Try our new research platform with insights from 80,000+ expert users
Owner at Terra Controls
Real User
Proactive AI-based security that scales as we need it
Pros and Cons
  • "Two or three years ago when the WannaCry virus struck, the people that were on Cylance were the ones that weren't affected."
  • "I would like to see them fix the alerting system so that the endpoint reporting is a bit more streamlined."

What is our primary use case?

We are a solution provider and this is one of the security products that we implement for our customers. My biggest customers are two pharmacies and a bank and this makes up part of their security solution.

How has it helped my organization?

We have not had any data breaches. It has found flaws inside of our security procedures that enabled us to close the holes.

What is most valuable?

The most valuable feature is the AI and ML-based virus protection that does not rely on signature-based detection methods. The way this product works is that it does not go to a central server to pick up the latest virus definitions. Instead, it's a processor-powered search that checks to see if anything out of the ordinary is running on your machine. It looks for anomalies and cancels processes that do not look normal. For example, if a program tries to read the registry and then make a change, but it hasn't been authorized, then it is assumed to be a bad actor and the process is canceled or the action is disallowed.

What needs improvement?

There are a lot of false positives and it takes up a lot of time. This is something that should be improved.

I would like to see them fix the alerting system so that the endpoint reporting is a bit more streamlined.

The vendor should be more widely advertising this product because not many people know that these types of solutions exist.

Buyer's Guide
BlackBerry Cylance Cybersecurity
November 2024
Learn what your peers think about BlackBerry Cylance Cybersecurity. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,636 professionals have used our research since 2012.

For how long have I used the solution?

I have been using Cylance for about a year.

What do I think about the stability of the solution?

The stability is perfect. It is leaps and bounds beyond our previous solution by McAfee.

What do I think about the scalability of the solution?

It is scalable. From what we were told, we're going to keep on adding more licenses. The only thing that we might have to do is increase the capacity of the VM.

Which solution did I use previously and why did I switch?

We were using McAfee first, and as of last year, we switched to Cylance. McAfee is not a proactive solution. McAfee's support and everything were fine, but the Cylance product is used by the G7 countries the most. The company has a good standing.

Two or three years ago when the WannaCry virus struck, the people that were on Cylance were the ones that weren't affected. That was enough for us to switch.

How was the initial setup?

We engage with Cylance Professional Services, so there was not much need for input from our side. From our point of view, the initial setup is pretty straightforward.

The software is installed on a VM and we have about 70 machines in total. The deployment took about two days.

What about the implementation team?

For my financial client, I was a consultant. They have their own IT team and I acted as the intermediary.

What's my experience with pricing, setup cost, and licensing?

We paid according to the number of endpoints that we have and it was approximately the same that we were paying for McAfee. The monthly fee is $55 USD per user.

What other advice do I have?

I don't think too much about the features when it comes to an antivirus solution, such as this. When you try to combine too much into one product, you end up affecting the product as a whole. If you're a home user then it's great because you only pay once a year and it does everything including the antivirus, firewall, VPN, internet security, and more. However, when you're in an SMB or an SME installation, all of those things are decentralized.

My advice for anybody who is considering this solution is to switch if you have the money put aside. I would suggest using Professional Services to assist with the migration.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Kums K - PeerSpot reviewer
Cloud Systems Analyst at Nimbus Cloud Services
Real User
An endpoint security tool requiring an easy setup phase but needs to improve on its reporting and technical support
Pros and Cons
  • "The initial setup of CylancePROTECT is very easy."
  • "Reporting is an area with shortcomings in CylancePROTECT that needs to be improved."

What is our primary use case?

In my company, we use the solution to protect Windows VMs and Ubuntu VMs because we provide and deal with a virtual private cloud for our customers. We use CylancePROTECT to provide endpoint protection to our customers.

What is most valuable?

There is nothing extraordinary about CylancePROTECT since it is similar to other endpoint security tools. There is a valuable feature of the solution is called CylanceOPTICS, which is worth mentioning.

What needs improvement?

Reporting is an area with shortcomings in CylancePROTECT that needs to be improved. In general, the aggregation of reports and reporting can be improved.

When it comes to support, it takes some time for CylancePROTECT to get back to us and set up some things that are down based on the SLA, so I think it can be improved.

