Sophos Central Managed Detection and Response Complete Server
349,21 € - 1.047,62 €
Quantity | Unit price |
---|---|
1 - 9 | 349,21 € |
10 - 24 | 331,75 € |
25 - 49 | 314,29 € |
50 - 99 | 279,37 € |
100 + | 244,45 € |
Description
Sophos Managed Detection and Response – Artificial intelligence mixed with human expertise
With "Sophos Central MDR for Server" you can achieve the highest level of security Sophos can currently offer for the protection of your Server (Linux, Windows Server 2008 R2+). In this bundle, you get all the features of Intercept X Advanced for Server with XDR and the new, enhanced MDR service.
Active threat response by a team of experts – 24/7
With the MDR service, Sophos provides a highly available “Service Operation Center” (SOC). It is the perfect complement for all IT administrators where there are no free resources to go threat hunting themselves with XDR's tools. It takes highly skilled and specialized personnel to use XDR to proactively scan the network for potential threats and take the correct steps when an attack occurs.
With Sophos Central MDR for Server, you no longer need to look for trained personnel yourself. Sophos provides a team of experts who work 24/7 to combat threats.
Functional scope of MDR Complete
24/7 circumstantial threat hunting
If something has been detected on your system that could not be fixed automatically and requires human expertise, the MDR team is there for you on a 24/7 basis. An expert then takes a close look at the critical note and uses his experience to decide what needs to be done.
24/7 circumstantial threat search
MDR team analysts take a close look at the most critical devices or user accounts in your organization. They look at how people communicate on the network, whether any suspicious processes are running or any other unusual or atypical behavior can be detected. The collected data is used to try to predict attackers' strategy and identify new indicators of attack (IoA).
Attack detection
The MDR team pays special attention to attacks executed through legitimate processes, such as PowerShell. Such attacks are often successful because they are difficult for monitoring tools to detect. The MDR team uses proprietary analytics to monitor these processes to ensure they are not being misused for malicious purposes.
Security Health Check
The Security Health Check ensures that your Sophos Central products can always operate at maximum performance. To do this, the MDR team looks at your network requirements and makes recommendations for configuration changes.
Activity Reports
You will learn the current state of your systems, what intelligence was gathered during the reporting period, and what threats were averted. A histogram of these reports is then created over the period where you use the MDR service. With the help of this data, Sophos creates so-called "scorecards", with which one can compare oneself to previous periods.
Dedicated contact person
When an incident is identified, you will be assigned a dedicated response leader who will be on the phone to assist you with the complete resolution of the issue!
Direct telephone support
Another advantage of the MDR Complete variant is direct access to the MDR analyst team, which is available 24/7 for your team. So if you have a question or want to talk about a specific threat case, for example, you can contact the Security Operations Center (SOC) directly by phone.
Optimized telemetry data
For enhanced telemetry, the Complete version goes beyond just detecting events at the endpoint and includes data from other Central products or supported third-party vendors in the threat analysis.
Proactive improvement of the security status
MDR Complete takes the Security Health Check to the next level. While the normal MDR variant makes general recommendations for the configuration of Central products, the MDR team now also takes into account the business context behind the configuration settings of, for example, a policy. Get guidance on how to fix configuration and architecture vulnerabilities that negatively impact your security.
Asset Recognition
Sophos specialists will not only discuss critical operations with you, but will also gain an overview of applications in use and identify potential points of attack that this may create in the system. In doing so, the MDR team considers what they call an "asset inventory" that helps them understand which applications are running on an endpoint and whether they are affected by open vulnerabilities. This results in valuable detailed information specific to your business.
Onboarding process with maximum control and transparency
Regardless of whether you choose the normal MDR or MDR Complete variant, you retain control over how autonomously the MDR team should operate. This is regulated right at the beginning in the so-called onboarding process. When you purchase the Sophos MDR service, you can choose from three options that determine what response you expect from the MDR team:
Notification
At this level, if the Sophos MDR team has detected a threat case or an attack, it will only inform you about it, but will not take action for you on its own. However, you will get a detailed report about the cause and detection with actionable steps to fix the threat manually.
