CylanceOPTICS Reviews

Name: CylanceOPTICS
Brand: BlackBerry
Rating: 3.7 (13 reviews)

Vendor: BlackBerry

3.7 out of 5

13 reviews
80% willing to recommend

Leave a review

What is CylanceOPTICS?

CylanceOPTICS utilizes cutting-edge AI and ML to offer proactive threat management, ensuring robust security even when offline. Its integration with SIEM systems provides enhanced network visibility and behavior analytics to detect and mitigate threats effectively.

Get the CylanceOPTICS Buyer's Guide and find out what your peers are saying about CylanceOPTICS, CrowdStrike Falcon, Cortex XDR by Palo Alto Networks and more!

CylanceOPTICS is the #53 ranked solution in EDR tools. PeerSpot users give CylanceOPTICS an average rating of 7.4 out of 10. CylanceOPTICS is most commonly compared to CrowdStrike Falcon: CylanceOPTICS vs CrowdStrike Falcon. CylanceOPTICS is popular among the small business segment, accounting for 39% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 12% of all views.

Helped 893,164 peers since 2012

Featured CylanceOPTICS reviews

GauthamVakapalli

Account Manager at Teksalah

One improvement I suggest for CylanceOPTICS is more robust marketing efforts from their side. Many customers gravitate towards popular EDRs like CrowdStrike or Sophos, largely due to better marketing, despite BlackBerry Cylance being a superior product. The lack of marketing from distributors or vendors is a critical area where they are falling short. Apart from marketing, it would be beneficial for CylanceOPTICS to establish a dedicated team in GCC since I coordinate with the UK team to handle support. Whenever a ticket is raised by one of our customers, we have to wait for responses which can take a whole day due to the time zone differences, and a local team could expedite this process. In terms of scalability, CylanceOPTICS is indeed easy to scale, but one issue I face is related to visibility; while it is scalable, the security teams struggle with limited visibility as we need to gather data from multiple sources.

Read full review

Subhadip Pakrashi

CEO at Kapstone Technological Services LLP

From a technical perspective, the product has no issues. The main consideration is cost, as customers are unwilling to pay high amounts for security solutions. I purchase the product from CrowdStrike and sell it to customers. CylanceOPTICS is now owned by North Arctic, after being acquired from BlackBerry, who had previously acquired it from Cylance. When customers approached us wanting an EDR product with technical capabilities, we presented two choices: CrowdStrike and CylanceOPTICS. While both products were good, CylanceOPTICS was chosen based on price-performance ratio. The solution serves primarily data center businesses and other companies. The product's features, reporting, and alert generation were well-received by customers. Though CrowdStrike has excellent features, CylanceOPTICS proved more cost-effective. The interface is somewhat complex, but this is appropriate for a security product. A technical team is essential for successful implementation. I rate this solution 8 out of 10.

Read full review

KajeevanRajanayagam

Cyber Security Manager at a healthcare company with 10,001+ employees

We use CylanceOPTICS primarily to understand what happened after any of the alerts. You can use the solution to query certain things. If you're looking for a certain hash or file name, we can run searches on it. I would say it's not the best product. We're currently using CrowdStrike EDR, which is far superior to what CylanceOPTICS offers. What I liked and didn't like about it is that everything runs in real time. If you're searching for something, CylanceOPTICS pulls only on online devices because it doesn't have a database. In a way, it might work to some benefit, but a lot of times, we might not have the full picture.

Read full review

CylanceOPTICS mindshare

As of May 2026, the mindshare of CylanceOPTICS in the Endpoint Detection and Response (EDR) category stands at 0.6%, up from 0.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR) Mindshare Distribution
Product	Mindshare (%)
CylanceOPTICS	0.6%
CrowdStrike Falcon	7.7%
Microsoft Defender for Endpoint	6.0%
Other	85.7%

Endpoint Detection and Response (EDR)

PeerResearch reports based on CylanceOPTICS reviews

Type	Title	Date
Category	Endpoint Detection and Response (EDR)	May 9, 2026	Download
Product	Reviews, tips, and advice from real users	May 9, 2026	Download
Comparison	CylanceOPTICS vs CrowdStrike Falcon	May 9, 2026	Download
Comparison	CylanceOPTICS vs SentinelOne Singularity Endpoint	May 9, 2026	Download
Comparison	CylanceOPTICS vs Microsoft Defender for Endpoint	May 9, 2026	Download

Valuable Features

CylanceOPTICS excels in responding to zero-day and unknown threats with advanced AI and ML technology, avoiding signature-based limitations. Users applaud sandboxing, auto-containment, and behavior analytics for detecting anomalies and blocking malicious actions. It achieves high efficacy in identifying threats, demonstrating impressive accuracy. Known for its stability and trustworthiness, it includes script control, ease of use, and effective real-time operations, though further enhancements for analysis on remote devices are desired.

"The solution is pretty stable; it's pretty rock solid."
"They are well-known for their efficacy, which is a huge plus."
"The technical support personnel I interacted with were good."

