BlackBerry Cylance Cybersecurity Reviews

My clients have not had to contend with time-consuming false positives, nor have they had to worry about zero-day attacks, even for systems which have been off the network for months.

The CylancePROTECT agent is very low on CPU usage, so it has virtually no adverse impact on my servers, desktops, or workstations.

I am also quite impressed with its ability to protect systems against zero-day threats due to the machine learning algorithm, which powers its database. Databases, as old as 2015, are able to accurately detect 2017-era threats, such as WannaCry and other ransomware.

The management console needs a little maturity in how it presents data and allows the administrator to drill down or search across systems.

We have had a few machines experience potential problems with the CylanceOPTICS supplementary agent, but we have not narrowed down the issue as of yet. That is a total of two machines across over 100 deployed.

So far, no.

Customer Service:

10 out of 10. Customer service has been very responsive (going through a managed provider).

Technical Support:

10 out of 10. Technical support has been stellar (going through a managed provider).

Yes, I used and supported a previous solution, but changed, because of system performance impact, and management of the client-side activity databases. (The old solution had a slightly better GUI, but not enough to offset the other concerns.)

The initial setup was very straightforward.

1. Install agent on system, apply key, and device comes up in the portal.
2. Automatically apply monitoring policy.
3. Verify the baseline, and quarantine or whitelist all detected files.
4. Apply active policy.

Also, the installation did not require a reboot.

Implementation was conducted with support of the Managed Service Provider, who was top notch in their knowledge and support of the toolset.

We expect our ROI to be eight months, especially when taking into account the time spent with customers dealing with ransomware recovery over the past two years.

The initial endpoint cost may seem a little high (~$55/device/year), but when you look at the total peace of mind that the solution of Cylance endpoint protection provides, with no reboots for updates, and negligible performance impact, it is well worth it.

We evaluated Webroot, Symantec, Sophos, and Barkly.

We would encourage everyone evaluating endpoint protection solutions to run a 30-day pilot (minimum) in their own environments and with a representative set of devices. Be sure to test the management of the systems, including the policy management and whitelisting/exception management.

Does malware analysis. Blocks WannaCry and other attacks that have come out.

It lifted the burden on the helpdesk from having to keep computers updated with definitions and thus reduced the labor hours spent monitoring AV on endpoints.

It needs real analysis of quarantined files. The EDR product isn't showing much right now.

We have been using this solution for one year.

Some DLLs and in-house apps were quarantined. Alerting mode is the way to deploy this software for at least three weeks.

I did not encounter any issues with stability.

I did not encounter any issues with scalability.

I would rate customer service as excellent.

I would rate technical support as excellent.

The previous solution had too many things to monitor and required dedication to fix corrupt definitions. These required manual transfers and sometimes helpdesk time on the endpoint to fix the incumbent product.

We implemented it in-house with the help of the sales engineer.

The ROI is immense, particularly in less dedicated labor hours. The ROI was much more in terms of security, particularly when new security flaws have recently appeared. By virtue of having this software product, the C-level suite feels more secure, because IT does not have to start taking downtime to patch servers in a hurry.

Review closely how many endpoints you actually need before buying into a pricing level. Deal and deal with the VAR of your choice.

We evaluated Palo Alto Traps and Carbon Black.

Review the performance of Cylance over the next year and ask for a 60 day trial, not just a 30 day trial. Monitoring the growth of this company is very important to determine if the product remains at the level that is in today.

I use CylancePROTECT to secure our enterprise against malware, ransomware, and emerging threats.

The most valuable features of CylancePROTECT are its powerful machine-learning capabilities and predictive intelligence.

CylancePROTECT could be improved in its technical support and communication.

I have been using CylancePROTECT for about three years.

It is a fairly stable product.

The technical support is very slow. I would rate it at a seven out of ten.

Neutral

Before using CylancePROTECT, we switched from Broadcom to enhance our security approach. We chose Cylance because we wanted to shift to a more advanced solution based on artificial intelligence.

The initial setup is quite straightforward.

When we were evaluating security solutions, we considered Trend Micro as another option, but we chose Cylance because we needed broader protection. Trend Micro focused only on servers, and we required a solution that covered more than just server security.

Overall, I would rate CylancePROTECT as a nine out of ten.

We utilize the solution to safeguard approximately 500 users against malware threats. It notifies us via email about any suspicious files or activities.

Compared to our previous antivirus solution, Kaspersky, CylancePROTECT has significantly simplified our management tasks. 

The platform's most valuable features are the malware detection capabilities. 

Enhancing the product's detection rates and streamlining the user interface for easier management in daily operations would be beneficial improvements.

I've been using CylancePROTECT for about two years.

I would rate the stability about a seven. While generally stable, there is room for improvement.

I would rate the product scalability around a three. It can be slow when making system-wide changes that affect all 500 computers.

The technical support services need improvement in terms of their knowledge and responsiveness.

Neutral

Deployment took approximately a month due to the complexity of managing multiple remote offices. We initially attempted deployment via group policies but encountered challenges. Eventually, we opted for an external application like PDQ Deploy to facilitate the process. I would rate the initial setup process around a six. While manageable, it required some assistance from the provider.

Overall, I am quite satisfied with CylancePROTECT. Its effectiveness in malware detection is a significant advantage.

I would rate it around an eight or nine.