For how long have I used the solution?

I have been using CylancePROTECT for about a year. My company is a customer of the solution.

What do I think about the stability of the solution?

It is a stable solution. Stability-wise, I rate the solution a seven or eight out of ten. I would lean towards giving the product's stability an eight out of ten.

What do I think about the scalability of the solution?

It is a scalable solution, but the product has an issue with the dashboard. I need 3,000 licenses to have our own dashboard, which is an issue for us now. That's why I'm looking into CloudPoint. Scalability-wise, I rate the solution a five out of ten.

How are customer service and support?

I don't have much experience with the solution's technical support since we speak to the product's vendor. I rate the technical support a six out of ten.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

I have previously used Advantech, with which I was not really familiar. I am getting comfortable with CylancePROTECT.

How was the initial setup?

The initial setup of CylancePROTECT is very easy.

The solution is deployed on a private cloud or on-premises. My company prefers to use the cloud services of VMware.

The deployment process for the solution took less than a week.

What's my experience with pricing, setup cost, and licensing?

I am unsure of the product's prices since I wasn't involved in my company's decision-making related to the product's pricing.

Which other solutions did I evaluate?

I am unsure why my company chose CylancePROTECT over other solutions. My company's higher management decided to use the tool.

What other advice do I have?

Though the product is good, there have been some issues related to scalability and reporting. The product is not so bad that its rating should go below five on a scale of one to ten.

Overall, I rate the solution a seven out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
BlackBerry Cylance Cybersecurity
November 2024
Learn what your peers think about BlackBerry Cylance Cybersecurity. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,636 professionals have used our research since 2012.
Robert Valencia - PeerSpot reviewer
Solution Architect at Westcon-Comstor
Real User
Good technology that's simple to deploy and easy to expand
Pros and Cons
  • "One of the best features of the solution is that it's easy to deploy."
  • "If they can add more features on top of their Persona feature that would be ideal."

What is our primary use case?

The best use case is that it actually lifts off a lot of burden on customers, especially when they are deploying Cylance compared to other solutions. 

What is most valuable?

One of the best features of the solution is that it's easy to deploy. Second is the management part and the protection. It's way ahead of the other solutions compared to the signature-based one.

The base platform, the CylancePROTECT is a very good technology. If you upgraded that into a CylanceOPTICS, that will also help, however, CylancePROTECT itself can do a lot of protection.

There's a feature that they added called PERSONA. This is AI-based user behavior monitoring which is very useful.

It's straightforward to deploy.

What needs improvement?

If they can add more features on top of their Persona feature that would be ideal. It could also improve the UEBA feature of Cylance.

For how long have I used the solution?

I've been working with the solution for around five years. I started using it around 2016.

What do I think about the stability of the solution?

As a cloud-based management platform, it's very stable. The version of the agent is very minimal in terms of updates. In terms of support, they have very broad support on several operating systems. The stability is quite high for this kind of solution.

What do I think about the scalability of the solution?

It's a cloud-based management platform. It's very scalable. It's easy to ramp up the number of devices that you want to be managed by this kind of solution. It's highly scalable.

Our clients have actually upgraded and ramped up the number of licenses from the first time I deployed and introduced them to the solution. Most of our customers have expanded usage via the number of licenses they have.

How are customer service and support?

I've used technical support in the past. The technical support, the SLA, if they can improve that aspect of the product it'll be much appreciated.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

I've also worked with CylancePERSONA over the past year or so. 

How was the initial setup?

The initial setup is very straightforward. It's not overly complex. 

The management and maintenance is also very easy. 

What's my experience with pricing, setup cost, and licensing?

What I've heard from my customers is that Cylance, in terms of pricing, is a bit higher compared to other prominent solutions like Kaspersky and Symantec, however, that's about it in terms of what I know about the product pricing.

What other advice do I have?

I'm working in a distributor company and we are actually selling CylancePROTECT.

The primary platform is a cloud-based solution. It is managed in the cloud. The one on-premise is called the hybrid platform where you can also do management locally on your site.

The best way to see the solution is to try it out. Try it first before worrying about pricing and see if it will meet your needs and how it works for your business.

I'd rate the solution eight out of ten. They simply need to improve the SLA, the response, and the Persona feature. If they do, I would rate it higher. 

Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
CoFoundef9b2 - PeerSpot reviewer
Co-Founder, CEO at a tech services company with 11-50 employees
Real User
Nice management display, easy to install, and works satisfactorily for standard protection
Pros and Cons
  • "On the management side, we liked the way it displays things."
  • "It should provide more details about the events that they have detected."

What is our primary use case?

We are part of a startup company that is operating in the same domain as this solution, so we tested it as part of the competition.

What is most valuable?

On the management side, we liked the way it displays things.

What needs improvement?

The downside is that the information displayed is not enriched enough. There was not much information available, that we could see. It should provide more details about the events that they have detected. There should be more information available post-incident. Basically, the user is informed that they have caught a threat, stopped it, and that's it.

Users want to know what the threat was, the type of attack, how it got in, which IP address, did it go into lateral movement, etc. The kind of information that could be analyzed by IT experts to take forward and understand whether the attack is continuing, or not. They have some of this information but compared to other products, it's basic.

For how long have I used the solution?

We tested this solution for about six months.

What do I think about the stability of the solution?

We did not thoroughly test its stability, but I can say that we didn't have any crashes or basic problems with it. In our tests, it did not crash, although we were focused on detecting threats as opposed to assessing stability.

What do I think about the scalability of the solution?

We installed this solution for five users.

How are customer service and technical support?

We did not contact technical support.

How was the initial setup?

The initial setup and installation of this solution are quite straightforward. Just download from the management console and install it. It's easy.

What about the implementation team?

We performed the installation ourselves.

Which other solutions did I evaluate?

We have evaluated many products. In fact, we tested most of them for our purposes of developing our own. Because we did a competitive analysis, we are keeping most of the information private. However, I can say that SentinelOne, CrowdStrike, and Carbon Black give you a lot more information than Cylance.

The majority of the leading solutions are quite good, and it's a tough market. For normal people, it is difficult to see the differences between them.

What other advice do I have?

The lack of details for the user is partly because of the way they detect. it is done passively, rather than dynamically, so they don't have a lot of information about the things that they already caught.

The suitability of this solution for any particular person will depend on their expectations. I would not rate this solution in the top five for things like presenting information, or ease of use. For standard protection they are ok, but if you have advanced demands, or a SOC, then I don't think that Cylance can compete with Carbon Black, CrowdStrike, or SentinelOne.

I would rate this solution an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Andrew S. Baker (ASB) - PeerSpot reviewer
Andrew S. Baker (ASB)Cybersecurity & IT Operations Professional (VirtualCxO) at BrainWave Consulting Company, LLC
Consultant

You make some good points, and I hope that we'll see Blackberry add to this area moving forward.

That said, there's quite a bit of info via CylanceOptics, and overall the system utilization is very low.

reviewer1932927 - PeerSpot reviewer
Computer Security and Electronic Government Section at a government with 51-200 employees
Real User
Top 20
Simplifies management tasks and has valuable malware detection capabilities
Pros and Cons
  • "The platform's most valuable features are the malware detection capabilities."
  • "Enhancing the product's detection rates and streamlining the user interface for easier management in daily operations would be beneficial improvements."

What is our primary use case?

We utilize the solution to safeguard approximately 500 users against malware threats. It notifies us via email about any suspicious files or activities.

How has it helped my organization?

Compared to our previous antivirus solution, Kaspersky, CylancePROTECT has significantly simplified our management tasks. 

What is most valuable?

The platform's most valuable features are the malware detection capabilities. 

What needs improvement?

Enhancing the product's detection rates and streamlining the user interface for easier management in daily operations would be beneficial improvements.

For how long have I used the solution?

I've been using CylancePROTECT for about two years.

What do I think about the stability of the solution?

I would rate the stability about a seven. While generally stable, there is room for improvement.

What do I think about the scalability of the solution?

I would rate the product scalability around a three. It can be slow when making system-wide changes that affect all 500 computers.

How are customer service and support?

The technical support services need improvement in terms of their knowledge and responsiveness.

How would you rate customer service and support?

Neutral

How was the initial setup?

Deployment took approximately a month due to the complexity of managing multiple remote offices. We initially attempted deployment via group policies but encountered challenges. Eventually, we opted for an external application like PDQ Deploy to facilitate the process. I would rate the initial setup process around a six. While manageable, it required some assistance from the provider.

