2017-04-15T03:22:00Z
it_user647277 - PeerSpot reviewer
Chief Operations Officer with 1-10 employees
  • 20
  • 325

Can Cylance be used with Symantec or Kaspersky endpoint solutions without conflict?

Traditionally, having more than one anti-virus / anti-malware product, particularly with built-in firewall can provide conflicts that render part of one or both of the products to be ineffective. However, since Cylance appears to work very differently, I am hopeful that Cylance can be used alongside other high-level products. 

Can Cylance be used with Symantec or Kaspersky endpoint solutions without conflict?

18
PeerSpot user
18 Answers
it_user370587 - PeerSpot reviewer
Product Marketing Engineer at blue coat
Real User
2017-05-02T19:30:30Z
May 2, 2017

Hi-

After some initial testing, it appears Symantec Endpoint Protection (SEP) can run alongside Cylance without issue. The environment was a Windows 7 x64.

Search for a product comparison in EPP (Endpoint Protection for Business)
it_user201966 - PeerSpot reviewer
Professional Services Consultant at a tech services company with 51-200 employees
Consultant
2017-04-28T16:16:26Z
Apr 28, 2017

There are several ideas that you need to understand before running solutions of the same category.

1 - Traditional Endpoint Security - previously endpoint solutions provided by known vendors (Symantec, McAfee, Kaspersky, Sophos, etc) were know to provide signature based scanning only. That is not the case anymore.

2 - Next-Generation Endpoint Security - Like every technology trend new companies started to innovate on endpoint security by providing machine learning, exploit mitigation such as Cylance, CrowdStrike etc.

3 - Other Vendors have picked up - For example, in case of Symantec. Symantec's Endpoint Protection provides threat protection and control features - IPS, Firewall, File Based Scanning, Behavior Based Scanning, Reputation Based Scanning, Application Control, Device Control and Host-Integrity. Symantec includes all the features that Cylance provides. They DO NOT only work on traditional signatures, machine learning and other features such as recognition of packed malware (unpacker) is included along with Exploit Mitigation.

So what options are there:

1 - Run a solution which provides a technology set. Example, since Symantec provides all the features of Cylance + more, run Symantec only.

2 - Run two solutions with different technology sets.

Endpoint security has grown over the last 3-4 years and now the next phase is of Endpoint Detection and Response (EDR) with Advanced Threat Protection. Would recommend to go with a security vendor which has an enhancement roadmap and with a large scale Threat Intelligence Network.

New endpoint security trends such as machine learning or big data security is only great with the data set is rich with information. That is only possible when security vendors have vast data collected, normalized and made use of it inside their products.

Hope this helps

MM
System Administrator at Suez Canal Insurance
Real User
Top 5
2017-04-26T09:41:24Z
Apr 26, 2017

i think if you used the cloud based admin panel. i think no problem there
and u can used it with any av product

it_user403914 - PeerSpot reviewer
Director of Corporate Communications at Evident.io
Real User
2017-04-20T21:41:57Z
Apr 20, 2017

Cylance is designed from the start to be able to work alongside other AV providers. Because of our different approach in technology, we don't interfere with their tech, and they wont interfere with ours.

Vendor
2017-04-20T09:31:20Z
Apr 20, 2017

I advise you to check on Sentinel One like Erez Shtang did. It's fast, lightweight, easy to manage and has a very good support team. All of the ransomare samples I tested were catched or killed according to policy. At the moment, for me, Sentinel One is the most complete endpoint solution that covers prevention, detection, remediation and forensics. Sharing the threat intelligence with your agents is cool. Same applies the possibility to auto disconnect and endpoint to prevent further troubles from an infection. I had no issues with Sentinel One combined with, in my case, bitdefender.

SN
Specialist at XYZ
Consultant
2017-04-20T07:17:25Z
Apr 20, 2017

It should work. I have tested with TrendMicro Deep security not with Symantec\Kaspersky.

Cylance doesn't work like traditional Antivirus Software.

