Try our new research platform with insights from 80,000+ expert users

Secureworks Taegis Managed XDR / MDR vs Sophos MDR comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 3, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Secureworks Taegis Managed ...
Ranking in Managed Detection and Response (MDR)
12th
Average Rating
7.8
Reviews Sentiment
7.1
Number of Reviews
14
Ranking in other categories
Managed Security Services Providers (MSSP) (2nd)
Sophos MDR
Ranking in Managed Detection and Response (MDR)
4th
Average Rating
8.6
Reviews Sentiment
7.2
Number of Reviews
31
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Managed Detection and Response (MDR) category, the mindshare of Secureworks Taegis Managed XDR / MDR is 3.7%, down from 5.7% compared to the previous year. The mindshare of Sophos MDR is 6.0%, down from 6.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Managed Detection and Response (MDR)
 

Featured Reviews

Tom Kar - PeerSpot reviewer
Has a user-friendly setup process, but its query language needs improvement
The product has valuable features for the EDR section. We can easily isolate affected machines in the network. It helps us prevent the spreading of malware or ransomware further Secureworks Taegis ManagedXDR's query language and stability need improvement. Additionally, its price could be better…
Shaun Gordon - PeerSpot reviewer
Extensive data lake, ease of use is great and you can really get started very quickly
Sophos MDR is a service. MDR is managed detection and response. It's a managed security service. So instead of having an anti-malware, which in Sophos' case would be Intercept X, with MDR, they add human-led threat hunting. It's a managed service. So it's not a product that you sell the client per se. You're selling them a service, which is almost like an SLA, and that includes Cloud MDR. MDR is not a product. It's a service. The reality is that when it comes to the likes of SentinelOne, McAfee, CrowdStrike, ESET, and all the other players out there, they're single-product security companies. CrowdStrike is an anti-malware. That's one thing. ESET, same thing. But if you look at the other vendors, within the appliances, you're looking at Fortinet, Palo Alto, and Checkpoint. They only sell firewalls. That's all they do. When you deal with Sophos, they are the entire product suite. They sell firewalls. They sell Intercept X, which is their anti-malware, Intercept X for Server with anti-malware, email protection with ties into Office 365, and Sophos Plus encryption. All of these security products pull telemetry. So every time somebody hits a firewall, it's called, for argument's sake, that goes into their central data lake. All the firewalls around the world add that information to a data lake. Now, when you're dealing with Sophos, because of their exposure, because they've got so many different products, their data lake is a lot more extensive than competing vendors because they're not relying on one threat factor. They're not relying on one area of expertise. They're a global company. So, I can't compare their telemetry, for instance, to the likes of CrowdStrike. If CrowdStrike has probably started doing appliances, then the users will get that benefit as well. Sophos is the only vendor that does do that. It's like hiring a security team. Sophos do things differently in that they've got more telemetry and more insight into a network because they offer a variety of products. The other part about it is Sophos MDR; the service, unlike other vendors like CrowdStrike, is not limited to their products. If you are running CrowdStrike in your company, for instance, you can get their integration packs, in which case Sophos will manage your CrowdStrike system for you. Whereas with CrowdStrike, it's only CrowdStrike. You are locked into that vendor. So Sophos offers that flexibility. It's a multi-vendor service as opposed to SentinelOne or CrowdStrike, which is a single-vendor service. For instance, if I'm running Sophos, I would like to go with CrowdStrike MDR. I would have to remove my entire security investment, in this case, Sophos, and reinstall CrowdStrike in order to use their service. Sophos doesn't have that problem. If you've got CrowdStrike and you've already invested in CrowdStrike, cool. You stay on CrowdStrike. They will still manage it for you.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features are IDS and IPS."
"There are some patent pending detectors within the platform that provides a lot of value."
"The pricing is flexible."
"The initial setup was very straight forward."
"The solution definitely made us way more aware of the possibilities out there."
"The most valuable feature is the fast alerting and response time."
"We don't have a full SOC, so it's helpful to have them sifting through our alerts and only bringing actionable items to us."
"This solution gathers the information logs from all devices and correlates all the information. It notifies us of any critical events taking place across our networks which has been valuable."
"The product’s most valuable features are integration and endpoint protection."
"The most valuable aspect of this solution is the ability to interact with the firewall and workstations seamlessly to shut down the threats. Additionally, you are able to control the workstations remotely."
"Sophos MDR has improved the threat detection process by identifying and addressing the issues before they become severe."
"Sophos MDR directly provides a service monitoring system 24/7 and can configure automatic responses even if the customer is not available."
"The rapid response team acts quickly to relieve customers."
"There are lots of benefits because it includes real-time network threat detection (RNT), IP spoofing prevention, and a 24/7 support system. There is also protection against ransomware attacks."
"The most valuable feature is the ability to integrate multiple functions into a single dashboard regardless of the vendors being integrated."
"The product’s most valuable feature is ease of use."
 

