Sophos Endpoint and NetWitness NDR are two security solutions in the threat management category. Sophos Endpoint has an edge in user-centric protection, while NetWitness NDR excels in network traffic analysis.
Features: Sophos Endpoint offers Intercept X, which provides robust ransomware detection and rollback capabilities. It excels in synchronized security and user-friendly deployment. NetWitness NDR features comprehensive network visibility, incident response, and interoperability, enabling detailed communication capture and market analysis.
Room for Improvement: Sophos Endpoint users suggest improvements in deployment and central management and note the need for anti-spam features and better integration with ticket systems. NetWitness NDR users recommend enhancements in reporting, scalability, and integration with SOAR solutions, along with improvements in threat detection and hunting features.
Ease of Deployment and Customer Service: Sophos Endpoint offers flexible deployment options, including public cloud and on-premises setups. Its technical support receives mixed reviews, with some delays reported. In contrast, NetWitness NDR primarily supports on-premises deployments and has generally responsive and effective technical support.
Pricing and ROI: Sophos Endpoint is considered cost-effective, offering discounts and flexible licensing with perceived good value for its protection features. NetWitness NDR is viewed as expensive, with its pricing based on endpoint count, but both solutions are considered to provide a solid return on investment by enhancing security and productivity.
I would give customer support a rating of 10 out of 10 because they resolve my problems as soon as possible, and I receive very good, quick support from Sophos.
I rate Sophos support as excellent, giving it a ten out of ten.
They have introduced a dedicated role called Technical Account Manager (TAM) for every partner.
If we are using 300 machines and suddenly 10 more people are joining our organization, I will just raise a ticket on Sophos Endpoint and they will increase my 10 endpoint licenses.
Sophos Endpoint is stable in my experience for the past two years.
Sophos Endpoint should include the Linux endpoint agent and should provide a solution for Linux endpoints as well, because the server license is costly and nobody wants to use the server license on an endpoint machine.
I think there should be templates in place so I do not have to make everything from scratch; having templates for NATing, de-NATing, and LAN to WAN rules would save us time.
Users have noted that daily upload limits per device, overall data lake storage capacity tied to licenses, and daily API query limits can be restrictive.
It is quite affordable; I think the pricing and licensing are reasonable.
The cost is reasonable and cheaper than other alternatives.
The pricing is slightly increased, but it is good because Sophos Endpoint has a lot of features.
Sophos Central serves as one central management portal for managing firewalls, endpoint, Sophos encryption, and mobile device management solutions.
Web filtering helps provide protection by allowing me to block unwanted and unauthorized websites from Sophos EPP Suite, which helps prevent unauthorized intrusion, thus keeping our organization servers secure.
With the reseller management, I can manage multiple clients without having to log in to each client.
| Product | Market Share (%) |
|---|---|
| Sophos Endpoint | 1.2% |
| NetWitness NDR | 0.6% |
| Other | 98.2% |
| Company Size | Count |
|---|---|
| Small Business | 10 |
| Midsize Enterprise | 2 |
| Large Enterprise | 5 |
| Company Size | Count |
|---|---|
| Small Business | 45 |
| Midsize Enterprise | 7 |
| Large Enterprise | 14 |
Using a centralized combination of network and endpoint analysis, behavioral analysis, data science techniques and threat intelligence, NetWitness NDR helps analysts detect and resolve known and unknown attacks while automating and orchestrating the incident response lifecycle. With these capabilities on one platform, security teams can collapse disparate tools and data into a powerful, blazingly fast user interface.
Sophos Endpoint offers centralized management, AI-powered detection, and comprehensive threat prevention. It is designed for antivirus, ransomware defense, and threat management across sectors like education, healthcare, and finance. Its benefits include synchronized security, simple deployment, and a user-friendly interface.
Sophos Endpoint provides multiple functionalities to protect networks, devices, and applications. It emphasizes advanced threat prevention and AI-powered detections, enhancing protection against malware and ransomware. Combining web filtering, machine learning, and data loss prevention ensures a secure environment, while integration with other Sophos tools allows for streamlined security management. Sophos Endpoint addresses the need for efficient protection with lightweight operations, synchronized security between endpoints and firewalls, and notable ease of deployment. Resource management is a key focus, alongside improving antivirus detection and systems integration. Price competitiveness and expanded support for macOS are also priorities.
What are some key features of Sophos Endpoint?In the education, healthcare, and finance sectors, Sophos Endpoint is utilized to ensure secure IT infrastructure. It supports initiatives in digital safety and compliance with integration capabilities for web filtering, firewall, and VPN security. Organizations benefit from mobile device management and disk encryption to safeguard sensitive information effectively.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