Cooperation
The Sophos MDR team works with your IT team or even an external consulting firm to respond to the appropriate threats.
Authorization
Here, the MDR team takes care of containment and neutralization actions completely independently and only informs you about the measures taken.
Included integrations - no additional costs
Security data from the following sources can be integrated free of charge for use by the Sophos MDR team. Telemetry sources are used to increase the visibility of your environment, generate new threat detections, and improve the reliability of existing threat detections.
Sophos XDR
The only XDR platform that combines native endpoint, Server, firewall, cloud, email, mobile and Microsoft integrations.
Included in Sophos MDR and Sophos MDR Complete pricing.
Sophos Firewall
Monitor and filter inbound and outbound network traffic to stop advanced threats before they can cause damage.
The product is sold separately; it is integrated at no extra charge.
Sophos Endpoint Protection
Block advanced threats and detect malicious behavior - including attackers posing as legitimate users.
Included in Sophos MDR and Sophos MDR Complete pricing.
Sophos Email
Protect your inbox from malware and benefit from advanced AI that prevents targeted identity deception and phishing attacks.
The product is sold separately; it is integrated at no extra charge.
Sophos Cloud
Stop cloud attacks and get visibility into your critical cloud services, including AWS, Azure, and Google Cloud Platform.
The product is sold separately; it is integrated at no extra charge.
90-Days Data Retention
Stores data from all Sophos products and all third-party (non-Sophos) products in the Sophos Data Lake.
Included in Sophos MDR and Sophos MDR Complete pricing.
Microsoft Graph Security
- Microsoft Defender for Endpoint
- Microsoft Defender for Cloud
- Microsoft Defender for Cloud Apps
- Microsoft Defender for Identity
- Identity Protection (Azure AD)
- Microsoft Azure Sentinel
- Office 365 Security and Compliance Center
- Azure Information Protection
Office 365 Management Activity
Provides information about user, admin, system, and policy actions and events from Office 365 and Azure Active Directory activity logs
Third-Party Endpoint Protection
Compatible with ...
- Microsoft
- CrowdStrike
- SentinelOne
- Check Point
- Trend Micro
- BlackBerry (Cylance)
- McAfee
- Malwarebytes
Add-on integrations
Security data from the following third-party sources can be integrated into the Sophos MDR operations team by purchasing Integration Packs.
Firewall
Compatible with ...
- Palo Alto Networks
- Fortinet
- Check Point
- Cisco
- SonicWall
Public Cloud
Compatible with ...
- AWS
- Microsoft Azure
- Orca Security
- Google Cloud
Identity
Compatible with ...
- Okta
- Duo
Network Security
Compatible with ...
- Darktrace
- Forcepoint
- McAfee (web gateway)
Compatible with ...
- Proofpoint
- Mimecast
1-Year Data Retention
Stores data from all Sophos products and all third-party (non-Sophos) products in the Sophos Data Lake.
Technical Specifications
Compare the range of functions of the different Server from Sophos to protect your infrastructure. Not sure which protection best suits your business? We can advise you free of charge and without any obligation.
