Skip Navigation

What is
BlackBerry Optics
?

BlackBerry Optics
is an endpoint detection and response solution that collects and analyzes forensic data from devices to identify and resolve threats before they impact your organization’s users and data.
You enable a
Windows
,
macOS
, or
Linux
device for
Optics
by installing the
Optics
agent alongside the
Protect Desktop
agent. The
Optics
agent deploys sensors into the OS at various levels and subsystems to monitor and collect a diverse set of data that is aggregated and stored in the
Optics
cloud database. You can leverage
Optics
data in several ways to protect your organization’s environment:
  • You can query device data to investigate security incidents and discover indicators of compromise.
  • You can view visual representations of device data to analyze a chain of events.
  • You can enable detection rules to specify the events that you want
    Optics
    to monitor and how you want
    Optics
    to respond to those events when they are detected.
Optics
also offers features that enhance your ability to respond to potential threats. You can deploy packages that remotely and securely run processes to collect and store desired data, you can lock down devices temporarily to prevent the spread of malware, and you can use remote response sessions to execute device commands.
Optics
is the ideal complement to your organization’s existing security processes, giving you the tools that you need to efficiently detect, investigate, and resolve device-based threats.