Huntress vs Sophos MDR comparison

Huntress and Sophos are both solutions in the Managed Detection and Response (MDR) category. Huntress is ranked #3 with an average rating of 9.4, while Sophos is ranked #6 with an average rating of 8.6. Huntress holds a 9.4% mindshare in MDR, compared to Sophos’s 6.4% mindshare. Additionally, 100% of Huntress users are willing to recommend the solution, compared to 100% of Sophos users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Huntress and Sophos MDR based on real PeerSpot user reviews.

Find out in this report how the two Managed Detection and Response (MDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Huntress vs. Sophos MDR Report (Updated: July 2024).

Buyer's Guide

Huntress vs. Sophos MDR

July 2024

Download the complete report

Helped 805,335 peers since 2012

Categories and Ranking

Binary Defense MDR

Mindshare comparison

As of September 2024, in the Managed Detection and Response (MDR) category, the mindshare of Binary Defense MDR is 0.5%, up from 0.4% compared to the previous year. The mindshare of Huntress is 9.4%, up from 7.3% compared to the previous year. The mindshare of Sophos MDR is 6.4%, up from 6.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Managed Detection and Response (MDR)

Featured Reviews

reviewer2329146

Cyber Security Engineer at a manufacturing company with 10,001+ employees

Jan 5, 2024

Offers excellent support, stability, and flexible pricing

The support is very timely and accurate. I would rate the support as a nine out of ten. The response times from Binary Defense have been in line with the agreed-upon statement of work. They have consistently followed through on the features and promises outlined in their quotes and statements of work. We are pleased with our overall partnership with Binary Defense and hope to see the relationship continue to grow. A good enterprise MDR provider, like Binary Defense, should feel like an extension of your team. Their approach makes it seamless and ensures the client feels supported, which might not be the case with other providers.

Read full review

Aaron Johns

MSP Systems Engineer at A. B. M. Co., Inc.

Jul 5, 2024

It is easy to use, provides excellent value, and performance

The Huntress interface is relatively easy to use. I had little to no training and had not used Huntress enough to navigate its website or fully understand its use case. It was simple to use. Huntress is great for small and medium business markets. The value is excellent as well. It is a cost-effective solution, and the integration pieces that we're using with it are phenomenal. I saw the true potential of Huntress a month after we implemented it. Huntress's 24/7 monitoring has been invaluable for triaging and managing alerts. The platform handles most of the monitoring, allowing us to focus on understanding the alerts, their nature, functionality, and the detected threats. This approach has significantly improved our efficiency in this area. Huntress's ability to automatically remediate low-severity threats has streamlined our workflow process, making it faster to respond. Huntress has helped us reduce the need for expensive security tools or to hire costly security analysts. We're not big enough to have a large SOC team, so this has helped us until we can reach that level of growth. Huntress helps protect our endpoints when traditional antivirus is not enough. So, we will rely heavily on it when our traditional antivirus software does not catch the threat.

Read full review

reviewer2521464

Chief Security Officer at a comms service provider with 51-200 employees

Aug 12, 2024

Extensive data lake, ease of use is great and you can really get started very quickly

Sophos MDR is a service. MDR is managed detection and response. It's a managed security service. So instead of having an anti-malware, which in Sophos' case would be Intercept X, with MDR, they add human-led threat hunting. It's a managed service. So it's not a product that you sell the client per se. You're selling them a service, which is almost like an SLA, and that includes Cloud MDR. MDR is not a product. It's a service. The reality is that when it comes to the likes of SentinelOne, McAfee, CrowdStrike, ESET, and all the other players out there, they're single-product security companies. CrowdStrike is an anti-malware. That's one thing. ESET, same thing. But if you look at the other vendors, within the appliances, you're looking at Fortinet, Palo Alto, and Checkpoint. They only sell firewalls. That's all they do. When you deal with Sophos, they are the entire product suite. They sell firewalls. They sell Intercept X, which is their anti-malware, Intercept X for Server with anti-malware, email protection with ties into Office 365, and Sophos Plus encryption. All of these security products pull telemetry. So every time somebody hits a firewall, it's called, for argument's sake, that goes into their central data lake. All the firewalls around the world add that information to a data lake. Now, when you're dealing with Sophos, because of their exposure, because they've got so many different products, their data lake is a lot more extensive than competing vendors because they're not relying on one threat factor. They're not relying on one area of expertise. They're a global company. So, I can't compare their telemetry, for instance, to the likes of CrowdStrike. If CrowdStrike has probably started doing appliances, then the users will get that benefit as well. Sophos is the only vendor that does do that. It's like hiring a security team. Sophos do things differently in that they've got more telemetry and more insight into a network because they offer a variety of products. The other part about it is Sophos MDR; the service, unlike other vendors like CrowdStrike, is not limited to their products. If you are running CrowdStrike in your company, for instance, you can get their integration packs, in which case Sophos will manage your CrowdStrike system for you. Whereas with CrowdStrike, it's only CrowdStrike. You are locked into that vendor. So Sophos offers that flexibility. It's a multi-vendor service as opposed to SentinelOne or CrowdStrike, which is a single-vendor service. For instance, if I'm running Sophos, I would like to go with CrowdStrike MDR. I would have to remove my entire security investment, in this case, Sophos, and reinstall CrowdStrike in order to use their service. Sophos doesn't have that problem. If you've got CrowdStrike and you've already invested in CrowdStrike, cool. You stay on CrowdStrike. They will still manage it for you.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The customization has been the most valuable aspect and was really the reason we ended up selecting Binary Defense. They worked with us to provide exactly the level of support, features, response, and collaboration we needed."

