The Sophos Email Appliance is an email security gateway product. It closely examines email messages to determine if they contain any suspicious content, such as spam, malware and phishing attempts. If any such content is detected, the Sophos Email Appliance blocks it so that it cannot reach its destination and potentially cause a data breach or other compromise. Because such a large percentage of threats today are email-borne, having a robust email security gateway protecting an organization has generally become a necessity.

Sophos Email Appliance is an all-in-one solution for email encryption, DLP, anti-spam and threat protection. It provides advanced protection from today’s sophisticated spear phishing attacks and gives you full control over data leaving your organization via email.

Highlights:

• Block targeted spear phishing attacks;
• Protect users from new zero-day threats;
• Advanced multi-layer spam detection;
• Support for SPF and DKIM anti-spoofing;
• Easily create DLP policies;
• Unique SPX Encryption is easy and transparent.

Advanced threat protection

Sophos Time-of-Click protection blocks malicious email URLs, protecting your users from stealthy, delayed, spear phishing attacks. Every URL, in every email, is secured. Every time an email link is clicked, on any device, its reputation is checked against our cloud-hosted Sophos SXL database. No client software is required, speeding implementation and reducing user disruption. Our new Sophos Sandstorm* enhances targeted attack protection, visibility, and analysis. Sandstorm complements our advanced antivirus scanning engine to quickly and accurately detect, block, and respond to evasive threats using powerful cloud-based, next-generation sandbox technology.

Quick and easy data protection compliance

Our wizard-based DLP rules and policy-based encryption makes email data protection simple— preventing costly data-loss incidents. Using our built-in lexicon of hundreds of sensitive data types, you can quickly and easily build DLP policies for users or groups. Protect your information by blocking messages containing sensitive data or by encrypting them before they leave the network gateway.

SPX Encryption—encryption you can use

Our patent-pending simple SPX Encryption is transparent, simple and requires no changes to user workflow. It doesn’t require clumsy and expensive key management or additional software. SPX Encryption simply encapsulates the email content and attachments into a secure encrypted PDF that can’t be hacked or cracked. But it allows users to view their encrypted email anywhere: in their preferred email client, in their webmail or on their mobile device.

Stamp out snowshoe spam and suspicious email content

Our sophisticated email filtering protects users from the latest snowshoe spam, identity theft, password scams and more by looking for suspicious content, attachments or URLs. Support for Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) ensures spam and phishing attacks attempting to spoof legitimate sender domains are blocked. You can also block unwanted content and be sure our proven antivirus scanning is catching the latest threats.

Simplify mail management

Reduce your workload with our streamlined management console and managed appliances that offer the best of an on-premise appliance with a managed service. You get automated updates and we monitor your appliances remotely to ensure everything’s running as it should.

Flexible deployment options

Choose from a variety of hardware appliance options or our popular VMware Ready virtual appliance. Our simple integration with Microsoft Active Directory and eDirectory will have you up and running with just a few clicks.

Easy centralized management

If you need multiple appliances for added performance or high availability, you can easily cluster hardware and virtual appliances with just a few clicks. Everything else is automatic and you can manage the entire cluster from a single console.

Extend protection to your Internal mail servers

Add Sophos PureMessage for Exchange to your mail servers to prevent the propagation of malware, viruses, spam or other unwanted content.

Additional hardware information

Installation: 1U rackmount Regulatory/safety certification: UL, CE, FCC, VCCI, C-Tick, TUV-GS, SABS, RoHS Hardware warranty: Up to three-year advance replacement (subject to valid software licensing)

Smarter Email Security with AI

Today’s email threats move fast, and growing businesses need predictive email security – defeating today’s threats with an eye on tomorrow.

See the Future The same technology as our award-winning Intercept X, Sophos Email sandboxing is a deep learning neural network, able to block zero-day malware and unwanted applications. Stop Ransomware The most advanced anti-ransomware technology available. Sophos email security uses behavioral analysis to stop never-before-seen ransomware and boot-record attacks. Block Stealth Attacks Time-of-click URL protection checks the website reputation of email links before delivery and again when you click – blocking stealthy, delayed attacks that other email security can miss.

