Overview
CylanceMDR
is a subscription-based, 24x7-managed extended detection and response (XDR) service that provides actionable intelligence for customers to prevent threats quickly, while minimizing alert fatigue without requiring additional resources. This service is fully integrated with CylancePROTECT
, CylanceOPTICS
, and CylanceGATEWAY
and can be integrated with third-party vendors to provide holistic and unified telemetry across all endpoints. Highly skilled BlackBerry
analysts threat-hunt through customer environments to find and contain threats, prevent major breaches, and allow organizations to mature their security posture. BlackBerry
has the strategy, expertise, and technology to protect an organization by analyzing, preventing, and containing threats as well as large-scale breaches.CylanceMDR
requires CylancePROTECT
and CylanceOPTICS
, but with the CylanceMDR
Pro subscription, you can use your current endpoint protection, detection, and response solutions. CylanceGATEWAY
is optional. For more information, see the CylanceMDR requirements.What's included in the subscription
The following table highlights the features that are included in
CylanceMDR
On-Demand, Standard, Advanced, and Pro subscriptions.The
CylanceMDR
Standard, Advanced, and Pro subscriptions include closed-loop communications and access to a CylanceMDR
analyst to help navigate incidents and provide regular updates and ongoing review of the overall threat prevention status. For CylanceMDR
Pro subscriptions, third-party application integration is available, such as for firewall integration. For CylanceMDR
On-Demand subscriptions, support is provided on demand only.Feature | CylanceMDR On-Demand | CylanceMDR Standard | CylanceMDR Advanced | CylanceMDR Pro |
|---|---|---|---|---|
Onboarding (Alert finetuning and Cylance product configuration) | √ | √ | √ 1 | |
24x7 threat monitoring | √ | √ | √ | |
24x7 threat detection | √ | √ | √ | √ |
24x7 triage and response | √ | √ | √ | √ |
24x7 threat hunting | √ | √ | √ | |
Custom threat hunting | √ | √ | √ | |
Monthly reports | √ | √ | √ | |
Advisory services | √ | √ | √ | |
Critical Event Management mobile app | √ | √ | √ | |
Threat intelligence indicators of compromise (IOC) integration | √ | √ | √ | |
24x7 phone support | √ | √ | √ | |
Advanced threat intelligence (simulation, validation, monthly reports) | √ | √ | ||
Incident response and forensic investigation | Optional add-on | Optional add-on | √ | √ |
Service level objectives | √ | √ | √ | √ |
$1,000,000 guarantee | Eligible 2 | Eligible 2 | ||
Third-party log source integration (for example, firewall integration) | √ |
1
Alert finetuning is included but configuration is available for Cylance
products only. Cylance
products are optional for CylanceMDR
Pro subscriptions.2
For information about eligibility requirements, see CylanceMDR
$1 Million Guarantee.