BlackBerry Cylance Cybersecurity vs Microsoft Defender for Endpoint comparison

BlackBerry and Microsoft are both solutions in the Endpoint Protection Platform (EPP) category. BlackBerry is ranked #20 with an average rating of 8.4, while Microsoft is ranked #1 with an average rating of 8.3. BlackBerry holds a 1.1% mindshare in EPP, compared to Microsoft’s 10.8% mindshare. Additionally, 85% of BlackBerry users are willing to recommend the solution, compared to 94% of Microsoft users who would recommend it.

BlackBerry Cylance Cybersec...

Read 44 BlackBerry Cylance Cybersecurity reviews

3,283 Views
2,496 Comparison Views

85% willing to recommend

Microsoft Defender for Endp...

Read 196 Microsoft Defender for Endpoint reviews

30,707 Views
24,393 Comparison Views

94% willing to recommend

BlackBerry Cylance Cybersec...

Microsoft Defender for Endp...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 20, 2025

BlackBerry Cylance Cybersecurity and Microsoft Defender for Endpoint compete in the endpoint protection category. Microsoft Defender seems to have the upper hand due to its comprehensive threat detection and integration abilities with other Microsoft products.

Features: BlackBerry Cylance Cybersecurity offers AI-driven malware protection, zero-day threat defense, and resource efficiency, helping to maintain system performance with minimal impact. Microsoft Defender for Endpoint provides extensive threat detection, remediation features, and integrates seamlessly with other Microsoft solutions, enhancing centralized management and visibility.

Room for Improvement: BlackBerry Cylance struggles with false positives and could benefit from a more intuitive management console and reporting options, as well as improved communication with industrial solutions. Microsoft Defender's users suggest enhancements in the user interface, third-party integration, and automation capabilities, along with better dashboards, fewer false positives, and improved email security integration.

Ease of Deployment and Customer Service: BlackBerry Cylance is available across public, private, and hybrid clouds as well as on-premises, offering deployment flexibility. Microsoft Defender provides diverse deployment options within cloud and on-premise environments. While BlackBerry’s customer service is mixed, Microsoft Defender's support is generally well-regarded for its responsiveness, although improvements could be made for smaller clients.

Pricing and ROI: BlackBerry Cylance is considered to have slightly higher pricing compared to competitors like Kaspersky and Symantec, yet some users find the pricing justified by its advanced protection. Microsoft Defender for Endpoint is often included with Windows OS or Microsoft ecosystem, rendering it a cost-effective choice for those already using Microsoft products. However, costs can rise with additional features like EDR. Both solutions aim to provide ROI through reduced labor hours and enhanced security posture.

To learn more, read our detailed BlackBerry Cylance Cybersecurity vs. Microsoft Defender for Endpoint Report (Updated: April 2025).

Buyer's Guide

BlackBerry Cylance Cybersecurity vs. Microsoft Defender for Endpoint

April 2025

Download the complete report

Helped 850,671 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

BlackBerry Cylance Cybersec...

Ranking in Endpoint Protection Platform (EPP)

20th

Average Rating

8.0

Reviews Sentiment

4.6

Number of Reviews

Ranking in other categories

No ranking in other categories

Microsoft Defender for Endp...

Ranking in Endpoint Protection Platform (EPP)

1st

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

196

Ranking in other categories

Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Endpoint Detection and Response (EDR) (3rd), Microsoft Security Suite (5th)

Mindshare comparison

As of May 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BlackBerry Cylance Cybersecurity is 1.1%, down from 1.4% compared to the previous year. The mindshare of Microsoft Defender for Endpoint is 10.8%, down from 14.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Featured Reviews

Sooraj Makkancherrry

Security Operations Manager at Philips

Doesn't have daily updates, which is important for healthcare IT

I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.

Read full review

AnuragSrivastava

Information Security Engineering Lead at a energy/utilities company with 10,001+ employees

Provides detailed visibility into threats but the ability to add exceptions needs improvement

One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"CylancePROTECT is very stable - we've had no issues with performance and no errors or bugs."

"The non-daily requirement to update signatures is the most valuable feature. From a functional point of view, it is pretty spot on. For instance, we compared an algorithm from five years ago to today's algorithm, and it was 98% accurate. It has the ability to detect and mitigate. In the industrial environment that we work in, there's what we call OT versus IT. You are IT Central, but this is OT. Generally, we don't have the same level of skillset as IT individuals or IT professionals have. This particular product doesn't require you to be a computer scientist to be able to understand its proprietary algorithm and to be able to deploy, use, and work within it. It integrates well with a robust SIEM or SOAR solution, and it plays nice with others. We use other detection solutions like CyberX or site provision with Cisco, and it plays nice. That's one of the things we really liked about it."

"Two or three years ago when the WannaCry virus struck, the people that were on Cylance were the ones that weren't affected."

