Sophos Endpoint Security and Data Protection 9.7 review
Sophos' latest Endpoint Security and Data Protection suite provides a wealth of features for protecting workstation and mobile data. It looks very good value, but managing it all may not be so simple. Dave Mitchell finds out if Sophos has gone a step too far.
Although an entry in the ESDP console is provided for NAC, all you can do is list its policies as all configuration is done from a completely separate console. Another NAC agent is required on endpoints but this can be deployed from the ESDP console.
NAC policies combine profiles that look for specific software on endpoints before it'll allow them network access. Profiles include checks for operating systems, patches and service packs along with the ESDP anti-virus and firewall components. The policies also provide remediation services in other words users can be sent to a location where the necessary software can be found.
The NAC and SafeGuard components steepen the learning curve as they each have their own policy management consoles.
Last up is the SafeGuard encryption utility which is completely separate to ESDP. It provides tools to automate full disk encryption on endpoints with sensitive data, but uses a separate server component to handle key management and encryption policies and needs yet more agents installed on endpoints which must be run manually.
Leaving NAC and SafeGuard to one side, we found ESDP easy to deploy and use and capable of providing an extensive set of security measures for workstations and laptops. The ESDP console simplifies management and is suitable for large user bases, but adding in the NAC and SafeGuard components will complicate things immensely.
The main ESDP software provides an impressive range of data security measures for the price and includes some useful controls for screening applications, data and devices which worked well during testing. If you stick with these alone then management will be fairly easy, even for larger businesses, but adding in the poorly-integrated NAC and SafeGuard components will almost certainly require dedicated support staff to handle them.
SYSTEM REQUIREMENTS FOR THE ENTERPRISE CONSOLE Memory: 1GB Hard disk: 500MB OS: Windows 7, Server 2003, Server 2008, Server 2008 R2 (32- and 64-bit for all operating systems)
In This Article
The ultimate law enforcement agency guide to going mobile
Best practices for implementing a mobile device programFree download
The business value of Red Hat OpenShift
Platform cost savings, ROI, and the challenges and opportunities of Red Hat OpenShiftFree download
Managing security and risk across the IT supply chain: A practical approach
Best practices for IT supply chain securityFree download
Digital remote monitoring and dispatch services’ impact on edge computing and data centres
Seven trends redefining remote monitoring and field service dispatch service requirementsFree download