Block Phishing Imposters

Trust your inbox again with Sophos Email. We’ve made it simple to block phishing imposters and protect employees from attacks using fraudulent email addresses that impersonate trusted contacts.

• Use a combination of SPF, DKIM, and DMARC authentication techniques, email header anomaly analysis, display name, and lookalike domain analysis
• Compare the display name of inbound emails to the display name of commonly abused cloud service brand names and to VIPs within the organization to check for matches
• Suspicious messages can be blocked, quarantined, tagged with a subject line warning, or have a banner added with a direct link to the user-level block list

Protection from Spam and Malware

Processing millions of emails per day, the latest threat intelligence from SophosLabs global network ensures your Sophos Email gateway won’t miss any of the thousands of new threats discovered every hour.

• IP reputation filtering blocks up to 90% of spam at the door
• Anti-spam and antivirus engines catch the rest
• Email filtering uses advanced detection methods across multiple languages

So Long Malware Remove detected malware automatically or isolate compromised devices in order to prevent damage. Isolate Part of remediating a problem is putting it in quarantine so it can’t keep spreading. When necessary, we’ll even isolate compromised devices until we can be sure they’re safe. Threat Removal If we find something malicious, we’ll go ahead and remove it for you. It’s the least we could do. We make it simple and automatic. Synchronized Security By automating threat discovery, investigation, and response, Synchronized Security revolutionizes threat detection. Incident response times are reduced exponentially and tactical resources can be refocused on strategic analysis. Next-Gen Protection We’re taking a new approach to protection. Sophos Endpoint blocks malware and infections by identifying and preventing the handful of techniques and behaviors used in almost every exploit. Sophos Endpoint doesn’t rely on signatures to catch malware, which means it catches zero-day threats without adversely affecting the performance of your device. So you get protection before those exploits even arrive. By correlating threat indicators, Sophos Endpoint can block web and application exploits, dangerous URLs, potentially unwanted apps, and malicious code from ever touching your endpoints. Decloaking Malware Sophos Endpoint works on the device and in conjunction with the firewall to detect and isolate compromised devices. Synchronized Security gives you additional context providing information from the network. Behavioral Analytics Determines suspicious behaviors, allowing for the detection of malware specifically designed to evade traditional solutions. Traffic Detection Pre-filters all HTTP traffic and tracks suspicious traffic as well as the file path of the process sending malicious traffic. Integrated Endpoint and Network Instant and automatic communication between the Endpoint and Network alerts the suspected system of exactly what the firewall is detecting, allowing the endpoint protection agent immediate use of that information to discover the process behind the threat. Complete Control Enforce your web, application, device, and data policies with ease, thanks to seamless integration within the endpoint agent and the management console.

• Web Control Category-based web filtering enforced both on and off the corporate network
• Application Control Point-and-click blocking of applications by category or by name
• Device Control Managed access to removable media and mobile devices
• Data Control Data-loss prevention (DLP) using prebuilt or custom rules

Sophisticated Simplicity Like your favorite smartphone or web application, Sophos Endpoint Protection delivers sophisticated functionality coupled with a simple, intuitive user experience.