"Among the valuable features are the agent, continuous reporting, and dashboard. It has all the features we need and we haven't had to customize it, other than turning on certain features that we wanted."

"The most valuable feature is reviewing tickets and the notes added by technicians."

"One of the main benefits of Binary Defense MDR is the ability to easily meet with their support team to discuss any issues we encounter."

"Binary Defense's most valuable feature is the 24/7 monitoring and threat hunting. Their team checks the latest breaches and how they're done."

"Our mean time to response has gone down. We're much faster with direct response and have more investigative capabilities than we did before."

"The speed at which their services are reactive is valuable. Nowadays, when a threat hits an endpoint, you've got minutes, not hours or days. Their average response time is about four minutes on an alert. For anything that needs to be sent to us, it's about fourteen minutes, which is pretty good. They're the third SOC that I've used in fifteen years. By far, they are the quickest ones to act. When you're looking at prevention, that's a key factor."

"The case interface is Binary Defense MDR's most valuable feature."

More Binary Defense MDR pros

"I have found it valuable that this solution is always there and always armed."

"Scalability-wise, I rate the solution a ten out of ten...I rate the technical support a ten out of ten."

"The EDR tools are the most beneficial. We protect all our clients' endpoints through their security operation center, which runs through the EDR. We like that it's a small installation that doesn't take up much processing space, and we can quickly install it on our machines. We push out the agents automatically and get everybody up and running quickly."

"We don’t have the required staff to watch the issues that are happening. It is good to have a team from Huntress who can watch the logs 24/7. The tool’s automatic remediation is also fantastic. The solution’s interface is also nice and easy to use. The Huntress team saves us time by going through the issues."

"Huntress is easy to use. It immediately improved visibility and understanding of our security posture."

"Huntress' best feature is the threat-hunting expertise that is part of their 24/7 SOC."

"The solution's most valuable feature is that it has a manned security operation center, not AI-driven."

"Huntress helps by highlighting potential issues, allowing us to take proactive measures."

More Huntress pros

"The most valuable feature is the ability to integrate multiple functions into a single dashboard regardless of the vendors being integrated."

"It is a stable solution...It is a scalable solution."

"The product's most valuable feature is its ability to view environmental activities."

"The product’s most valuable feature is ease of use."

"The solution provides the best security features."

"The most valuable aspect of this solution is the ability to interact with the firewall and workstations seamlessly to shut down the threats. Additionally, you are able to control the workstations remotely."

"The solution is stable."

"The authentication it offers minimizes the risk of access."

More Sophos MDR pros

Cons

"We found a couple of bugs in the user interface."

"We found that an earlier version of the agent had high memory usage and that was a bit concerning, but we raised the concern with their support team and they immediately replied that they had noticed the same thing and had a candidate fix already available... it totally fixed the issue."

"While my understanding is that they're working on this, I would like to see some more of the quantification or reporting."

"The most significant area for improvement is in support for non-English speakers; we're a global organization, so many of our users are not English speakers, which can make interacting with them a challenge. There's no Chinese language support, so we must rely on what we can do with the internet. We don't expect Binary Defense to build a language staff, but details can get lost in translation when we assume the whole world speaks English."

"We should be able to isolate devices faster. They should shorten the time between clicking on a device to contain it and carrying out the action. That would be a welcome improvement."

"I don't find any downside to them, but if I have to put one, it would be consistent manpower or staffing. The only area where the solution can be improved is going to be with people. As they grow, they are struggling with the same thing that every other company is, which is getting talent and getting that talent to stay, but they've just revised their tiering system to go from a flat analyst and manager to a three-tier solution where it goes through two or three before it gets elevated. That seems to have worked out well, so if one level misses it, the next one picks it up, and it works out fine."

"It's sometimes difficult to know when to engage Binary Defense or TrustedSec, their sister company. TrustedSec is more focused on offensive security, as opposed to the defensive security that the MDR solution provides. It would be awesome if there were a better bridge between that relationship for when we need to get more proactive services or when we need to do a penetration test."

