CylancePROTECT Core Security Layers

By taking a mathematical approach to malware identification utilizing patent-pending, machine learning techniques instead of reactive signatures and sandboxes, CylancePROTECT renders new malware, viruses, bots, and unknown future variants useless. Cylance has developed the most accurate, efficient, and effective solution for preventing advanced persistent threats and malware from executing on your organization’s endpoints

No signatures or updates required

Machine learning with predictive analysis


Pre-execution prevention in under 100ms

No daily scans required

Rejects potentially unwanted programs (PUPs)

Controls tools used in lateral movement

Able to watch for new, moved, or changed files

Optional PCI compliant low footprint disk scan

Low memory utilization 60-80mbs

1-3% CPU utilization

Reboot and system startup protection

Silences memory misuse

Stops exploitation

Halts process injection

Blocks privilege escalation

Compatible with other AVs or low level services

Easy exclusion configurations

Stops unauthorized PowerShell

Stops unauthorized Active Scripts

Stops risky VBA macro methods

Stops PowerShell one-liner attacks

Easy exclusion lists by location

Whitelist scripts by script hash

Whitelist scripts by signed scripts

Stops weaponized documents

Stops fileless attacks

Provides control over use of USB mass storage devices

Helps prevent the exfiltration of data through removable media

Application Protection provides device binary lockdown for fixed function devices

Allows for exclusion path that could permit new software to install

Prevents modification of any binary, even good ones

Allows for change windows

Prevents bad binaries

Provides full control over binaries

Information Security and Privacy Compliance Certifications

CylancePROTECT is validated by

Government Regulatory Certification

The Federal Risk and Authorization Management Program (FedRAMP)

The E.U.-U.S. and Swiss-U.S. Privacy Shield Frameworks

The Payment Card Industry Data Security Standard (PCI-DSS)

Received third-party validation that satisfies the AV requirement defined in Requirement 5 of PCI-DSS

The Health Information Technology for Economic and Clinical Health (HITECH) Act (HIPAA)

Received third-party validation that satisfies the AV requirement defined in the HIPAA and HITECH Security Rule

The National Institute for Standards and Technology (NIST) Special Publication 800-53 and NIST SP 800-53 Rev. 5

The Federal Information Processing Standard (FIPS) Publication 140

SC Media Lab

NSS Labs and AVTest




CylanceOPTICS, part of the prevention-first Cylance Security Platform, is an artificial intelligence (AI) driven endpoint detection and response (EDR) solution designed to extend the prevention delivered by CylancePROTECT through root cause analysis, scalable threat hunting, and automated threat detection and response without increasing costs or security team workloads.

• Root Cause Analysis: Web-based, on-demand, root cause analysis of attacks blocked by CylancePROTECT

• Dynamic Threat Detection and Alerting: Instant notification when suspicious activity is detected on any endpoint

• Automated Incident Response: Customize automated response actions associated with rule sets to eliminate the dwell time between threat detection and incident response action

• Smart Threat Hunting with InstaQuery: Search endpoint data instantly for potential threats hiding on endpoints

• Built for Scale: High performance architecture built for scalability

• Replacement for On-Prem hardware




Organizations of any size, with any level of security expertise, can now benefit from consistent visibility across endpoints with the ability to search for, find, and eliminate hidden threats from their endpoints.Every security tool and application generate alerts to indicate when something out of the ordinary may be occurring. It can be difficult to determine between the noise of false alerts and real threats.

Identify and mitigate previously exploited attack vectors and vulnerabilities, reducing the attack surface

Find and eliminate threats hiding on your endpoints with smart threat hunting

Streamline incident response and containment to reduce dwell time, improve efficiency, and decrease the business impact of any security risk

CylancePROTECT prevents well over 99.7% of threats before they occur, and CylanceOPTICS enabling analysts to find other threats, you have the most comprehensive endpoint security solution available, built on the foundation of predictive AI.


Matthew Coy, Safelite Vice President of Information technology

CylancePROTECT is a simple and elegant product that works far better than competing solutions. It consumes no system resources, and is virtually effortless to administer.

Daniel Shuler, Phoenix Children’s Hospital CISO and Director of IT Security

CylancePROTECT outperforms others we’ve seen and experienced. We rest a little easier knowing this level of protection is on our endpoints.

Ryan Barrett, Intermedia VP of Security and Privacy

It sounds cliché, but I actually sleep better at night knowing that Cylance is helping protect my infrastructure and customer’s data

start Your poc today, and we'll give you free licenses for a year on us!