No more typing reviews! Try our Samantha, our new voice AI agent.

BlackBerry Cylance Cybersecurity vs Symantec Endpoint Security Enterprise comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Feb 8, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Protection Platform (EPP)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Detection and Response (EDR) (6th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
BlackBerry Cylance Cybersec...
Ranking in Endpoint Protection Platform (EPP)
32nd
Average Rating
8.0
Reviews Sentiment
4.6
Number of Reviews
44
Ranking in other categories
No ranking in other categories
Symantec Endpoint Security ...
Ranking in Endpoint Protection Platform (EPP)
38th
Average Rating
8.0
Reviews Sentiment
6.3
Number of Reviews
32
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.8%, up from 3.7% compared to the previous year. The mindshare of BlackBerry Cylance Cybersecurity is 1.5%, up from 1.1% compared to the previous year. The mindshare of Symantec Endpoint Security Enterprise is 0.6%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.8%
BlackBerry Cylance Cybersecurity1.5%
Symantec Endpoint Security Enterprise0.6%
Other94.1%
Endpoint Protection Platform (EPP)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Sooraj Makkancherrry - PeerSpot reviewer
Security Operations Manager at Philips
Doesn't have daily updates, which is important for healthcare IT
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.
reviewer2162541 - PeerSpot reviewer
IT Consultant at a tech services company with 11-50 employees
Provides stable and resource-efficient protection but lacks clear modern security features
Symantec Endpoint Security Enterprise is highly compatible and rarely causes disruptions in production. It operates transparently and is easy to maintain. The automated response feature helps to mitigate breaches effectively. When comparing with ThreatDown agent, I have noticed that ThreatDown detects behaviors more readily and flags suspicious user activities more clearly. While Symantec Endpoint Security Enterprise remains effective, ThreatDown's user interface is more manageable and provides a clearer system overview. The management interface is crucial for maintaining Symantec Endpoint Security Enterprise effectively. A significant advantage of Symantec Endpoint Security Enterprise is its lightweight resource usage. It consumes less memory, CPU, and IO compared to alternatives such as ThreatDown and Bitdefender.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"From the Palo Alto side, whatever they buy, they integrate that really well into their integration suite, and that makes a massive difference."
"We've had a significant increase in blocking with a decrease in false positives, because it's looking at how the files work, not just a list of files that it's been told to look for."
"We have a complete overview of all our PCs and it's very easy to handle and to use the interface. It has a lot of benefits for us."
"On a scale from one to ten, I would rate Cortex XDR by Palo Alto Networks a nine."
"The anti-exploit is impenetrable."
"The ability to kind of stitch everything together and see the actual complete picture is very useful. I guess you'd call it a playbook. Some people call it the forensics analysis of what was happening on particular endpoints when they detected some malicious behavior, and what transpired before that to cause that. It is also very user friendly. The way they have done everything and integrated all the solutions that they've purchased over the years to make it a very seamless, effective product is very good. One thing about Palo Alto is that they take the products or services that they purchase and make them seamless for the end user as compared to some companies that purchase other companies and then just kind of have their products off to the side or keep different interfaces. Palo Alto doesn't do that."
"Palo Alto Networks Traps improves our security posture and lowers risk by providing next-gen methods to combat against modern threats on all the major platforms."
"We use Cortex XDR by Palo Alto Networks for its ability to detect based on behavior rather than simple virus scan to prevent malicious activities."
"I've found the AI engine in CylancePROTECT to be particularly effective for technology and in preventing unknown threats."
"The most valuable feature of CylancePROTECT is the support."
"​Very easy to deploy. It can be done one by one or deployed by customizing an MSI file for GPO push.​"
"The Application Guard and ByteGuard are useful features."
"Has good RAM capacity for the power I need"
"The CylancePROTECT agent is very low on CPU usage, so it has virtually no adverse impact on my servers, desktops, or workstations."
"What I like best about CylancePROTECT is its accuracy, as it doesn't give many false positives."
"What's most valuable in CylancePROTECT is the optics feature. I also like its easy-to-use and user-friendly dashboard and monitoring system."
"The overall solution is good, particularly the detection engine. It performs well in identifying malware and conducting regular network scans. The product is easy to use."
"The solution is useful for endpoint protection."
"The most valuable feature of Symantec Endpoint Security Enterprise is the application. Additionally, they are adding features frequently."
"The best feature is the firewall that lets us allow or block ports. That's a great tool because we can limit specific types of traffic on user devices and apply granular security controls to IPs and ports."
"This was a great product at the very beginning and it has only gotten better as they've added capabilities, so I'm a very big fan."
"This solution's performance is good, and we've never had any issues with its stability."
"The primary feature of the solution is antivirus scanning with IPS. It blocks viruses and uses a signature database, ensuring robust protection when configured correctly to meet our requirements."
"The solution is very cheap; it's the cheapest option and delivers the most basic protection we need."
 

