Health Check Scores
Account Health Check shows scores for your account health. These reflect whether your devices or policies are using recommended, secure settings.
There are scores for overall health, for each security feature, and for each specific health check we do.
This page tells you what scores mean and how we calculate them.
A Health Summary is shown at the top of the Account Health Check page.
Your Overall Health Score is based on your scores for protection, policy settings, exclusions, and tamper protection.
The score is out of 100. A score of 100 means we didn't find any issues with your account.
Scores are broken down into Good health (green), Issues (yellow), and Snoozed issues (gray). Snoozed issues are issues that you've postponed dealing with.
The Health check scores bar charts show your average score out of 100 for each security feature. For details, see Scores for each security feature.
The Other organizations figure under each chart shows you the average score that other organizations achieve. See Scores compared to other organizations.
Scores for each check
In each health check, for example Endpoint Protection, we show a score for that check.
We calculate the score based on the number of devices or settings that comply with our recommendations.
Scores can range from 0 to 100. A score of 100 shows with a green checkmark. Any score less than 100 is shown in yellow and indicates that you can improve security.
Snoozed checks show a score in gray. Snoozing doesn't affect your scores.
If we can't show a score, we show a dash in its place:
To get help to fix issues and improve your score, click the help icon in the bottom left of the check.
Here's how we calculate the scores for each type of health check.
For Endpoint protection and Server protection, we calculate the percentage of devices that have all your licensed software.
For example, if you have 1000 devices and 900 have all the protection you're licensed for, you see a score of 90.
For Endpoint tamper protection and Server tamper protection, we calculate the percentage of devices that have tamper protection turned on.
Global tamper protection is either turned on (score 100) or turned off (score 0).
If global tamper protection is off, no devices have this protection. The endpoint and server checks show a score of 0. When you turn global tamper protection on, those checks show the percentage of devices with protection turned on locally.
Threat Protection policy settings
For Endpoint Threat Protection policy settings or Server Threat Protection policy settings, we calculate the percentage of your settings that match our recommended settings.
Some policy options don't have a recommended setting. We ignore those in our checks.
For Endpoint policy exclusions, Server policy exclusions, and Global exclusions, we calculate the score based on the number of insecure exclusions as a proportion of all your exclusions.
For example, you have 10 exclusions and 2 are insecure. We consider 8 of your 10 exclusions to be secure. So your score is 80 out of 100.
We only check for exclusions that are a significant security risk. Even if your exclusions health checks show a high score, regularly check that your exclusions are necessary and safe.
Scores for each security feature
We show an overall score for each product feature, for example, Protection installed. You see this score in the upper right of that section on the page.
This score is an average of the scores on the individual checks on that feature (in this case, Endpoint protection and Server protection). For example, if the score is 100 for endpoints and 50 for servers, the section score is 75.
We show the section score in the color of the lowest score. If one check is green and the other is yellow, the section score is yellow.
This average score isn't weighted by the numbers of devices or settings in each check. For example:
- You have 1,000 endpoints and a score of 100 = 1,000 protected devices
- You have 10 servers and a score of 50 = 5 protected devices.
So 1005 devices out of 1010, or approximately 99.5 per cent, are protected, but the average score still shows as 75 out of 100.
This means that security weaknesses are visible in the averages even if they affect a small number of devices or policies.
Scores compared to other organizations
You can see how your scores compare with other organizations.
By default, we show you average scores for organizations that are in the same size range and use the same Sophos Central data region. Look for Other organizations underneath each chart in the Health summary section.
If we can't show the Other organizations score, we show a dash in its place.
You can change the organization size we use for the Other organizations scores. You might want to do this if you have many devices you aren't using, or you just want to see how larger organizations score.
In Show scores for organizations with a similar number of devices, select the size range you want to see.