BlackBerry Cylance Cybersecurity vs Cybereason Endpoint Detection & Response comparison

BlackBerry and Cybereason are both solutions in the Endpoint Protection Platform (EPP) category. BlackBerry is ranked #24 with an average rating of 8.2, while Cybereason is ranked #40 with an average rating of 7.7. BlackBerry holds a 1.3% mindshare in EPP, compared to Cybereason’s 0.9% mindshare. Additionally, 85% of BlackBerry users are willing to recommend the solution, compared to 85% of Cybereason users who would recommend it.

BlackBerry Cylance Cybersec...

Read 44 BlackBerry Cylance Cybersecurity reviews

3,171 Views
2,886 Comparison Views

85% willing to recommend

Cybereason Endpoint Detecti...

Read 22 Cybereason Endpoint Detection & Response reviews

4,014 Views
2,248 Comparison Views

85% willing to recommend

BlackBerry Cylance Cybersec...

Cybereason Endpoint Detecti...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Nov 2, 2025

Cybereason Endpoint Detection & Response and BlackBerry Cylance Cybersecurity are key players in endpoint protection. Cybereason tends to hold an advantage with its robust feature set and superior threat detection capabilities.

Features: Cybereason offers anomaly detection, fuzzy logic-based threat identification, and Malop analysis for attack vector lineage. It also excels in instant endpoint isolation and comprehensive threat visualization. BlackBerry Cylance utilizes AI-driven threat protection with low system impact, employing a machine learning approach to detect anomalies without relying on signatures.

Room for Improvement: Cybereason could enhance technical support and optimize reporting to reduce false positives and improve automation. BlackBerry Cylance's user interface and reporting need refinement, while its compatibility with industrial systems could be improved. Enhancing advanced analytics is also a priority for BlackBerry Cylance.

Ease of Deployment and Customer Service: Both solutions support deployment across various cloud environments. Cybereason needs better technical support response, while BlackBerry Cylance's interface is outdated, causing customer service challenges.

Pricing and ROI: Cybereason is appreciated for cost efficiency, offering comprehensive features at a reasonable price, though not the cheapest. BlackBerry Cylance is pricier but balances endpoint protection effectively, with both solutions providing substantial ROI.

To learn more, read our detailed BlackBerry Cylance Cybersecurity vs. Cybereason Endpoint Detection & Response Report (Updated: December 2025).

Buyer's Guide

BlackBerry Cylance Cybersecurity vs. Cybereason Endpoint Detection & Response

December 2025

Download the complete report

Helped 881,515 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

BlackBerry Cylance Cybersec...

Ranking in Endpoint Protection Platform (EPP)

24th

Average Rating

8.0

Reviews Sentiment

4.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Cybereason Endpoint Detecti...

Ranking in Endpoint Protection Platform (EPP)

40th

Average Rating

7.8

Reviews Sentiment

5.6

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (30th)

Mindshare comparison

As of February 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of BlackBerry Cylance Cybersecurity is 1.3%, up from 1.2% compared to the previous year. The mindshare of Cybereason Endpoint Detection & Response is 0.9%, down from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP) Market Share Distribution
Product	Market Share (%)
BlackBerry Cylance Cybersecurity	1.3%
Cybereason Endpoint Detection & Response	0.9%
Other	97.8%

Endpoint Protection Platform (EPP)

Featured Reviews

Sooraj Makkancherrry

Security Operations Manager at Philips

Doesn't have daily updates, which is important for healthcare IT

I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.

Read full review

Ivan Burke

Head of Research Development and Innovation at CSIR

Offers useful threat hunting and response capabilities but struggles to justify cost for smaller deployments

I mostly work with incident response, so I work with a bunch of them interchangeably, but mostly with the EDR components; I also get involved with some of the XDR components, especially for the cloud. Regarding analysis features, such as deep behavioral detection, I do use it sometimes; I usually don't use the automated version of it, as I prefer threat hunting directly, depending on if the season is available. I know some of them have pretty good analytics engines, but I tend to do the threat hunting on my own. I manage incident response for a bunch of companies, so some of them have Cybereason Endpoint Detection & Response integrated into Sentinel, some into Fortinet, and others into various tools. When considering cost-effectiveness, their pricing structure works such that if you're a large organization with more than a thousand endpoints to deploy to, then Cybereason Endpoint Detection & Response is worthwhile. But for anything less than 300, it's too expensive; obviously, the more you buy, the better the price, making it cheaper for you. Cybereason Endpoint Detection & Response best fits enterprise-level businesses such as huge corporations; however, we are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment. We're trying to see how we can improve it with some of our clients, but at the moment, it's struggling compared to other EDR solutions that we have deployed. On a scale of one to ten, I rate Cybereason Endpoint Detection & Response a six.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It handles situations that the other threat management tools wouldn't find. It has worked well covering the weaker sides of the other products that we're integrating."

