BlackBerry Cylance Cybersecurity vs Cisco Secure Cloud Analytics [EOL] comparison

The compared BlackBerry and Cisco solutions aren't in the same category. BlackBerry is ranked #32 in EPP , with an average rating of 7.3, and holds a 1.5% mindshare in the category. Additionally, 85% of BlackBerry users are willing to recommend the solution, compared to 100% of Cisco users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between BlackBerry Cylance Cybersecurity and Cisco Secure Cloud Analytics [EOL] based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, Microsoft, SentinelOne and others in Endpoint Protection Platform (EPP).

To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: May 2026).

Buyer's Guide

Endpoint Protection Platform (EPP)

May 2026

Download the complete report

Helped 899,125 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Featured Reviews

ABHISHEK_SINGH

Senior Process Expert at A.P. Moller - Maersk

Gained full visibility and streamlined threat detection through behavior-based insights and AI integration

Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.

Read full review

Sooraj Makkancherrry

Security Operations Manager at Philips

Doesn't have daily updates, which is important for healthcare IT

I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.

Read full review

Sudhanshu Pandey

Security Analyst at Orange España

Efficiently generates alerts for suspicious activities and scales easily

There are two areas of improvement. Firstly, extend the log retrieval limit to at least three months. For example, there is a limit on the number of log messages that can be received. So, I would like to expand the log retrieval limit. And another thing, if we migrate these things to an event or send us an email if there is any critical event, I would like to configure these things on the initial launch. Because if a system is compromised, there will be a lot of data movement from one post to another post to the outside. Then, we should also get an alert on email as well. We have since we have integrated these things. But a direct email for critical alerts should be there. So, I would like to enhance the critical event configuration. If a new user wants to learn how it should work, how policies work, and where we can configure policies, there should be some learning material for this product.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"One of the main benefits of the solution is its intelligence to correlate the events into an incident."

"One of the things that I enjoy the most is using policy extensions. It's like having host firewalls to control USB connections. I think it's a wonderful tool to restrict use when connecting to our computers. Another important tool is Home Insights. That is an add-on to the Cortex solution. I like that because we can see all the vulnerabilities in the environment and control what assets are connected to our network."

"Cortex XDR by Palo Alto Networks is specifically designed to prevent zero-day attacks and is part of an ecosystem of Palo Alto, providing customers with a long-term vision to modify and redesign how security is applied in their company."

"From a single pane of glass, you can easily manage all of your endpoints."

"The dashboard is customizable."

"The multi-layered approach to the product gives you confidence that it will stop exploits, ransomware, worms, or viruses from compromising endpoints, essentially providing peace of mind."

"In one single alert, we are getting the network telemetry, endpoint telemetry, email security telemetry, and proxy telemetry all in one single ticket, making it very easy."

"The good thing about the product is that it's always scanning."

More Cortex XDR by Palo Alto Networks pros

"CylancePROTECT works on AI technology, is always up to date, and uses very few resources on your devices."

"My advice to someone considering this solution is that it's a popular product and you should really go for it."

"The solution is stable; it was no problem and all went quite well, with no bugs or freezes."

"The solution runs in the background, and I do not need to care about it."

"The non-daily requirement to update signatures is the most valuable feature. From a functional point of view, it is pretty spot on. For instance, we compared an algorithm from five years ago to today's algorithm, and it was 98% accurate. It has the ability to detect and mitigate. In the industrial environment that we work in, there's what we call OT versus IT. You are IT Central, but this is OT. Generally, we don't have the same level of skillset as IT individuals or IT professionals have. This particular product doesn't require you to be a computer scientist to be able to understand its proprietary algorithm and to be able to deploy, use, and work within it. It integrates well with a robust SIEM or SOAR solution, and it plays nice with others. We use other detection solutions like CyberX or site provision with Cisco, and it plays nice. That's one of the things we really liked about it."

"The stability of the solution is awesome."

"The ROI is immense, particularly in less dedicated labor hours, and much more in terms of security, particularly when new security flaws have recently appeared."

"The solution is pretty easy to scale."

More BlackBerry Cylance Cybersecurity pros

"It tells you if there is any communication going to command and control servers, or if there is any traffic that violates your internal policy, or if any data hoarding is happening where data is being dumped from your machine to outside of the environment. It provides all such meaningful reports to help you understand what's happening."

"I would recommend Cisco Stealthwatch Cloud 100 percent."

"My advice to others is Cisco has great solutions and I would recommend them."

"We were able to prevent an electric fraud of almost $200,000."

"When it comes to scalability, there's no size limit. It varies based on licenses and requirements."

"The logs in Cisco Stealthwatch Cloud are very good when doing the API integration in the team. It is able to give you important information for the correlations."

"The product helps me to see malware."

"Monitoring the traffic, making sure you have the visibility."

More Cisco Secure Cloud Analytics [EOL] pros

Cons

"It's more focused on network communication. If a customer wants to increase the level of protection and start working with documents, it's impossible to integrate these features into the system. It's more of a communication-oriented system than a content security-oriented system."

"The GUI could be improved. It's a little bit cumbersome. It could be more user-friendly."

