CylancePROTECT Room for Improvement
Following the acquisition by BlackBerry, there has been a noticeable slowdown in development and the introduction of new features. Additionally, their channel management has been lacking, with a notable disregard for small and medium-sized businesses, focusing primarily on large enterprises and very large MSPs.
View full review »I cannot control the agent. If the agent is installed on a machine, then it'll report back. If I have 15 machines on an agent, I cannot see that 15 machines unless I install the agent on each.
The solution is not stable right now. The performance isn't so good.
It's a hard product to maintain.
I have found support to be quite bad.
We want them to offer better pricing.
View full review »The product must make the interface a little more user-friendly. It has a little bit of a learning curve. The solution must subsidize the learning curve a little bit.
View full review »Buyer's Guide
CylancePROTECT
April 2024
Learn what your peers think about CylancePROTECT. Get advice and tips from experienced pros sharing their opinions. Updated: April 2024.
767,995 professionals have used our research since 2012.
MA
Mairajuddin Ahmed
Division Manager, Information Technology at Lonestar
The high price of the product is an area of concern where improvements are required. The product's price should be more competitive.
From my experience interacting with the primary or the central administrative console, it's quite complex. You would need a fair bit of technical experience to set it up, implement and maintain it. That would be one area for improvement.
It could be possible to make the UI for the admin dashboard more user-friendly or provide more explainer tooltips or more warnings before you change settings. The solution can do whatever you need, but you could annihilate your machine by changing the wrong setting, and you would have to start again.
Another quibble is that the endpoint visibility is a bit spartan. Because if a new policy is released from the admin console, you have to tell Cylance to check for a policy update, but when you do that, it does not tell you it has actually done that policy check, and there is no way of really knowing if it has actually updated. It would be nice to have a notification telling you whether or not the actions you have taken have actually been taken.
View full review »GP
Gordon Powell
OT Cyber Security Principal Consultant at Jacobs Engineering Group Inc.
It could have integration with industrial base HMIS or Human Machine Interfaces Solutions. This is the industrial environment where you have a control center for all the automation that's happening, whether it is oil, gas, or chemical manufacturing. They often have to set up a computer at the back and watch the other stuff to get alerts. In these autonomous or on-premises environments, they often don't have access to email readily. Integration with other industrial solutions, such as HMIS, will allow them to communicate and get an alert that something has been found. This way, they can react to it sooner than having somebody watch the screen and keep checking the screen. Rockwell has its own suite. Similarly, Honeywell has its own suite. There's also an independent HMI/historian solution provider out there called VTSCADA. We actually get asked if we can get it to show up on a screen, which is difficult. Getting those alerts to work within an industrial environment would be a huge plus.
View full review »KC
KenCameron
Managerial Agent at PD Centre
The solution’s user interface could be improved.
View full review »LM
Loic Maury
IT Manager at PBD
CylancePROTECT's dashboard could be more user-friendly.
View full review »AB
Andrew S. Baker (ASB)
Cybersecurity & IT Operations Professional (VirtualCxO) at BrainWave Consulting Company, LLC
The management console needs a little maturity in how it presents data and allows the administrator to drill down or search across systems.
View full review »EH
reviewer1120536
Solutions Development Manager at a manufacturing company with 10,001+ employees
I find the price for Blackberry Protect expensive, so that's an area for improvement.
SJ
reviewer1138518
Director of IT Operations at a manufacturing company with 1,001-5,000 employees
The OPTICS component could be made more user-friendly with respect to giving people more information.
There are some issues that we have around our configuration, so I think that more training with respect to setup and configuration would be helpful.
View full review »The solution’s technical support could be improved.
View full review »Reporting is an area with shortcomings in CylancePROTECT that needs to be improved. In general, the aggregation of reports and reporting can be improved.
When it comes to support, it takes some time for CylancePROTECT to get back to us and set up some things that are down based on the SLA, so I think it can be improved.
An area for improvement in CylancePROTECT is its pricing, as it's a bit costly.
View full review »If they can add more features on top of their Persona feature that would be ideal. It could also improve the UEBA feature of Cylance.
View full review »SM
Sean Muller
IT Security manager at a energy/utilities company with 201-500 employees
They could improve on the false positives, reporting and whitelisting features.