Intercept X Essentials for Server About the product |
Intercept X Advanced for Server About the product |
Intercept X Advanced for Server with XDR About the product |
Sophos MDR Essentials Server About the product |
||
---|---|---|---|---|---|
Multiple guidelines | - | ✔ | ✔ | ✔ | ✔ |
Controlled updates | - | ✔ | ✔ | ✔ | ✔ |
Web Security | ✔ | ✔ | ✔ | ✔ | ✔ |
Download reputation | ✔ | ✔ | ✔ | ✔ | ✔ |
Web Control/Category-based URL Blocking | - | ✔ | ✔ | ✔ | ✔ |
Peripheral control | - | ✔ | ✔ | ✔ | ✔ |
Application Control | - | ✔ | ✔ | ✔ | ✔ |
Application Whitelisting (Server Lockdown) | - | ✔ | ✔ | ✔ | ✔ |
Deep Learning Malware Detection | ✔ | ✔ | ✔ | ✔ | ✔ |
Anti-malware file scans | ✔ | ✔ | ✔ | ✔ | ✔ |
Live Protection | ✔ | ✔ | ✔ | ✔ | ✔ |
Behavioral analysis before execution (HIPS) | ✔ | ✔ | ✔ | ✔ | ✔ |
Blocking potent. Unwanted applications (PUAs) | ✔ | ✔ | ✔ | ✔ | ✔ |
Intrusion Prevention System | ✔ | ✔ | ✔ | ✔ | ✔ |
Data Loss Prevention | ✔ | ✔ | ✔ | ✔ | ✔ |
Runtime behavior analysis (HIPS) | ✔ | ✔ | ✔ | ✔ | ✔ |
Antimalware Scan Interface (AMSI) | ✔ | ✔ | ✔ | ✔ | ✔ |
Malicious Traffic Detection (MTD) | ✔ | ✔ | ✔ | ✔ | ✔ |
Exploit Prevention | ✔ | ✔ | ✔ | ✔ | ✔ |
Active Adversary Mitigations | ✔ | ✔ | ✔ | ✔ | ✔ |
Ransomware File Protection (CryptoGuard) | ✔ | ✔ | ✔ | ✔ | ✔ |
Disk and Boot Record Protection (WipeGuard) | ✔ | ✔ | ✔ | ✔ | ✔ |
Man-in-the-Browser Protection (Safe Browsing) | ✔ | ✔ | ✔ | ✔ | ✔ |
Enhanced Application Lockdown | ✔ | ✔ | ✔ | ✔ | ✔ |
Live Discover (cross-environmental SQL queries for threat hunting and security compliance) | - | - | ✔ | ✔ | ✔ |
SQL query library (pre-formulated, customizable queries) | - | - | ✔ | ✔ | ✔ |
Suspicious event detection and prioritization | - | - | ✔ | ✔ | ✔ |
Data storage on hard disk (up to 90 days) with fast data access | - | - | ✔ | ✔ | ✔ |
Cross-product data sources (e.g. firewall, e-mail) | - | - | ✔ | ✔ | ✔ |
Cross-product queries | - | - | ✔ | ✔ | ✔ |
Sophos Data Lake (cloud data storage) | - | - | 30 days | 30 days | 30 days |
Scheduled queries | - | - | ✔ | ✔ | ✔ |
Threat cases (root cause analysis) | - | ✔ | ✔ | ✔ | ✔ |
Deep Learning Malware Analysis | - | - | ✔ | ✔ | ✔ |
Advanced threat data from SophosLabs on demand | - | - | ✔ | ✔ | ✔ |
Export of forensic data | - | - | ✔ | ✔ | ✔ |
Automated malware removal | ✔ | ✔ | ✔ | ✔ | ✔ |
Synchronized Security Heartbeat | ✔ | ✔ | ✔ | ✔ | ✔ |
Sophos Clean | ✔ | ✔ | ✔ | ✔ | ✔ |
Remote terminal access (remote analysis and response) | - | - | ✔ | ✔ | ✔ |
On-demand server isolation | - | - | ✔ | ✔ | ✔ |
With one click "Remove and block | - | - | ✔ | ✔ | ✔ |
Cloud Workload Protection (Amazon Web Services, Microsoft Azure, Google Cloud Platform) | ✔ | ✔ | ✔ | ✔ | ✔ |
Synchronized Application Control (transparency over applications) | ✔ | ✔ | ✔ | ✔ | ✔ |
Management of your security status in the cloud (cloud hosts monitor and protect, serverless functions, S3 buckets, etc.). | - | ✔ | ✔ | ✔ | ✔ |
Server-specific policy management | ✔ | ✔ | ✔ | ✔ | ✔ |
Update cache and message relay | ✔ | ✔ | ✔ | ✔ | ✔ |
Automatic scan exceptions | ✔ | ✔ | ✔ | ✔ | ✔ |
File Integrity Monitoring | - | - | ✔ | ✔ | ✔ |
24/7 evidence-based threat hunting | - | - | - | ✔ | ✔ |
Compatible with third-party security tools | - | - | - | ✔ | ✔ |
Security Health Checks | - | - | - | ✔ | ✔ |
Activity Reports | - | - | - | ✔ | ✔ |
Sophos MDR ThreatCast | - | - | - | ✔ | ✔ |
Attack detection | - | - | - | ✔ | ✔ |
Stop and contain threats | - | - | - | ✔ | ✔ |
