Call a Specialist Today! 888-785-4405 | Free Shipping!Free Shipping!


Sophos Central Network Detection and Response
Unleash the full potential of your network


Sophos MDR

Save 25% on
3-year Sophos MDR

Get 9 Extra Months Free

Sophos NDR is an add-on integration for Sophos MDR, our market-leading managed
detection and response service that today serves over 14,000 organizations worldwide.



Sophos Products
Central Network Detection and Response - 1-9 Users and Servers Back to top
Price per license. Quantity must be 1 or greater.
Central Network Detection and Response - 1-9 users and servers - 1 Year
#MDRNDU12AANCAA
List Price: $91.80
Add to Cart for Pricing
Central Network Detection and Response - 1-9 users and servers - 2 Year
#MDRNDU24AANCAA
List Price: $183.60
Add to Cart for Pricing
Central Network Detection and Response - 1-9 users and servers - 3 Year
#MDRNDU36AANCAA
List Price: $275.40
Add to Cart for Pricing

More pricing below, click here!

Overview
Features
Specifications
Documentation

Overview:

The Most Comprehensive Data Drives the Most Accurate Detection Strategy

Organizations can benefit from a holistic approach to threat detection and response and faster ways to correlate an ever-growing volume and variety of data. The deeper the visibility and context, the more precise the investigation into threat activity. That means when security telemetry can come together, it paints a more accurate picture of the entire attack path.

As an add-on to Sophos MDR, the Sophos Network Detection and Response (NDR) virtual appliance monitors network traffic to identify suspicious network flows. Detections are sent to the Sophos data lake, evaluated, and assigned a corresponding risk score, generating cases for the Sophos threat response team to investigate and validate. NDR detections can trigger an investigation into internal host connections to network servers and can also be used to enrich threat hunts for endpoint activity to determine which devices are communicating.

Your Security Needs Tools That Work Well Together

Sophos NDR is a native Sophos MDR integration. It readily connects, does not produce excessive noise or mismatched risk scores, and does not require time to establish a baseline like other solutions. The table below describes the functionality of Sophos NDR’s detection engines.

Sophos NDR is delivered as a virtual appliance. Once deployed, it authenticates with the Sophos Central management console and starts sending data. NDR status and detections are viewable in Sophos Central.

Highlights

  • Add network detections to Sophos MDR to monitor suspicious network flows that endpoint software can’t access
  • Enable threat investigations and hunts into internal host connections to network services and other network connections
  • Detect malware within encrypted traffic where it often remains hidden
  • Easily view NDR sensor status and detections in Sophos Central

Sophos NDR identifies:

Unprotected Devices

Identify legitimate devices that aren't protected and could be used as entry points, including IoT and OT assets.

Rogue Assets

Pinpoint unauthorized and potentially malicious devices communicating across a network.


Insider Threats

Gain visibility to network traffic flows and “normal” data movement from inside an organization.


Zero-Day Attacks

Detect server command-and-control (C2) attempts based on patterns found in session packets.


Five Real-Time Threat Detection Engines:


Data Detection Engine

Extensible query engine uses a deep learning prediction model to analyze encrypted traffic and identify patterns across unrelated network flows.

Domain Generation Algorithm

Identifies dynamic domain generation technology used by malware to avoid detection.

Deep Packet Inspection

Uses known indicators of compromise to identify threat actors and malicious tactics, techniques, and procedures across encrypted and unencrypted network traffic.

Session Risk Analytics

Powerful logic engine utilizes rules that send alerts based on session-based risk factors.


Encrypted Payload Analytics

Detects zero-day C2 servers and new variants of malware families based on patterns found in the session size, direction, and interarrival times.


Pricing Notes:

