Skip to content

Cloud Optix

Sophos Cloud Optix is an AI-powered security and compliance platform for public cloud environments.

Sophos Cloud Optix does the following:

  • Provides a real-time inventory of your servers, storage, and network elements in the cloud.
  • Helps you manage resources, monitor security, and meet compliance standards in one simple-to-use interface.

Initial setup

You can add your cloud environments, like AWS, Microsoft Azure, and Google Cloud Platform (GCP), to Sophos Cloud Optix to see your cloud resources, network traffic, and potential threats. The service only needs read access to your cloud environments.

Read the Sophos Cloud Optix help to find out how to protect your cloud environments.

For more information about Sophos Cloud Optix, see Sophos Cloud Optix help.

For more information about Sophos Cloud Optix licensing, see Sophos Cloud Optix licensing.

Sophos Cloud Optix and Sophos XDR

Sophos Cloud Optix is integrated with Sophos Extended Detection and Response (XDR).

Sophos can upload activity logs, for example AWS CloudTrail logs, from Sophos Cloud Optix to the Data Lake. You can then run Live Discover queries in the Threat Analysis Center to detect suspicious activity in your cloud environments.

To find out more, see Using Sophos Cloud Optix with XDR.


The Sophos Cloud Optix service is hosted in the US and the EU. Customers in other countries can purchase and use the US-hosted service. The service isn't currently available from Cuba, Iran, North Korea, Russia, South Sudan, Sudan, Syria, Ukraine, and Venezuela.