BlackBerry Cylance Cybersecurity vs Cisco Secure Cloud Analytics [EOL] comparison

The compared BlackBerry and Cisco solutions aren't in the same category. BlackBerry is ranked #25 in EPP , with an average rating of 7.8, and holds a 1.5% mindshare in the category. Additionally, 85% of BlackBerry users are willing to recommend the solution, compared to 100% of Cisco users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between BlackBerry Cylance Cybersecurity and Cisco Secure Cloud Analytics [EOL] based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, Microsoft, SentinelOne and others in Endpoint Protection Platform (EPP).

To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: May 2026).

Buyer's Guide

Endpoint Protection Platform (EPP)

May 2026

Download the complete report

Helped 893,438 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Featured Reviews

ABHISHEK_SINGH

Senior Process Expert at A.P. Moller - Maersk

Gained full visibility and streamlined threat detection through behavior-based insights and AI integration

Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.

Read full review

Sooraj Makkancherrry

Security Operations Manager at Philips

Doesn't have daily updates, which is important for healthcare IT

I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.

Read full review

Sudhanshu Pandey

Security Analyst at Orange España

Efficiently generates alerts for suspicious activities and scales easily

There are two areas of improvement. Firstly, extend the log retrieval limit to at least three months. For example, there is a limit on the number of log messages that can be received. So, I would like to expand the log retrieval limit. And another thing, if we migrate these things to an event or send us an email if there is any critical event, I would like to configure these things on the initial launch. Because if a system is compromised, there will be a lot of data movement from one post to another post to the outside. Then, we should also get an alert on email as well. We have since we have integrated these things. But a direct email for critical alerts should be there. So, I would like to enhance the critical event configuration. If a new user wants to learn how it should work, how policies work, and where we can configure policies, there should be some learning material for this product.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cortex XDR is a simple platform that's easy for administrators and users. You have a lot of flexibility to change or customize the features."

"We have a complete overview of all our PCs and it's very easy to handle and to use the interface."

"Provides behavior-based detection which offers many benefits over signature-based detection."

"It collects and caches and the knowledge of machine learning from different customers to take to the cloud. It makes it better to use for everybody. It allows for quick learning and updates and can, therefore, offer zero-day malware security. This sharing of metadata helps make the solution very safe."

"Cortex XDR is stable, offering high quality and reliable performance."

"The product is mostly automated, and we do not have to make decisions, because all the decisions are made by the product itself and we are not required to create any custom policies since the policies that are created are well defined in the product itself."

"Its ability to react to cyber data attacks is awesome. That is pretty much the use of it. What blows your mind is the ability to access your assets remotely and see what is actually going on with them. You can not only see them in a console. You can also react very rapidly to your assets that are compromised."

"The one feature of Palo Alto Networks Traps that our organization finds most valuable is the App ID service."

More Cortex XDR by Palo Alto Networks pros

"Endpoints are protected in real-time without the need of a centralized server."

"Two or three years ago when the WannaCry virus struck, the people that were on Cylance were the ones that weren't affected."

"The ROI is immense, particularly in less dedicated labor hours, and much more in terms of security, particularly when new security flaws have recently appeared."

"The solution is easy to deploy."

"You can manage all the threats and everything from a centralized dashboard."

"The solution’s AI is its most valuable feature."

"The most valuable feature of CylancePROTECT is the support."

"The solution is stable; it was no problem and all went quite well, with no bugs or freezes."

More BlackBerry Cylance Cybersecurity pros

"I would recommend Cisco Stealthwatch Cloud 100 percent."

"It tells you if there is any communication going to command and control servers, or if there is any traffic that violates your internal policy, or if any data hoarding is happening where data is being dumped from your machine to outside of the environment. It provides all such meaningful reports to help you understand what's happening."

"When it comes to scalability, there's no size limit. It varies based on licenses and requirements."

"Monitoring the traffic, making sure you have the visibility."

"We were able to prevent an electric fraud of almost $200,000."

"Cisco Stealthwatch Cloud is scalable because it is on the cloud."

"The product helps me to see malware."

"My advice to others is Cisco has great solutions and I would recommend them."

More Cisco Secure Cloud Analytics [EOL] pros

Cons

"While using Cortex, I noticed some aspects that could be improved, such as increasing the synchronization speed between XDR and Xnor."

"It would be good to have a better way to search for a file within the UI."

"The configuration could be simplified. I would like to see better protection, specifically to protect email applications."

"It would be good to have a better way to search for a file within the UI."

"A better pricing plan would make this product more competitive."

"There is also no recovery feature; if some endpoint is under attack there must be the possibility of recovering it or restoring it to a normal state."

"In an upcoming release, the solution could improve by providing hard disk encryption."