Learn what your peers think about Sophos Intercept X. Get advice and tips from experienced pros sharing their opinions. Updated: February 2023.
686,748 professionals have used our research since 2012.
JS
Cybersecurity Architecture and Technology Lead at Appxone
Consultant
2017-04-20T05:55:22Z
Apr 20, 2017

No, conflict should be occur if you will use both Cyclance and Kaspersky / Symantec endpoint Protection.

it_user216876 - PeerSpot reviewer
CTO Cyber Security - BDO Israel at a financial services firm with 501-1,000 employees
Vendor
2017-04-20T05:00:53Z
Apr 20, 2017

I did not test cylance with those AV products

But I did test SentinelOne with Symantec and they work very nice together

it_user544632 - PeerSpot reviewer
China IT Project Manager at a energy/utilities company with 10,001+ employees
Real User
2017-04-20T01:38:50Z
Apr 20, 2017

I think it's probobally work . We use it with other famous AV .

it_user417645 - PeerSpot reviewer
VP, Information Systems at a financial services firm with 51-200 employees
Vendor
2017-04-19T22:10:00Z
Apr 19, 2017

Yes Cylance can be used alongside other products.

Vendor
2017-04-19T20:43:09Z
Apr 19, 2017

Hi

Sorry, I don't know.
But I know that Cylance and AVG Free Edition can co-exist.

AS
Systems-Engineer at Infosys
Real User
Leaderboard
2017-04-19T16:37:58Z
Apr 19, 2017

As I know cylance can be used parallely with any other AV.
In one of the environments I know for detection mechanism Cylance is being used and another AV is available for prevention mechanism.

it_user469770 - PeerSpot reviewer
Executive Sales and Security Project at a tech services company with 51-200 employees
Consultant
2017-04-19T16:32:37Z
Apr 19, 2017

Yes.

Cylance is the only antivirus that allows you to work in parallel per use a totally innovative concept and different from traditional Endpoint platforms.
Here in Brazil we have several clients what do they do a proof of concept like this in this way.
Look this video --> https://vimeo.com/212662381

By Manoel Ramos - CEO DropReal Brazil

it_user121395 - PeerSpot reviewer
ITSM & AntiFraud Consultant with 51-200 employees
Consultant
2017-04-19T16:14:39Z
Apr 19, 2017

Hi,
Don't have experience with cylance.
RSA ecat and Palo Alto Traps can run with symantec. One is behavior based,
other is signature.

it_user451953 - PeerSpot reviewer
Information Security Manager at BMCC/CUNY
Vendor
2017-04-19T16:06:34Z
Apr 19, 2017

The quick answer is yes. The gotcha is that processes scanning memory can interfere with each other, which could cause slowdowns and potentially hang one or the other product. We ran Cylance with McAfee and found that this never happened as far as we could tell, but Cylance recommends that to be safe, it is better to turn off memory scanning in one of the products to avoid the possibility of conflict. There is no conflict with file scanning processes. Depending on which product’s processes are loading first in the system stack regarding file execution, one will do its thing and then the other will – if malware is found, it will be quarantined or cleaned, dealt with before the other product gets a crack at it.

it_user428178 - PeerSpot reviewer
Technical Account Manager at a security firm with 51-200 employees
Vendor
2017-04-19T15:40:23Z
Apr 19, 2017

Cylance can indeed be installed alongside Symantec and Kaspersky. If you would like to test some free installations I can arrange for you to install some licences on trial enabling you to see the compatibility in action. Cylance should not impact on your device in any noticeable way due to its light weight CPU/RAM requirements and the fact it does not use an internet connection. Files are scanned pre-execution and Cylance would only use a small amount of CPU to do so. Many users in my experience, will install Cylance as their anti-malware, with other End Point Encryption, VPN, Compliancy and various other solutions running side by side.

it_user649563 - PeerSpot reviewer
Lead Systems Administrator at a energy/utilities company with 1,001-5,000 employees
Vendor
2017-04-19T15:40:16Z
Apr 19, 2017

Yes, it can be . There are some instances in which Cylance will quarantine something that Symantec has moved to its quarantine but no issues come of it.

DS
Owner at David Strom Inc.
2017-04-19T15:36:54Z
Apr 19, 2017

Short answer is no. The products will step on each other.