"The playbooks could be improved to include more functionalities or actions."

"The setup is quite easy. We had appropriate support from the manager. One thing that was missing was the integration part."

"It is an enterprise-level solution. Its price could be less expensive."

"The dashboard could use some significant improvement, just making it more useful with more information. It has a limited amount of information right now. It is customizable, but I'd love to see a better out-of-box dashboard."

"For working with the solution, you only really need a web browser, however, we've found that working on Chrome, for example, is horrible."

"A little bit more automation would be nice."

More Cortex XDR by Palo Alto Networks cons

"The product does not do a lot of reporting on what it is taking care of. Enhanced reporting would be a welcome improvement."

"An area for improvement in CylancePROTECT is its pricing, as it's a bit costly."

"I would say one thing that they might need to bring in is protection for mobile devices."

"The company that sells us the licenses sometimes doesn't know how to do certain things."

"CylancePROTECT could be improved in its technical support and communication."

"The product needs to continue to offer better alerts, in particular around false positives, and it needs to reduce them from happening."

"rom my experience interacting with the primary or the central administrative console, it's quite complex. You would need a fair bit of technical experience to set it up, implement and maintain it. That would be one area for improvement."

"It needs real analysis of quarantined files. The EDR product isn't showing much right now."

More BlackBerry Cylance Cybersecurity cons

"The product's price is high."

"When I used to work on it, I just didn't see anything new happening for about a year and a half. Providing newer data and newer reports constantly would help. There should be more classifications and more interesting data."

"Cisco Stealthwatch Cloud could improve the graphical user interface. It could be a more user-friendly graphical user interface."

"The initial setup of Cisco Stealthwatch Cloud is complex."

"Cisco Stealthwatch Cloud could improve the graphical user interface. It could be a more user-friendly graphical user interface. so that. Not everybody's a cyber security professional, most of the customers that I deal with are not very skilled. The terms that they use in the solution are quite understandable for a normal CIO."

"If we migrate these things to an event or send us an email if there is any critical event, I would like to configure these things on the initial launch. Because if a system is compromised, there will be a lot of data movement from one post to another post to the outside. Then, we should also get an alert on email as well. We have since we have integrated these things. But a direct email for critical alerts should be there. So, I would like to enhance the critical event configuration."

"The product needs to improve its user-friendliness. It is very tricky and you need to study it before using the standard functionalities."

"The initial setup is a bit complex in terms of deployment and configuration."

Pricing and Cost Advice

"It's way too expensive, but security is expensive. You pay for your licensing, and then you pay for someone to monitor the stuff."

"It is cost-effective compared to similar solutions. It fits for the small businesses through to the big businesses."

"The solution is expensive. It's pricing is on a yearly-basis."

"This is an expensive solution."

"The return on investment is from the user side because we have seen the performance of it increase the delivery time of the product if we are using too many web-based and on-premise applications. In indirect ways, we saw the return of investment in terms of performance and user satisfaction increase."

"It has reasonable pricing for the use cases it provides to the company."

"The price of the solution could be reduced. I have customers that have voiced that the solution is good for the value but if I want to sell more of the solution the price reduction would help."

"I am using the Community edition."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"I think that the price we are paying is good for what it is."

"CylancePROTECT's pricing is reasonable, at about €18 per user, per year."

"It's not so heavily priced; rather, it's average and decent."

"Our licensing cost for the solution is around $4,000 for six months. There are no costs in addition to the standard licensing fees."

"The license price for this solution could be better. It's on the expensive side."

"It is expensive, but not unreasonable."

"Do not get hung up on price. You pay for what you get and expensive will hurt one time, where cheap will hurt forever, especially if you fall victim to a ransom attack, etc."

"The product cost is about $5, per user, per month."

More BlackBerry Cylance Cybersecurity pricing and cost advice

"The solution is quite expensive."

"Cisco Stealthwatch Cloud is an expensive enterprise solution."

"The price of Cisco Stealthwatch Cloud is expensive."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

899,125 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Construction Company

12%

Financial Services Firm

11%

Manufacturing Company

11%

Comms Service Provider

Construction Company

11%

Manufacturing Company

Comms Service Provider

Financial Services Firm

Manufacturing Company

14%

Construction Company

14%

Performing Arts

12%

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	47
Midsize Enterprise	20
Large Enterprise	51

By reviewers
Company Size	Count
Small Business	33
Midsize Enterprise	5
Large Enterprise	14

By reviewers
Company Size	Count
Small Business	1
Midsize Enterprise	2
Large Enterprise	6

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...

See all answers

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...

See all answers

What is your experience regarding pricing and costs for Blackberry Protect?

The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.

See all answers

What needs improvement with Blackberry Protect?

I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we conta...

See all answers

What is your primary use case for Blackberry Protect?

I am using CylancePROTECT as an active learning algorithm. We installed it on almost 20,000 servers and virtual machi...

