BlackBerry Cylance Cybersecurity Reviews

Rather than having to log onto a central server to manage the endpoint protection, I can log onto the dashboard to manage everything. No on-premise server required, chewing up resources needed for other tasks and projects. Endpoints are protected in real-time without the need of a centralized server, whitelist, or the ability to connect to a central host in the cloud. Even if an endpoint loses connection to the Internet, I know that endpoint is protected against 99.99% of the threats in the wild today.

Centralized dashboard online which can be used for managing a huge product. Anything I need done can be done from a single website.

Work on the math model. We are catching a lot of false positives, which gets to be a pain at the start of a deployment. It is not hard to decipher and add a global safe list, so you do not have to touch or adjust Clients on all endpoints. After you get passed the initial scan, it is clear sailing and very easy to manage and maintain.

No issues. I had heard of others having some issues early on with performance, but I never experienced any issues. When there is a problem, as administrators, we are notified promptly by Cylance of what the issue is, then they resolve it very quickly.

Never an issue. I have deployed this solution immediately to endpoints of all flavors without issue: PCs, MACs, and servers. Specifically for a Windows domain environment, the product can be customized and pushed via GPO or SCCM without issue.

I would rate technical support as a 10 out of 10. I have never had a bad experience and very rarely have had to call them for any type of support for the product.

I had just renewed a three year subscription to a very popular endpoint protection suite when I went to a Cylance roadshow and discovered how poorly protected my organization really was. Out of 10 real world live bugs, my endpoint protection, fully-patched, deployed in a best practice environment only stopped seven of them. Cylance stopped all 10, and every show I have ever been to, Cylance has won hands down without question. Many other products require your endpoints to connect to a central hub on-prem or are cloud-based, then soon as they lose that ability, those solutions fail.

Very easy to deploy. It can be done one by one or deployed by customizing an MSI file for GPO push.

Shop around for sure and be assured the price you pay will be close to other solutions available, but even at a slight mark-up from the other solutions, you are getting real endpoint protection versus nothing more than a cheap security blanket that might keep you warm at night. However, it is not actually protecting you from anything.

Reviewed these: SEP, Cisco, McAfee, and discussed Palo Alto options as well.

Do your homework. Demo products to see how they will work within your environment and involve your end users. End users are key to testing these deployments and what their experiences will be with it. 

Above all, do not get hung up on price. You pay for what you get and expensive will hurt one time, where cheap will hurt forever, especially if you fall victim to a ransom attack, etc.

We are mainly using this solution on our desktop PCs. It provides endpoint protection.

What I like most about Blackberry Protect is that it's easy to deploy. As an end user, you won't need to do anything.

I find the price for Blackberry Protect expensive, so that's an area for improvement.

I've been using Blackberry Protect for over two years.

I find this solution stable.

Blackberry Protect is a scalable solution.

We previously used Symantec End-User Endpoint Security, but we switched to Blackberry Protect because of company policy.

We implemented this in-house through our IT team.

The license price for this solution could be better. It's on the expensive side.

We're on a yearly license for this solution. I'm not sure, but I believe there isn't any extra cost, apart from the license fee.

We evaluated Symantec End-User Endpoint Security.

I'm using the latest version of Blackberry Protect.

I'm not responsible for the actual setup and installation of this solution. It was our IT team who was responsible, but I believe that the setup and installation was straightforward.

For the deployment and maintenance of Blackberry Protect, we used three technical guys. They were all from IT and they provided support internally, which included support for Blackberry Protect, its license, etc.

We have 100 users of Blackberry Protect.

I didn't have the chance to contact the technical support team for this solution.

I'm recommending Blackberry Protect to other people who want to start using it.

Blackberry Protect is a good solution, so I'm rating it an eight out of ten.

My clients have not had to contend with time-consuming false positives, nor have they had to worry about zero-day attacks, even for systems which have been off the network for months.

The CylancePROTECT agent is very low on CPU usage, so it has virtually no adverse impact on my servers, desktops, or workstations.

I am also quite impressed with its ability to protect systems against zero-day threats due to the machine learning algorithm, which powers its database. Databases, as old as 2015, are able to accurately detect 2017-era threats, such as WannaCry and other ransomware.

The management console needs a little maturity in how it presents data and allows the administrator to drill down or search across systems.

We have had a few machines experience potential problems with the CylanceOPTICS supplementary agent, but we have not narrowed down the issue as of yet. That is a total of two machines across over 100 deployed.

So far, no.

Customer Service:

10 out of 10. Customer service has been very responsive (going through a managed provider).

Technical Support:

10 out of 10. Technical support has been stellar (going through a managed provider).

Yes, I used and supported a previous solution, but changed, because of system performance impact, and management of the client-side activity databases. (The old solution had a slightly better GUI, but not enough to offset the other concerns.)