Related Questions
Avigayil Henderson - PeerSpot reviewer
Content Development Manager at PeerSpot
Mar 15, 2023
Hello community,  Please share with the community what your thoughts are based on your personal experience. Thank you.
2 out of 3 answers
Navcharan Singh - PeerSpot reviewer
Senior Seo Executive at Ace Cloud Hosting
Feb 28, 2023
Yes, there are endpoint protection platforms that offer threat-hunting and Security Operation Center (SOC) services. Endpoint protection is an essential security measure to protect IT systems from malware and other malicious actors. This type of service typically includes antivirus software, application control tools, vulnerability scanning tools, patch management solutions, web browser security measures, firewall technologies and more. With the use of these technologies combined with threat-hunting capabilities, SOC services can detect advanced threats sooner than before. In addition to utilizing traditional signature-based detection methods for known malware signatures in order to quickly identify possible threats on endpoints and networks, effective endpoint protection platforms are now leveraging AI/machine learning technology in order to detect unknown or zero-day threats as well as provide behavioral analysis capabilities which allow for a more forensic investigation into system activity. Having access to this level of threat intelligence can be invaluable when it comes to quickly assessing the severity of a potential incident or network compromise. Threat hunting is also an important part of any comprehensive SOC service offering today as it allows security teams proactively search for indicators of compromise (IoCs) within a localized environment such as a single device or specific user account while monitoring activities across multiple data sources including firewalls logs and endpoint analytics. With proactive approaches like this over time organizations can create detailed profiles which help them better understand their threat profile in general so they can develop targeted mitigation strategies with increased precision resulting in fewer false positives and quicker response times overall when suspicious events occur. By combining advanced detection algorithms with both automated as well manual investigations through experienced cyber investigators working together companies have much better chances at success when it comes to defeating sophisticated adversaries who may have shown up unexpectedly on their networks posing potentially serious risks along the way without being detected earlier on by traditional antivirus software products alone.
LW
Content Editor at PeerSpot
Mar 14, 2023
Endpoint protection platforms (EPPs) have evolved beyond traditional antivirus software to offer advanced threat detection and response capabilities. Many EPPs also offer threat-hunting or SOC services to provide organizations with real-time visibility into security incidents and remediation recommendations. Among the EPP providers that offer these services are the following, and, obviously, this is just a sample but, hopefully, also a good start: CrowdStrike Falcon Complete Kaspersky Endpoint Security has an Endpoint Detection and Response McAfee (Trellix) Endpoint Security Managed Detection and Response (MDR) Palo Alto Networks Unit 42 MDR Service for Cortex XDR SentinelOneVigilance Respond Sophos MDR Symantec (Broadcom) Endpoint Protection Managed Endpoint Detection and Response Trend Micro Apex One Managed XDR VMware Carbon Black MRDR Sophos MDR is interesting in that it leverages other providers' cybersecurity technologies including telemetry from AWS, Check Point, CrowdStrike, Darktrace, Fortinet, PAN, and others.
Avigayil Henderson - PeerSpot reviewer
Content Development Manager at PeerSpot
Mar 17, 2023
Hello peers,  Please share your input and help out fellow peers. Thank you.
2 out of 3 answers
Disha Shah - PeerSpot reviewer
Technical Associate at HTH Global Network
Mar 3, 2023
Cortex XDR from Paloalto have solution for all three and talking about legacy infrastructure can you name some of them??
LW
Content Editor at PeerSpot
Mar 13, 2023
There are several endpoint protection solutions available that can provide protection for endpoints running on Linux, Windows, and MacOS. Among them are Symantec (Broadcom) Endpoint Protection, Trend Micro Apex One, McAfee (Trellix) Endpoint Security, Kaspersky Endpoint Security for Business, ESET Endpoint Security, Palo Alto Networks Cortex XDR and, perhaps surprisingly (but then again, not) Microsoft Defender for Endpoint. (This is not an exhaustive list). However, the devil is in the details regarding which versions of an OS and what kind of hardware requirements a given solution supports. You need to closely check the specifics of the range of devices you have with what a given vendor covers. It's also important to note that for agent-based solutions, the minimum processor requirements may allow you to install the product, but if you're just getting by in that regard, there could be issues with computer performance. Symantec supports a fairly