"The initial setup of CylancePROTECT is very easy."

"Does malware analysis. Blocks WannaCry and other attacks that have come out."

"We are quite security-focused. Blackberry Protect as an endpoint solution for our service really delivers what we are expecting."

"The solution is stable."

"The solution is extremely scalable. It's got the hybrid functionality, it's got the system functionality and cloud functionality as well."

More BlackBerry Cylance Cybersecurity pros

"It integrates very well with all Windows workstations or other Microsoft Endpoint products. It also works quite well. So far, I have not had any issue that hasn't been sorted out. It doesn't use too many resources, so you don't have to install different things."

"Defender provides useful alerts and groups them. It sends an alert to your portal if it detects any malicious activity, and you can group multiple alerts to form an incident."

"It doesn't cause the slowness of the system, which is one of the reasons why I like it."

"The investigation aspect is the most useful. It's user friendly and has a good user interface."

"You can query and access useful information from logs and events, which is powerful and efficient."

"One feature I like the most is vulnerability management, which shows any vulnerable software or OS present in my environment. Microsoft Defender for Endpoint provides a complete overview and also recommends the steps to mitigate the vulnerabilities or threats. Most of the other antivirus or EDR solutions generally don't provide vulnerability management. It is an add-on that Microsoft Defender for Endpoint provides."

"The feature I find most valuable in Microsoft Defender for Endpoint is that it blocks the process and keeps the endpoint from getting infected with malware."

"We found that because the endpoint devices are based on Microsoft Windows devices and Windows Defender is integrated with the foundation and the core layer, it makes it more integrated and more agile in terms of responding to any security threats or changes or development"

More Microsoft Defender for Endpoint pros

Cons

"It should provide more details about the events that they have detected."

"It's a good solution but some features just need to be updated."

"The stability could be improved."

"If they can add more features on top of their Persona feature that would be ideal."

"It needs real analysis of quarantined files. The EDR product isn't showing much right now."

"The product must make the interface a little more user-friendly."

"The solution’s technical support could be improved."

"The high price of the product is an area of concern where improvements are required. The product's price should be more competitive."

More BlackBerry Cylance Cybersecurity cons

"I had some cases a while back and told an agent my issue. When I called the next day, I had to explain everything again to a different person, so I found it annoying to repeat myself all over."

"I would like Microsoft to have some kind of direct integration for USB controls. They have GPO and other controls to control the access of the USB drives on devices, but if there is something that can be directly implemented into the portal, it would be good. There should be a way to control via a cloud portal or something like that in a dynamic way. USB control for data exfiltration would be a good feature to implement. Currently, there are ways to do it, but it involves too many different things. You have to implement it via GPOs and other stuff, and then you move or copy those big files via Defender ATP. If there is a simple way of implementing those features, it would be great."

"We encountered some issues when we were trying to enable automatic updates from our group policy."

"The management console is something that can be improved."

"Microsoft Defender for Endpoint should include better automation that will make it faster to detect the latest threats happening across the world."

"I would like to see integrations with other products, such as Spunk and other CM solutions. That would create possibilities for me, and for a SOC, to consolidate all events in an older console, not one provided by Microsoft but provided by a third party, and use it to create more insights."

"The solution should be updated by Microsoft with new features from time to time."

"Additional security would be beneficial."

More Microsoft Defender for Endpoint cons

Pricing and Cost Advice

"My company is on a yearly CylancePROTECT subscription. Price-wise, the solution is slightly expensive, so I'd rate it as eight out of ten."

"Shop around for sure and be assured the price you pay will be close to other solutions available, but even at a slight mark-up from the other solutions, you are getting real endpoint protection versus nothing more than a cheap security blanket that might keep you warm at night."

"Our licensing cost for the solution is around $4,000 for six months. There are no costs in addition to the standard licensing fees."

"It is expensive, but not unreasonable."

"The initial end-point cost may seem a little high (~$55/device/year) but when you look at the total peace of mind that the solution provides, with no reboots for updates, and negligible performance impact, it is well worth it."

"Do not get hung up on price. You pay for what you get and expensive will hurt one time, where cheap will hurt forever, especially if you fall victim to a ransom attack, etc."

"CylancePROTECT is an affordable solution."

"CylancePROTECT's pricing is reasonable, at about €18 per user, per year."

More BlackBerry Cylance Cybersecurity pricing and cost advice

"The price was a problem for me three years ago, but they improved their E3, E5, and a la carte licensing. In other words, you have to get all of E5. That used to be a problem because you had E3, Defender, and guardrails, but you needed an E5 license to get the management suite and the analytics. It's more flexible now. You can switch from a la carte to the entire suite when it starts to make sense. It's becoming more economically competitive to go that route."