  • Pricing and product availability subject to change without notice.
Sophos Products
Central Network Detection and Response - 1-9 Users and Servers Back to top
Price per license. Quantity must be 1 or greater.
Central Network Detection and Response - 1-9 users and servers - 1 Year
#MDRNDU12AANCAA
List Price: $91.80
Add to Cart for Pricing
Central Network Detection and Response - 1-9 users and servers - 2 Year
#MDRNDU24AANCAA
List Price: $183.60
Add to Cart for Pricing
Central Network Detection and Response - 1-9 users and servers - 3 Year
#MDRNDU36AANCAA
List Price: $275.40
Add to Cart for Pricing
Central Network Detection and Response - 10-24 Users and Servers Back to top
Price per license. Quantity must be 10 or greater.
Central Network Detection and Response - 10-24 users and servers - 1 Year
#MDRNDU12ABNCAA
List Price: $76.57
Add to Cart for Pricing
Central Network Detection and Response - 10-24 users and servers - 2 Year
#MDRNDU24ABNCAA
List Price: $153.14
Add to Cart for Pricing
Central Network Detection and Response - 10-24 users and servers - 3 Year
#MDRNDU36ABNCAA
List Price: $229.70
Add to Cart for Pricing
Central Network Detection and Response - 25-49 Users and Servers Back to top
Price per license. Quantity must be 25 or greater.
Central Network Detection and Response - 25-49 users and servers - 1 Year
#MDRNDU12ACNCAA
List Price: $66.10
Add to Cart for Pricing
Central Network Detection and Response - 25-49 users and servers - 2 Year
#MDRNDU24ACNCAA
List Price: $132.21
Add to Cart for Pricing
Central Network Detection and Response - 25-49 users and servers - 3 Year
#MDRNDU36ACNCAA
List Price: $198.31
Add to Cart for Pricing
Central Network Detection and Response - 50-99 Users and Servers Back to top
Price per license. Quantity must be 50 or greater.
Central Network Detection and Response - 50-99 users and servers - 1 Year
#MDRNDU12ADNCAA
List Price: $59.03
Add to Cart for Pricing
Central Network Detection and Response - 50-99 users and servers - 2 Year
#MDRNDU24ADNCAA
List Price: $118.06
Add to Cart for Pricing
Central Network Detection and Response - 50-99 users and servers - 3 Year
#MDRNDU36ADNCAA
List Price: $177.08
Add to Cart for Pricing
Central Network Detection and Response - 100-199 Users and Servers Back to top
Price per license. Quantity must be 100 or greater.
Central Network Detection and Response - 100-199 users and servers - 1 Year
#MDRNDU12AENCAA
List Price: $54.70
Add to Cart for Pricing
Central Network Detection and Response - 100-199 users and servers - 2 Year
#MDRNDU24AENCAA
List Price: $109.40
Add to Cart for Pricing
Central Network Detection and Response - 100-199 users and servers - 3 Year
#MDRNDU36AENCAA
List Price: $164.10
Add to Cart for Pricing
Central Network Detection and Response - 200-499 Users and Servers
Price per license. Quantity must be 200 or greater.
Central Network Detection and Response - 200-499 users and servers - 1 Year
#MDRNDU12AFNCAA
List Price: $52.67
Add to Cart for Pricing
Central Network Detection and Response - 200-499 users and servers - 2 Year
#MDRNDU24AFNCAA
List Price: $105.34
Add to Cart for Pricing
Central Network Detection and Response - 200-499 users and servers - 3 Year
#MDRNDU36AFNCAA
List Price: $158.01
Add to Cart for Pricing
Central Network Detection and Response - 500-999 Users and Servers
Price per license. Quantity must be 500 or greater.
Central Network Detection and Response - 500-999 users and servers - 1 Year
#MDRNDU12AGNCAA
List Price: $50.53
Add to Cart for Pricing
Central Network Detection and Response - 500-999 users and servers - 2 Year
#MDRNDU24AGNCAA
List Price: $101.06
Add to Cart for Pricing
Central Network Detection and Response - 500-999 users and servers - 3 Year
#MDRNDU36AGNCAA
List Price: $151.60
Add to Cart for Pricing
Central Network Detection and Response - 1000-1999 Users and Servers
Price per license. Quantity must be 1000 or greater.
Central Network Detection and Response - 1000-1999 users and servers - 1 Year
#MDRNDU12AHNCAA
List Price: $46.40
Add to Cart for Pricing
Central Network Detection and Response - 1000-1999 users and servers - 2 Year
#MDRNDU24AHNCAA
List Price: $92.81
Add to Cart for Pricing
Central Network Detection and Response - 1000-1999 users and servers - 3 Year
#MDRNDU36AHNCAA
List Price: $139.21
Add to Cart for Pricing
Central Network Detection and Response - 2000-4999 Users and Servers