The initial setup was very straightforward.

1. Install agent on system, apply key, and device comes up in the portal.
2. Automatically apply monitoring policy.
3. Verify the baseline, and quarantine or whitelist all detected files.
4. Apply active policy.

Also, the installation did not require a reboot.

Implementation was conducted with support of the Managed Service Provider, who was top notch in their knowledge and support of the toolset.

We expect our ROI to be eight months, especially when taking into account the time spent with customers dealing with ransomware recovery over the past two years.

The initial endpoint cost may seem a little high (~$55/device/year), but when you look at the total peace of mind that the solution of Cylance endpoint protection provides, with no reboots for updates, and negligible performance impact, it is well worth it.

We evaluated Webroot, Symantec, Sophos, and Barkly.

We would encourage everyone evaluating endpoint protection solutions to run a 30-day pilot (minimum) in their own environments and with a representative set of devices. Be sure to test the management of the systems, including the policy management and whitelisting/exception management.

Our clients use CylancePROTECT for endpoint detection and antivirus.

The most valuable feature of CylancePROTECT is the support.

The solution’s user interface could be improved.

I have been using CylancePROTECT for two years.

I rate the solution’s stability a seven out of ten.

Our clients for CylancePROTECT are usually small and enterprise businesses.

I rate the solution an eight out of ten for scalability.

The solution’s technical support is good.

Positive

The solution’s initial setup was easy.

On a scale from one to ten, where one is difficult and ten is easy, I rate the solution's initial setup a seven out of ten.

Our clients have seen a good return on investment with CylancePROTECT.

On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a seven out of ten.

Overall, I rate the solution a seven out of ten.

I work in cybersecurity and with sensitive materials, so the solution is a proactive antivirus system.

CylancePROTECT is a proactive antivirus system, and I can't rely on a reactive system.

It actively monitors the behavior and activity of processes and will, without hesitation, terminate at root anything it determines to be suspect.

In essence, it will just terminate malware, even disguised malware. It will also occasionally terminate legitimate software that's trying to update, but at the same time, you can check in the dashboard. It has a very accessible and easy-to-read, and understandable record that tracks everything it does. It actively monitors what's going on.

So if you download the wrong software package, or you click the wrong link and run something, even if your computer does not detect something wrong, Cylance will notice that there is something off about it and will terminate it for you.

From my experience interacting with the primary or the central administrative console, it's quite complex. You would need a fair bit of technical experience to set it up, implement and maintain it. That would be one area for improvement.

It could be possible to make the UI for the admin dashboard more user-friendly or provide more explainer tooltips or more warnings before you change settings. The solution can do whatever you need, but you could annihilate your machine by changing the wrong setting, and you would have to start again.

Another quibble is that the endpoint visibility is a bit spartan. Because if a new policy is released from the admin console, you have to tell Cylance to check for a policy update, but when you do that, it does not tell you it has actually done that policy check, and there is no way of really knowing if it has actually updated. It would be nice to have a notification telling you whether or not the actions you have taken have actually been taken.

I have been working with CylancePROTECT for about a year.

I would rate the stability of the solution an eight out of ten. Since I started using the solution, I have only ever had one instance where it has had a problem.

We worked that out and updated it, and it was fine.

Once CylancePROTECT is set up, it is self-contained and is good to go.

I would rate the scalability for CylancePROTECT a ten out of ten since governments use the solution. The sky is the limit.

My organization has around 30 users.

My impression of customer support is that they take on advice and information. They provide a solution if you inform them of a weakness or an issue.

The initial setup is complex. The solution is military-grade, so I wouldn't expect anything less.

Setting it up at an enterprise level is relatively complex. But once set up at the administrative level, it is comparatively easy for the end user to set up.

Enrolling my phone with CylancePROTECT is a relatively easy process.

The solution is expensive.

I would rate CylancePROTECT an overall ten out of ten. With the evolution of malware, the dependence on a hash record renders a lot of antimalware inadequate, and a proactive antivirus system is necessary.

The solution is expensive but reasonable because it is a high-grade enterprise-level piece of software and is competitive for what it does.

I have not encountered any solution that is as good, effective, reliable, or powerful as this product.

We are currently using CylancePROTECT and CyclanceOPTICS.

Our primary use case is an anti-virus solution.

It is deployed globally throughout the organization.

Cylance is quite lightweight and does not require constant updates.

The Application Guard and ByteGuard are useful features.

The OPTICS component could be made more user-friendly with respect to giving people more information.

There are some issues that we have around our configuration, so I think that more training with respect to setup and configuration would be helpful.

I have been using Cylance for the past year and it has been in the organization for a couple of years.

This solution is very stable.

