What is our primary use case?
I've been involved in installing and supporting Sophos Central for customers, particularly focusing on server security.
How has it helped my organization?
I have experience using Sophos Central for endpoint security management, particularly in two major companies: Dunkin' Brothers and Shop Up Limited. Dunkin' Brothers has approximately 500 support center users, while Shop Up Limited has around 700 users. On a scale of one to ten, I would rate my experience with Sophos Central as a six or seven at most, with six being the average.
We've observed significant improvements in threat detection and response capabilities since implementing Sophos Central, especially when compared to other endpoint solutions like Fortinet. This enhanced capability has made Sophos Central a highly sought-after solution in Bangladesh. Customers appreciate the effectiveness and efficiency of Sophos Central's threat response compared to other options in the market. One notable example is a client of ours who experienced attempted hacking. Sophos Central promptly detected and blocked the intrusion, alerting our client to the potential threat. Our client appreciated the proactive response and effective blocking of the hacker, highlighting the superior quality of support provided by Sophos Central.
Sophos Central's automated threat response played a crucial role in mitigating security risks, as exemplified in a recent case at Popular Pharmaceutical Limited. With nearly 300 users relying on endpoint security with threat response and managed detection, they detected suspicious activity indicating potential hacking attempts from external networks. Thanks to Sophos Central's automated response, the malicious traffic was promptly blocked, and the IT team was alerted to the suspicious behavior. Additionally, when a ransomware attack occurred on one system, Sophos Central's support center swiftly isolated the affected system, preventing the further spread of the attack.
Sophos Central's reporting and analytics capabilities greatly contribute to providing actionable insights to our customers. I genuinely appreciate the effectiveness of Sophos in generating comprehensive reports, which cover all aspects efficiently. I would rate this feature as an eight out of ten for its robustness and usability.
The interface of Sophos Central has significantly contributed to the ease of managing security policies and procedures. In my experience, I've found it to be highly efficient, especially when compared to other solutions like Fortinet. The features such as system heartbeat and automatic system updates are particularly commendable.
What is most valuable?
One of the significant advantages of Sophos is its affordability compared to other technologies like Check Point and Fortinet. This makes it a preferred choice for businesses, especially government and smaller operations.
The most popular features of Sophos Central are its heartbeat functionality, threat response and detection capabilities, and its rule management system. Notably, the rule management system is not limited to servers but extends to client systems as well. These three components are highly valued for their effectiveness. Additionally, the ability to manage rules through a drag-and-drop system adds further convenience to our administration tasks.
One feature that I find particularly valuable for maintaining our cybersecurity posture is the automatic update functionality. This feature ensures that our systems are consistently up to date with the latest security patches and enhancements. Additionally, the ability to push updates to every software center by default is highly convenient and efficient in ensuring that all endpoints are properly secured.
What needs improvement?
Although Sophos Central is well-established, there's a shortage of engineers available locally, which has hindered our ability to effectively support and implement solutions. I believe there's room for improvement, especially in terms of traffic monitoring. If Sophos Central could provide detailed traffic monitoring based on user counts, similar to what is available in Fortinet, it would enhance the overall value proposition for our customers. Sophos could potentially provide more detailed insights into user activity, such as the number of users currently logged into the system and those already under protection. Additionally, it would be beneficial to have visibility into network traffic, including guest networks, and identify any suspicious activities or attempts to access unauthorized resources. The main drawback lies in the weak after-sales support system.
For how long have I used the solution?
I have been working with it for two years.
What do I think about the stability of the solution?
I find Sophos to be quite stable, especially considering its widespread usage in Bangladesh, with approximately 1.8 million devices currently relying on it. This stability is particularly beneficial for small businesses or offices seeking security solutions.
What do I think about the scalability of the solution?
It provides good scalability capabilities.
How was the initial setup?
The installation process in Sophos Central is significantly easier compared to other solutions. It's straightforward and hassle-free – we can simply download the necessary plugins from the Central warehouse and install them with ease.
What about the implementation team?
The deployment time for Sophos Central varies depending on factors such as the number of users, desktops, or nodes being connected. For smaller deployments involving around ten or twenty users connecting to Sophos Central, the process typically takes a maximum of two to two and a half hours. During this time, the network may need to be disconnected temporarily. Once logged into Sophos, the license can be installed, and then the PCs will automatically receive installation prompts via email. Each computer usually requires around fifteen to twenty minutes to complete the installation of Sophos Central nodes.
During our previous deployment, there were three of us, including myself, working as senior system engineers. Both of my colleagues had approximately two years of experience with Sophos. With such expertise within our team, deployment tasks were typically straightforward and didn't require much effort. However, when faced with customer requests for complex rules or configurations beyond our capabilities, we would engage with our local vendor and service partners for assistance.
What's my experience with pricing, setup cost, and licensing?
The pricing of Sophos is quite reasonable and generally cheaper compared to competitors like Fortinet and Check Point. However, it's important to note that certain licenses may come with higher costs, which can be a drawback.
What other advice do I have?
I believe incorporating Sophos Central into security infrastructure could further enhance the defenses. However, considering customers' perspectives and budget constraints, particularly for small and medium-sized organizations, it's essential to ensure cost-effectiveness. In Bangladesh, there's a growing preference for Sophos due to its suitability for various environments and budget scales. Therefore, I suggest focusing on improving sales and after-sales support to meet the increasing demand and effectively deploy Sophos solutions across Bangladesh. Overall, I would rate it six out of ten.
Which deployment model are you using for this solution?
Public Cloud
*Disclosure: My company has a business relationship with this vendor other than being a customer: Integrator
