CylanceOPTICS Reviews

Name: CylanceOPTICS
Brand: BlackBerry
Rating: 3.7 (11 reviews)

3.7 out of 5

11 reviews
80% willing to recommend

What is CylanceOPTICS?

Our cloud-native BlackBerry® Optics provide visibility, on-device threat detection and remediation across your organization. In milliseconds. And our EDR approach effectively and efficiently hunts threats while eliminating response latency. It’s the difference between a minor security event—and one that’s widespread and uncontrolled.

Get the CylanceOPTICS Buyer's Guide and find out what your peers are saying about CylanceOPTICS, CrowdStrike Falcon, Microsoft Defender for Endpoint and more!

CylanceOPTICS is the #28 ranked solution in EDR tools. PeerSpot users give CylanceOPTICS an average rating of 7.4 out of 10. CylanceOPTICS is most commonly compared to CrowdStrike Falcon: CylanceOPTICS vs CrowdStrike Falcon. CylanceOPTICS is popular among the large enterprise segment, accounting for 66% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a manufacturing company, accounting for 21% of all views.

Helped 849,686 peers since 2012

Featured CylanceOPTICS reviews

Leonard Altamura

Security Architect at WaveLength Ind

I'm getting more familiar with SolarWinds, but it's more of a monitoring tool. I also use SentinelOne. CylanceOPTICS and SentinelOne Singularity are both Endpoint Detection and Response (EDR) solutions, but they differ in their technical approaches. CylanceOPTICS is similar to SentinelOne's singularity, but it's a different pro. It's almost the same thing, but you can list artifacts and look at other correlation points within the actual, like AV. It communicates within all the agents; they communicate together to make this, like, big picture of, like, timelines and extrapolation of, like, anti-malware information. So, you could find all the threats in your environment. But it's very similar to SentinelOne. It's using a different methodology, like deep machine learning for antivirus. And it's a component of the protection, but it's more geared towards, like, SIEM, right, where it collects information. And then you can upload packages where, let's say, you get a solution for a virus. That's moving laterally. You can upload the solution to a product; let's say that the product, for whatever reason, lost capability and can't communicate on the network, but the virus can. Then, you can isolate the product and upload the packages. And then, with the packages, it's not upgrading the software. It's, like, the solution to the AV. Then, once you inoculate the AV using CylanceOPTICS, you can move from one machine that has been isolated to another that has been isolated. You get me in the environment. So CylanceOPTICS allows you to do something like that.

Read full review

KajeevanRajanayagam

Cyber Security Manager at a healthcare company with 10,001+ employees

We use CylanceOPTICS primarily to understand what happened after any of the alerts. You can use the solution to query certain things. If you're looking for a certain hash or file name, we can run searches on it. I would say it's not the best product. We're currently using CrowdStrike EDR, which is far superior to what CylanceOPTICS offers. What I liked and didn't like about it is that everything runs in real time. If you're searching for something, CylanceOPTICS pulls only on online devices because it doesn't have a database. In a way, it might work to some benefit, but a lot of times, we might not have the full picture.

Read full review

reviewer1525191

Solutions Architect at a tech services company with 51-200 employees

One minor issue that somebody mentioned was that they didn't like their management console. I've probably got dozens of people using the product and that was the only negative feedback I've heard. I would try to couch that in terms of saying that that's not the majority that's saying that. That's a small number of customers or even it's really in my case, a single customer kind of thing. However, I'd just like to flag it as a possible issue for some. Getting into more user-behavior analytics might be interesting. It could, for example, say, "Well gee, what does Steve do on a day-to-day basis?" If I had analytics of that nature, I could see when users log in, check mail, and if they start doing suspicious things, I could get a flag that alerts me. That whole space of behavioral analytics is a hot topic in security and has been for the last half a dozen years. If there are features within the product for behavior analytics, that certainly is interesting.

Read full review

CylanceOPTICS mindshare

As of May 2025, the mindshare of CylanceOPTICS in the Endpoint Detection and Response (EDR) category stands at 0.2%, up from 0.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

PeerResearch reports based on CylanceOPTICS reviews

Type	Title	Date
Category	Endpoint Detection and Response (EDR)	Apr 30, 2025	Download
Product	Reviews, tips, and advice from real users	Apr 30, 2025	Download
Comparison	CylanceOPTICS vs CrowdStrike Falcon	Apr 30, 2025	Download
Comparison	CylanceOPTICS vs SentinelOne Singularity Complete	Apr 30, 2025	Download
Comparison	CylanceOPTICS vs Microsoft Defender for Endpoint	Apr 30, 2025	Download

Title	Rating	Mindshare	Recommending
CrowdStrike Falcon	4.3	16.0%	96%	126 interviews Add to research
Microsoft Defender for Endpoint	4.1	10.5%	94%	194 interviews Add to research

Valuable Features

CylanceOPTICS excels in responding to zero-day and unknown threats, using advanced AI and ML models instead of signature-based protection. Features include sandboxing, behavior analytics, auto-containment, and script control. It detects anomalies and blocks malicious behavior, ensuring endpoint protection. Its stability, ease of use, high efficacy, and industry trust make it reliable. It assists in investigating threats and querying alerts in real time, albeit only on online devices since it lacks a database.

