Cylance, a Blackberry company since the early 2019 acquisition, developed their flagship business antivirus and endpoint protection software in CylancePROTECT, featured in business and home editions boasting artificial intelligence guided protection. BlackBerry Protect is a post-acquisition evolution of CylanceProtect.
N/A
Microsoft System Center Endpoint Protection
Score 7.5 out of 10
N/A
Microsoft System Center Endpoint Protection is a malware, spyware, antivirus and endpoint protection application available formerly with System Center Configuration Manager (SCCM), which later became Microsoft Endpoint Manager. It is a legacy product, with older versions reaching end of support, and is not available as a standalone product.
N/A
Pricing
BlackBerry Protect (CylancePROTECT)
Microsoft System Center Endpoint Protection
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
BlackBerry Protect (CylancePROTECT)
Microsoft System Center Endpoint Protection
Free Trial
No
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
BlackBerry Protect (CylancePROTECT)
Microsoft System Center Endpoint Protection
Features
BlackBerry Protect (CylancePROTECT)
Microsoft System Center Endpoint Protection
Endpoint Security
Comparison of Endpoint Security features of Product A and Product B
If I had to recommend an endpoint AV solution, [BlackBerry Protect (CylancePROTECT)] would be on the list...in fact at the top of the current list. It is a cost effective solution. When we did the bakeoff in our selection we built 3 generic W10 PCs. We located a Malware repository on the internet and downloaded a package of 100. The first solution stopped 80% from installing, the second stopped 100%, [BlackBerry (CylancePROTECT)] would not let the package download! Winner winner chicken dinner :)
It is well suited in environments that want a simple AV product/solution that, for the most part, can be easily deployed to client endpoints. It is also good for environments that want something that is easy to use by end-users, and also doesn't use a whole lot of system resources. It is less suited for environments that want an AV solution that is more robust feature-wise, or has more configurable options for the end-users. It is also less suited for those organizations that want an AV product to have the highest detection rate in the industry.
Cylance uses AI Math-Model algorithms/machine-learning solutions, compared to other solutions which use signature-based solutions.
The Cylance client is very light-weight and is not as resource hungry.
The blocking capability is completely customizable through policies. Macro blocking, script blocking, and device blocking (USB, CDROM, iPhone, Android, etc.) can all be customized per organization needs.
Management interface is easy to use. The dashboard gives administrators a quick glance at threat events, threat protection, and device protection. Reports give you quick glances at infections, stale versions, and computers that have been offline for a period of time. Updates are easy to roll out in a tiered fashion to properly test.
Customer support is great! You can open up a ticket within the management portal and get help within a few hours. Most of the support is over email unless it is complicated, then they will do a remote session.
It would be great if there was a way for an administrator to make a file as safe from the end user device when a false positive has occurred (which is rare). At present and administrator has to log into the web console, create an exception and then wait 60-120 seconds for this to be effective on the end user device, still great, but this can be frustrating for users that are urgently trying to use the file.
Executive reporting could be better. Just a single page dashboard report that could be included in other monthly reporting.
The product could improve in the area of having better mechanisms in place with how the SCEP client is deployed/installed from the server on the management side. We have run into this firsthand with the client not installing on an endpoint, and then having to take the time to investigate why it was not installing.
A second improvement that can be made is to keep trying to improve the products detection rate for finding malware/viruses. The case can be made that there are some products out there that do a better job at this and have a higher detection rate.
It is integrated with Windows and SCCM, making it easy to use, license, manage, and update. Additionally, it is straightforward to diagnose when virus and ransomware alerts are detected on endpoints. IT Service Desk management is also easy.
I have only used CylancePROTECT support one time and they were very fast and responsive with the answers that solved my issue. That is the only reason I gave them a 7 as I have only had one interaction with them.
There was a time and a place in which Microsoft System Center Endpoint Protection was an excellent choice to provide threat protections. However, now that threats have been evolving, so too does the need for more advanced protections. In its current offering, it just no longer meets the needs of our organization in terms of providing protections against threats.
At the time we were looking to upgrade to the Blackberry version, we already had the Dell branded version of Cylance installed on our machines and we really liked it. Once we got the pricing comparison between Carbon Black and Blackberry we made the decision to stick with Cylance since we knew it was proven to work well in our environment with some of our unique software.
Fewer licensing requirements, one less vendor to buy from, one less app to package, deploy, and update on systems. It is an integrated license to Windows that comes baked in when you have AD-connected systems and need to allow that system on the network. It's a natural tool that enables and uses with little complication after setup.
There was little/no cost associated with this software since we are utilizing SCCM and are paying license costs for that anyways.
The level or protection is excellent for the cost of the software.
There was at least one instance in which Microsoft System Center Endpoint Protection identified a crypto-malware, but not before it had already started to encrypt many of our files. So it did detect the threat, but since it was a little delayed we still were infected.
