Sophos has launched Sophos Advisory Services, a suite of advanced security testing solutions that help organizations identify vulnerabilities and strengthen defenses against cyberattacks. Backed by Sophos X-Ops intelligence, the new services enhance resilience, compliance, and trust across all levels of security maturity.
MALAYSIA, 7 October 2025 – Sophos, a global leader in cybersecurity innovation, has announced the launch of Sophos Advisory Services, a comprehensive suite of testing services designed to uncover and fix security gaps within organizations. The new offerings include External Penetration Testing, Internal Penetration Testing, Wireless Network Penetration Testing, and Web Application Security Assessment.
These services aim to help organizations of all sizes assess their cybersecurity posture, close vulnerabilities, and ensure compliance with evolving regulatory standards. According to the Sophos State of Ransomware 2025 report, exploited vulnerabilities remain the leading cause of ransomware attacks, with 65% of organizations reporting exposure due to known or unknown security gaps.
“Adversaries are becoming increasingly adept at exploiting even the smallest cracks in a company’s defenses,” said Jake Dorval, Senior Director of Sophos Advisory Services. “With Sophos Advisory Services, we empower our customers to proactively identify and fix weaknesses before attackers can take advantage. Supported by real-time intelligence from Sophos X-Ops, our experts enable organizations to enhance resilience and build lasting stakeholder trust.”
Each service is powered by the latest threat intelligence and insights derived from Sophos X-Ops’ research, threat hunting, and incident response engagements:
- External Penetration Testing simulates outside attacks on an organization’s perimeter.
- Internal Penetration Testing examines internal systems and networks to detect potential insider threats.
- Wireless Network Penetration Testing evaluates the security and compliance of Wi-Fi infrastructure.
- Web Application Security Assessment identifies vulnerabilities in online applications and their underlying architecture.
The services are delivered by a team of seasoned cybersecurity experts, including specialists from law enforcement, military, and research backgrounds—many of whom joined Sophos through its recent acquisition of Secureworks. The team collectively holds hundreds of security certifications and is supported by Sophos X-Ops analysts and intelligence researchers.
Sophos plans to expand its Advisory Services lineup in the coming months. This launch follows the company’s introduction of Sophos Emergency Incident Response, an hourly on-demand service that provides immediate threat identification and neutralization for organizations facing live cyber incidents.
