![]() Sophos Email and PhishThreat are pretty straight forward. Most of our competitors just offer automated notifications or automated responses to threats whereas our people will be phoning you up or sending you an email about what they find and what they've done to neutralize it. ![]() MTR is a security service, not just a product, so the cost reflects that. This isn't some automated system doing all this work but real, living and breathing humans. We get hands on keyboard and contain and neutralize that threat. Our team take full advantage of the technology at our disposal so let's say we find some threat that's burrowed deep into your system, hooking processes and persisting via its own service or weird registry key. ![]() You can tell us just to notify you of what we find or we can collaborate with you on responses, or we can just do it all for you. If we find a threat that has somehow circumnavigated your defenses, we can respond to it for you (this is what we're famous for). We look at the telemetry we gather from system information and from our products and investigate suspicious activity that we find. We watch over all your devices 24/7 conducting threat hunting, monitoring, investigation, and response. MTR - Managed Threat Response (the team I'm on). You can run queries on your machines to find out what running processes there are. You can also use Live Response and open up a remote command line / terminal to any of your hosts and respond to threats etc. You could search your estate for these and see if any of your devices have seen them before. ![]() Say you've heard about a new threat from a blog article and there's IOCs in there like httpx://evilguys.io/f123 or 123.12.06.66 or badfile.dll. There's mitigations and protections against software exploits, there's technologies designed to stop hackers stealing usernames and passwords, there's tech to identify files getting encrypted by ransomware and rollback the encrypted files to their unencrypted state, and more.ĮDR is another amazing set of tools that will let you hunt for threats. The product was designed to help defend against not just nasty files but hands-on-keyboard hackers. It offers a plethora of security technologies above and beyond antivirus. Intercept X Advanced is our flagship endpoint and server security product. What you've been quoted is far beyond a basic antivirus product which might explain why the price isn't as low as you expected. Hey! Full disclosure, I'm from Sophos - specifically part of the leadership team for our Managed Threat Response service. I just want to make sure that I'm doing the right thing. I have no issue going back to my leadership and telling them, but I've left wondering, is it worth it? Could anyone share their experiences that wouldn't mind being used as a reference of sorts? I'm not going to call anyone or ask people to talk with my leadership. Even with deep discounting, it was nearly double what I expected (I figured $9k the quote was $16k). Then I got the price tag and my jaw dropped. Their #1 choice was Sophos and after the dog and pony show, I agree, it looks amazing. I'm working with CDW to get something figured out. I have about 60 PC and a couple of servers with little to no protection. I have put out most of the major fires and now I'm looking at all my endpoints. I am the new IT Manager for a company that has neglected all things IT for the last 4 years. I realize that this is the Sophos Reddit, but I can't think of a better place to ask this question. r/talesfromtechsupport - Support stories from the trenches ![]() r/sysadmin - General Sysadmin topics and rants r/aww - For your support-related relief needs Sophos XG - Official How-to videos for the XGĭavid Okeyode - XG/UTM Cloud How-to videos Naked Security - Award-winning computer security news Posts from your own blog are welcome, as long as disclosure is made, they are relevant to the sub, and follow Reddit rules regarding self-promotion Posts should be related to Sophos as a company or its productsģ. Members are expected to follow the basic rules of ReddiquetteĢ. Community members shall conduct themselves with professionalism ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |