For organizations leveraging Sophos for endpoint security protection. Have you upgraded from x-intercept to EDR?  I understand the overall EDR features and technology, but was interested in hearing back from someone who is using it currently or who has evaluated it. 

Security - Below are some reasons to justify the WHY and WHAT around EDR:   Provides the ability to isolate a machine while the team investigates. Deeper insights into what is happening, allowing the team to respond and ultimately remediate quickly.   Additional reporting on the state of our security/compliance posture. Help determine the scope and impact of an incident. Ability to search across all devices and help identify indicators of similar compromise. Ability to clean and block files across all machines. Conduct malware analysis, we are not currently able to do this with our current Sophos deployment. Agree?  

1 comments

https://www.pulse.qa

Pulse User

Below are some reasons to justify the WHY and WHAT around EDR:   Provides the ability to isolate a machine while the team investigates. Deeper insights into what is happening, allowing the team to respond and ultimately remediate quickly.   Additional reporting on the state of our security/compliance posture. Help determine the scope and impact of an incident. Ability to search across all devices and help identify indicators of similar compromise. Ability to clean and block files across all machines. Conduct malware analysis, we are not currently able to do this with our current Sophos deployment. Agree?