Try our new research platform with insights from 80,000+ expert users

CylancePROTECT vs Intercept X Endpoint (Sophos) comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 20, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BlackBerry Cylance Cybersec...
Ranking in Endpoint Protection Platform (EPP)
19th
Average Rating
8.0
Reviews Sentiment
4.6
Number of Reviews
44
Ranking in other categories
No ranking in other categories
Intercept X Endpoint
Ranking in Endpoint Protection Platform (EPP)
9th
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
104
Ranking in other categories
Endpoint Detection and Response (EDR) (8th), ZTNA (9th), Managed Detection and Response (MDR) (8th), Extended Detection and Response (XDR) (10th), Ransomware Protection (4th)
 

Mindshare comparison

As of April 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BlackBerry Cylance Cybersecurity is 1.1%, down from 1.5% compared to the previous year. The mindshare of Intercept X Endpoint is 1.7%, down from 4.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

Sooraj Makkancherrry - PeerSpot reviewer
Doesn't have daily updates, which is important for healthcare IT
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.
Khandokar Rabbi - PeerSpot reviewer
Used for endpoint security, ransomware protection, virus protection, and server security
Intercept X Endpoint is deployed on the cloud in our organization. Previously, we had two ransomware attacks when we were using Kaspersky as an endpoint security. We didn't face any ransomware attacks after using Intercept X Endpoint for endpoint security. Intercept X Endpoint has simplified our malware detection. Since we have already implemented the policies in the cloud, all the malware is automatically detected. The solution also detects and removes new malware that can also come from the cloud AI engine. Integrating Intercept X Endpoint with our current security infrastructure was very easy. In my opinion, Sophos is a better solution because we are using Sophos endpoint security and network security. These two things sync with each other and monitor the packets and network traffic. No other vendor has simultaneous devices to check everything. I would recommend the solution to other users. Overall, I rate the solution an eight out of ten.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Its setup is simple if you have a Windows device; it is executable."
"The solution is stable."
"It provides good insight into the programs, applications, or websites that may need attention."
"Specifically for a Windows domain environment, the product can be customized and pushed via GPO or SCCM without issue.​"
"​Very easy to deploy. It can be done one by one or deployed by customizing an MSI file for GPO push.​"
"I rate the tool a ten out of ten when it comes to the ease of use or management part."
"What I like best about CylancePROTECT is its accuracy, as it doesn't give many false positives."
"It is extremely simple to manage and deploy."
"I find the security heartbeat feature with synchronized security very useful. It's a very nice feature that allows you to basically switch off an endpoint. When an endpoint has got a virus or something like that, or it's infected or compromised, you can isolate it from the network, but only if you've got an XG Firewall as well. It also provides ease of use. It is the only antivirus that can recognize 25 out of the 36 ransomware and virus techniques that have been often used in terms of the behavior base using heuristics. It's beautiful, utterly amazing. No other antivirus can do that."
"One reason why I have stuck with Sophos is because it grabs it and deals with it, and if it's known malware, it can quarantine it or delete it."
"It's quite simple to use and user friendly."
"One of the best use cases involves synchronized security staff, which allows us to manage both the firewall and the anti-virus features from the cloud."
"The solution's initial setup process was straightforward."
"Anti-virus captures malicious threats and an aggressive next generation firewall."
"The most effective features of Intercept X Endpoint for threat prevention are ransomware protection, miscellaneous behavior detection, and network threat protection."
"We most value the price and interface quality with Sophos Intercept X. We focus on solution quality."
 

Cons

"The AI of CylancePROTECT has room for improvement. I'm on a trial license of SentinelOne, and its AI is much better than what's on CylancePROTECT."
"An area for improvement in CylancePROTECT is its pricing, as it's a bit costly."
"Enhancing the product's detection rates and streamlining the user interface for easier management in daily operations would be beneficial improvements."
"I would say one thing that they might need to bring in is protection for mobile devices."
"The management console needs a little maturity in how it presents data and allows the administrator to drill down or search across systems."
"The price for this EPP platform is expensive and could be improved."
"​Work on the math model. We are catching a lot of false positives, which gets to be a pain at the start of a deployment."
"It should provide more details about the events that they have detected."
"Integration with firewall solutions could be better."
"The solution is expensive, and it could be made cheaper."
"I would like the solution to have more functions and to be more user-friendly."
"The solution is heavy in the usage of resources, you can notice the performance decrease. This should prove in the future."
"I recommend that Intercept X Endpoint should include a patch assessment feature. Various vendors offer virtual patching solutions, which could be a game-changer, especially for the financial sector where frequent service restarts are challenging. These solutions allow patching servers without the need for restarts. Incorporating these features into Intercept X Endpoint would enhance its effectiveness in securing endpoints and servers."
"There are not any solutions that are a 10 out of 10. A 10 would be perfect protection with no impact on the performance of the device. This is not the case, there is some impact on the performance of the device."
"The after sales service and support could be improved."
"Through Sophos Central I would like to see the ability to zero in and produce a report about the challenges being faced by a particular machine and user, to know if a virus is appearing only on that specific machine or also on others."
 

Pricing and Cost Advice

"It is expensive, but not unreasonable."
"The solution's pricing is around the same as most EDRs but slightly behind some of the major ones."
"It's not so heavily priced; rather, it's average and decent."
"The monthly fee is $55 USD per user."
"The initial end-point cost may seem a little high (~$55/device/year) but when you look at the total peace of mind that the solution provides, with no reboots for updates, and negligible performance impact, it is well worth it."
"Do not get hung up on price. You pay for what you get and expensive will hurt one time, where cheap will hurt forever, especially if you fall victim to a ransom attack, etc.​"
"We went through a third party initially to do the renewal, but we won't be renewing, we will move on to something else."
"​Shop around for sure and be assured the price you pay will be close to other solutions available, but even at a slight mark-up from the other solutions, you are getting real endpoint protection versus nothing more than a cheap security blanket that might keep you warm at night."
"We have bought a three-year license."
"The price of this solution is a little high compared to competitors because they do not have a proper pricing structure."
"The price of Sophos Intercept X is competitive."
"The solution’s pricing is high."
"There is a license required to use this solution."
"The pricing is quite expensive compared to the rest. I would rate the pricing a four out of ten; one is expensive, and ten is cheap."
"The price of the solution is average compared to the market."
"You can pay monthly, but most of our customers choose annual subscriptions because they are less expensive."
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Manufacturing Company
12%
Government
8%
Financial Services Firm
7%
Computer Software Company
20%
Manufacturing Company
7%
Financial Services Firm
7%
Comms Service Provider
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Blackberry Protect?
It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessary actions.
What is your experience regarding pricing and costs for Blackberry Protect?
The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.
What needs improvement with Blackberry Protect?
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immedi...
How does Crodwstrike Falcon compare with Sophos Intercept X?
I like that Crowdstrike Falcon allows me to easily correlate data between my firewalls. Its detection and machine learning are very valuable features. Crowdstrike Falcon also successfully prevents ...
What is your experience regarding pricing and costs for Sophos Intercept X?
I would describe it as economical, but not much cheaper than other solutions.
 

Also Known As

Blackberry Protect
Sophos Intercept X
 

Overview

 

Sample Customers

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit
Flexible Systems
Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Intercept X Endpoint and other solutions. Updated: April 2025.
848,716 professionals have used our research since 2012.