Price per license. Quantity must be 2000 or greater.
Central Network Detection and Response - 2000-4999 users and servers - 1 Year
#MDRNDU12AINCAA
List Price: $25.53
Add to Cart for Pricing
Central Network Detection and Response - 2000-4999 users and servers - 2 Year
#MDRNDU24AINCAA
List Price: $51.05
Add to Cart for Pricing
Central Network Detection and Response - 2000-4999 users and servers - 3 Year
#MDRNDU36AINCAA
List Price: $76.58
Add to Cart for Pricing
Central Network Detection and Response - 5000-9999 Users and Servers
Price per license. Quantity must be 5000 or greater.
Central Network Detection and Response - 5000-9999 users and servers - 1 Year
#MDRNDU12AJNCAA
List Price: $20.42
Add to Cart for Pricing
Central Network Detection and Response - 5000-9999 users and servers - 2 Year
#MDRNDU24AJNCAA
List Price: $40.84
Add to Cart for Pricing
Central Network Detection and Response - 5000-9999 users and servers - 3 Year
#MDRNDU36AJNCAA
List Price: $61.26
Add to Cart for Pricing
Central Network Detection and Response - 10000-19999 Users and Servers
Price per license. Quantity must be 10000 or greater.
Central Network Detection and Response - 10000-19999 users and servers - 1 Year
#MDRNDU12AKNCAA
List Price: $12.25
Add to Cart for Pricing
Central Network Detection and Response - 10000-19999 users and servers - 2 Year
#MDRNDU24AKNCAA
List Price: $24.51
Add to Cart for Pricing
Central Network Detection and Response - 10000-19999 users and servers - 3 Year
#MDRNDU36AKNCAA
List Price: $36.76
Add to Cart for Pricing
Central Network Detection and Response - 20000+ Users and Servers
Price per license. Quantity must be 20000 or greater.
Central Network Detection and Response - 20000+ users and servers - 1 Year
#MDRNDU12AZNCAA
List Price: $7.36
Add to Cart for Pricing
Central Network Detection and Response - 20000+ users and servers - 2 Year
#MDRNDU24AZNCAA
List Price: $14.71
Add to Cart for Pricing
Central Network Detection and Response - 20000+ users and servers - 3 Year
#MDRNDU36AZNCAA
List Price: $22.07
Add to Cart for Pricing
Central Network Detection and Response - 1-9 Users and Servers - Renewal
Price per license. Quantity must be 1 or greater.
Central Network Detection and Response - 1-9 users and servers - 1 Year - Renewal
#MDRNDU12AARCAA
List Price: $91.80
Add to Cart for Pricing
Central Network Detection and Response - 1-9 users and servers - 2 Year - Renewal
#MDRNDU24AARCAA
List Price: $183.60
Add to Cart for Pricing
Central Network Detection and Response - 1-9 users and servers - 3 Year - Renewal
#MDRNDU36AARCAA
List Price: $275.40
Add to Cart for Pricing
Central Network Detection and Response - 10-24 Users and Servers - Renewal
Price per license. Quantity must be 10 or greater.
Central Network Detection and Response - 10-24 users and servers - 1 Year - Renewal
#MDRNDU12ABRCAA
List Price: $76.57
Add to Cart for Pricing
Central Network Detection and Response - 10-24 users and servers - 2 Year - Renewal
#MDRNDU24ABRCAA
List Price: $153.14
Add to Cart for Pricing
Central Network Detection and Response - 10-24 users and servers - 3 Year - Renewal
#MDRNDU36ABRCAA
List Price: $229.70
Add to Cart for Pricing
Central Network Detection and Response - 25-49 Users and Servers - Renewal
Price per license. Quantity must be 25 or greater.
Central Network Detection and Response - 25-49 users and servers - 1 Year - Renewal
#MDRNDU12ACRCAA
List Price: $66.10
Add to Cart for Pricing
Central Network Detection and Response - 25-49 users and servers - 2 Year - Renewal
#MDRNDU24ACRCAA
List Price: $132.21
Add to Cart for Pricing
Central Network Detection and Response - 25-49 users and servers - 3 Year - Renewal
#MDRNDU36ACRCAA
List Price: $198.31
Add to Cart for Pricing
Central Network Detection and Response - 50-99 Users and Servers - Renewal
Price per license. Quantity must be 50 or greater.
Central Network Detection and Response - 50-99 users and servers - 1 Year - Renewal
#MDRNDU12ADRCAA
List Price: $59.03
Add to Cart for Pricing
Central Network Detection and Response - 50-99 users and servers - 2 Year - Renewal
#MDRNDU24ADRCAA
List Price: $118.06
Add to Cart for Pricing
Central Network Detection and Response - 50-99 users and servers - 3 Year - Renewal
#MDRNDU36ADRCAA
List Price: $177.08
Add to Cart for Pricing
Central Network Detection and Response - 100-199 Users and Servers - Renewal
Price per license. Quantity must be 100 or greater.
