Sold by: Sophos
Continually monitor public cloud infrastructure to provide visibility of resources and threats across your organization and proactively reduce business risk from unsanctioned activity, vulnerabilities, and misconfigurations, while helping to optimize cloud spend.
4.3
Overview
Sophos Cloud Optix identifies infrastructure in your AWS, Azure, and GCP environments subject to known vulnerabilities impacting security and compliance best practice standards. Helping teams achieve a complete picture of cloud assets across multi-cloud environments, monitoring costs, detecting insecure configurations and deployments, access anomalies, over-privileged IAM roles, and compliance failures from development to the ongoing security of live services.
Focus on and fix your most critical security vulnerabilities before they are exploited in cyberattacks, as Sophos Cloud Optix makes it quick and easy to identify and risk-profile security, compliance, and cloud spend alerts. Contextual alerts will group affected resources and provide your teams with detailed remediation steps, and auto-remediation where appropriate, including AWS console deep links.
The simplicity of licensing is a first in the industry, with the option to get started with a free 25 asset tier, activated in the Cloud Optix console. Cloud Optix simply counts any server instance, database instance, Kubernetes node, or container image that runs in a cloud environment whose configuration is accessed by the service. Find out more here: https://soph.so/sophos-cloud-optix
Part of a complete cloud security platform trusted by over 150,000 customers. The full range of Sophos solutions in AWS Marketplace is available here https://soph.so/sophos-on-aws , while more can be found at https://www.sophos.com/en-us/products/cloud-native-security .
Highlights
- 25 asset free trial Free Use: Full access to all Cloud Optix features to monitor your first 25 cloud assets. Once logged into your Cloud Optix account, activate the free use tier from the top right corner of the Cloud Optix dashboard. https://soph.so/cloud-optix-free
- Unlock greater value in AWS services: Risk prioritization of AWS CloudTrail and Amazon GuardDuty alerts, plus visibility of resources across your organization to reduce business risk from unsanctioned activity, vulnerabilities, and misconfigurations. https://soph.so/guardduty
- Seamless integration: Access Cloud Optix features programmatically via a REST API and integrate seamlessly with third-party services, such as SIEM and DevOps tools, to streamline security operations. https://soph.so/cloud-integrations
Details
Sold by
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/host/hour |
|---|---|
Cloud Assets per hour | $0.019 |
Vendor refund policy
The Sophos Cloud Optix PAYG service can be canceled at any time via your AWS account. Refunds are not available.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
Online help is available at https://docs.sophos.com/pcg/optix/help/en-us/index.html and via the Sophos Community forum at https://community.sophos.com/products/sophos-cloud-optix Support is available via the Sophos Cloud Optix Community forum, and by phone and web portal. See https://community.sophos.com/products/sophos-cloud-optix for details.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Palo Alto Networks
By Juniper Networks
Top
25
In Data Governance, Infrastructure as Code
Top
10
In Network Infrastructure
Top
50
In Migration
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Cloud Infrastructure Monitoring
Continually monitor public cloud infrastructure across AWS, Azure, and GCP environments to provide comprehensive visibility of resources and potential threats
Vulnerability Detection
Identify infrastructure vulnerabilities impacting security and compliance best practice standards with risk profiling and contextual alerts
Multi-Cloud Asset Management
Achieve a complete picture of cloud assets across multi-cloud environments, monitoring configurations, deployments, and access anomalies
Security Configuration Analysis
Detect insecure configurations, over-privileged IAM roles, and compliance failures from development through live service stages
API Integration Capabilities
Provide programmatic access to security features via REST API for seamless integration with third-party SIEM and DevOps tools
Network Traffic Inspection
Advanced layer-7 application visibility and control with comprehensive traffic inspection capabilities
Threat Prevention Technology
AI/ML-powered security engine with researcher-grade signatures for detecting known and zero-day threats
Cloud Security Integration
Native integration with AWS infrastructure components including Gateway Load Balancer, Auto Scaling, and Transit VPC
Dynamic Policy Management
Automated policy application using AWS tags, Application IDs, User IDs, geographies, and network zones
Deployment Flexibility
Seamless deployment through EC2 instance creation workflow with cloud-native form factor
Network Security Services
Advanced firewall solution with core firewall, VPN, NAT, and L4-L7 security services
Threat Protection
Intrusion detection and prevention (IPS) with application visibility and control through AppSecure
Cloud Integration
Native integrations with AWS services including Elastic Load Balancer, CloudWatch, Security Hub, and Amazon GuardDuty
Routing Capabilities
Advanced cloud-grade routing with IPsec and full mesh VPN termination services
Protocol-Level Protection
Anti-virus capabilities detecting and blocking malware across POP3, HTTP, SMTP, and FTP protocols
Standard contract
No
No
No
Customer reviews
Tanzeel Iqbal
Cloud posture has improved and security reports drive ongoing compliance and cost control
Reviewed on Jan 12, 2026
Review from a verified AWS customer
What is our primary use case?