"It's hard to think of anything that they need to improve on, but just to point out something, I would like to see them provide advanced XDR."

More Binary Defense MDR cons

"The integration with our RMM could be better."

"To enhance the platform, I suggest adding a feature to forward Huntress's recommended response directly to the client, ensuring their clear understanding of the gathered information."

"In the next release, I'd like to see more intuitive dashboards."

"The solution's UI is an area with certain shortcomings that need improvement."

"I am anxiously watching to see how they evolve their MDR for Office 365. If anything, I would like more automated remediation capabilities in their MDR for Office 365."

"Their EDR can have increased coverage for Macintosh. They do not fully secure Macintosh computers."

"I had been requesting Huntress support for macOS for a while, and they recently rolled it out, making it generally available within two months. Having a regular support line would be good."

"Ultimately, the clarity of their alerts is paramount for effective threat communication and could benefit from clearer remediation steps."

More Huntress cons

"The integration with third-party solutions as an area for slight improvement"

"The only challenge we face with the tool is the pricing. Clients often compare it with other products in the market and try to negotiate prices. This concern has caused some challenges in closing deals. Otherwise, as a product, we have no worries."

"Multitenancy features of Sophos Managed Threat Response should be improved. You cannot use the solution for multiple clients."

"The reports should be more comprehensive and easier to organize."

"It is a bit expensive. It could be cheaper. There are many competitive products in the market, like Kaspersky, McAfee Antivirus, and more."

"It could be more secure."

"Support could provide a faster response."

"Sophos MDR could offer more integration packs and more vendor flexibility."

More Sophos MDR cons

Pricing and Cost Advice

"It's valued at the right price. Even with the number of endpoints we have, we don't feel that it's a lot more than any competitor. In fact, it might be less expensive when you look at the fact that you're getting a full flex SOC out of it along with the tools."

"The pricing is on target. Working with their sales team on pricing negotiations was a pleasant process. They were very respectful of the constraints we had and I feel that we're paying a fair price."

"The solution's price is spot on; if anything, it's slightly below the norm for most services. Compared to building the same team internally, it would cost more to create the same amount of capability than what we get from an external team. Price-wise, Binary Defense is in a great spot."

"After we acquired this platform, we met with a number of different vendors. Binary Defense came in with a proposal that was surprisingly affordable. In fact, we were able to recoup the cost of their services within a short period of time. This is because Binary Defense is able to provide the same level of security as a team of two or three in-house analysts but at a fraction of the cost. As a result, Binary Defense is saving us an estimated $250,000 to $300,000 per year."

"Binary Defense has changed its pricing model from being primarily based on the volume of data to one based on escalations and incidents they handle."

"Binary Defense MDR is priced competitively and may be slightly lower than CrowdStrike."

"The pricing is very good. They are definitely competitive and they were lower at the time that we went with them."

"The pricing isn't that bad, it's very competitive. I don't feel that it's over-priced and I don't feel that it's under-priced."

More Binary Defense MDR pricing and cost advice

"The solution's pricing is fair."

"I rate the product pricing six out of ten for the Malaysian market. However, I would rate it a three out of ten for the Australian, New Zealand, or Singapore markets."

"The pricing model for Huntress is similar to competitors and is charged per endpoint."

"The Huntress pricing is an excellent value for what the product provides."

"While other options have emerged since Huntress' arrival, I believe it still offers the best value for the features and services it provides."

"Huntress is priced fairly for the services and value it provides."

"The solution is cheap compared to other alternatives. It offers good value for money. For the whole solution, it's up to about five pounds per device per month. Considering what it does, I think that's very good value."

"It is fair. They provide good value for the product that they deliver. I have had one price increase in the entire time I have used them. They added a bunch of features and then said that they have to increase our price a little bit. That is a fair way to handle it."

More Huntress pricing and cost advice

"Sophos MDR could be more affordable."

"I rate Sophos MDR’s pricing a seven or eight out of ten."

"Sophos MDR is a cheap solution."

"The solution is expensive."

"I would rate the price of Sophos MDR as a nine out of ten, with ten being the most expensive."

"Compared to other tools, Sophos has a pretty good price."

"The cost of the solution is based on how many users use it."

"MDR is a complete enterprise solution, and compared to other OEMs, it is one of the cheapest."

More Sophos MDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Managed Detection and Response (MDR) solutions are best for your needs.

See recommendations

805,335 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Healthcare Company

Manufacturing Company

Financial Services Firm

Computer Software Company

19%

Manufacturing Company

Retailer

Financial Services Firm

Computer Software Company

22%

Manufacturing Company

Government

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Binary Defense MDR?