Cylance scales very well both on clients and servers. We have between 4,000 and 5,000 users.

I have not personally been in touch with technical support, but I know that when we have contacted them about anything in the past, they've been very responsive. Our account management team is very good, as well.

The company did use another solution prior to Cylance, but I don't know what it was.

The initial setup is very straightforward and the deployment took a few days.

We got a hold of the installation files and deployed them ourselves.

I think that the price we are paying is good for what it is. It could always be cheaper, but cheaper doesn't make it better.

Cylance is a product that I recommend trying. It is different from the traditional products that are out there like Symantec, McAfee, and Sophos.

This technology is very good, very stable, and we have great trust in it and what it delivers. They also do health checks from time to time and they help, which is useful.

This solution works well but there is always room for improvement. Nothing is perfect.

I would rate this solution an eight out of ten.

We use the solution for endpoint protection.

It is a good endpoint solution. It is very easy to manage and detect a threat immediately. It will take the necessary actions.

The solution should implement AI in the product. The main purpose of CylancePROTECT is to prevent infections on our endpoints and increase security. The more intelligence the product gains, the better it is for us. Currently, it is already intelligent. It will require updates to continue improving and detecting the latest threats. Threat intelligence must always be preferred in AI machines; it will always radiate with new threats and learning.

I have been using CylancePROTECT for four years. We are using the latest version of the solution.

I rate the solution’s stability an eight out of ten.

Three to four people are using this solution. I rate the solution’s scalability a nine to ten out of ten.

The initial setup is straightforward and takes one to two days to complete.  It requires configuration and implementation from the backend.

I rate the initial setup a nine out of ten, where one is difficult and ten is easy.

We saved our employees and endpoints.

The product has a yearly subscription.

I rate the product’s pricing a five out of ten, where one is cheap, and ten is expensive.

We have evaluated Trend Micro. We switched to CylancePROTECT because it is cloud-based and very easy to manage. It's an advanced feature like AI implementation and integration.

Maintenance is automated. It automatically updates itself, so manual patching operations are unnecessary. Updates occur automatically in the background on client system endpoints regardless of the subject matter.

CylancePROTECT handles zero-day threats and unknown malware in your environment. They have implemented something called AI detection. It will detect all the things. If it is a host, it will alert; if it is anything in PeerSpot, it will also alert.

Overall, I rate the solution a nine out of ten.

We put the product on all of our desktops and servers.

The solution has broken down the organization by taking down the network about six times in two years.

The most functional item that we use is the process to turn off the false flags that it causes.

They could improve on the false positives, reporting and whitelisting features.

For future releases, it would be helpful to have an easy uninstall button. The reason being, unless you connect the system to the internet, which you may not want to do, Cylance cannot be uninstalled easily. They claim it's practically impossible. If you have access to the online admin panel, it's very easy to uninstall Cylance. There is no easy way to uninstall locally. I have read online there is a convoluted way with a series of reboots and safety reboots that you could possibly do it locally.

I have been using it for about two years.

It is not stable. The solution has caused six crashes over two years, with one of them requiring us to rebuild all of our Windows 10 devices.

Scalability is pretty good. We have around 100 users using the solution. However, when we rebuild new desktops, we're not installing it on them.

We have used Symantec before and a MSSP came in with a package to help us get more secure, but it really was a failure.

The biggest issue we have with the product is it gives false positives.

Beware and work out a process to restore items that were deleted by false flags.

Work out a process to investigate any odd behaviour or troubleshooting tickets with open source software being even a small sub-component.

For the majority of installs, the Cylance is going to break because of the small sub-component that's open-source that is out of date. Always no matter what problem is happening, double-check to see if there were any flags in Cylance because it's probably going to be Cylance blocking something along the line. It will drive you nuts to work with your third-party technical support to track down an issue to then find out it was Cylance blocking one small facet of it.

Work out all those details with your Cylance team first, this way, whenever you have an issue, you can identify that Cylance is involved because it's involved in everything.

An example of an issue we were having was while we were trying to install a check scanner the install did not work. Cylance was blocking an old open source piece of software that comes from Kodak that you can't update because Kodak says it is the latest version of our installer for the check scanner. The installer for the check scanner includes the open-source piece of software from Kodak that's out of date. This causes the entire check scanner not to work, Cylance blocks the main installation because of the sub-installation of the open-source software.

Make sure your ducks are in a row so that you can detect when Cylance is causing an issue, report it and get it whitelisted. If you do not, you're going to spend an inordinate amount of time figuring out whether or not Cylance did something to block you, whitelisting and then more time justifying why you need it whitelisted.

I'm sure we were much more protected with it on, but the problem is if you're protecting me from my network being taken down, by taking my network down, you are not protecting it. For this reason, I rate CylancePROTECT a five out of ten.