I use Sophos Cloud Optix most of the time to harden our AWS infrastructure or Azure infrastructure, and sometimes I use it to meet different types of compliance requirements such as SOC 2 and ISO 27001.
I was working in a regulated company where the State Bank of the country is the regulator, so to provide them a compliance report, our infrastructure is optimized and there are no security gaps. I harden our cloud infrastructure and then provide the Sophos Cloud Optix report, which illustrates the current status of our security posture, helping me provide a detailed report.
I use Sophos Cloud Optix sometimes to find cost optimization gaps inside the cloud, such as unused resources, and the Sophos Cloud Optix dashboard explains very well about unused resources that must be deleted or taken care of, which helps us with cost optimization, including security groups that are created but not used.
What is most valuable?
I really appreciate most aspects of Sophos Cloud Optix, especially that we can set it up on AWS marketplace without needing to host a new machine. We can use their trial version where we can monitor a small number of resources without any additional cost.
Setting up Sophos Cloud Optix on AWS is not difficult at all, also because my team has experience with it, making it very easy and quick to set up a trial version that helps us see the initial posture of our security setup as we grow, and then they charge based on the cloud resources.
Sophos Cloud Optix impacts us positively in many ways, particularly in security, which is an important part. It is not just about fixing everything without a clear picture of what we have done to improve security, as there must be a portal explaining our progress, which I really appreciate, and it helps us save time and in optimization for performance and cost.
While I have not seen much for cost optimization as we have another great tool for it, Sophos Cloud Optix aids us to set up our infrastructure appropriately, making sure databases are in a private network, and if systems are wrongly set up, it helps us quickly mitigate those issues and provides a report indicating the problem.
I am really impressed with the way Sophos Cloud Optix provides its features, so I am not sure about any specific improvements needed.
I am really satisfied about the reports Sophos Cloud Optix generates, provided in a PDF format which is very useful for our recording purposes.
What needs improvement?
I believe there can be improvements in the logging mechanism, with more detailed information available about systems or network logs being beneficial.
For how long have I used the solution?
I started using Sophos Cloud Optix for the first time three or four years back when I was working in a small fintech company.
What do I think about the scalability of the solution?
I believe Sophos Cloud Optix is very scalable, as it automatically detects new resources in the cloud environment as it grows.
How are customer service and support?
I have not connected with Sophos Cloud Optix customer support yet, but I had a bad experience when our AWS cloud got compromised, leading to many resources being provisioned, and while Sophos Cloud Optix identified those resources, the resulting bill from AWS was quite high due to the usage charges, which I tried to investigate with the Sophos team, though I am not sure if they assisted with the refund.
How would you rate customer service and support?
How was the initial setup?
The initial setup process for Sophos Cloud Optix is really easy, just a few clicks, and you should be good to go.
