No more typing reviews! Try our Samantha, our new voice AI agent.

Automox vs BlackBerry Cylance Cybersecurity comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Feb 8, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Protection Platform (EPP)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Detection and Response (EDR) (6th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Automox
Ranking in Endpoint Protection Platform (EPP)
36th
Average Rating
8.8
Reviews Sentiment
7.0
Number of Reviews
14
Ranking in other categories
Vulnerability Management (42nd), Enterprise Mobility Management (EMM) (13th), Patch Management (13th)
BlackBerry Cylance Cybersec...
Ranking in Endpoint Protection Platform (EPP)
32nd
Average Rating
8.0
Reviews Sentiment
4.6
Number of Reviews
44
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.8%, up from 3.7% compared to the previous year. The mindshare of Automox is 0.4%, up from 0.3% compared to the previous year. The mindshare of BlackBerry Cylance Cybersecurity is 1.5%, up from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.8%
BlackBerry Cylance Cybersecurity1.5%
Automox0.4%
Other94.3%
Endpoint Protection Platform (EPP)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Naqash Ahmed - PeerSpot reviewer
Senior Data Reporting Analyst at University of Bradford
Automation has saved time and improves secure, centralized patching across all our devices
While Automox has very good features, I think there's still room for improvement. I want the custom reports to be even more detailed, specifically where I can add more details. It would be nice to have more filters in reports based on location and department more easily. Secondly, the notifications could be more customizable. Many times notifications come, but we don't have control over which notification is urgent and which is not. For example, if there's an alert of a critical update or pending approval, it can help me focus better. An alert of a security threat could be another type of notification that tells me something is important. Customized notifications would be much better. I would say the user interface could be improved as well. Some parts of the dashboard are a bit hard to understand. If they could be improved to be more intuitive, for example, if it could be easy to navigate between devices and reports, that would be great. I would say if Automox could also provide automation templates, that would help. I know there are templates, but I want more templates. Having ready-made worklets for common tasks can save a lot of time. Lastly, it should also support the interface for mobile screens.
Sooraj Makkancherrry - PeerSpot reviewer
Security Operations Manager at Philips
Doesn't have daily updates, which is important for healthcare IT
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Traps has drastically reduced our endpoint attack surface via advanced detection capabilities, sandboxing of never before seen programs, and by drastically limiting where executables can launch in the first place."
"Monitoring is most valuable."
"The one feature of Palo Alto Networks Traps that our organization finds most valuable is the App ID service."
"From a single pane of glass, you can easily manage all of your endpoints."
"The solution is a new generation XDR that has a lot of artificial intelligence modules."
"If you are looking for security, mainly for advanced threat prevention from ransomware and malware attacks, I would recommend Cortex."
"The solution doesn't need a high level of technical training."
"The scalability of Cortex XDR by Palo Alto Networks is very good."
"Automox has positively impacted my organization with significant time-saving, improved our security posture by automatically patching vulnerabilities, and is easy to manage and deploy while offering Automox University as a great resource for learning the platform."
"It's easy to deploy agents to endpoints."
"Automox is the only one that we've found that we can just set and then forget; it simply works and is the best."
"Automox has saved us on multiple tasks at least 10 to 15 hours a week."
"Coming from prior solutions that were a lot more effort, Automox's patch management abilities are transformational."
"Literally, it's our go-to product for patching and we don't use anything else."
"Among the most valuable features are its ease of use and the Worklets. Both of them are time-savers. Worklets enable us to customize things for a given environment. It's something like when Apple lets other people create applications. Other peoples' Worklets can be used in our environment and in our customers' environments. That saves a lot of time, and it's really cool."
"They've been adding some new features lately, which I'm not nearly as familiar with, but the ability to just deploy patches and exempt certain machines from certain patches is helpful. For instance, for our servers, we may not want to roll out zero-day patches. We are able to exempt those and make sure that they don't get those policies. We've got certain servers that have to run a particular version of Java, and being able to exempt those servers from receiving Java updates is pretty fantastic."
"The most valuable features are script blocking and macros within Word documents for stopping unwanted applications from running in the background."
"The platform's most valuable features are the malware detection capabilities."
"Even if an endpoint loses connection to the Internet, I know that endpoint is protected against 99.99% of the threats in the wild today."
"Two or three years ago when the WannaCry virus struck, the people that were on Cylance were the ones that weren't affected."
"The ROI is immense, particularly in less dedicated labor hours, and much more in terms of security, particularly when new security flaws have recently appeared."
"What I like best about CylancePROTECT is its accuracy, as it doesn't give many false positives."
"This technology is very good, very stable, and we have great trust in it and what it delivers."
"CylancePROTECT is very stable - we've had no issues with performance and no errors or bugs."
 