"You can use the solution to query certain things."
"I would rate the stability a nine out of ten. I would give it a close ten as possible because, like SentinelOne, I've seen incompatibility. Whereas Cylance, I've seen none."
"CylanceOPTICS is easy to use."

Room for Improvement

CylanceOPTICS needs more automation for threat handling, advanced machine learning, improved detection, and faster responses. Users experience too many false positives, find it expensive for SMEs, and encounter scalability limitations. The alerting system and reporting require enhancement. Behavioral analytics and more granular control in timeline-building are desired. Initial setup and technical support are slow. Users want contextual analysis to be clearer. Devices need to be online for searches, causing inconvenience. Better advertisement is also needed.

"It takes more time to investigate or dig up and understand what's going on."
"CylanceOPTICS could benefit from more granular control in the timeline-building process. Ideally, users would be able to drill deeper into the analysis rather than have the machine dictate the direction."
"The product's technical support is slow."

ROI

CylanceOPTICS significantly improved efficiency and reduced downtime through proactive threat detection. Users experienced a noticeable decrease in security incidents, leading to cost savings in IT expenses and resource allocation. Enhanced visibility into endpoint activity allowed for quicker incident response, contributing to an overall better security posture. The tool's automation capabilities also minimized manual intervention, saving time and boosting productivity. Consequently, users found the investment in CylanceOPTICS worthwhile due to enhanced security and operational efficiency.

Pricing

CylanceOPTICS offers a transparent pricing structure with no setup costs, simplifying the initial deployment process for users. Pricing methods typically involve subscription-based models, accommodating per-endpoint or per-user licensing options. The pricing range is flexible, catering to businesses of varying sizes and security needs, providing scalable endpoint detection and response solutions.

"CylanceOPTICS is probably priced equal to other EDRs in the market."
"The pricing for CylanceOPTICS is very good; I would rate it around a nine on a scale of one to ten, with ten being the lowest. It's one of the most affordable options I've seen."
"I would rate the pricing a three out of five."

Popular Use Cases

CylanceOPTICS is primarily used for intelligent intrusion detection and response, focusing on cybersecurity for financial and healthcare industries. Users deploy it for EDR tasks to protect against ransomware, detect malicious URLs and processes, and quarantine malware. Its machine learning capabilities allow for anomaly detection and various mitigation actions such as blocking or sandboxing communications. Unlike signature-based solutions, users appreciate its lightweight nature and ability to classify AV detection severities.

Service and Support

CylanceOPTICS customer service has a generally positive reputation for technical support. Clients appreciate the knowledge and responsiveness of the support team, especially at higher levels, though some find the tier-one support lacking. Support personnel are found to be proactive, scheduling meetings as needed. Some users note difficulties with escalating tickets beyond level one, while others find level-one support insufficient compared to their own team’s knowledge.

Deployment

Initial setup had mixed feedback in terms of difficulty. Most found it straightforward but mentioned nuances like needing tuning for false positives or using tools like Goverlan for remote deployment. Setup times varied from an hour to two days, depending on the scale. Professional services often handled deployments. Some faced complexity when integrating with log management systems or deploying separate agents for CylancePROTECT and CylanceOPTICS. Maintenance was typically manageable with minimal staffing.

Scalability

Organizations find CylanceOPTICS scalable for adding licenses and increasing usage. It's believed to support large customer needs, yet some think it struggles with scalability in larger enterprises. Some users report dissatisfaction with its threat identification capabilities. The scalability ratings given range from ten out of ten to nine out of ten, with users planning to expand its use to more remote devices. Several indicate capacity enhancement for virtual machines might be required.

Stability

CylanceOPTICS is highly stable, with users reporting no complaints or issues. It outperforms McAfee by proactively identifying security flaws. Users find it reliable without bugs or crashes. Stability ratings vary between nine and ten out of ten. Compatibility issues arise with SentinelOne, but it integrates well with other security software like Kaspersky and Bitdefender.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our CylanceOPTICS Buyer's Guide for additional reliable information.