Cloud Optix Tech Specs

Cloud Optix delivers the continuous analysis and visibility organizations need to detect, respond, and prevent security and compliance gaps that leave them exposed. This provides a single view of security posture across AWS, Azure, Google Cloud, Kubernetes, and Infrastructure-as-Code environments.

Extending Cloud Workload Protection with CSPM

Sophos Intercept X Advanced for Server protects server instances running in the cloud from the latest threats, and by including Cloud Optix Standard, organizations will extend security to visibility of those instances, containers, serverless and more, while identifying vulnerabilities to optimize security posture.

 

  Cloud Optix Standard Cloud Optix Advanced
Cloud Environments    
Amazon Web Services, Microsoft Azure, Google Cloud Platform, and Kubernetes

Image removed.

Image removed.

 

  Cloud Optix Standard Cloud Optix Advanced
Security Best Practice Scanning    
Configurable Security Scans Daily and On-demand Configurable and On-demand
Security Best Practice Policy Assessments
(Custom, CIS Benchmarks, ISO 27001, Sophos Best Practices, EBU R 143, FEDRAMP)
CIS Benchmarks

Image removed.

Automatic Remediation
(Guardrails)

Image removed.

Image removed.

Anomaly Detection – Network Traffic

Image removed.

Image removed.

Anomaly Detection – User Login Behavior

Image removed.

Image removed.

Anomaly Detection – Timeline of high-risk user role behavior  

Image removed.

High-risk Events Detection
(AI-based security overlay for Activity Logs)

Image removed.

Image removed.

Credential Compromise Detection

Image removed.

Image removed.

Intercept X Advanced for Server Integration: Agent discovery

Image removed.

Image removed.

Intercept X Advanced for Server Integration: Automatic agent removal from Sophos Central Admin

Image removed.

Image removed.

 

  Cloud Optix Standard Cloud Optix Advanced
Compliance Best Practice Scanning    
Configurable Compliance Scans  

Image removed.

Compliance Best Practice Policy Assessment
(Custom, FIEC, GDPR, HIPAA, PCI DSS, SOC2)
 

Image removed.

Alert Suppression
(Hide alerts via a simple checkbox)
 

Image removed.

Compliance Exception Handling
(Suppressed alerts apply to future scans)
 

Image removed.

Integration with Communication and Workflow Systems
(e.g. JIRA, ServiceNow, and Splunk)
 

Image removed.

 

  Cloud Optix Standard Cloud Optix Advanced
Monitoring    
Inventory – Hosts, Containers, Network, Storage

Image removed.

Image removed.

Inventory – IAM Users, Activity Logs, Serverless Functions

Image removed.

Image removed.

Container Image Scanning
(Amazon Elastic Container Registries (ECR), Microsoft Azure Container Registries (ACR), Docker Hub registries, GitHub and Bitbucket IaC environments, and via API)
 

Image removed.

Network Topology Visualization with AI-based Database Identification  

Image removed.

Over-privileged User Detection  

Image removed.

IAM Visualization
(Relationships between IAM Roles, IAM users, and services)
 

Image removed.

Spend Monitoring, Alerts, and Optimization Recommendations  

Image removed.

 

  Cloud Optix Standard Cloud Optix Advanced
Devsecops    
Infrastructure-as-Code (IaC) Template Scan for Insecure Configuration  

Image removed.

Infrastructure-as-Code (IaC) Template Scan for Embedded Secrets and Keys  

Image removed.

Source Code Management Integration for CI/CD
(e.g. GitHub, BitBucket)
 

Image removed.

Cloud Optix IAC REST API
(Scan IAC templates regardless of what code repository is used)
 

Image removed.

Container Image Scanning
(Amazon Elastic Container Registries (ECR), Microsoft Azure Container Registries (ACR), Docker Hub registries, GitHub and Bitbucket IaC environments, and via API)
 

Image removed.

 

  Cloud Optix Standard Cloud Optix Advanced
Integrations    
Sophos XDR integration - extend data sources with AWS, Google Cloud Platform and Microsoft Azure cloud environment data sources.
(Requires Cloud Optix Advanced and Intercept X Advanced for Server)
 

Image removed.

Cloud Providers
(New Amazon Inspector, AWS Security Hub, Amazon GuardDuty, AWS CloudTrail, New Amazon Inspector, Amazon Macie, AWS Systems Manager and Patch Manager, AWS Firewall Manager, AWS IAM Access Analyzer, AWS Trusted Advisor, Amazon Detective, Azure Sentinel and Azure Advisor)

Image removed.

Image removed.

Splunk SIEM
(Receive instant notifications of security events)
 

Image removed.

Azure Sentinel
(Receive instant notifications of security events)
 

Image removed.

Pager Duty
(Receive instant notifications of security events)
 

Image removed.

Slack
(Raise instant alerts to a chosen Slack channel)
 

Image removed.

Microsoft Teams
(Raise instant alerts to a chosen team)
 

Image removed.

Amazon SNS
(Raise instant alerts to a chosen SNS topic)
 

Image removed.

JIRA
(Create tickets from inside the Cloud Optix console for alerts)
 

Image removed.

ServiceNow
(Create tickets from inside the Cloud Optix console for alerts)
 

Image removed.

GitHub
(Scan Infrastructure-as-Code templates in GitHub repositories)
 

Image removed.

BitBucket
(Scan Infrastructure-as-Code templates in Bitbucket repositories)
 

Image removed.

Jenkins
(Raise IAC scan results via API directly in the Jenkins build pipeline)
 

Image removed.

Image
documentation

 

Learn More

Find additional information in our datasheet.

Download Datasheet

Image
chat

 

Sophos Community

Find full system requirements for products.

Visit the Community

Get Started Today

Free TrialHow to Buy