CylanceOPTICS vs HP Wolf Security comparison

BlackBerry and HP are both solutions in the Endpoint Detection and Response (EDR) category. BlackBerry is ranked #53 with an average rating of 4.0, while HP is ranked #46. BlackBerry holds a 0.6% mindshare in EDR, compared to HP’s 2.2% mindshare. Additionally, 80% of BlackBerry users are willing to recommend the solution, compared to 87% of HP users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

HP Wolf Security and CylanceOPTICS are competing in the cybersecurity market. HP Wolf Security appears to have an upper hand in support and pricing, whereas CylanceOPTICS excels in feature set, justifying its higher cost for some users.

Features: User reviews highlight that HP Wolf Security offers comprehensive malware protection, ease of use, and user-friendly interface. CylanceOPTICS stands out for advanced AI-driven threat detection, low false positive rate, and robust protection mechanisms.

Room for Improvement: HP Wolf Security needs enhancement in threat intelligence capabilities, better integration options, and technical advancements. CylanceOPTICS requires more streamlined updates, improved documentation, and usability improvements.

Ease of Deployment and Customer Service: HP Wolf Security is favored for straightforward deployment and responsive customer service. CylanceOPTICS, while having robust deployment options, faces criticism for a steep learning curve and less responsive support.

Pricing and ROI: HP Wolf Security has reasonable setup costs and solid ROI, making it attractive for budget-conscious buyers. CylanceOPTICS, despite higher costs, delivers substantial ROI through advanced protective features.

To learn more, read our detailed CylanceOPTICS vs. HP Wolf Security Report (Updated: March 2026).

Buyer's Guide

CylanceOPTICS vs. HP Wolf Security

March 2026

Download the complete report

Helped 885,376 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Mindshare comparison

As of March 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.4%, down from 4.0% compared to the previous year. The mindshare of CylanceOPTICS is 0.6%, up from 0.2% compared to the previous year. The mindshare of HP Wolf Security is 2.2%, up from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR) Mindshare Distribution
Product	Mindshare (%)
Cortex XDR by Palo Alto Networks	3.4%
HP Wolf Security	2.2%
CylanceOPTICS	0.6%
Other	93.8%

Endpoint Detection and Response (EDR)

Featured Reviews

ABHISHEK_SINGH

Senior Process Expert at A.P. Moller - Maersk

Gained full visibility and streamlined threat detection through behavior-based insights and AI integration

Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.

Read full review

GauthamVakapalli

Account Manager at Teksalah

Provides reliable threat detection and response but requires better regional support

One improvement I suggest for CylanceOPTICS is more robust marketing efforts from their side. Many customers gravitate towards popular EDRs like CrowdStrike or Sophos, largely due to better marketing, despite BlackBerry Cylance being a superior product. The lack of marketing from distributors or vendors is a critical area where they are falling short. Apart from marketing, it would be beneficial for CylanceOPTICS to establish a dedicated team in GCC since I coordinate with the UK team to handle support. Whenever a ticket is raised by one of our customers, we have to wait for responses which can take a whole day due to the time zone differences, and a local team could expedite this process. In terms of scalability, CylanceOPTICS is indeed easy to scale, but one issue I face is related to visibility; while it is scalable, the security teams struggle with limited visibility as we need to gather data from multiple sources.

Read full review

Bert Hickman

Owner at Stoneridge Engineering, LLC

Adds a layer of safety, especially for laptops operating in various environments

The tool's deployment is easy. HP Wolf Security's deployment was a swift process since it was initially compatible with Windows 10, the operating system on both machines. However, when I transitioned to Windows 11, I encountered minor issues that prompted me to delve deeper into Wolf Security to fine-tune security settings according to my preferences. While I mostly used default settings, there was an initial adjustment where I disabled the AI function related to malware. Currently, the system is running smoothly with no reported issues. Adjusting some settings raised concerns about compatibility between HP Wolf Security and Norton 360. Specifically, aspects of HP Wolf Security, such as the virtual machine component, intrigued me, but I hesitated due to potential conflicts. During my investigation, Windows 11 raised a flag, questioning the system's security settings with Norton 360 and HP Wolf Security. However, it seems that they coexist well without causing issues.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The stability of this product is very good."