For future releases, it would be helpful to have an easy uninstall button. The reason being, unless you connect the system to the internet, which you may not want to do, Cylance cannot be uninstalled easily. They claim it's practically impossible. If you have access to the online admin panel, it's very easy to uninstall Cylance. There is no easy way to uninstall locally. I have read online there is a convoluted way with a series of reboots and safety reboots that you could possibly do it locally.
View full review »Work on the math model. We are catching a lot of false positives, which gets to be a pain at the start of a deployment. It is not hard to decipher and add a global safe list, so you do not have to touch or adjust Clients on all endpoints. After you get passed the initial scan, it is clear sailing and very easy to manage and maintain.
View full review »AB
reviewer2006379
IT Cyber Security Engineer at a legal firm with 201-500 employees
We have been dissatisfied with CylanceProtect and CylanceOPTICS and want to leave within the next several months. It just hasn't been an effective tool.
It was not effective. There were a lot of false positives, even when we use Adobe, and everybody uses Adobe, which is not a threat.
We are in the process of moving on to another solution.
View full review »DV
DeAndre Valentine
Senior Network Administrator at a financial services firm with 51-200 employees
Not having OPTICS doesn't allow us to do any history. We don't have OPTICS, but FortiEDR comes with things like OPTICS, which is nice because we are not able to see more.
OPTICS gives you things that FortiEDR has built in. For Cylance, there is an add-on to do the things that come with that solution.
It would be nice if Cylance didn't separate PROTECT and OPTICS and put them together and made them on the same price point as FortiEDR, and some other ones rather than having to pay extra for something that the others already have built-in, and seen to do better.
It often lets you waive something for the firm or for the whole company and then comes back and blocks the same thing because you have to do the certificate instead of the hash. You are finding yourself having to approve for the same program, the same application, the same file more than once and it's frustrating.
While the deployment of updates is easy, it would be good to have some more information about which version to use, because the versions that are available seem to be outdated.
When you go to the admin section, you will see that you will have the latest update from months ago and a month before that, and a month before that.
I have a hard time believing that there are no more updates in between when there are things that are out all the time. It just doesn't make you feel like you're getting covered or have the best protection, which you should have.
View full review »CylancePROTECT could be improved in its technical support and communication.
View full review »The AI of CylancePROTECT has room for improvement. I'm on a trial license of SentinelOne, and its AI is much better than what's on CylancePROTECT.
I want CylancePROTECT to have an automatic overruling feature in the future for specific situations. In my previous example, a colleague couldn't install Oracle VM VirtualBox because I didn't specify files and programs that CylancePROTECT should block. Sometimes, I want the solution to be less strict so that when a file or application comes from a well-known developer, CylancePROTECT should let it pass, regardless of what file it contains.
View full review »OB
Orlando Barbosa
Head of Systems at SKN Caribecafe Ltda
It would be very important to have any kind of utility in the computer for Cylance to install monitoring into it in a simpler way. A computer should be able to self-scan on command. It is not easy to do that just yet.
The company that sells us the licenses sometimes doesn't know how to do certain things. They should be offered more training or something, or maybe we could cover out channels ourselves and could have the knowledge of how to do everything ourselves without a third party needing to be involved.
View full review »AB
reviewer1406976
Vice President Operations at a construction company with 11-50 employees
I would like to see a little bit of additional reporting or insight as to what it is doing exactly. I do not think I need anything else included in the next release that I know of. Honestly, just improvement in the reporting would be good enough.
View full review »DD
Donald Dindial
Owner at Terra Controls
There are a lot of false positives and it takes up a lot of time. This is something that should be improved.
I would like to see them fix the alerting system so that the endpoint reporting is a bit more streamlined.
The vendor should be more widely advertising this product because not many people know that these types of solutions exist.
View full review »RC
reviewer967950
President at a security firm with 11-50 employees
The product needs to continue to offer better alerts. In particular, around false positives. It needs to reduce them from happening.
I can't speak to the solution lacking any features per se.