Central Network Detection and Response - 100-199 users and servers - 1 Year - Renewal
#MDRNDU12AERCAA
List Price: $54.70
Add to Cart for Pricing
Central Network Detection and Response - 100-199 users and servers - 2 Year - Renewal
#MDRNDU24AERCAA
List Price: $109.40
Add to Cart for Pricing
Central Network Detection and Response - 100-199 users and servers - 3 Year - Renewal
#MDRNDU36AERCAA
List Price: $164.10
Add to Cart for Pricing
Central Network Detection and Response - 200-499 Users and Servers - Renewal
Price per license. Quantity must be 200 or greater.
Central Network Detection and Response - 200-499 users and servers - 1 Year - Renewal
#MDRNDU12AFRCAA
List Price: $52.67
Add to Cart for Pricing
Central Network Detection and Response - 200-499 users and servers - 2 Year - Renewal
#MDRNDU24AFRCAA
List Price: $105.34
Add to Cart for Pricing
Central Network Detection and Response - 200-499 users and servers - 3 Year - Renewal
#MDRNDU36AFRCAA
List Price: $158.01
Add to Cart for Pricing
Central Network Detection and Response - 500-999 Users and Servers - Renewal
Price per license. Quantity must be 500 or greater.
Central Network Detection and Response - 500-999 users and servers - 1 Year - Renewal
#MDRNDU12AGRCAA
List Price: $50.53
Add to Cart for Pricing
Central Network Detection and Response - 500-999 users and servers - 2 Year - Renewal
#MDRNDU24AGRCAA
List Price: $101.06
Add to Cart for Pricing
Central Network Detection and Response - 500-999 users and servers - 3 Year - Renewal
#MDRNDU36AGRCAA
List Price: $151.60
Add to Cart for Pricing
Central Network Detection and Response - 1000-1999 Users and Servers - Renewal
Price per license. Quantity must be 1000 or greater.
Central Network Detection and Response - 1000-1999 users and servers - 1 Year - Renewal
#MDRNDU12AHRCAA
List Price: $46.40
Add to Cart for Pricing
Central Network Detection and Response - 1000-1999 users and servers - 2 Year - Renewal
#MDRNDU24AHRCAA
List Price: $92.81
Add to Cart for Pricing
Central Network Detection and Response - 1000-1999 users and servers - 3 Year - Renewal
#MDRNDU36AHRCAA
List Price: $139.21
Add to Cart for Pricing
Central Network Detection and Response - 2000-4999 Users and Servers - Renewal
Price per license. Quantity must be 2000 or greater.
Central Network Detection and Response - 2000-4999 users and servers - 1 Year - Renewal
#MDRNDU12AIRCAA
List Price: $25.53
Add to Cart for Pricing
Central Network Detection and Response - 2000-4999 users and servers - 2 Year - Renewal
#MDRNDU24AIRCAA
List Price: $51.05
Add to Cart for Pricing
Central Network Detection and Response - 2000-4999 users and servers - 3 Year - Renewal
#MDRNDU36AIRCAA
List Price: $76.58
Add to Cart for Pricing
Central Network Detection and Response - 5000-9999 Users and Servers - Renewal
Price per license. Quantity must be 5000 or greater.
Central Network Detection and Response - 5000-9999 users and servers - 1 Year - Renewal
#MDRNDU12AJRCAA
List Price: $20.42
Add to Cart for Pricing
Central Network Detection and Response - 5000-9999 users and servers - 2 Year - Renewal
#MDRNDU24AJRCAA
List Price: $40.84
Add to Cart for Pricing
Central Network Detection and Response - 5000-9999 users and servers - 3 Year - Renewal
#MDRNDU36AJRCAA
List Price: $61.26
Add to Cart for Pricing
Central Network Detection and Response - 10000-19999 Users and Servers - Renewal
Price per license. Quantity must be 10000 or greater.
Central Network Detection and Response - 10000-19999 users and servers - 1 Year - Renewal
#MDRNDU12AKRCAA
List Price: $12.25
Add to Cart for Pricing
Central Network Detection and Response - 10000-19999 users and servers - 2 Year - Renewal
#MDRNDU24AKRCAA
List Price: $24.51
Add to Cart for Pricing
Central Network Detection and Response - 10000-19999 users and servers - 3 Year - Renewal
#MDRNDU36AKRCAA
List Price: $36.76
Add to Cart for Pricing
Central Network Detection and Response - 20000+ Users and Servers - Renewal
Price per license. Quantity must be 20000 or greater.
Central Network Detection and Response - 20000+ users and servers - 1 Year - Renewal
#MDRNDU12AZRCAA
List Price: $7.36
Add to Cart for Pricing
Central Network Detection and Response - 20000+ users and servers - 2 Year - Renewal
#MDRNDU24AZRCAA
List Price: $14.71
Add to Cart for Pricing
Central Network Detection and Response - 20000+ users and servers - 3 Year - Renewal
#MDRNDU36AZRCAA
List Price: $22.07
Add to Cart for Pricing