The most valuable feature is reviewing tickets and the notes added by technicians.

See all answers

What is your experience regarding pricing and costs for Binary Defense MDR?

The pricing is very competitive; it's on par with or below others. For those sensitive to pricing, I'd advise that th...

See all answers

What needs improvement with Binary Defense MDR?

Sometimes, something may not install right; however, whenever we have challenges, they are very solution-oriented and...

See all answers

What do you like most about Huntress?

It is very easy to use. It is a great solution. They are one of the better vendors that I have ever worked with since...

See all answers

What needs improvement with Huntress?

I had been requesting Huntress support for macOS for a while, and they recently rolled it out, making it generally av...

See all answers

What is your primary use case for Huntress?

It integrates seamlessly with RMM, making it easy to roll out and use. Many fixes are automated, so you can approve t...

See all answers

What do you like most about Sophos MDR?

The user doesn't need a technician; it offers 24/7 support to identify and manage your infrastructure and take comple...

See all answers

What needs improvement with Sophos MDR?

Sophos MDR could offer more integration packs and more vendor flexibility, which they're working on. But that's proba...

See all answers

What advice do you have for others considering Sophos MDR?

Just go for it. You can't go wrong with 24/7 active threat hunters, AI scientists, and a global footprint of a couple...

See all answers

Comparisons

Darktrace vs Binary Defense MDR

Compared 26% of the time

CrowdStrike Falcon vs Binary Defense MDR

Compared 22% of the time

SentinelOne Singularity Complete vs Binary Defense MDR

Compared 20% of the time

Arctic Wolf Managed Detection and Response vs Binary Defense MDR

Compared 17% of the time

Cortex XDR by Palo Alto Networks vs Binary Defense MDR

Compared 15% of the time

More Binary Defense MDR Competitors

SentinelOne Vigilance vs Huntress

Compared 16% of the time

CrowdStrike Falcon Complete MDR vs Huntress

Compared 14% of the time

Blackpoint Cyber MDR vs Huntress

Compared 10% of the time

Arctic Wolf Managed Detection and Response vs Huntress

Compared 7% of the time

Field Effect MDR vs Huntress

Compared 2% of the time

More Huntress Competitors

CrowdStrike Falcon Complete MDR vs Sophos MDR

Compared 26% of the time

Arctic Wolf Managed Detection and Response vs Sophos MDR

Compared 9% of the time

Bitdefender MDR vs Sophos MDR

Compared 9% of the time

SentinelOne Vigilance vs Sophos MDR

Compared 8% of the time

Blackpoint Cyber MDR vs Sophos MDR

Compared 6% of the time

More Sophos MDR Competitors

Product Reports

Buyer's Guide

Binary Defense MDR

September 2024

Download Binary Defense MDR product report

Buyer's Guide

Huntress

September 2024

Download Huntress product report

Buyer's Guide

Sophos MDR

August 2024

Download Sophos MDR product report

Also Known As

Binary Defense Vision, Binary Defense Managed Detection and Response, Binary Defense Managed Detection & Response

No data available

Sophos Managed Threat Response

Learn More

Binary Defense

Huntress

Sophos

Overview

Binary Defense provides a Managed Detection and Response service using an Open XDR strategy that detects and isolates threats early in the attack lifecycle. Expert security analysts in the Binary Defense Security Operations Center leverage an attacker’s mindset, monitoring your environments for security events 24x7x365 and acting as an extension of your security teams. When a security event occurs, Binary Defense analysts triage, disposition, and prioritize the event. Analysts conduct full kill chain analysis and supply tactical and strategic mitigation recommendations to your security team with the goal of increasing your organization’s security posture against the latest adversary threats.

Visit us online at https://www.binarydefense.com

Hackers are constantly evolving, exploiting new vulnerabilities and dwelling in small business environments—until they meet Huntress. Discover the power of managed detection and response backed by ThreatOps.

Threat Notification Isn’t the Solution – It’s a Starting Point
Other managed detection and response (MDR) services simply notify you of attacks or suspicious events. Then it’s up to you to manage things from there.

With Sophos MTR, your organization is backed by an elite team of threat hunters and response experts who take targeted actions on your behalf to neutralize even the most sophisticated threats.

Sample Customers

Securitas USA, Black Hills Energy, Lincoln Electric,The J.M. Smuckers Company, New York Community Bank, State of Connecticut, NCR

Information Not Available

Buyer's Guide

Huntress vs. Sophos MDR

July 2024

Free Report: Huntress vs. Sophos MDR

Find out what your peers are saying about Huntress vs. Sophos MDR and other solutions. Updated: July 2024.

DOWNLOAD NOW

805,335 professionals have used our research since 2012.

See our Huntress vs. Sophos MDR report.

See our list of best Managed Detection and Response (MDR) vendors.

We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.