Room for Improvement

CylanceOPTICS could benefit from enhanced automation in threat handling, advanced machine learning capabilities, and improved detection and response speeds. Users report too many false positives and difficulties with scalability for larger companies. The management console and reporting features receive criticism, and user behavior analytics are desired. Issues with alerting systems, pricing concerns, and slow technical support have been noted. CylanceOPTICS requires devices to be online for searches, and the contextual analysis lacks clarity compared to competitors.

"The reporting is very weak and not very good at all."
"One minor issue that somebody mentioned was that they didn't like their management console."
"We have been dissatisfied with CylanceProtect and CylanceOPTICS and want to leave within the next several months. It just hasn't been an effective tool."

ROI

CylanceOPTICS significantly improved efficiency and reduced downtime through proactive threat detection. Users experienced a noticeable decrease in security incidents, leading to cost savings in IT expenses and resource allocation. Enhanced visibility into endpoint activity allowed for quicker incident response, contributing to an overall better security posture. The tool's automation capabilities also minimized manual intervention, saving time and boosting productivity. Consequently, users found the investment in CylanceOPTICS worthwhile due to enhanced security and operational efficiency.

Pricing

Enterprise buyers of CylanceOPTICS find its pricing competitive, with costs similar to McAfee. Licensing is based on endpoints, with a monthly cost of around $55 per user. Some combine it with other services, while others pay around $6 per month per client for bundled Protect and Optics. Prices vary, with ratings of affordability from three to nine out of ten. It’s considered competitively priced compared to other EDR solutions.

"CylanceOPTICS is probably priced equal to other EDRs in the market."
"The pricing for CylanceOPTICS is very good; I would rate it around a nine on a scale of one to ten, with ten being the lowest. It's one of the most affordable options I've seen."
"I would rate the pricing a three out of five."

Popular Use Cases

IT companies primarily use CylanceOPTICS for intelligent intrusion detection and response, focusing on protecting financial and healthcare sectors. Utilizing machine learning instead of traditional signature-based approaches, it identifies anomalies, raises alarms, and blocks or sandboxes communications. It's effective against ransomware, monitors malicious URLs and processes, and quarantines malware. Deployment involves agent installation and can take up to three days, not accounting for removing prior antivirus products.

Service and Support

CylanceOPTICS customer service shows mixed evaluations. Many find technical support good and knowledgeable, especially higher tiers, with proactive meeting scheduling. However, there are complaints about level-one support effectiveness and ticket escalation issues. Some users report dissatisfaction due to inadequate support, particularly for lower-level issues, and cite difficulty without local assistance. Despite appreciation for their expertise, certain customers expect better problem resolution compared to other companies like CrowdStrike, which is noted for their effective team.

Deployment

The initial setup for CylanceOPTICS is considered straightforward by many, though it requires some tuning due to false positives. Professional services assistance is often utilized, and setup can be completed in hours for selected endpoints. Deployment involves minimal user participation and can be done via tools like Goverlan. Some find it complex due to integration with log management systems, but others describe it as simple with the use of a Universal Agent.

Scalability

Feedback on CylanceOPTICS indicates mixed scalability experiences. Some users report a seamless increase in capacity by adding licenses and virtual machine capabilities. Others manage up to 300 users without issues. A few large enterprises experience limits, noting issues with large-scale operations. Many praise the capability to handle thousands of users efficiently, rating scalability highly for diverse environments and remote devices. Some remain unsatisfied with performance regarding threat identification and technology expectations.

Stability

CylanceOPTICS users find it stable and reliable with no reported complaints. Compared to McAfee, it has improved security processes, revealing vulnerabilities and enhancing reliability. Many rate its stability nine or ten out of ten, noting its compatibility with other applications like Kaspersky and Bitdefender. However, it may conflict with SentinelOne as shown in some instances where both were used simultaneously. Users consider it rock solid and free from bugs or glitches, with no crashing.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our CylanceOPTICS Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	2
Large Enterprise	3

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	37
Midsize Enterprise	27
Large Enterprise	30

By visitors reading reviews

Top industries

By visitors reading reviews

Financial Services Firm

12%

Construction Company

10%

Manufacturing Company

10%

Healthcare Company

Comms Service Provider

Media Company

Computer Software Company

Marketing Services Firm

Performing Arts

Insurance Company

Government

Transportation Company

University

Legal Firm

Retailer

Consumer Goods Company

Wholesaler/Distributor

Educational Organization

Outsourcing Company

Museum Or Institution

Hospitality Company

Logistics Company

Energy/Utilities Company

Recreational Facilities/Services Company

Religious Institution

Compare CylanceOPTICS with alternative products

Learn more about CylanceOPTICS

CylanceOPTICS is an AI-driven endpoint detection and response tool engineered to tackle zero-day threats with offline functionality, AI monitoring, and auto-containment features. Its behavior analytics rapidly identifies anomalies, while lightweight construction ensures seamless SIEM integration. Designed for proactive threat anticipation, it creates effective logs and collects endpoint data to boost network visibility. Though highly trusted, there’s room for improvement in detection speed, management processes, and scalability for larger enterprises. Some users report frequent false positives, limited reporting, and automation, while contextual analysis and alerting require refinement. Adequate technical and local support presence is needed for broader market reach.

