex but valuable due to integration with Office 365 features.
Enterprise buyers have mixed pricing perceptions of Darktrace, with costs up to $350,000 annually and flexible payment options.
Sophos Email offers reasonable pricing with flexible options, balancing affordability and features for various organizational needs.
We've likely saved 30% of costs.
Money-wise, it is a part of the Office 365 suite, making it slightly more expensive compared to Trend Micro.
Microsoft is quite affordable with a lot of features available for any size organization.
The product is considered expensive compared to others.
The pricing is costly in USD, and they charge based on device counts.
The licensing cost is approximately eight dollars a year.
Sophos Email pricing is a bit high, especially since I purchase through a partner, and they sell it at a higher price since they also seek to make a profit.
 

Valuable Features

Microsoft Defender for Office 365 offers comprehensive security with real-time updates and automated threat response, enhancing multi-platform enterprise safety.
Darktrace provides AI-driven threat detection and autonomous response, offering real-time monitoring, high visibility, and minimal human intervention.
Sophos Email provides robust security, AI-driven features, and seamless integration with Office 365 and Google Workspace for comprehensive protection.
It ranks the threats and allows us to prioritize those hitting us the hardest, such as email threats.
It provides end-to-end visibility on email threats such as phishing, extending beyond Exchange Online Protection.
The value of the DLP feature is significant to us because we have internal data, sometimes sensitive, and the users may not always be aware of security and privacy, which might lead them to send out information mistakenly to external parties.
It is capable of responding to lateral movement and ransomware deployment within environments where there is data exfiltration.
I do not need to manually process incidents as Darktrace provides an incident summary, potential detection paths, and other details, all exportable with just a click.
If I am in a data center where I don't have layer two, it becomes an issue because the autonomous response is reliant on sending spoofed TCP resets to my core switch to block traffic, which is a major issue.
It provides a defense layer for email protection, scanning every incoming and outbound email for malware and spam.
The spam reduction feature in Sophos Email provides comfort when using it.
 

Categories and Ranking

Microsoft Defender for Offi...
Sponsored
Ranking in Email Security
1st
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
52
Ranking in other categories
Email Archiving (1st), Advanced Threat Protection (ATP) (1st), Microsoft Security Suite (11th), Secure Email Gateway (SEG) (1st)
Darktrace
Ranking in Email Security
9th
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
80
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (1st), Network Traffic Analysis (NTA) (1st), Network Detection and Response (NDR) (1st), Extended Detection and Response (XDR) (6th), AI-Powered Chatbots (2nd), Cloud Security Posture Management (CSPM) (15th), Cloud-Native Application Protection Platforms (CNAPP) (11th), Attack Surface Management (ASM) (3rd), AI-Powered Cybersecurity Platforms (2nd)
Sophos Email
Ranking in Email Security
10th
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
32
Ranking in other categories
Office 365 Protection (1st)
 

Mindshare comparison

As of May 2025, in the Email Security category, the mindshare of Microsoft Defender for Office 365 is 12.9%, down from 18.3% compared to the previous year. The mindshare of Darktrace is 3.1%, up from 1.1% compared to the previous year. The mindshare of Sophos Email is 2.2%, down from 2.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Email Security
 

Featured Reviews

Tolu Omolaja - PeerSpot reviewer
Great URL scanning and attachment scanning, but I would like more proactive threat analysis
The two main features that prove most beneficial for us are URL scanning and attachment scanning. URL scanning involves an automatic scan of links and emails. When a user clicks on a link within an email, the system promptly checks the link's safety. If the link is deemed safe, access is granted automatically. However, if it is flagged as unsafe, we receive feedback and notification to caution us about the potentially harmful link. At this point, we are presented with the option to proceed or return. I have personally witnessed the system identify a few unsafe links, making this the primary advantage of using the solution. The second crucial aspect is the scanning of attachments. When an email containing an attachment arrives, we receive a notification of the new email, along with information that the attachment is being scanned for threats. This additional layer of security provides peace of mind for our organization. While Microsoft Defender for Office 365 offers numerous features, these two stand out as particularly impressive and valuable to us.
Malebo Lethoba Group - PeerSpot reviewer
Have found the AI analyst and detection functions highly valuable for network operations while managing complexity in initial setup
The functions I find most valuable in Darktrace ( /products/darktrace-reviews ) are the AI analyst as well as the detection.The autonomous response capabilities of Darktrace are not crucial for me because it doesn't work in a network where there are no core switches. In a modern network, the autonomous response doesn't work, especially when sitting in a shared data center.If I'm running a traditional network where I am not in a shared data center with a layer two dedicated for my resources, then it can work for me. However, if I am in a data center where I don't have layer two, it becomes an issue because the autonomous response is reliant on sending spoofed TCP resets to my core switch to block traffic, which is a major issue.
NaveedAli - PeerSpot reviewer
Provides good identity proxy features, but sandboxing and spam control features could be improved
Sophos gives you a feature set to manage your on-premises firewall on the cloud. I just integrated my on-premises firewall into the cloud, and I can manage the tool through the cloud as well if needed. I recommend using Sophos Email as a proxy. For email gateways, I advise choosing mature products with rich feature sets, like Trend Micro or CrowdStrike. The solution's integration with other tools is very simple. I easily integrated Sophos Email with my Active Directory. My organization needs a WAF with a limited feature set, which we use through Sophos. Purchasing additional WAF will be costly, but I get sandboxing and WAF features free of cost with Sophos, which is included in the license. Overall, I rate the solution a seven out of ten.
report
Use our free recommendation engine to learn which Email Security solutions are best for your needs.
851,604 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
9%
Manufacturing Company
8%
Government
6%
Computer Software Company
14%
Manufacturing Company
8%
Financial Services Firm
8%
Government
7%
Computer Software Company
13%
Manufacturing Company
10%
Healthcare Company
7%
Retailer
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Microsoft Defender for Office 365?
Threat Explorer is an invaluable tool for me, and it plays a crucial role in helping me discern the origins of variou...
What is your experience regarding pricing and costs for Microsoft Defender for Office 365?
Microsoft is quite affordable with a lot of features available for any size organization.
What needs improvement with Microsoft Defender for Office 365?
Microsoft could improve by offering recommendations for domain spoofing attacks, especially scenarios where DNS recor...
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing u...
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is ...
What do you like most about Darktrace?
A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet tr...
What do you like most about Sophos Email?
The solution's identity proxy feature is very good and reliable.
What is your experience regarding pricing and costs for Sophos Email?
Sophos Email pricing is a bit high, especially since I purchase through a partner, and they sell it at a higher price...
What needs improvement with Sophos Email?
Sophos Email does not work with split delivery. If I have a domain with 100 mailboxes and want to protect only 50, it...
 

Also Known As

MS Defender for Office 365
No data available
Sophos Email Security
 

Overview

 

Sample Customers

Microsoft Defender for Office 365 is trusted by companies such as Ithaca College.
Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
Del Monte Foods, Terra Verde, spicerhaart, RIVERLITE, Dataprise, SureBridge, Reed's School, Sayfol International School
Find out what your peers are saying about Darktrace vs. Sophos Email and other solutions. Updated: April 2025.
851,604 professionals have used our research since 2012.