Try our new research platform with insights from 80,000+ expert users

CylancePROTECT vs Intercept X Endpoint (Sophos) comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 20, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BlackBerry Cylance Cybersec...
Ranking in Endpoint Protection Platform (EPP)
29th
Average Rating
8.0
Reviews Sentiment
4.6
Number of Reviews
44
Ranking in other categories
No ranking in other categories
Intercept X Endpoint
Ranking in Endpoint Protection Platform (EPP)
10th
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
106
Ranking in other categories
Endpoint Detection and Response (EDR) (11th), ZTNA (8th), Managed Detection and Response (MDR) (7th), Extended Detection and Response (XDR) (11th), Ransomware Protection (3rd)
 

Mindshare comparison

As of July 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BlackBerry Cylance Cybersecurity is 1.1%, down from 1.5% compared to the previous year. The mindshare of Intercept X Endpoint is 1.6%, down from 3.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

Sooraj Makkancherrry - PeerSpot reviewer
Doesn't have daily updates, which is important for healthcare IT
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.
Suwandhi Suraweera - PeerSpot reviewer
Offers advanced filtering features and benefits from improved licensing and performance
There is a licensing issue with Intercept X Endpoint. Their licenses are user-based. Most of our customers use per device licenses, and they need per device licenses because they use one PC for multiple accounts. This creates a problem. There was one customer who complained about the slowness of PCs using Intercept X Endpoint. They use minor performance PCs, which causes their PCs to become slow.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"One of the best features of the solution is that it's easy to deploy."
"We are quite security-focused. Blackberry Protect as an endpoint solution for our service really delivers what we are expecting."
"We chose the solution because it doesn't have daily updates, which is important for us in healthcare IT, where network usage and connectivity to hospitals matter."
"The most valuable features of CylancePROTECT are its powerful machine-learning capabilities and predictive intelligence."
"It handles situations that the other threat management tools wouldn't find. It has worked well covering the weaker sides of the other products that we're integrating."
"It does a good job of protecting us."
"It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessary actions."
"It secures different entry points into the network."
"It is stable and has a good price. I find it very good."
"This is really good because it's applicable to zero-day threats."
"There are additional security features in Sophos Intercept X as well as proxy rules and settings that help us in minimizing the sites that our agents can go to, even after their work hours."
"I find the security heartbeat feature with synchronized security very useful. It's a very nice feature that allows you to basically switch off an endpoint. When an endpoint has got a virus or something like that, or it's infected or compromised, you can isolate it from the network, but only if you've got an XG Firewall as well. It also provides ease of use. It is the only antivirus that can recognize 25 out of the 36 ransomware and virus techniques that have been often used in terms of the behavior base using heuristics. It's beautiful, utterly amazing. No other antivirus can do that."
"The EDR (Enhanced Data Detection and Response) and the DLP (Data Loss Prevention) components are valuable assets."
"The most valuable feature is the supervisory side of it where we can watch the throughputs, and even the loading of the device, to see how much traffic is happening."
"The key factor that attracted me to Sophos Intercept X was the multi-platform. I have multiple clients that have mixed environments of Mac and Windows. I am able to deliver a standard solution, regardless of the platform."
"What I have found the most valuable about Sophos Intercept X is the ease of use with management administration and the solution's ability to stop exploits and ransomware."
 

Cons

"I would like to see a better UI in terms of sifting through more specific data and providing analytics. A little bit more would be nice."
"It could have integration with industrial base HMIS or Human Machine Interfaces Solutions. This is the industrial environment where you have a control center for all the automation that's happening, whether it is oil, gas, or chemical manufacturing. They often have to set up a computer at the back and watch the other stuff to get alerts. In these autonomous or on-premises environments, they often don't have access to email readily. Integration with other industrial solutions, such as HMIS, will allow them to communicate and get an alert that something has been found. This way, they can react to it sooner than having somebody watch the screen and keep checking the screen. Rockwell has its own suite. Similarly, Honeywell has its own suite. There's also an independent HMI/historian solution provider out there called VTSCADA. We actually get asked if we can get it to show up on a screen, which is difficult. Getting those alerts to work within an industrial environment would be a huge plus."
"If they can add more features on top of their Persona feature that would be ideal."
"It is hard to manage."
"The AI of CylancePROTECT has room for improvement. I'm on a trial license of SentinelOne, and its AI is much better than what's on CylancePROTECT."
"It should provide more details about the events that they have detected."
"I would like to see them fix the alerting system so that the endpoint reporting is a bit more streamlined."
"The initial deployment was quite complicated."
"Intercept X could enhance its support services, particularly in terms of response time and resource allocation."
"We are considering switching from this solution as a result of the closer integration needed between the firewall systems and the EDR."
"Intercept X needs more reporting and device management features, so I can get messages from PCs that let me know if I need to do something with them."
"I would like to have a built-in firewall, rather than having to integrate one."
"The after sales service and support could be improved."
"If Sophos Intercept allows users to restrict website access based on specific needs, such as streaming new videos for business purposes, we would prefer to use that."
"The security is good but the feature set is limited."
"Better protection in the endpoint, server, and mobile is needed."
 

Pricing and Cost Advice

"The solution provides me with competitive pricing."
"I think that the price we are paying is good for what it is."
"We would just add more if there are new users, but right now you just need one license for per user."
"It is expensive, but not unreasonable."
"This cost of the license is approximately $5 USD monthly per user."
"We went through a third party initially to do the renewal, but we won't be renewing, we will move on to something else."
"CylancePROTECT is an affordable solution."
"We pay our license on a yearly basis and have just renewed for two years."
"Price-wise, it is good. Currently, we have a three-year plan."
"The product is moderately priced."
"The solution’s pricing is high."
"The pricing is quite expensive compared to the rest. I would rate the pricing a four out of ten; one is expensive, and ten is cheap."
"The price is pretty good."
"Licensing costs are not expensive."
"I am not sure about the cost. I would guess it to be between $50 to $60 per license. This would be the cost of the overall subscription. There is no additional fee."
"When you start going to the EDR technologies and the MTR, it is a little bit expensive. It's a very good technology, and obviously, you're going to pay for it, but the pricing could do a little bit of work."
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
860,825 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Manufacturing Company
12%
Government
7%
Financial Services Firm
6%
Computer Software Company
18%
Manufacturing Company
7%
Financial Services Firm
6%
Comms Service Provider
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Blackberry Protect?
It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessary actions.
What is your experience regarding pricing and costs for Blackberry Protect?
The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.
What needs improvement with Blackberry Protect?
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immedi...
How does Crodwstrike Falcon compare with Sophos Intercept X?
I like that Crowdstrike Falcon allows me to easily correlate data between my firewalls. Its detection and machine learning are very valuable features. Crowdstrike Falcon also successfully prevents ...
What is your experience regarding pricing and costs for Sophos Intercept X?
I would describe it as economical, but not much cheaper than other solutions.
 

Also Known As

Blackberry Protect
Sophos Intercept X
 

Overview

 

Sample Customers

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit
Flexible Systems
Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Intercept X Endpoint and other solutions. Updated: June 2025.
860,825 professionals have used our research since 2012.