What other advice do I have?

Overall, I am quite satisfied with CylancePROTECT. Its effectiveness in malware detection is a significant advantage.

I would rate it around an eight or nine.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
PeerSpot user
Senior Network Administrator at a financial services firm with 51-200 employees
Real User
Inconsistent stability with a difficult uninstall, although deployment of updates is easy
Pros and Cons
  • "The deployment of updates is easy."
  • "While you are working, you are finding these things that were supposed to be waived have come back to being blocked. That's frustrating."

What is our primary use case?

We use this solution for endpoint protection for our external devices and laptops.

What is most valuable?

The deployment of updates is easy.

What needs improvement?

Not having OPTICS doesn't allow us to do any history. We don't have OPTICS, but FortiEDR comes with things like OPTICS, which is nice because we are not able to see more. 

OPTICS gives you things that FortiEDR has built in. For Cylance, there is an add-on to do the things that come with that solution.

It would be nice if Cylance didn't separate PROTECT and OPTICS and put them together and made them on the same price point as FortiEDR, and some other ones rather than having to pay extra for something that the others already have built-in, and seen to do better.

It often lets you waive something for the firm or for the whole company and then comes back and blocks the same thing because you have to do the certificate instead of the hash. You are finding yourself having to approve for the same program, the same application, the same file more than once and it's frustrating.

While the deployment of updates is easy, it would be good to have some more information about which version to use, because the versions that are available seem to be outdated. 

When you go to the admin section, you will see that you will have the latest update from months ago and a month before that, and a month before that. 

I have a hard time believing that there are no more updates in between when there are things that are out all the time. It just doesn't make you feel like you're getting covered or have the best protection, which you should have. 

For how long have I used the solution?

I have been using this solution for two years.

We are using one of the newer versions. I don't always install the updates.

What do I think about the stability of the solution?

The stability varies. It's not consistent and it's frustrating.

Things that are blocked, you waive and it comes back. It's very frustrating. It doesn't keep up with the machines. 

You have a lot of machines and if you reimage a lot you will see many duplicates that you have to export and remove from figuring out which one's the MAC address. It should have an easy way to know that a machine is re-imaged, and not adding to your list of devices.

You end up having all these devices that are no longer being scanned that you have to figure out what they are. It is frustrating.

What do I think about the scalability of the solution?

We have approximately 200 users in our organization. It's for everyone in our accounting firm, who are accountants, auditors, IT, and HR accounting.

We don't have plans to continue using this solution, we are considering other options.

How are customer service and technical support?

We don't go through technical support directly. We go through a reseller and they take care of it. We have never directly talked to BlackBerry or Cylance about any issues that we have had.

Which solution did I use previously and why did I switch?

Previously, we had McAfee ePO. We changed to CylaneProtect, a solution that we felt would be a better fit, and that was not managed in-house, on a local server that we used for that. It was time to move on from that.

How was the initial setup?

The initial setup was fine. It's doesn't take a long time to deploy.

Uninstalling is difficult. Sometimes it doesn't remove easily, and that is frustrating. 

It would be nice if it had an uninstalled feature within the dashboard, in the SAS part of the application online, because it would do everything itself. Unless it is something that I have missed or that I didn't see. 

With FortiEDR you can go in, and you can uninstall from the dash, find the endpoint you right-click, or you click a button, then you choose to uninstall and it pulls it from the machine. You don't have to put in any keys, or anything. It does it from there. I don't believe that Cylance does that, but it would be nice if it did.

We have a team of two, myself and my colleague maintain this solution.

What about the implementation team?

The deployment and implementation were completed in-house.

What other advice do I have?

I would advise that they keep in mind what it doesn't do and be open to looking at things that include more and cost less.

I would rate CylanceProtect a four out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Wirtschaftsprüfer, CPA, Steuerberater at a financial services firm with 11-50 employees
Real User
Doesn't consume too many system resources
Pros and Cons
  • "The solution is stable."
  • "The solution needs better dashboards that are easier to use."

What is our primary use case?

We use this product as our antivirus solution.

What is most valuable?

The most valuable feature is that it's quite small, and does not consume too many system resources.

What needs improvement?

