Cybersecurity leader Sophos has unveiled Workspace Protection, a new security solution designed to address the growing challenges of hybrid work environments and unauthorized employee use of AI tools.
Securing Work Where It Actually Happens
The solution centers on the Sophos Protected Browser, powered by Island technology, targeting a critical vulnerability: 85% of modern work now takes place in web browsers. Unlike traditional Security Service Edge (SSE) and Secure Access Service Edge (SASE) solutions that require complex infrastructure and traffic backhauling, Workspace Protection embeds security directly into the workspace itself.
“Security teams are increasingly impacted by complexity, especially as hybrid work, SaaS adoption, and AI tools continue to expand the workspace,” said Mike Jude, Research Director at IDC, noting the solution’s pragmatic approach to reducing operational overhead.
Tackling the Shadow AI Problem
The launch comes as organizations struggle with a pressing issue: more than half of employees worldwide now use AI tools at work, often without formal policies or oversight. This phenomenon, termed “Shadow AI,” poses significant data security risks as employees share sensitive information with unauthorized generative AI platforms.
Sophos Workspace Protection provides visibility and control over these unauthorized applications, enabling IT teams to monitor, assess, and govern AI usage across distributed teams without blocking productivity.
Comprehensive Protection Suite
The solution includes four integrated components that organizations can deploy flexibly:
- Sophos Protected Browser: A Chromium-based enterprise browser with application controls and web filtering
- Sophos ZTNA: Zero Trust Network Access for secure connections to private applications
- Sophos DNS Protection: Cloud-delivered DNS security blocking malicious domains
- Email Monitoring System: Enhanced phishing detection for Google and Microsoft email services
Simplifying Enterprise Security
Joe Levy, CEO of Sophos, emphasized that the solution addresses gaps left by heavyweight SASE deployments while reducing complexity. By managing everything through the existing Sophos Central platform, organizations can protect applications, data, and users without specialized expertise or significant infrastructure investments.
The solution will be available to Sophos customers and partners starting in February 2026, offering an accessible alternative for organizations at varying security maturity levels seeking to govern emerging technologies while supporting flexible work arrangements.