Cons

"The main issue I could point out is the offline agents and the way that it is missing."
"The connection to the internet has not performed as expected."
"Product might have some bugs."
"Cortex XDR by Palo Alto Networks can improve mobile integration to allow access to the console."
"This is a very costly product."
"Cortex does not offer an on-premises solution. However, some customers would prefer not to be on the cloud. It would be ideal if it could offer something on-prem as well."
"I would like to see them include NDR (Network Detection Response). Then it would work well with SIEM Response."
"In terms of areas of improvement, we have not completed our review of the product. We're also looking at other products. So, it's a little bit hard to tell what could be different because we have not completed the review of this product, but based on our experience so far, its implementation is quite complex."
"The AI of CylancePROTECT has room for improvement. I'm on a trial license of SentinelOne, and its AI is much better than what's on CylancePROTECT."
"I would not rate this solution in the top five for things like presenting information, or ease of use."
"The product needs to continue to offer better alerts, in particular around false positives, and it needs to reduce them from happening."
"It is not stable. The solution has caused six crashes over two years, with one of them requiring us to rebuild all of our Windows 10 devices."
"If they can add more features on top of their Persona feature that would be ideal."
"There are a lot of false positives and it takes up a lot of time."
"The high price of the product is an area of concern where improvements are required. The product's price should be more competitive."
"The initial deployment was quite complicated."
"The solution is not user-friendly, it's difficult to find what you need, it takes time and you really need to know where to search."
"The solution's management dashboard could be improved. An easier-to-use threat-hunting dashboard would make life easier for security analysts. Its support needs to improve for the African region."
"Symantec Endpoint Security Enterprise used to be a stable product, but now that aspect needs improvement. They also used to provide good technical support, but now not so much, so that needs improvement."
"The tool needs to improve its dashboard."
"The scanning area of the product should be made a little faster as it is the only area of concern in the tool where improvements are required."
"Symantec Endpoint Security Enterprise should focus on cloud security with Microsoft Azure or Amazon AWS rather than having their standard solution."
"In the past, I experienced companies that protected themselves with Symantec, suffering some attacks."
"I have contacted support and the speed of resolution could be faster."
 

Pricing and Cost Advice

"The solution has one subscription for endpoint protection and one subscription for detection and response. The two licenses combined give you the BRO version."
"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."
"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."
"I don't recall what the cost was, but it wasn't really that expensive."
"I am using the Community edition."
"I don't have any issues with the pricing. We are satisfied with the price."
"The price was fine."
"Cortex XDR's pricing is ok."
"The solution provides me with competitive pricing."
"​Shop around for sure and be assured the price you pay will be close to other solutions available, but even at a slight mark-up from the other solutions, you are getting real endpoint protection versus nothing more than a cheap security blanket that might keep you warm at night."
"The monthly fee is $55 USD per user."
"Our licensing cost for the solution is around $4,000 for six months. There are no costs in addition to the standard licensing fees."
"It's not so heavily priced; rather, it's average and decent."
"This cost of the license is approximately $5 USD monthly per user."
"It is expensive, but not unreasonable."
"The licensing part of the product is too expensive compared to other solutions in the market."
"I would rate it a seven, indicating a satisfactory and moderate level. Despite being somewhat on the expensive side, it aligns with our long-standing relationship with Symantec, and we find it acceptable."
"I rate the tool's pricing a six out of ten."
"The product is neither cheap nor expensive, meaning it is an average-priced solution."
"The cost of the solution is reasonable."
"We have Symantec Endpoint Security Enterprise, and it's very competitively priced. However, there is a considerable jump in price for upgrading to the EDR, so that's more compatible with enterprise-level organizations."
"I rate Symantec Endpoint Security Enterprise's pricing a two out of ten."
"I rate the tool's pricing a six out of ten. For most organizations, the cost is between 70 and 100 dollars per user. The exact price depends on the selected features and the number of users. It's considered a premium cost for an enterprise Endpoint security solution."
"It's not the cheapest, but it's reasonably priced, around a five on a scale from one to ten. It's suitable for small, medium, and enterprise businesses and offers competitive pricing. There are no additional costs; it's a renewable purchase, either annually or as needed."
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Construction Company
11%
Financial Services Firm
7%
Manufacturing Company
7%
Computer Software Company
7%
Financial Services Firm
13%
Comms Service Provider
11%
Construction Company
10%
Marketing Services Firm
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business33
Midsize Enterprise5
Large Enterprise14
By reviewers
Company SizeCount
Small Business16
Midsize Enterprise7
Large Enterprise9
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Blackberry Protect?
The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.
What needs improvement with Blackberry Protect?
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we conta...
What is your primary use case for Blackberry Protect?
I am using CylancePROTECT as an active learning algorithm. We installed it on almost 20,000 servers and virtual machi...
What needs improvement with Symantec Endpoint Security Enterprise?
I have not experienced integrated threat intelligence benefits with Symantec Endpoint Security Enterprise. Many custo...
What is your primary use case for Symantec Endpoint Security Enterprise?
The primary use case for Symantec Endpoint Security Enterprise for my clients is basic antivirus protection.
What advice do you have for others considering Symantec Endpoint Security Enterprise?
Several of my customers continue to use Symantec Endpoint Security Enterprise. As a system consultant, I recommend an...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
Blackberry Protect
No data available
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit
Information Not Available
Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Symantec Endpoint Security Enterprise and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.