Direct telephone support for incidents | - | - | - | ✔ | ✔ |
24/7 circumstantial threat hunting | - | - | - | - | ✔ |
Proactive Security Posture Improvement | - | - | - | - | ✔ |
Full incident response: complete neutralization of Threats | - | - | - | - | ✔ |
Root cause analysis – and how can renewed attacks be prevented? | - | - | - | - | ✔ |
Dedicated contact person at the Incident Response Team | - | - | - | - | ✔ |
Avanet Services
Let us improve your safety
Our services are designed to help you keep your Sophos products running securely and reliably. In addition to the classic support for Sophos Firewalls or the Central platform, we offer the following services, which can be requested from us at any time:
Setup Services
Health Check
Upgrades
Workshops
Migrations
Firewall maintenance
SLA
Security audits
Request more informationSetup Services
Want to have your Sophos products set up by professionals? We support you during commissioning and configuration for smooth operation.
Migrations
You would like to change from your SG Firewall (UTM) to a XGS Firewall with the SFOS operating system? Thanks to our experience, we can also manage your changeover without any worries.
Health Check
You have set up your Sophos products yourself and would like us to check the configuration? We will check your settings and give our recommendation.
Workshops
Is it your job to be knowledgeable about Sophos products in your organization? We offer targeted training that is completely tailored to your needs.
Resources
Deepen your knowledge and learn more about “Sophos Central Server Protection”
Sophos Managed Detection and Response (MDR) – Datasheet
Sophos Managed Detection and Response (MDR) – Buyer's Guide
Sophos Breach Protection Warranty – Datasheet
Sophos Rapid Response – Datasheet
Extended Detection and Response (XDR) – Beginner’s Guide
Sophos Network Detection and Response (NDR) – Datasheet
Sophos Network Detection and Response (NDR) – Solution Brief
Sophos Server Protection – Buyer's Guide
Cybersecurity System – Buyer's Guide
Sophos Intercept X for Server – Datasheet
Sophos Intercept X – Solution Brief
Sophos Intercept X Deep Learning
FAQs zu Intercept X Essentials und Intercept X Essentials for Server
EDUCATION & GOVERNMENT
Special awards for educational and government institutions
Sophos offers special discounts for schools and government institutions to meet specific budget requirements. A discount of at least 20 % can be expected.*
Ask us and we will prepare an offer for you completely free of charge and without obligation.
* Special pricing for educational and government institutions is only available in the DACH region.
Request special pricesTrial version
Try Sophos Central for free
Try out the powerful platform for centralized security management free of charge for 30 days.
All products - Test the complete protection package, including XDR protection for endpoints, email, mobile devices and servers.
One console - work efficiently by managing all Sophos products from a single cloud platform.
Immediate access - ready for use in just a few minutes.
Use the following login details to start your online demo. Username: demo@sophos.com / Password: Demo@sophos.com
Help with purchase
Are there any questions about the product?
It is better to ask again before buying, before you end up holding the wrong product in your hands.
Ask questionRuntime | 1 year, 2 years, 3 years |
---|---|
Type | Initial purchase, Renew |