Sophos Endpoint Selected for CIS MDRโข, a Purpose-Built Cybersecurity Solution for U.S. State, Local, Tribal and Territorial (SLTT) governments
Sophos, a global leader of innovative security solutions for defeating cyberattacks, announced it has been selected by the Center for Internet Security, Inc. (CIS)ย as the endpoint protection provider for commercial cloud for U.S. State, Local, Tribal, and Territorial (SLTT) government organizations as part of its newly launched CIS Managed Detection and Responseโข (CIS MDRโข) service. CIS MDR is a fully managed, 24/7/365 endpoint protection solution specifically designed to detect and stop attacks targeting U.S. government organizations.
The CIS MDR Security Operations Center (SOC) uses Sophos Endpoint powered by Intercept X to stop malicious activity early in the attack chain before attacks can impact government systems. CIS MDR provides continuous monitoring, detection, and response services which are now available through a Sophos-hosted commercial cloud infrastructure that meets the scale, availability, and operational needs of SLTT entities.
More than 600,000 organizations trust Sophos to defend against cyberthreats, including advanced remote ransomware attacks and active adversaries. Unique to Sophos, the solution includes Adaptive Attack Protection that dynamically heightens defenses on an endpoint when a hands-on-keyboard attack is detected, minimizing the attack surface and disrupting the attackerโs activities.
Read More on CIO Influence:ย The Road to AI-Native Wireless: Why Traditional RAN Must Evolve
โCIS is a trusted entity helping U.S. governments safeguard critical infrastructure and public sector systems,โ said Rob Lalumondier, vice president of public sector, Sophos. โAll SLTT governments deserve access to comprehensive security solutions to protect against todayโs evolving and persistent cyber threats. According to ourย State of Ransomware in the U.S. 2025 report, the average cost to recover from an attack, excluding ransom payments, was nearly $2 million last year. CIS MDR helps reduce this burden by delivering expert-led detection and response around the clock. This service combines the power of Sophos Endpoint with CISโ world-class SOC to deliver true 24/7 protection.โ
CIS MDR is designed to address the regulatory, staffing, and budgetary constraints faced by SLTT organizations while defending against the unique cyber threats that target these entities. With Sophos Endpoint, CIS MDR offers device-level protection and response to strengthen an organizationโs endpoint security program, and it provides active defense against both known (signature-based) and unknown (behavioral-based) malicious activity.
CIS MDR also benefits from Sophosโ proprietary CryptoGuard anti-ransomware technology, which is uniquely able to stop remote ransomware attacks, which now account for 70% of successful ransomware attacks, according to Microsoftโs 2024 Digital Defense Report.
โThe mission of CIS is to strengthen the cybersecurity posture of U.S. State, Local, Tribal, and Territorial government organizations, and delivering purpose-built solutions like CIS MDR is central to that mission,โ said Lee Noriega, executive director of cybersecurity services, Center for Internet Security (CIS). โBy leveraging a secure commercial cloud environment hosted by Sophos, weโre able to expand access to this fully managed service and meet the operational realities of our members with an enterprise-grade endpoint solution that is already trusted by more than 300,000 organizations. Sophos provides the flexibility and resilience needed to support real-time detection and response for SLTT organizations across the U.S.โ
CIS MDR is part of a broader integrated cyber defense ecosystem, working in concert with MS-ISAC threat intelligence, incident response, and compliance tools to deliver a unified, coordinated defense strategy.
Catch more CIO Insights: What is Shadow IT and why does it matter for enterprise security?
[To share your insights with us, please write to psen@itechseries.com ]