Improvements could be made on the user interface of the console. Also, right now it's just an antivirus and there's no firewall or anything. So we have to use the Windows firewall. It's a good firewall. But I think other companies have integrated products.

The solution needs better dashboards that are easier to use. Also, a better user interface. Maybe even firewall integration of some kind. It would be helpful if you could see which threats have been detected, and have more information about what is going on.

What I'm missing is a backup. In Norton, there was a backup included. In Cylance there is no backup, or at least no backup for the relevant system, programs, or software parts.

For how long have I used the solution?

I've been using the solution for two months.

What do I think about the stability of the solution?

The solution is stable. It was no problem. All went quite well. There are no bugs or freezes.

What do I think about the scalability of the solution?

Adding other computers wasn't a problem. Just send them the link and it works. We have about ten users.

Which solution did I use previously and why did I switch?

Previously, we used Norton. We switched because Norton was very, very, heavy on consuming system resources. The computer itself was very, very slow and buggy. It took a lot of time for backup and things like that. 

What's my experience with pricing, setup cost, and licensing?

We would just add more if there are new users, but right now you just need one license for per user.

What other advice do I have?

You just have to download it from the Cylance website, so it's pretty easy. You have to be careful because if you have more firewalls you have to buy a separate product and the question is: How does it work with the firewall from a different vendor?

There should also be backup capability included.

I do, however, recommend the solution. I would rate this solution eight out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner.
PeerSpot user
Andrew S. Baker (ASB) - PeerSpot reviewer
Andrew S. Baker (ASB)Cybersecurity & IT Operations Professional (VirtualCxO) at BrainWave Consulting Company, LLC
Consultant

I prefer my host based Anti-Malware solution with no firewall. Most of the problems I have seen from other AV and similar products have involved the firewall. Different focus and expertise.

I do agree with the need for additional reporting, though.

PeerSpot user
Lead Systems Administrator at a energy/utilities company with 1,001-5,000 employees
Vendor
Does malware analysis. Blocks WannaCry and other attacks that have come out.
Pros and Cons
  • "Does malware analysis. Blocks WannaCry and other attacks that have come out."
  • "​It needs real analysis of quarantined files. The EDR product isn't showing much right now."

What is most valuable?

Does malware analysis. Blocks WannaCry and other attacks that have come out.

How has it helped my organization?

It lifted the burden on the helpdesk from having to keep computers updated with definitions and thus reduced the labor hours spent monitoring AV on endpoints.

What needs improvement?

It needs real analysis of quarantined files. The EDR product isn't showing much right now.

For how long have I used the solution?

We have been using this solution for one year.

What was my experience with deployment of the solution?

Some DLLs and in-house apps were quarantined. Alerting mode is the way to deploy this software for at least three weeks.

What do I think about the stability of the solution?

I did not encounter any issues with stability.

What do I think about the scalability of the solution?

I did not encounter any issues with scalability.

How are customer service and technical support?

Customer Service:

I would rate customer service as excellent.

Technical Support:

I would rate technical support as excellent.

Which solution did I use previously and why did I switch?

The previous solution had too many things to monitor and required dedication to fix corrupt definitions. These required manual transfers and sometimes helpdesk time on the endpoint to fix the incumbent product.

What about the implementation team?

We implemented it in-house with the help of the sales engineer.

What was our ROI?

The ROI is immense, particularly in less dedicated labor hours. The ROI was much more in terms of security, particularly when new security flaws have recently appeared. By virtue of having this software product, the C-level suite feels more secure, because IT does not have to start taking downtime to patch servers in a hurry.

What's my experience with pricing, setup cost, and licensing?

Review closely how many endpoints you actually need before buying into a pricing level. Deal and deal with the VAR of your choice.

Which other solutions did I evaluate?

We evaluated Palo Alto Traps and Carbon Black.

What other advice do I have?

Review the performance of Cylance over the next year and ask for a 60 day trial, not just a 30 day trial. Monitoring the growth of this company is very important to determine if the product remains at the level that is in today.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free BlackBerry Cylance Cybersecurity Report and get advice and tips from experienced pros sharing their opinions.
Updated: November 2024
Buyer's Guide
Download our free BlackBerry Cylance Cybersecurity Report and get advice and tips from experienced pros sharing their opinions.