broad range of Linux and Windows Embedded versions, but does not support application control on Mac, Windows Servers, Windows Embedded, Linux, or mobile devices. Trend Micro Apex One's agents support support from macOS High Sierra 10.13 to macOS Monterey 12, on Apple M1, Apple M2, or Intel® Core processors. To protect Linux file, web, and application servers with Trend Micro, you'll need its ServerProtect product. McAfee handles Windows 8.1, 10, and 11, and offers limited customer service if you try running it on Windows 8.0 and 7.x. For macOS it goes as far back as Mac OS X 10.10 and through to macOS 12 (Monterey). For Linux it offers limited coverage: Ubuntu 16.04, Ubuntu 18.04, and Ubuntu 20.4. With Kaspersky Endpoint Security for Business you get Windows, of course, and pretty extensive Linux coverage, with nine 32-bit OSs covered, and literally dozens of 64-bit Linux flavors. Mac coverage is included in the Advanced and Select versions of Kaspersky ESB (and you also get Android and iOS). ESET Endpoint Security will work with Windows 7 - 11 (although some features are not supported on ARM processors) macOS 10.12 and up, and a couple of 64-bit Linux systems: Ubuntu Desktop 18.04 LTS and RHEL Desktop 7. PAN Cortex XDR supports Windows 8 - 11 as well as macOS as far back as 10.13 with its 7.5-CE release. Subsequent 7.x releases cover later macOS versions (with 7.7.3 and later handling macOS 13.x). Cortex XDR only supports 64-bit Linux and you have to install a supported kernel module version, but it does cover a good selection of the main Linux offerings including CentOS, Debian, Oracle, RHEL, openSUSE, and Ubuntu. Microsoft Defender for Endpoint has coverage for macOS 11 (Big Sur), 12 (Monterey), and 13 (Ventura), although Big Sur requires some additional configuration. It also protects more recent versions of RHEL, CentOS, Ubuntu, Debian, and Oracle Linux. Android (6.0 and higher) and iOS (11.0 and higher) are also available. As for legacy systems, it's best to explicitly ask the vendor if they cover the particular hardware/OSs you have. For example, older versions of Symantec Endpoint Protection 14 cover Windows as far back as Vista, and Windows Server as far back as Windows Server 2008 (RTM, SP1, SP2).
Related Articles
Ariel Lindenfeld - PeerSpot reviewer
Director of Community at PeerSpot
Aug 21, 2022
We’re launching an annual User’s Choice Award to showcase the most popular B2B enterprise technology products and we want your vote! If there’s a technology solution that’s really impressed you, here’s an opportunity to recognize that. It’s easy: go to the PeerSpot voting site, complete the brief voter registration form, review the list of nominees and vote. Get your colleagues to vote, too! ...
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at a tech services company with 201-500 employees
Aug 9, 2022
If you’re weighing your options for endpoint security solutions, there are many options out there. However, solutions vary greatly in terms of how effectively they can protect your network. I want to help you make the best decision possible, so here are some questions to ask before buying an endpoint security solution, and why they are important. 1) Does the solution employ Foundational Tech...
EB
Director of Community at PeerSpot (formerly IT Central Station)
Feb 4, 2022
Hi dear community members, This is our latest community digest. It helps you catch up on recent contributions by community members. Comment below with your feedback and suggestions! Trending What are the Top 5 cybersecurity trends in 2022? What are the main benefits of modern IT Asset Discovery tools? Tip Post an educational article from your Home feed and receive 20 point...
See 1 comment
reviewer1577907 - PeerSpot reviewer
Manager at PeerSpot
Feb 4, 2022
Thank you, these community Spotlights are very handy!
EB
Director of Community at PeerSpot (formerly IT Central Station)
Nov 19, 2021
Hi community members, Spotlight #2 is our fresh bi-weekly community digest for you. It covers cybersecurity, IT and DevOps topics. Check it out and comment below with your feedback! Trending What are the pros and cons of internal SOC vs SOC-as-a-Service? Join The Moderator Team at IT Central Station (soon to be PeerSpot)! Questions Share your experience with other peers by ans...
Related Articles
Ariel Lindenfeld - PeerSpot reviewer
Director of Community at PeerSpot
Aug 21, 2022
PeerSpot User's Choice Award 2022
We’re launching an annual User’s Choice Award to showcase the most popular B2B enterprise technol...
Shibu Babuchandran - PeerSpot reviewer
Regional Manager/ Service Delivery Manager at a tech services company with 201-500 employees
Aug 9, 2022
8 Questions to Ask While Selecting an Endpoint Security Solution for Your Business
If you’re weighing your options for endpoint security solutions, there are many options out there...
Download Free Report
Download our free Sophos Intercept X Report and get advice and tips from experienced pros sharing their opinions. Updated: February 2023.
DOWNLOAD NOW
686,748 professionals have used our research since 2012.