View full review »AZ
CoFoundef9b2
Co-Founder, CEO at a tech services company with 11-50 employees
The downside is that the information displayed is not enriched enough. There was not much information available, that we could see. It should provide more details about the events that they have detected. There should be more information available post-incident. Basically, the user is informed that they have caught a threat, stopped it, and that's it.
Users want to know what the threat was, the type of attack, how it got in, which IP address, did it go into lateral movement, etc. The kind of information that could be analyzed by IT experts to take forward and understand whether the attack is continuing, or not. They have some of this information but compared to other products, it's basic.
LS
reviewer1383249
IT Infrastructure Manager at a financial services firm with 51-200 employees
When it comes to the management of the application of agents, especially for us as an IT team the dashboard is much easier to manage in the McAfee solution.
We were looking to have a multi-factor authentication with the administration dashboard to log in, because it's cloud-based.
There is no integration with Google Authenticator and other solution providers.
We would like to see secure integration and multi-factor authentication to be able to access the administration dashboard.
View full review »SA
Sven Aurich
Wirtschaftsprüfer, CPA, Steuerberater at a financial services firm with 11-50 employees
Improvements could be made on the user interface of the console. Also, right now it's just an antivirus and there's no firewall or anything. So we have to use the Windows firewall. It's a good firewall. But I think other companies have integrated products.
The solution needs better dashboards that are easier to use. Also, a better user interface. Maybe even firewall integration of some kind. It would be helpful if you could see which threats have been detected, and have more information about what is going on.
What I'm missing is a backup. In Norton, there was a backup included. In Cylance there is no backup, or at least no backup for the relevant system, programs, or software parts.
View full review »It needs real analysis of quarantined files. The EDR product isn't showing much right now.
View full review »MH
reviewer1540974
Vice President Product and Strategy at a tech company with 201-500 employees
Having worked with SentinelOne, Cylance is good, however, it probably needs to add a feature similar to SentinelOne's rollback functionality. With this feature, if you get infected, with a click, you can go back to the pre-infection state. If Cylance could add this functionality to their offering as well, that would be ideal.
View full review »To be honest, I think the product is, overall, quite good. It's working with AI Technology and machine learning that is connected to the Cylance Infinity Cloud. It picked up malicious files that other vendors didn't. It's actually been great on its own. Cylance is also launching mobile protection in 2020. At the moment the Cylance agent supports Windows, Mac OS and Linux devices, but they do not have an app for Android and IOS yet.
View full review »HP
reviewer1176750
VP at a tech services company with 11-50 employees
The process of whitelisting a script that you want to be able to run can be a little bit difficult, or awkward. Some enhancements to this process would be an improvement.
View full review »BN
Software4704
Software Engineer at a tech services company with 1-10 employees
I would like to see a better UI in terms of sifting through more specific data and providing analytics. A little bit more would be nice.
View full review »TR
Thomas Reisel
IT Manager at TIGRA gmbh
Security is an issue because they don't get Powershell. They scan the usual software and they don't scan deeper. The security scripting needs improvement. It needs deeper security for scripting.
Also, more speed, less RAM, and less CPU.
View full review »AA
Akhlaq Ahmed
BlackBerry Cylance SME - Resident Engineer at a tech services company with 201-500 employees
I have already suggested features that need to be improved and Blackberry is already working on those improvements. For example, the interface and the Cylance Optics need to be improved a fair bit.
It's a good solution but some features just need to be updated.
View full review »KO
reviewer1465668
Senior NOC Security Engineer at a wholesaler/distributor with 51-200 employees
I'd like them to do software distribution too, but they said that that's architecturally not at the product line. I'd like to see where they can push to avoid using another product to push the agents.
View full review »The user interface could be improved, it's very outdated. The solution could also do with more help actions and explanations such as what has been identified, things like that.
View full review »SD
reviewer1457430
Coordinator of special projects at a manufacturing company with 201-500 employees
The implementation was complicated requiring some things that felt unsafe. After that, it was easy
MP
reviewer1300632
Technology Specialist at a tech vendor with 11-50 employees
It should have better support for Windows and Mac.
View full review »Buyer's Guide
CylancePROTECT
April 2024
Learn what your peers think about CylancePROTECT. Get advice and tips from experienced pros sharing their opinions. Updated: April 2024.
767,995 professionals have used our research since 2012.