"The normal, standalone model, is not expensive, but the enterprise model that includes the bundle with email and some web protection, is a bit more expensive."

"We have been using the free version."

"The E5 license is the one that I recommend because it comes with Cloud App Security, which is a good thing to have on top of Microsoft Defender."

"There are different licenses, such as E3 and E5."

"The solution is free and comes with Windows."

"Microsoft Defender for Endpoint is more affordable compared to some other endpoint solutions."

"The licensing costs for Microsoft Defender for Endpoint are reasonable."

More Microsoft Defender for Endpoint pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

850,671 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

14%

Manufacturing Company

11%

Government

Financial Services Firm

Educational Organization

24%

Computer Software Company

12%

Government

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Blackberry Protect?

It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessary actions.

See all answers

What is your experience regarding pricing and costs for Blackberry Protect?

The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.

See all answers

What needs improvement with Blackberry Protect?

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

See all answers

Which offers better endpoint security - Symantec or Microsoft Defender?

We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

See all answers

Comparisons

CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity

Compared 14% of the time

Cisco Secure Endpoint vs BlackBerry Cylance Cybersecurity

Compared 6% of the time

SentinelOne Singularity Complete vs BlackBerry Cylance Cybersecurity

Compared 6% of the time

Symantec Endpoint Security vs BlackBerry Cylance Cybersecurity

Compared 5% of the time

Cortex XDR by Palo Alto Networks vs BlackBerry Cylance Cybersecurity

Compared 5% of the time

More BlackBerry Cylance Cybersecurity Competitors

CrowdStrike Falcon vs Microsoft Defender for Endpoint

Compared 8% of the time

Microsoft Intune vs Microsoft Defender for Endpoint

Compared 5% of the time

Symantec Endpoint Security vs Microsoft Defender for Endpoint

Compared 5% of the time

F-Secure Total vs Microsoft Defender for Endpoint

Compared 4% of the time

HP Wolf Security vs Microsoft Defender for Endpoint

Compared 4% of the time

More Microsoft Defender for Endpoint Competitors

Product Reports

Buyer's Guide

BlackBerry Cylance Cybersecurity

May 2025

Download BlackBerry Cylance Cybersecurity product report

Buyer's Guide

Microsoft Defender for Endpoint

April 2025

Download Microsoft Defender for Endpoint product report

Also Known As

Blackberry Protect

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus

Interactive Demo

Demo not available

BlackBerry

Microsoft

Overview

BlackBerry Cylance provides endpoint security, threat protection, and antivirus capabilities, using AI and machine learning for protection against malware and ransomware on desktops, servers, and virtual machines worldwide. Its AI-driven threat detection operates even with limited internet, facilitating effective threat management.

BlackBerry Cylance's centralized dashboard simplifies threat management and vulnerability protection for organizations globally. The platform combines AI and machine learning to deliver superior zero-day threat protection and minimize CPU usage, offering stable and accurate threat detection without frequent updates. It includes tools like CylanceOPTICS and CylancePERSONA for enhanced user behavior monitoring and adopts a proactive approach that effectively manages threats at various lifecycle stages. Renowned for stability and performance, it efficiently prevents unauthorized applications while maintaining system productivity.

What are the main features of BlackBerry Cylance?

Minimal CPU Usage: Efficiently operates without taxing computer resources.
AI and Machine Learning: Advanced technology for zero-day threat protection.
Lightweight Design: Functions without constant updates for simplified usage.
Centralized Management: Offers a user-friendly, intuitive dashboard.
CylanceOPTICS and PERSONA: Tools for in-depth user behavior analysis.

What are key benefits to look for in user reviews?

Effective Malware Detection: Recognized accuracy in identifying security threats.
Proactive Threat Mitigation: Actively detects and manages threats.
Stability and Performance: Consistent protection without hampering system performance.
Reduced Unauthorized Access: Limits unpermitted application activity.

In the professional sector, BlackBerry Cylance is leveraged to protect crucial infrastructure through a robust approach accommodating environments with limited connectivity. Its widespread deployment in industries, including healthcare and finance, is attributed to its ease of deployment and comprehensive protection capabilities. However, enhancements in reporting, pricing structures, and technical support are avenues for development, reflecting user feedback for improving detection rates and overall dashboard usability.

BlackBerry

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft

Sample Customers

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit

Petrofrac, Metro CSG, Christus Health

Buyer's Guide

BlackBerry Cylance Cybersecurity vs. Microsoft Defender for Endpoint

April 2025

Free Report: BlackBerry Cylance Cybersecurity vs. Microsoft Defender for Endpoint

Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Microsoft Defender for Endpoint and other solutions. Updated: April 2025.

DOWNLOAD NOW

850,671 professionals have used our research since 2012.

See our BlackBerry Cylance Cybersecurity vs. Microsoft Defender for Endpoint report.

See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.