What other advice do I have?
I have not integrated Sophos Cloud Optix with other tools, but I believe there are many integration options available.
The learning curve for new users on my team with Sophos Cloud Optix is not much complicated, though new team members definitely need some training on how to add things together, collect reports, and gather information from the dashboard.
I definitely recommend using Sophos Cloud Optix, even for small customers, as it helps to view the security posture of your infrastructure. I would rate this product 9 out of 10.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Suryakumar Selvaraj
Unified cloud monitoring elevates asset visibility while AI-driven enhancements needed
Reviewed on Feb 21, 2025
Review from a verified AWS customer
What is our primary use case?
One primary use case for Sophos Cloud Optix is cloud visibility. I use it for compliance requirements and improving end user experience. The solution provides a unified dashboard for multi-cloud environments, allowing analysts to easily monitor assets.
What is most valuable?
I find Cloud Optix to be a valuable solution since it provides a single, unified dashboard to monitor cloud assets, such as AWS and Azure . It includes features like vulnerability management, allowing for visibility into cloud infrastructure at a granular level, highlighting potential loopholes, and suggesting corrective actions. This makes it valuable within a managed service provider's ecosystem or SOC ecosystem.
What needs improvement?
Sophos should enhance its AI-driven detection features and anomaly detection. The solution focuses on cloud security posture management. Fortinet, having acquired Lacework, seems to be a step ahead in this regard, emphasizing the need for Sophos to compete with standalone market leaders. Furthermore, integrating automation features like SOAR could significantly improve its functionality.
What do I think about the stability of the solution?
I rate the stability of Cloud Optix as eight out of ten.
What do I think about the scalability of the solution?
I rate the scalability of Cloud Optix as nine out of ten.
How are customer service and support?
I find Sophos support to be great, especially from a firewall perspective. However, I faced some issues while integrating the product with Azure or M365 into Cloud Optix. I suggest Sophos enhance their integration support to allow seamless integration without manual intervention.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I migrated from Symantec to several other products, as I work on multiple solutions like Sophos, CrowdStrike, Cortex XDR , Cygnal, and Microsoft Defender for endpoint security. Being an MSSP provider requires me to manage various security solutions.
How was the initial setup?
I found the initial setup of Cloud Optix to be straightforward.
What's my experience with pricing, setup cost, and licensing?
I find the price of Sophos solutions to be competitive. It is neither the cheapest nor the most expensive option available. There are other solutions in the market that are less expensive.
Which other solutions did I evaluate?
Cloud Optix hasn't been marketed aggressively in India compared to other Sophos products. It mainly faces competition from cloud-native solutions within AWS and Azure, as well as Lacework, which is gaining traction in the market.
What other advice do I have?
I rate Sophos Cloud Optix seven out of ten overall.
I recommend it for any size of company, considering their current ecosystem and workload. It's particularly suited for those in a Sophos ecosystem, or working with AWS and M365. An improvement in anomaly detection and integration with SOAR-type automation would make it even more competitive.
Computer & Network Security
Products are much .ore convenient and productive.
Reviewed on May 15, 2024
Review provided by G2
What do you like best about the product?
The insight is great. Products are really impressive.
What do you dislike about the product?
Nothing to dislike. All good. I find the product much better
What problems is the product solving and how is that benefiting you?
It's deduction technology is quite impressive and accurate which detects the thread and send a note send notification to inform about the details so that an automation based investigation can be performed to dissol the concern.
Rithika G.
Sophos Cloud Optix is superb for auto-remediation of security incidents in our CloudFormation stacks
Reviewed on Apr 17, 2024
Review provided by G2
What do you like best about the product?
Sophos Cloud Optix is exceptional when it comes to infrastructure visibility, cloud resources inventory management and identifying potential security & compliance risks.
Its platform support for auto-discovery across multiple cloud environments is great & we obtain well-rounded insights from its intuitive dashboard.