"Has good RAM capacity for the power I need"

"The solution is pretty easy to scale."

"CylancePROTECT is a fairly decent antivirus."

"Specifically for a Windows domain environment, the product can be customized and pushed via GPO or SCCM without issue."

"It actively monitors the behavior and activity of processes and will, without hesitation, terminate at root anything it determines to be suspect."

"In most cases, the solution's ability to detect in the MITRE framework, and its ability to be able to detect attacks in any one of seven or eight different areas of the life cycle of an attack is very useful."

"We chose the solution because it doesn't have daily updates, which is important for us in healthcare IT, where network usage and connectivity to hospitals matter."

More BlackBerry Cylance Cybersecurity pros

"The initial setup is not overly complicated."

"To get my Cybereason instance up and running, I just install it; it takes less than a minute or two to actually install and run the installer."

"What I like most about Cybereason Endpoint Detection & Response is the support because the support is good. The solution is also easy to use, and it has a dashboard. Everything is good, and there's no problem with it."

"We didn't have the visibility that we now have. It has increased our visibility by a lot. So, we put a lot more time into really looking at our environment and what is happening throughout our different networks. It has increased our visibility by around fivefold."

"What I find most valuable is the clarity of the platform."

"The initial setup process is straightforward."

"Immediately we can pick up the computers in the network if any malicious operation that is triggered."

"Cybereason's threat hunting and investigation are the most valuable features. Threat hunting is a user-friendly feature that keeps you safe. Investigation offers an added value that I haven't seen with other EDR services. It allows you to find specific policy problems within your environment."

More Cybereason Endpoint Detection & Response pros

Cons

"It could have integration with industrial base HMIS or Human Machine Interfaces Solutions. This is the industrial environment where you have a control center for all the automation that's happening, whether it is oil, gas, or chemical manufacturing. They often have to set up a computer at the back and watch the other stuff to get alerts. In these autonomous or on-premises environments, they often don't have access to email readily. Integration with other industrial solutions, such as HMIS, will allow them to communicate and get an alert that something has been found. This way, they can react to it sooner than having somebody watch the screen and keep checking the screen. Rockwell has its own suite. Similarly, Honeywell has its own suite. There's also an independent HMI/historian solution provider out there called VTSCADA. We actually get asked if we can get it to show up on a screen, which is difficult. Getting those alerts to work within an industrial environment would be a huge plus."

"CylancePROTECT could be improved in its technical support and communication."

"The product does not do a lot of reporting on what it is taking care of. Enhanced reporting would be a welcome improvement."

"The solution needs better dashboards that are easier to use."

"The solution’s user interface could be improved."

"They could improve on the false positives, reporting and whitelisting features."

"I would say one thing that they might need to bring in is protection for mobile devices."

"Having worked with SentinelOne, Cylance is good, however, it probably needs to add a feature similar to SentinelOne's rollback functionality. With this feature, if you get infected, with a click, you can go back to the pre-infection state. If Cylance could add this functionality to their offering as well, that would be ideal."

More BlackBerry Cylance Cybersecurity cons

"I feel that the product lacks reporting features and needs improvement."

"It initially took some time to deploy."

"I would like to see improvements on the operational side, specifically in grouping."

"There can be problems with the EDI."

"I feel it is a shame that I cannot create groups of groups with inheritance."

"Compared to our previous endpoint, we have a lot more false positives and a lot more duplication of alerts. So we're chasing more alerts."

"Ad hoc higher-level reporting to senior management can be improved or can be implemented. That's definitely an area of improvement that they need to focus on."

"While the product is very good, there are still some areas for improvement. The initial triage area could be a bit simpler. They get into the weeds real fast; it gets very detailed very fast. I am still looking for an easier triage layer on top with the ability to dig deeper."

More Cybereason Endpoint Detection & Response cons

Pricing and Cost Advice

"Do not get hung up on price. You pay for what you get and expensive will hurt one time, where cheap will hurt forever, especially if you fall victim to a ransom attack, etc."

"Review closely how many endpoints you actually need before buying into a pricing level. Deal and deal with the VAR of your choice."

"The initial end-point cost may seem a little high (~$55/device/year) but when you look at the total peace of mind that the solution provides, with no reboots for updates, and negligible performance impact, it is well worth it."

"We would just add more if there are new users, but right now you just need one license for per user."

"CylancePROTECT is worth the money, but I'm not sure of its exact price. I can't remember off the top of my head."

