.svg?width=185&quality=80&auto=webp&format=auto&cache=true&immutable=true&cache-control=max-age%3D31536000 "Home"){kind=logo}
.svg?width=13&quality=80&auto=webp&format=auto&cache=true&immutable=true&cache-control=max-age%3D31536000 "Top Navigation - Sign in - Icon")
.avif?width=1024&quality=80&auto=webp&format=auto&cache=true&immutable=true&cache-control=max-age%3D31536000 "Shared - Banner with Media - Background")
CISO Playbooks
Sophos publishes playbooks to share our experiences and insights about security challenges we've tackled. These aren't generic best-practice guides — they're rooted in our own operational experience, including the false starts and hard-won lessons that defenders actually need. We prioritize specificity over broad applicability because knowing what to do is often straightforward; the real challenge is how to do it.
We'll continue to publish playbooks as we address new challenges.
North Korean IT Workers
Access a cross-functional toolkit to help you avoid and detect fraudulent North Korean hires. Resources include a control matrix that is based on our own processes and threat intelligence from Sophos X-Ops researchers.
Passkeys
Review the implementation guide to learn how we moved from multi-factor authentication (MFA) to phishing-resistant authentication. We also created an FAQ, a passkey rollout template for project managers, and a slide presentation that provides an overview of key points.