Security vulnerabilities in browsers, SaaS, and email: Sophos Workspace Protection addresses hybrid risks

Aphos Gesellschaft fuer IT-Sicherheit announces the introduction of Sophos Workspace Protection, a new security solution designed specifically for hybrid and remote working models. At its core is Sophos Protected Browser, a hardened Chromium-based enterprise browser that protects applications, data, and users regardless of their location, offering an alternative to complex SASE and SSE architectures.

Workspace Protection addresses a key problem faced by many IT departments: security policies often work reliably within the corporate network, but lose their effectiveness outside traditional network boundaries. In particular, SaaS applications, private web apps, and the use of generative AI services often elude the control of traditional security mechanisms in practice.

Browsers as a security control surface in hybrid environments

Sophos Workspace Protection shifts central controls to the Sophos Protected Browser. Policies for web access, SaaS usage, and local data processing are implemented directly where modern knowledge work takes place. Uploads, downloads, copy-and-paste operations, and the handling of local files can be controlled granularly without having to route all data traffic through additional cloud gateways.

Management is handled via the central Sophos Central platform. For IT teams, it's less about adding another standalone system and more about identifying gaps that can be closed more quickly in conjunction with existing measures such as Secure Web Gateway, CASB, or SSE, and determining which traditional controls remain necessary.

Four components in one bundle

Sophos Workspace Protection bundles four existing and new components that can be rolled out together in Sophos Central. The added value comes from the combination of browser control, zero-trust access, DNS protection, and additional email telemetry.

* Sophos Protected Browser:

A hardened, Chromium-based browser that serves as a central work interface for web and SaaS applications. Among other things, it controls application access, web filtering, and local data controls such as uploads, downloads, and clipboards. The goal is to reduce risks in the browser context and make shadow IT and uncontrolled use of AI services more transparent.

* Sophos ZTNA:

Zero-Trust Network Access is integrated into the Protected Browser and enables access to private web applications without a traditional full agent. Access can be linked to users and devices that meet defined security requirements. In combination with Sophos Endpoint, the security status of the endpoint can be included as a prerequisite.

* Sophos DNS Protection for Endpoints:

DNS Protection works beyond the browser on Windows endpoints and checks requests regardless of port or protocol. Malicious or unwanted domains can be blocked. DNS-over-HTTPS further increases the integrity of DNS traffic and supports scenarios where connections are not permanently routed through a central gateway.

* Sophos Email Monitoring System (EMS):

EMS is operated in addition to existing email infrastructures such as Microsoft 365 or Google Workspace and provides additional telemetry data on email traffic. The focus is on unwanted or suspicious messages, for example in connection with phishing campaigns. The data obtained can be correlated with browser and endpoint signals in Sophos Central.

Enterprise browser as an alternative to SASE and SSE stacks

Sophos positions Workspace Protection as a pragmatic alternative to traditional SASE and SSE concepts, especially for small and medium-sized environments. While many SSE architectures route web and SaaS traffic through central cloud gateways, Workspace Protection operates at the browser and endpoint. This can reduce dependence on distributed PoPs and simplify deployment for external parties, guests, or service providers when the focus is primarily on browser-based access.

At the same time, the need for complementary controls remains. Network segmentation, east-west monitoring, classic intrusion prevention, or more in-depth data loss prevention requirements continue to be covered by hardware firewalls, virtual firewalls, and endpoint security functions. Workspace Protection complements these structures where SaaS, web portals, and modern browser workflows dominate.

Greater transparency for XDR and MDR scenarios

Workspace Protection generates additional security signals from browser activity, DNS queries, and email monitoring. This telemetry flows into Sophos Central and can be evaluated as part of Sophos XDR or Sophos MDR. This can facilitate the classification and handling of security events, especially in incidents where web usage, SaaS access, and email attacks interact.

For organizations with their own security operations center or an external security operation, Workspace Protection provides an additional layer of context in the XDR environment. In environments with Sophos MDR, the telemetry data is available to the managed service and can be incorporated into 24/7 monitoring and response.

Availability and testing

Sophos announced Workspace Protection in January 2026. General availability is scheduled for the end of February 2026. Individual components such as Sophos Protected Browser and Sophos DNS Protection are already available in advance as part of an early access program in Sophos Central. A trial run for the complete bundle has been announced for the GA date.

Support from Aphos and Firewalls24

Aphos Gesellschaft fuer IT-Sicherheit is a cybersecurity service provider that assists companies, government agencies, and other organizations with the classification and implementation of Sophos Workspace Protection. This includes architecture consulting, pilot projects for browser-based security concepts, and integration into existing firewall, endpoint, and XDR/MDR environments.

Licenses for Sophos Workspace Protection and its components can be purchased via the Firewalls24.de purchasing platform operated by Aphos. In addition, Firewalls24.de provides background information on Sophos Workspace Protection, the individual components Protected Browser, ZTNA, DNS Protection, and Email Monitoring System, as well as other Sophos solutions for network and endpoint security.

Aphos Gesellschaft fuer IT-Sicherheit mbH
Mergenthalerallee 73-75
Eschborn 65760
Germany

https://aphos.de

Herr Lennart Wyrwa
061965820160

marketing@aphos.de

Aphos Gesellschaft fuer IT-Sicherheit mbH is a specialized IT security provider focusing on tailor-made cybersecurity solutions for companies, government agencies, and public institutions. As a fully accredited Sophos Platinum Partner, the company offers first-class consulting, comprehensive support, and a broad portfolio of IT security solutions.

With Firewalls24.de, the shop for Sophos IT security solutions, Aphos GmbH enables fast and uncomplicated procurement of Sophos firewalls, switches, access points, and Sophos Central licenses. Combining technical expertise, personal consulting, and competitive prices, Aphos is the ideal partner for companies of all sizes that rely on the highest security standards.

This release was published on openPR.