See all answers

Ask a question

Earn 20 points

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Compared 10% of the time

SentinelOne Singularity Endpoint vs Cortex XDR by Palo Alto Networks

Compared 5% of the time

CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

Cortex XSIAM vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

More Cortex XDR by Palo Alto Networks Competitors

VMware Carbon Black Endpoint vs BlackBerry Cylance Cybersecurity

Compared 8% of the time

Symantec Endpoint Security vs BlackBerry Cylance Cybersecurity

Compared 7% of the time

CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity

Compared 6% of the time

Check Point Harmony Endpoint vs BlackBerry Cylance Cybersecurity

Compared 6% of the time

ESET Endpoint Protection Platform vs BlackBerry Cylance Cybersecurity

Compared 3% of the time

More BlackBerry Cylance Cybersecurity Competitors

Darktrace vs Cisco Secure Cloud Analytics [EOL]

Compared 15% of the time

CrowdStrike Falcon vs Cisco Secure Cloud Analytics [EOL]

Compared 13% of the time

Microsoft Defender for Endpoint vs Cisco Secure Cloud Analytics [EOL]

Compared 13% of the time

Splunk User Behavior Analytics vs Cisco Secure Cloud Analytics [EOL]

Compared 8% of the time

Tanium vs Cisco Secure Cloud Analytics [EOL]

Compared 6% of the time

More Cisco Secure Cloud Analytics [EOL] Competitors

Product Reports

Buyer's Guide

Cortex XDR by Palo Alto Networks

June 2026

Download Cortex XDR by Palo Alto Networks product report

Buyer's Guide

BlackBerry Cylance Cybersecurity

June 2026

Download BlackBerry Cylance Cybersecurity product report

Buyer's Guide

Cisco Secure Cloud Analytics [EOL]

June 2026

Cisco Secure Cloud Analytics [EOL] report

Download Cisco Secure Cloud Analytics [EOL] product report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

Blackberry Protect

Cisco Stealthwatch Cloud, Observable Networks

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?

Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
Multi-layered Security: Combines various security measures for comprehensive protection.
Endpoint Protection: Safeguards against malware and exploits.
Behavioral Analysis: Monitors suspicious activity for early detection.
Automatic Threat Response: Automates responses to neutralize threats.

What benefits should users expect?

Ease of Use: Simplifies security management with intuitive design.
Resource Efficiency: Minimizes impact on system resources.
Integration Capabilities: Works well with existing security setups.
Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

BlackBerry Cylance Cybersecurity leverages AI and machine learning for efficient malware detection and zero-day threat protection, offering robust endpoint security with high detection accuracy and low false positive rates.

BlackBerry Cylance Cybersecurity delivers advanced threat protection with AI-driven algorithms and machine learning. Its lightweight design ensures low system resource usage, making it both efficient and effective. It's recognized for centralized management, easy deployment, and a clean interface, providing comprehensive endpoint protection against diverse threats. The integration of features like CylanceOPTICS and behavioral monitoring enhances security insights. While the system excels in malware detection, enhancements are needed in areas like user interface design, reporting, deeper threat analysis, and integration with third-party systems. Support and pricing improvements could also increase competitiveness.

What are the key features of BlackBerry Cylance Cybersecurity?

AI and Machine Learning: Utilizes cutting-edge technology for malware and threat detection.
Zero-Day Protection: Safeguards against emerging threats without the need for constant updates.
Centralized Management: Simplifies deployment and management across devices.
CylanceOPTICS: Provides advanced security insights and behavioral monitoring.
Low Resource Usage: Ensures efficient operation with minimal system impact.

What benefits should users expect from BlackBerry Cylance Cybersecurity?

High Detection Accuracy: Reduces risk with minimal false positives.
Efficient Resource Management: Enhances performance with its lightweight design.
Proactive Threat Defense: Protects against a wide range of threats with centralized management.
Advanced Insights: Offers unique features for detailed security analysis.

Organizations deploy BlackBerry Cylance Cybersecurity for threat analytics, log management, and endpoint protection. As an antivirus replacement, it protects against zero-day malware, ransomware, and various threats. Its AI algorithms detect anomalies, minimizing risks in both internet-connected and isolated environments. Many businesses incorporate it into wider security strategies, appreciating its centralized management and proactive defense capabilities.

BlackBerry

Cisco Secure Cloud Analytics is a cloud-based security solution that provides visibility and threat detection for cloud environments. It offers software mapping and automation for incident response, forensic analysis, and segmentation of IT architecture. The solution can be used on-premise or on the cloud and is used in various sectors such as insurance and government.

The logs in Cisco Secure Cloud Analytics are valuable for API integration in a team as they provide important information for correlations. The solution also offers automated incident response and integration with next-generation firewalls and antivirus solutions."

Cisco

Sample Customers

CBI Health Group, University Honda, VakifBank

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit

Options, Schneider Electric, Washington University in St Louis, Gotcha, Kraft Kennedy, PartnerRe, Sumologic, Veterans United, AFGE, Agraform, Artesys, Dynamic Ideas Financials, Department of Agriculture and Commerce

Buyer's Guide

Endpoint Protection Platform (EPP)

May 2026

Download Free Report

Find out what your peers are saying about CrowdStrike, Microsoft, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: May 2026.

DOWNLOAD NOW

899,125 professionals have used our research since 2012.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.