"Cortex is the best tool for endpoint detection, and I have used it to verify hashes or domains to identify malicious activity, trigger playbooks that automate and gather endpoint logs, block malicious processes, and update incident tickets, showcasing end-to-end processes with automation in investigation and reducing the analysis workflow."

"The initial setup is easy."

"The interface is easy to use and it is more up to date than our previous solution."

"The policy configuration is great, the granularity of policies that are available is very helpful, it is straightforward to set up, and it has pretty much everything we need and works well within the Palo Alto ecosystem."

"On a scale from one to ten, I would rate Cortex XDR by Palo Alto Networks a nine."

"The product's initial setup phase is very easy."

"The protection offered by this product is good, as is the endpoint reporting."

More Cortex XDR by Palo Alto Networks pros

"They are well-known for their efficacy, which is a huge plus."

"It is a bit early in our evaluation process to give proper feedback, although so far, the overall feedback is good."

"I would rate the stability a nine out of ten. I would give it a close ten as possible because, like SentinelOne, I've seen incompatibility. Whereas Cylance, I've seen none."

"It automatically blocks the threats, helping us investigate if they harm the environment."

"The most valuable feature is the ability to respond to zero-day and unknown threats."

"One of the main use cases for CylanceOPTICS is endpoint detection and response, which even works without internet, unlike some other solutions."

"CylanceOPTICS is easy to use."

"This feature is something people should be looking into; the threat monitoring in CylanceOPTICS is very good, and while CrowdStrike has similar features, CylanceOPTICS is more cost-effective."

More CylanceOPTICS pros

"Bromium allows us to safely view images and quickly and safely surf our network so that we can take proper care of our patients efficiently, effectively, and expeditiously."

"The isolation feature is the most important because it prevents attacks."

"Our overall security posture has absolutely improved as a result of adding Bromium to our security stack. We continue to have less user impact through a significantly reduced amount of malware infections. It's become a non-event."

"We've been able to isolate and prevent malicious code from external email attachments and from downloaded internet files. Those are the two big areas that have really made an impact."

"Now, instead of us having to go through that analysis, they actually give us a monthly report that shows us: "Here's what you got hit with, here's what would have happened, here are the forensics behind the attack," and, obviously, Bromium stopped it."

"Our overall security posture has absolutely improved as a result of adding Bromium to our security stack."

"It has prevented thousands of potential threats by encapsulating them within its own vSentry container, thus providing overall protection and integrity of the operating system."

"Our security posture has improved; it has definitely contained and prevented some malicious attacks from happening."

More HP Wolf Security pros

Cons

"When it comes to core analysis and security analysis, Cortex needs to provide more information."

"The product's pricing could be better."

"The solution should offer more dashboards and they should be better customized."

"Enhancing UI simplicity and playbook flexibility are areas that could benefit from more low-code automation options for smoother integrations."

"Data privacy is a matter of concern. You have to be careful with data privacy, it can be sensitive and Cortex can have most of your access."

"Previously, the endpoint would leave the environment, not being on our VPN, essentially unable to interact with the server to upload files. It was unable to retrieve new file verdicts. It was using a thing called "local analysis" to determine if something was a malicious file or not. There was no dynamic analysis."

"I have run into some detection issues with Cortex XDR. It needs to be better at detection of internal attacks."

"Additionally, I think the price is very high, and if it can be adjusted, I believe it will be a very good solution."

More Cortex XDR by Palo Alto Networks cons

"It takes more time to investigate or dig up and understand what's going on."

"Too many false positives are reported."

"The product's technical support is slow."

"The technical support could be improved although it's probably better than you get with a lot of the other traditional antivirus solutions"

"The tools are ineffective. It flags a lot of things. To give you an example, it detected Google Chrome and blocked the user's access to it. That it mistook for malicious, which turned out to be a false positive."

"Whenever a ticket is raised by one of our customers, we have to wait for responses which can take a whole day due to the time zone differences, and a local team could expedite this process."