• Quick and easy deployment from the cloud or on-premises
• Default policies configured to balance protection, usability, and performance
• Automatic removal of third-party endpoint security products
• Point-and-click configuration of advanced features like HIPS and device control, made possible by continually updated data from SophosLabs

To stop breaches before they start, prevention is crucial. Intercept X consolidates unmatched protection and endpoint detection and response into a single solution. This means that most threats are stopped before they can ever cause damage, and Intercept X Advanced with EDR provides additional cybersecurity assurance with the ability to detect, investigate, and respond to potential security threats. The inclusion of EDR into a consistently top-rated endpoint protection suite enables Intercept X to significantly lighten the EDR workload. The more threats that are prevented, the less noise that is created for security teams to investigate. This means teams can optimize key resources enabling them to focus on the business of IT rather than chasing false positives and an overwhelming volume of alerts. Intercept X replicates the tasks normally performed by skilled analysts, so organizations can add expertise without having to add staff. Unlike other EDR solutions which rely on highly skilled human analysts to ask questions and interpret data, Intercept X is powered by machine learning and enhanced with curated SophosLabs threat intelligence. Security expertise: Intercept X puts security expertise into the hands of IT by automatically detecting and prioritizing potential threats. Using machine learning, suspicious events are identified and elevated as the most important and in need of immediate attention. Analysts can quickly see where to focus their attention and understand which machines may be impacted. Malware expertise: Most organization rely on malware experts that specialize in reverse engineering to analyze suspicious files. Not only is this approach time consuming and difficult to achieve, but it assumes a level of cybersecurity sophistication which most organizations don’t possess. Intercept X offers a better approach by leveraging Deep Learning Malware Analysis which automatically analyzes malware in extreme detail, breaking down file attributes and code and comparing them to millions of other files. Analysts can easily see which attributes and code segments are similar to “known-good” and “known bad” files so they can determine if a file should be blocked or allowed. Threat intelligence expertise: When Intercept X elevates a potentially suspicious file, IT administrators can gather more information by accessing on-demand threat intelligence curated by SophosLabs which receives and processes approximately 400,000 previously unseen malware samples each day. This and other threat intelligence is collected, aggregated, and summarized for easy analysis. This means that teams that do not have dedicated threat intelligence analysts, or access to expensive and hard to understand threat feeds, can benefit from one of the top cybersecurity research and data science teams in the world. Highlights:

• EDR combined with the strongest endpoint protection
• Deep Learning Malware Analysis
• On-demand curated threat intelligence from SophosLabs
• Machine learning detection and prioritization of suspicious events
• Guided investigations make EDR approachable yet powerful
• Respond to incidents with a single click

Sophos offers next-generation firewall (NGFW) features which let you protect your network with an enterprise-class firewall while securing your web traffic. It protects you against modern threats like drive-by downloads and botnets, and securely connects people and offices using our flexible VPN options. And you’ll get detailed reports to help you understand what’s going on and how to improve your network performance and protection.

Proven protection against modern day threats

You get fast, accurate scanning for viruses, spyware and active content using two parallel antivirus engines. Our Advanced Threat Protection combines multiple technologies to identify and block traffic to command and control hosts. Advanced packet filtering, network address translation (NAT), stateful inspection and network intrusion prevention system (IPS) technologies protect your network. You’ll easily see attacks targeting your resources and stop them by simply ticking a box. And our IPS is multicore engineered to run at maximum speeds on the latest processors.

Granular bandwidth visibility and control

Using our URL filter, select from over 100 categories and stop access to malicious and nonproductive websites, and set policies for certain users and particular times. A graphical flowmonitor shows everything as it happens, letting you maximize the bandwidth for what’s important and minimize it for what’s not. Our Deep Layer-7 inspection ensures true application identification for thousands of applications. We’ll automatically update these, and give you feedback on unclassified applications.

Connect remote offices with configurationless VPN

For remote workers, setting up client VPNs really couldn’t be easier. We provide users with a simple portal, letting them connect from any device, even smartphones and tablets. And when it comes to hooking up remote offices, we’ve really broken the mold. Sophos RED is a box that plugs in at any remote office and requires no onsite configuration. Connect it to the internet, register it centrally and the remote site instantly gets full UTM protection.

Intuitive management and detailed reporting

You’ll know what’s happening with your users and you’ll have complete control over all the features you need, with none of the complexity. Policies are easy to build and you get detailed reports as standard, stored locally with no separate tools required. Predefined and customizable reports show key web activity like domains visited and bandwidth consumed. And report anonymization hides user names, requiring the four-eyes-principle to unhide them.