Cons

"Dell Secureworks is for higher-end customers and it's not quite as straightforward to implement or to get up and running as some of the other solutions."
"This solution could be improved with a higher degree of automation such as automated emails, triggers and defining the severity of the cases."
"Dell Secureworks could improve its integration with other third-party solutions."
"The integration with the Carbon Black sensor could be better. ManagedXDR doesn't seem to know how to extract the forensic data from an endpoint that was quarantined by Carbon Black."
"In terms of ROI, I'd be surprised if there is any investment return on the SIM."
"In the next release of this solution, I would like to see file integrity monitoring."
"It would be nice if the solution were a little more affordable."
"We did a PoC of their next-gen antivirus product, but it wasn't ready yet. It was underdeveloped and caused a lot of issues. We'd like to move away from Carbon Black, but they said that it's probably still not to a point where we'd be happy with it. Carbon Black and RedCloak seem to work fine for us."
"The product's stability needs improvement."
"There could be improvement in features like more detailed reporting for the end customer."
"One of the limitations that we have found is with communications and the languages in different countries."
"Sophos MDR's support and basic training of their devices could be improved."
"Once in a great while, an update fails."
"There is room for improvement in performance and upgrades."
"It is a bit expensive. It could be cheaper. There are many competitive products in the market, like Kaspersky, McAfee Antivirus, and more."
"Sophos MDR could offer more integration packs and more vendor flexibility."
 

Pricing and Cost Advice

"Secureworks Taegis ManagedXDR is very expensive and could be more cost-effective."
"The pricing for this solution is reasonable. One agent costs approximately 270 dirhams/70 USD for one year. There is a reduction in cost per licence as the number of licences used increases."
"It is expensive but there is no better product than this."
"The Red Cloak agent is free."
"Initially, the cost was going to be something around $160 or $170. And eventually, I think they brought it down to $110 and they also threw in some endpoint protection platforms."
"The pricing of Dell Secureworks is very reasonable."
"The price is kind of on par. The licensing was comparable to other solutions. It's not particularly high or low."
"The solution is expensive."
"MDR is a complete enterprise solution, and compared to other OEMs, it is one of the cheapest."
"Compared to other tools, Sophos has a pretty good price."
"The cost of the solution is based on how many users use it."
"The price falls somewhere in the middle range."
"The product is reasonably priced considering the cybersecurity features."
"The solution has subscription-based pricing plans."
"Sophos MDR could be more affordable."
report
Use our free recommendation engine to learn which Managed Detection and Response (MDR) solutions are best for your needs.
860,632 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
22%
Manufacturing Company
8%
Government
8%
Financial Services Firm
8%
Computer Software Company
18%
Manufacturing Company
8%
Educational Organization
6%
Comms Service Provider
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Secureworks Taegis ManagedXDR?
The most valuable feature is the support. The support chat. It's always connecting to people. And you open the chat, and it's not about that automated response. It's actually a human being that res...
What is your experience regarding pricing and costs for Secureworks Taegis ManagedXDR?
It is worth the money. It is expensive but there is no better product than this.
What needs improvement with Secureworks Taegis ManagedXDR?
I would not say there is a potential area of improvement. I am also waiting to see what Sophos will bring in terms of enhancement. There is room for AI integration as the industry evolves, and more...
What do you like most about Sophos MDR?
The user doesn't need a technician; it offers 24/7 support to identify and manage your infrastructure and take complete care of any technological incidents.
What needs improvement with Sophos MDR?
There could be improvement in features like more detailed reporting for the end customer. For example, reports should be in simple language that is easy to read and understand for management level ...
What advice do you have for others considering Sophos MDR?
On the topic of improvements, if Sophos MDR offers better pricing on endpoints, it could be even more attractive. Additionally, Sophos offers breach compensation, which is a very appealing factor. ...
 

Also Known As

Secureworks Red Cloak Managed Detection and Response, Dell Secureworks, SecureWorks Taegis Managed TDR
Sophos Managed Threat Response
 

Overview

 

Sample Customers

RICOH, Owens and Minor
Information Not Available
Find out what your peers are saying about Secureworks Taegis Managed XDR / MDR vs. Sophos MDR and other solutions. Updated: June 2025.
860,632 professionals have used our research since 2012.