"I think sometimes Cortex XDR agent automatically stops event capturing from the device, and then even the dashboard does not get any notifications from the agent."

More Cortex XDR by Palo Alto Networks cons

"I'd like them to do software distribution too, but they said that that's architecturally not at the product line."

"If they can improve the technical support SLA, that aspect of the product will be much appreciated."

"We would like to see secure integration and multi-factor authentication to be able to access the administration dashboard."

"The solution needs better dashboards that are easier to use."

"There are a lot of false positives and it takes up a lot of time."

"The user interface is outdated."

"If they can add more features on top of their Persona feature that would be ideal."

"The security scripting needs improvement. It needs deeper security for scripting."

More BlackBerry Cylance Cybersecurity cons

"The product's price is high."

"The initial setup is a bit complex in terms of deployment and configuration."

"The initial setup of Cisco Stealthwatch Cloud is complex."

"The initial setup is a bit complex in terms of deployment and configuration"

"If we migrate these things to an event or send us an email if there is any critical event, I would like to configure these things on the initial launch. Because if a system is compromised, there will be a lot of data movement from one post to another post to the outside. Then, we should also get an alert on email as well. We have since we have integrated these things. But a direct email for critical alerts should be there. So, I would like to enhance the critical event configuration."

"Cisco Stealthwatch Cloud could improve the graphical user interface. It could be a more user-friendly graphical user interface. so that. Not everybody's a cyber security professional, most of the customers that I deal with are not very skilled. The terms that they use in the solution are quite understandable for a normal CIO."

"The product needs to improve its user-friendliness. It is very tricky and you need to study it before using the standard functionalities."

"When I used to work on it, I just didn't see anything new happening for about a year and a half. Providing newer data and newer reports constantly would help. There should be more classifications and more interesting data."

More Cisco Secure Cloud Analytics [EOL] cons

Pricing and Cost Advice

"Its pricing is kind of in line with its competitors and everybody else out there."

"The pricing is a little high. It is per user per year."

"Cortex XDR by Palo Alto Networks is quite an expensive solution."

"It's the most expensive solution, but features-wise, it's quite strong. It's very good for protection, so the results are very good in the case of protection. I would rate it a two out of ten in terms of pricing."

"The price was fine."

"Our license will require renewal in August, after which the maintenance will continue as usual."

"I did PoCs on products called Cylance and CrowdStrike. Although, I consider these products and they were also good, when it come to cost and budgetary factors, Traps has been proven to be better than the other two products. It is quite cost-effective and delivers all the entire solution which we require."

"The pricing is okay, although direct support can be expensive."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"The license price for this solution could be better. It's on the expensive side."

"CylancePROTECT is worth the money, but I'm not sure of its exact price. I can't remember off the top of my head."

"It's not so heavily priced; rather, it's average and decent."

"This cost of the license is approximately $5 USD monthly per user."

"The licensing part of the product is too expensive compared to other solutions in the market."

"It is expensive, but not unreasonable."

"We went through a third party initially to do the renewal, but we won't be renewing, we will move on to something else."

"Currently, we have competitive pricing for Cylance, which is affordable enough to consider."

More BlackBerry Cylance Cybersecurity pricing and cost advice

"Cisco Stealthwatch Cloud is an expensive enterprise solution."

"The price of Cisco Stealthwatch Cloud is expensive."

"The solution is quite expensive."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

893,438 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

12%

Construction Company

12%

Comms Service Provider

Manufacturing Company

Construction Company

10%

Manufacturing Company

Computer Software Company

Comms Service Provider

Manufacturing Company

13%

Construction Company

13%

Performing Arts

11%

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	46
Midsize Enterprise	20
Large Enterprise	49

By reviewers
Company Size	Count
Small Business	33
Midsize Enterprise	5
Large Enterprise	14

By reviewers
Company Size	Count
Small Business	1
Midsize Enterprise	2
Large Enterprise	6

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...

See all answers

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...

See all answers

What do you like most about Blackberry Protect?

It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessa...

See all answers

What is your experience regarding pricing and costs for Blackberry Protect?

The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.

See all answers

What needs improvement with Blackberry Protect?

I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we conta...