What are the key features of CylanceOPTICS?

Sandboxing: Offers safe environments for threat analysis.
AI-Powered Monitoring: Continuously tracks activities using AI.
Offline Functionality: Ensures protection even without internet access.
Auto-Containment: Automatically contains suspicious actions.
Behavior Analytics: Detects and analyzes user behaviors swiftly.

What benefits should users look for in reviews?

High Trust: Recognized for robust security assurance.
Performance: Lightweight design ensures minimal system impact.
Industry Application: Effective in financial and healthcare sectors.
Threat Mitigation: Strong at blocking malware and malicious communications.

Organizations in finance and healthcare sectors predominantly implement CylanceOPTICS for its intelligent intrusion detection capabilities and offline functionality. It's instrumental in detecting, quarantining malware, and mitigating threats like ransomware while ensuring processes revert to recovery points post updates, adding value to its exceptional threat detection capabilities in these industries.

CylanceOPTICS customers

Cerdant, Washoe County School District

Product Categories

Endpoint Detection and Response (EDR)

Popular Comparisons

CrowdStrike Falcon vs CylanceOPTICS

Cortex XDR by Palo Alto Networks vs CylanceOPTICS

Microsoft Defender for Endpoint vs CylanceOPTICS

SentinelOne Singularity Endpoint vs CylanceOPTICS

Huntress Managed EDR vs CylanceOPTICS

Elastic Security vs CylanceOPTICS

WatchGuard Firebox vs CylanceOPTICS

Fortinet FortiEDR vs CylanceOPTICS

Check Point Harmony Endpoint vs CylanceOPTICS

Rapid7 InsightIDR vs CylanceOPTICS

Kaspersky Next XDR Optimum vs CylanceOPTICS

TrendAI Vision One – Endpoint Security vs CylanceOPTICS

Intercept X Endpoint vs CylanceOPTICS

WatchGuard EPDR vs CylanceOPTICS

USM Anywhere vs CylanceOPTICS

See all alternatives

CylanceOPTICS Reviews Summary
Author info	Rating	Review Summary
Account Manager at Teksalah	4.0	I've found CylanceOPTICS to be stable, effective offline, and AI-driven, with easy setup and SIEM integration, though it needs better marketing and local support; overall, it's a solid EDR solution I’d rate eight out of ten.
CEO at Kapstone Technological Services LLP	4.0	I've used CylanceOPTICS for three years; it's stable, scalable, and cost-effective with strong behavior analytics, though support is lacking. Setup needs technical skill, and while the interface is complex, it suits data center environments well.
Cyber Security Manager at a healthcare company with 10,001+ employees	2.0	I find CylanceOPTICS helpful for querying alerts, but it's not as effective as CrowdStrike EDR. The solution lacks contextual analysis, resulting in minimal ROI, while CrowdStrike offers better protection, ease of use, and integration capabilities.
Security Architect at WaveLength Ind	4.5	I chose CylanceOPTICS for its ability to customize malware detection and artifact creation. While it lacks some timeline flexibility compared to SentinelOne, it excels in deep analysis and communication between agents for comprehensive threat detection using machine learning.
Cyber Security Manager at a healthcare company with 10,001+ employees	4.0	CylanceOPTICS requires all devices to be online to perform searches, as it does not store information from offline devices. This limitation was notable in the review, although other solutions or deployment details were not provided.
IT Cyber Security Engineer at a legal firm with 201-500 employees	1.5	I found CylanceOPTICS ineffective and frustrating due to excessive false positives, like blocking Chrome. It didn't provide expected protection or value, despite its stability. I'm dissatisfied and plan to leave the solution.
CTO & Co-Founder at Cyber Strategic	3.5	I found this EDR solution effective and stable for malware prevention, but its reporting is weak, and it struggles with scalability for large companies. It's often used as a secondary protection piece despite good support.
Solutions Architect at a tech services company with 51-200 employees	4.0	I consider this a highly effective, stable, and trusted solution, achieving 94-97% efficacy using machine learning. Its support is good, though one user disliked the management console. Overall, I rate it 8/10.

Title	Rating	Mindshare	Recommending
CrowdStrike Falcon	4.3	7.7%	97%	140 interviews Add to research
Cortex XDR by Palo Alto Networks	4.2	3.4%	96%	110 interviews Add to research

CylanceOPTICS Reviews

What is CylanceOPTICS?

Featured CylanceOPTICS reviews

CylanceOPTICS mindshare

PeerResearch reports based on CylanceOPTICS reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare CylanceOPTICS with alternative products

Learn more about CylanceOPTICS

CylanceOPTICS customers

Related questions

Product Categories

Popular Comparisons