"The reporting is very weak and not very good at all."

"Our customers would like to see more automation with respect to how threats are handled once they have been detected."

More CylanceOPTICS cons

"I did not find this to be an out-of-the-box solution, it required planning and alignment across many groups."

"They need to improve the compatibility with other applications and its stability. It works well with attacks, but it doesn't work well with all software on the clients. There is a lot of troubleshooting and a lot of things that need to be tuned to make it work and not break things."

"Room for improvement would be keeping up with the rate of change, specifically on Windows platforms. There are a lot of updates that come out for Microsoft Windows operating systems and the Bromium product needs to be able to keep up quickly with those updates and all the browser updates that are coming out. It's hard to do, but that's really where they need to be more responsive because we end up with problems and then we have to call support to get patches, etc."

"Reporting is one of the shortcomings of the product. It becomes very difficult because you have to spend a lot of time digging through the volumes of data."

"Room for improvement would be keeping up with the rate of change, specifically on Windows platforms."

"They have always struggled with usability. The protection that it offers you is tremendous, but there's definitely an impact with use of resources on the computer. It's gotten a lot better now with Win 10. But sometimes, when you open up a website, it's going to take longer than it would without Bromium, and it's the same with documents."

"Initially, when we came in contact with Bromium a few years ago, it had a nice threat analyst, or a LAVA Pop, which is what they used to call it. I would like to still see that on the individual machines because when we go out to look at a machine, we don't necessarily have access to the console."

"After a major release, there's always a lot of "dust settling." You have to work through all those issues and then you're fine for a while. The problem is, it's stable, it's fine, until the next major release comes out. Then you go back into the cycle again of uncertainty, instability, working through issues until they have patched and remediated all the problems that you're having. It's not unlike any other vendor though"

More HP Wolf Security cons

Pricing and Cost Advice

"The price of the solution could be reduced. I have customers that have voiced that the solution is good for the value but if I want to sell more of the solution the price reduction would help."

"Cortex XDR’s pricing is very reasonable."

"The price was fine."

"It's way too expensive, but security is expensive. You pay for your licensing, and then you pay for someone to monitor the stuff."

"The price is on the higher side, but it's okay."

"It is cost-effective compared to similar solutions. It fits for the small businesses through to the big businesses."

"Traps pays for itself within the first 16 months of a three-year subscription. This is attributed to OPEX savings, as security teams spent less time trying to identify and isolate malware for analysis as a result of a reduction in malware incidents, false positives, and breach avoidance."

"The tool's price is moderate."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"The pricing for CylanceOPTICS is very good; I would rate it around a nine on a scale of one to ten, with ten being the lowest. It's one of the most affordable options I've seen."

"I would rate the pricing a three out of five."

"We pay for the number of endpoints we have and that is about it. On a monthly basis, the licensing cost is $55 per user."

"CylanceOPTICS is probably priced equal to other EDRs in the market."

"The product's pricing is a good value. We only run it on our internet-facing workstations, we don't run it on everything in our environment. We are very selective. Some organizations may want to consider doing something like that to reduce their license count."

"I think the pricing is a good value. All of these security products are always going to be very expensive, but I don't think Bromium is unreasonable. I think Bromium is decently priced. It’s a tiered licensing platform. The more you buy, the cheaper gets per unit, and I think their tiers are very well defined. I think they're fair."

"The product came as a bundle with the machine."

"The pricing is very fair compared to the competition. The licensing is straightforward."

"Pricing is reasonable."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

885,376 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Construction Company

13%

Manufacturing Company

Computer Software Company

Financial Services Firm

Healthcare Company

11%

Manufacturing Company

10%

Construction Company

Financial Services Firm

Comms Service Provider

10%

Manufacturing Company

Computer Software Company

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	44
Midsize Enterprise	20
Large Enterprise	47

By reviewers
Company Size	Count
Small Business	7
Midsize Enterprise	2
Large Enterprise	4

By reviewers
Company Size	Count
Small Business	3
Large Enterprise	5

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...

See all answers

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...

See all answers

What is your experience regarding pricing and costs for Blackberry Optics?