"The price is reasonable for us at the moment. I rate the overall solution an eight out of ten."

"The solution provides me with competitive pricing."

"Currently, we have competitive pricing for Cylance, which is affordable enough to consider."

More BlackBerry Cylance Cybersecurity pricing and cost advice

"The pricing is manageable."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"In terms of cost, this is a good choice for our needs."

"I do not have experience with the licensing of the product."

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"This product is somewhat expensive and should be cheaper."

More Cybereason Endpoint Detection & Response pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

881,515 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

Manufacturing Company

Comms Service Provider

Government

Financial Services Firm

12%

Computer Software Company

12%

Manufacturing Company

Outsourcing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	33
Midsize Enterprise	5
Large Enterprise	13

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	4
Large Enterprise	13

Questions from the Community

What do you like most about Blackberry Protect?

It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessary actions.

See all answers

What is your experience regarding pricing and costs for Blackberry Protect?

The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.

See all answers

What needs improvement with Blackberry Protect?

See all answers

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?

Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...

See all answers

What is your primary use case for Cybereason Endpoint Detection & Response?

My main use case for Cybereason Endpoint Detection & Response is mostly for incident response.

See all answers

What do you like most about Cybereason Endpoint Detection & Response?

The interface is user-friendly.

See all answers

Comparisons

CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity

Compared 9% of the time

Microsoft Defender for Endpoint vs BlackBerry Cylance Cybersecurity

Compared 7% of the time

SentinelOne Singularity Complete vs BlackBerry Cylance Cybersecurity

Compared 6% of the time

VMware Carbon Black Endpoint vs BlackBerry Cylance Cybersecurity

Compared 6% of the time

More BlackBerry Cylance Cybersecurity Competitors

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 11% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 7% of the time

Fortinet FortiEDR vs Cybereason Endpoint Detection & Response

Compared 4% of the time

ESET Inspect vs Cybereason Endpoint Detection & Response

Compared 4% of the time

Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response

Compared 4% of the time

More Cybereason Endpoint Detection & Response Competitors

Product Reports

Buyer's Guide

BlackBerry Cylance Cybersecurity

January 2026

Download BlackBerry Cylance Cybersecurity product report

Buyer's Guide

Cybereason Endpoint Detection & Response

January 2026

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Also Known As

Blackberry Protect

Cybereason EDR, Cybereason Deep Detect & Respond

Overview

BlackBerry Cylance Cybersecurity leverages AI and machine learning for efficient malware detection and zero-day threat protection, offering robust endpoint security with high detection accuracy and low false positive rates.

BlackBerry Cylance Cybersecurity delivers advanced threat protection with AI-driven algorithms and machine learning. Its lightweight design ensures low system resource usage, making it both efficient and effective. It's recognized for centralized management, easy deployment, and a clean interface, providing comprehensive endpoint protection against diverse threats. The integration of features like CylanceOPTICS and behavioral monitoring enhances security insights. While the system excels in malware detection, enhancements are needed in areas like user interface design, reporting, deeper threat analysis, and integration with third-party systems. Support and pricing improvements could also increase competitiveness.

What are the key features of BlackBerry Cylance Cybersecurity?

AI and Machine Learning: Utilizes cutting-edge technology for malware and threat detection.
Zero-Day Protection: Safeguards against emerging threats without the need for constant updates.
Centralized Management: Simplifies deployment and management across devices.
CylanceOPTICS: Provides advanced security insights and behavioral monitoring.
Low Resource Usage: Ensures efficient operation with minimal system impact.

What benefits should users expect from BlackBerry Cylance Cybersecurity?

High Detection Accuracy: Reduces risk with minimal false positives.
Efficient Resource Management: Enhances performance with its lightweight design.
Proactive Threat Defense: Protects against a wide range of threats with centralized management.
Advanced Insights: Offers unique features for detailed security analysis.

Organizations deploy BlackBerry Cylance Cybersecurity for threat analytics, log management, and endpoint protection. As an antivirus replacement, it protects against zero-day malware, ransomware, and various threats. Its AI algorithms detect anomalies, minimizing risks in both internet-connected and isolated environments. Many businesses incorporate it into wider security strategies, appreciating its centralized management and proactive defense capabilities.

BlackBerry

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason

Sample Customers

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Buyer's Guide

BlackBerry Cylance Cybersecurity vs. Cybereason Endpoint Detection & Response

December 2025

Free Report: BlackBerry Cylance Cybersecurity vs. Cybereason Endpoint Detection & Response

Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Cybereason Endpoint Detection & Response and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,515 professionals have used our research since 2012.

See our BlackBerry Cylance Cybersecurity vs. Cybereason Endpoint Detection & Response report.

See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.