What is BlackBerry Optics?
BlackBerry Opticsis an endpoint detection and response solution that collects and analyzes forensic data from devices to identify and resolve threats before they impact your organization’s users and data.
You enable a
Opticsby installing the
Opticsagent alongside the
Protect Desktopagent. The
Opticsagent deploys sensors into the OS at various levels and subsystems to monitor and collect a diverse set of data that is aggregated and stored in the
Opticscloud database. You can leverage
Opticsdata in several ways to protect your organization’s environment:
- You can query device data to investigate security incidents and discover indicators of compromise.
- You can view visual representations of device data to analyze a chain of events.
- You can enable detection rules to specify the events that you wantOpticsto monitor and how you wantOpticsto respond to those events when they are detected.
Opticsalso offers features that enhance your ability to respond to potential threats. You can deploy packages that remotely and securely run processes to collect and store desired data, you can lock down devices temporarily to prevent the spread of malware, and you can use remote response sessions to execute device commands.
Opticsis the ideal complement to your organization’s existing security processes, giving you the tools that you need to efficiently detect, investigate, and resolve device-based threats.