In terms of cost, I find CylanceOPTICS to be reasonable; it's not overly expensive, nor is it at the lower end of the...

See all answers

What needs improvement with Blackberry Optics?

One improvement I suggest for CylanceOPTICS is more robust marketing efforts from their side. Many customers gravitat...

See all answers

What is your primary use case for Blackberry Optics?

One of the main use cases for CylanceOPTICS is endpoint detection and response, which even works without internet, un...

See all answers

Ask a question

Earn 20 points

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Compared 9% of the time

SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks

Compared 6% of the time

CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

Cortex XSIAM vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

More Cortex XDR by Palo Alto Networks Competitors

CrowdStrike Falcon vs CylanceOPTICS

Compared 12% of the time

Cisco Secure Endpoint vs CylanceOPTICS

Compared 9% of the time

Rapid7 InsightIDR vs CylanceOPTICS

Compared 8% of the time

Microsoft Defender for Endpoint vs CylanceOPTICS

Compared 8% of the time

Kaspersky Endpoint Security for Business vs CylanceOPTICS

Compared 5% of the time

More CylanceOPTICS Competitors

Bitdefender Total Security vs HP Wolf Security

Compared 12% of the time

Microsoft Defender for Endpoint vs HP Wolf Security

Compared 12% of the time

Norton Small Business vs HP Wolf Security

Compared 9% of the time

Microsoft Defender for Business vs HP Wolf Security

Compared 6% of the time

McAfee Total Protection for Data Loss Prevention vs HP Wolf Security

Compared 5% of the time

More HP Wolf Security Competitors

Product Reports

Buyer's Guide

Cortex XDR by Palo Alto Networks

March 2026

Download Cortex XDR by Palo Alto Networks product report

Buyer's Guide

CylanceOPTICS

March 2026

Download CylanceOPTICS product report

Buyer's Guide

HP Wolf Security

March 2026

Download HP Wolf Security product report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

No data available

Bromium vSentry

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?

Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
Multi-layered Security: Combines various security measures for comprehensive protection.
Endpoint Protection: Safeguards against malware and exploits.
Behavioral Analysis: Monitors suspicious activity for early detection.
Automatic Threat Response: Automates responses to neutralize threats.

What benefits should users expect?

Ease of Use: Simplifies security management with intuitive design.
Resource Efficiency: Minimizes impact on system resources.
Integration Capabilities: Works well with existing security setups.
Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

Our cloud-native BlackBerry® Optics provide visibility, on-device threat detection and remediation across your organization. In milliseconds. And our EDR approach effectively and efficiently hunts threats while eliminating response latency. It’s the difference between a minor security event—and one that’s widespread and uncontrolled.

BlackBerry

HP Wolf Security is a comprehensive cybersecurity solution that bolsters your organization's cyber-resilience on multiple fronts. With its full-stack security approach, it ensures layered protection from hardware to the cloud, providing a robust defense against cyber threats. HP Wolf Security introduces endpoint isolation, a cutting-edge feature that effectively halts threats that may go unnoticed by Next-Generation Antivirus (NGAV) and Endpoint Detection and Response (EDR) systems. Moreover, it extends its security coverage to printers, equipping them with advanced detection and self-healing capabilities to further safeguard your digital ecosystem. This integrated solution streamlines IT and security risk management, resulting in fewer alerts and false positives, and reduces the time and effort required for endpoint incident analysis and remediation. Notably, HP Wolf Security prioritizes productivity, allowing you to manage risk without disrupting the user experience, enabling worry-free work from anywhere, and offering rapid IT disaster recovery at scale.

Sample Customers

CBI Health Group, University Honda, VakifBank

Cerdant, Washoe County School District

Valspar

Buyer's Guide

CylanceOPTICS vs. HP Wolf Security

March 2026

Free Report: CylanceOPTICS vs. HP Wolf Security

Find out what your peers are saying about CylanceOPTICS vs. HP Wolf Security and other solutions. Updated: March 2026.

DOWNLOAD NOW

885,376 professionals have used our research since 2012.

See our CylanceOPTICS vs. HP Wolf Security report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.