Unified Threat Management makes security simple. Sophos UTM provides the ultimate network security package with everything you need in a single modular appliance. It simplifies your IT security without the complexity of multiple-point solutions. The intuitive interface will help you quickly create policies to control security risks. And clear, detailed reports will give you the insight you need to improve your network performance and protection. Highlights

• Every feature available  on every appliance
• Firewall, VPN, ATP, IPS, email, web filtering and app control
• Hardware, virtualized, software or cloudbased appliance
• Intuitive browserbased interface
• Built-in reporting on all models
• Two-factor authentication with one-time password (OTP) in many areas
• Integrated wireless controller

Consolidated network security platform — no compromise Protect your network using multi-layered proven protection technologies including Advanced Threat Protection (ATP), IPS, VPN, email and web filtering combined with the industry’s simplest admin interface. We’ve engineered our software and hardware to give you the throughput speeds you need. And, you can choose the level of protection you need with modular subscriptions as every feature is available on every appliance. All the Next-Gen Firewall features you need We’ll give you complete control to block, allow, shape and prioritize applications. Our Deep Layer-7 inspection (Next-Generation Firewall) ensures true application identification and has regular automatic updates. And you’ll get feedback on unclassified applications too. Intuitive management and detailed reporting You’ll know what’s happening with your users and you’ll have complete control over all the features you need, with none of the complexity. Easily build policies while getting detailed real-time and historical data with our on-box reporting, helping you to fix problems fast. And our Free Sophos UTM Manager lets you centrally administer several appliances through a single login. Connect remote offices with easy VPN and Wi-Fi Sophos RED (Remote Ethernet Device) provides secure remote access to your off-site locations. It’s the first security gateway that requires no technical skills at the remote site. Once installed, it forwards traffic to the UTM for complete security. Sophos UTM also works as a wireless controller; access points are automatically set up and receive complete UTM protection.

Sophos Web Gateway provides security, visibility, and control for all your desktop PCs, Macs, Chromebooks, and mobile devices, regardless of how or where they access the web.

Advanced web protection from today’s threats

For all types of network traffic as well. And you don’t need to worry about slowing users down. Our network of data centers ensures that it is analyzed quickly and transparently without any noticeable latency.

Big-data, cloud-powered reporting

With Sophos Web Gateway you get big-data reporting without the need for onsite servers or management overhead. Take advantage of unrivaled insight into network analytics, applications and threats in order to keep your sensitive data safe, control costs and comply with regulations.

Effortless to deploy, simple to manage

Sophos Central sets the standard for how IT security should be managed—simply and effectively. Sophos Central brings endpoint, mobile, server, email, and web security together in a single, truly integrated management console—a first in the industry. You’ll be up and running in a matter of minutes with Sophos Web Gateway. And you’ll be able to effortlessly expand your cloud-managed security any time you want.

Simple but powerful policy control

Sophos Central was built from the ground up, making powerful policy settings easy and intuitive. You get all the tools you need to easily customize policies to meet compliance obligations, manage productivity, optimize bandwidth, control applications, protect data and keep your users and organization safe online.

Reliable enforcement on the go

Don’t entrust enforcement to just anyone. At Sophos, mobile device management and endpoints are part of our DNA. Whether your users have a PC, Mac, iPad, iPhone, or Chromebook, you can be confident policy is being enforced 24/7. Enforcement is all thanks to an integrated agent with sophisticated tamper protection safeguards that even keep rogue users compliant.

Highlights:

• Cloud management, reporting and enforcement
• Protects users from the latest web threats
• Secures your desktops, laptops and mobile devices
• 100+ reports covering all aspects of web activity
• Be up and running in minutes
• Integrates seamlessly with the rest of Sophos Central
• Fast Lane technology speeds up downloads to enhance browsing experience