Its cloud gap analytics aids us to pinpoint operational inefficiencies & ensures that we are properly aligned with client specifications & compliance standards.
After our EC2 instance deployments, we need to continuously monitor for misconfigurations and vulnerabilities in its security posture. Sophos Cloud Optix provides comprehensive visibility which helps us validate our configurations effectively.
Its platform support for auto-discovery across multiple cloud environments is great & we obtain well-rounded insights from its intuitive dashboard.
Its cloud gap analytics aids us to pinpoint operational inefficiencies & ensures that we are properly aligned with client specifications & compliance standards.
After our EC2 instance deployments, we need to continuously monitor for misconfigurations and vulnerabilities in its security posture. Sophos Cloud Optix provides comprehensive visibility which helps us validate our configurations effectively.
What do you dislike about the product?
We utilize Sophos Cloud Optix platform for many of our AWS services management namely EC2, S3, RDS , IAM and CloudFormation.
For preventing unauthorized access and to enforce limited resource privileges, we manage our IAM users, roles and policies through the visibility offered in its dashboard.
Implementing an unified policy management utility is made simple thanks to its seamless integration with our AWS resources.
Overall, we are satisfied with the implementation & the governance features offered by Sophos Cloud Optix for our infrastructure management & cost optimization procurements.
For preventing unauthorized access and to enforce limited resource privileges, we manage our IAM users, roles and policies through the visibility offered in its dashboard.
Implementing an unified policy management utility is made simple thanks to its seamless integration with our AWS resources.
Overall, we are satisfied with the implementation & the governance features offered by Sophos Cloud Optix for our infrastructure management & cost optimization procurements.
What problems is the product solving and how is that benefiting you?
Recently, we did the analysis of our AWS CloudFormation templates with the help of Sophos Cloud Optix for config errors validation before deployment.
It actively tracks the changes made to any AWS resource in our infrastructure & offers real-time visibility into its security posture information.
Whenever there is any security issues/compliance violations in our CloudFormation stack deployment, Sophos Cloud Optix provides efficient auto-remidiation actions for enforcing compliance standards with our customer security policies.
We can also easily identify idle/unused resources that were deployed from CloudFormation stack. By deleting those stacks, we improve our resource allocation efficiency and minimize cloud expenditures.
With the insights provided by Sophos Cloud Optix, we can comprehend the relationships between the resources deployed via CloudFormation template thereby, prevent infrastructure changes that may potentially impact our production due to misconfiguration in their resource dependencies.
It actively tracks the changes made to any AWS resource in our infrastructure & offers real-time visibility into its security posture information.
Whenever there is any security issues/compliance violations in our CloudFormation stack deployment, Sophos Cloud Optix provides efficient auto-remidiation actions for enforcing compliance standards with our customer security policies.
We can also easily identify idle/unused resources that were deployed from CloudFormation stack. By deleting those stacks, we improve our resource allocation efficiency and minimize cloud expenditures.
With the insights provided by Sophos Cloud Optix, we can comprehend the relationships between the resources deployed via CloudFormation template thereby, prevent infrastructure changes that may potentially impact our production due to misconfiguration in their resource dependencies.
April Y.
The highly commendable threat detection capabilities and other features of of Sophos Cloud Optix.
Reviewed on May 30, 2023
Review provided by G2
What do you like best about the product?
How the product identifies security gaps and vulnerabilities within cloud environments. Moreover, Sophos Cloud Optix empowers organizations to proactively address potential weaknesses and strengthen their overall security posture.
What do you dislike about the product?
Experiencing false positives and false negatives in the alerting and detecting of the threats. This may cause false alarms to users and question the product's credibility in the future.
What problems is the product solving and how is that benefiting you?
One of the problems Sophos Cloud Optix helps me solve is to conduct ongoing risk assessments; the platform identifies security gaps and vulnerabilities within cloud environments.