Cons

"I feel that it should not be a licensed activity because a feature should allow us to see applications running on end devices."
"They have the worst support, as a company, that I have ever worked with, as they are difficult to get a hold of and keep on the phone. They don't know what they are talking about when you get them on the phone. They don't like to respond to messages when you send them to them. They like to "research problems" for weeks on end, then pass you off to somebody else."
"It should support more mobile operating systems. That is one of the cons of their infrastructure right now."
"We had a problem with getting our older endpoints up to date, but their newest updates have been really good. I've been pleased with it in terms of what our needs are. It's doing what we want it to do."
"It's not an ideal choice for smaller businesses, as you need a minimum of 200 endpoints to even use the solution at all."
"We would also like to have advanced tech protection and email scanning."
"The GUI could be improved."
"It'll help if customization was easier."
"We would like to see additional detailed reporting for Service providers like us. We had to build our own reports via their APIs to meet our needs."
"As concerns the patching concepts, there's a bit of a learning curve in terms of working out how Automox wants you to work within the console, not only splitting up everything into groups, but then having the various policies assigned."
"The biggest area they need to fix, without a doubt, is the ability to copy and sync profiles and worklets between all of the organizations you manage, and the ability to have top-level user access control across all of the companies that you manage."
"They need to improve the automation features."
"Asset management would be a great feature to add to Automox. We would run easier scripts or more out of the box scripts that would help us in audits. \"
"However, I feel Automox's present quirks in its ability to manage multiple clients to constitute its weakest point."
"The stability has come a long way from what it was like when it started and now it's really good."
"The only thing that we've ever truly wanted is an onsite repository."
"For advanced security, I wouldn't."
"The solution’s user interface could be improved."
"​It needs real analysis of quarantined files. The EDR product isn't showing much right now."
"It should have better support for Windows and Mac."
"There are a lot of false positives and it takes up a lot of time."
"The AI of CylancePROTECT has room for improvement. I'm on a trial license of SentinelOne, and its AI is much better than what's on CylancePROTECT."
"CylancePROTECT could be improved in its technical support and communication."
"The OPTICS component could be made more user-friendly with respect to giving people more information."
 

Pricing and Cost Advice

"We didn't have to pay any additional fee for the cloud instance. It just came with the renewal, which was nice."
"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."
"It has a yearly renewal."
"Its pricing is kind of in line with its competitors and everybody else out there."
"Cortex XDR by Palo Alto Networks is an expensive solution."
"If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."
"Cortex XDR’s pricing is very reasonable."
"It's about $55 per license on a yearly basis."
"The product is a great value."
"For all these software tools, it is usually a subscription model. There is a monthly charge that we need to pass along to our clients because we are doing all this for their benefit. It is only a couple of bucks a month per computer, and that is a low enough price point where our clients, without exception, have accepted it, and said, "This is great. We will pay that. It sounds like a worthwhile thing.""
"There are no additional costs in addition to the extended licensing fees with Automox. You get your support and your per endpoint license with what you purchased."
"Automox just charges us a set amount per user, per month, for using the product. That is very important to us. Because it's a cloud-native solution, you're saving on the cost of hosting an on-premises solution on your servers."
"The pricing and licensing costs have been great for us... My advice to others who are evaluating or thinking of implementing Automox is to give it a shot. If a free trial is still available, definitely use it, because it makes life a lot easier."
"Its licensing for a year was nine grand. There was no additional fee."
"The cost is very reasonable compared to the competition."
"We are on the premium licensing, which is the one that has the API capability that we use."
"The license price for this solution could be better. It's on the expensive side."
"Our licensing cost for the solution is around $4,000 for six months. There are no costs in addition to the standard licensing fees."
"We would just add more if there are new users, but right now you just need one license for per user."
"CylancePROTECT is worth the money, but I'm not sure of its exact price. I can't remember off the top of my head."
"CylancePROTECT is an affordable solution."
"​Shop around for sure and be assured the price you pay will be close to other solutions available, but even at a slight mark-up from the other solutions, you are getting real endpoint protection versus nothing more than a cheap security blanket that might keep you warm at night."
"On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a seven out of ten."
"The solution's pricing is around the same as most EDRs but slightly behind some of the major ones."
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Financial Services Firm
11%
Manufacturing Company
10%
Outsourcing Company
7%
Government
7%
Construction Company
11%
Financial Services Firm
7%
Manufacturing Company
7%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise3
Large Enterprise11
By reviewers
Company SizeCount
Small Business33
Midsize Enterprise5
Large Enterprise14
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Automox?
The cost is very affordable. We have been able to save a lot of time, approximately 30%. Cost reduction has been noti...
What needs improvement with Automox?
From an enterprise perspective, Automox could have better compliance reporting, which is needed for audit readiness, ...
What is your primary use case for Automox?
Automox is used in our system primarily to manage patch management. It helps in managing Windows updates, third-party...
What is your experience regarding pricing and costs for Blackberry Protect?
The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.
What needs improvement with Blackberry Protect?
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we conta...
What is your primary use case for Blackberry Protect?
I am using CylancePROTECT as an active learning algorithm. We installed it on almost 20,000 servers and virtual machi...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
Blackberry Protect
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit
Find out what your peers are saying about Automox vs. BlackBerry Cylance Cybersecurity and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.