What is the

CylancePROTECT

Application for

Splunk

?

CylancePROTECT

identifies and blocks malware and cyber threats before they can affect a device.

BlackBerry

uses machine learning techniques to effectively render threats useless while using a minimal amount of system resources.

CylancePROTECT Desktop

lives in the

Cylance

console, which is a cloud-based management console that allows you to view various threat-related events, manage device policies to configure agents on endpoints, and manage global lists for quarantined and safe files. For more information about

CylancePROTECT

, see What is CylancePROTECT Desktop?

The

CylancePROTECT

Application for

Splunk

is a plugin within your

Splunk

environment that pulls data from the

Cylance

services in your

Cylance

console to aggregate preconfigured, but customizable, dashboards to monitor, track, and analyze threat data and activity. You can also install the

CylancePROTECT

Add-on for

Splunk

Enterprise to further enhance the application's data optimization and collection. This add-on should be installed on

Splunk

indexers and forwarders that do not consume data from the threat data report.