See all answers

Ask a question

Earn 20 points

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Compared 9% of the time

SentinelOne Singularity Endpoint vs Cortex XDR by Palo Alto Networks

Compared 5% of the time

CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

Cortex XSIAM vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

More Cortex XDR by Palo Alto Networks Competitors

VMware Carbon Black Endpoint vs BlackBerry Cylance Cybersecurity

Compared 7% of the time

CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity

Compared 7% of the time

Symantec Endpoint Security vs BlackBerry Cylance Cybersecurity

Compared 6% of the time

SentinelOne Singularity Endpoint vs BlackBerry Cylance Cybersecurity

Compared 5% of the time

Cisco Secure Endpoint vs BlackBerry Cylance Cybersecurity

Compared 3% of the time

More BlackBerry Cylance Cybersecurity Competitors

Darktrace vs Cisco Secure Cloud Analytics [EOL]

Compared 14% of the time

Microsoft Defender for Endpoint vs Cisco Secure Cloud Analytics [EOL]

Compared 13% of the time

Splunk User Behavior Analytics vs Cisco Secure Cloud Analytics [EOL]

Compared 9% of the time

CrowdStrike Falcon vs Cisco Secure Cloud Analytics [EOL]

Compared 9% of the time

Cisco Secure IPS (NGIPS) vs Cisco Secure Cloud Analytics [EOL]

Compared 4% of the time

More Cisco Secure Cloud Analytics [EOL] Competitors

Product Reports

Buyer's Guide

Cortex XDR by Palo Alto Networks

May 2026

Download Cortex XDR by Palo Alto Networks product report

Buyer's Guide

BlackBerry Cylance Cybersecurity

May 2026

Download BlackBerry Cylance Cybersecurity product report

Buyer's Guide

Cisco Secure Cloud Analytics [EOL]

May 2026

Cisco Secure Cloud Analytics [EOL] report

Download Cisco Secure Cloud Analytics [EOL] product report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

Blackberry Protect

Cisco Stealthwatch Cloud, Observable Networks

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?

Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
Multi-layered Security: Combines various security measures for comprehensive protection.
Endpoint Protection: Safeguards against malware and exploits.
Behavioral Analysis: Monitors suspicious activity for early detection.
Automatic Threat Response: Automates responses to neutralize threats.

What benefits should users expect?

Ease of Use: Simplifies security management with intuitive design.
Resource Efficiency: Minimizes impact on system resources.
Integration Capabilities: Works well with existing security setups.
Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

BlackBerry Cylance Cybersecurity leverages AI and machine learning for efficient malware detection and zero-day threat protection, offering robust endpoint security with high detection accuracy and low false positive rates.

BlackBerry Cylance Cybersecurity delivers advanced threat protection with AI-driven algorithms and machine learning. Its lightweight design ensures low system resource usage, making it both efficient and effective. It's recognized for centralized management, easy deployment, and a clean interface, providing comprehensive endpoint protection against diverse threats. The integration of features like CylanceOPTICS and behavioral monitoring enhances security insights. While the system excels in malware detection, enhancements are needed in areas like user interface design, reporting, deeper threat analysis, and integration with third-party systems. Support and pricing improvements could also increase competitiveness.

What are the key features of BlackBerry Cylance Cybersecurity?

AI and Machine Learning: Utilizes cutting-edge technology for malware and threat detection.
Zero-Day Protection: Safeguards against emerging threats without the need for constant updates.
Centralized Management: Simplifies deployment and management across devices.
CylanceOPTICS: Provides advanced security insights and behavioral monitoring.
Low Resource Usage: Ensures efficient operation with minimal system impact.

What benefits should users expect from BlackBerry Cylance Cybersecurity?

High Detection Accuracy: Reduces risk with minimal false positives.
Efficient Resource Management: Enhances performance with its lightweight design.
Proactive Threat Defense: Protects against a wide range of threats with centralized management.
Advanced Insights: Offers unique features for detailed security analysis.

Organizations deploy BlackBerry Cylance Cybersecurity for threat analytics, log management, and endpoint protection. As an antivirus replacement, it protects against zero-day malware, ransomware, and various threats. Its AI algorithms detect anomalies, minimizing risks in both internet-connected and isolated environments. Many businesses incorporate it into wider security strategies, appreciating its centralized management and proactive defense capabilities.

BlackBerry

Cisco Secure Cloud Analytics is a cloud-based security solution that provides visibility and threat detection for cloud environments. It offers software mapping and automation for incident response, forensic analysis, and segmentation of IT architecture. The solution can be used on-premise or on the cloud and is used in various sectors such as insurance and government.

The logs in Cisco Secure Cloud Analytics are valuable for API integration in a team as they provide important information for correlations. The solution also offers automated incident response and integration with next-generation firewalls and antivirus solutions."

Cisco

Sample Customers

CBI Health Group, University Honda, VakifBank

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit

Options, Schneider Electric, Washington University in St Louis, Gotcha, Kraft Kennedy, PartnerRe, Sumologic, Veterans United, AFGE, Agraform, Artesys, Dynamic Ideas Financials, Department of Agriculture and Commerce

Buyer's Guide

Endpoint Protection Platform (EPP)

May 2026

Download Free Report

Find out what your peers are saying about CrowdStrike, Microsoft, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: May 2026.

DOWNLOAD NOW

893,438 professionals have used our research since 2012.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.