Integrating Cylance Protect with Privilege Manager

Integrating Cylance with Privilege Manager allows organizations to enhance their endpoint security and privilege management capabilities. By combining the strengths of both solutions, organizations can strengthen their overall security posture and reduce the risk of unauthorized access and malware-based attacks. BlackBerry CylanceProtect is an Artificial Intelligence Based Advanced Threat Prevention Solution for enterprise environments. Privilege Manager (v10.5+) integrates with Cylance to help you proactively act on any unknown applications that run in your environment to prevent potential malware attacks.

Key Features and Benefits:

  • Threat Prevention: Cylance leverages advanced artificial intelligence and machine learning algorithms to detect and prevent malware, ransomware, and other advanced threats. By integrating Cylance with Privilege Manager, organizations can enforce privilege management policies and prevent malicious files or processes from running on endpoints, reducing the attack surface, and minimizing the risk of security breaches.

  • Application Whitelisting: Privilege Manager enables organizations to implement application whitelisting, which allows only approved and trusted applications to run on endpoints. Integrating Cylance with Privilege Manager can enhance application whitelisting capabilities by leveraging Cylance's threat intelligence and reputation data. This helps ensure that only safe and authorized applications are allowed to execute, further mitigating the risk of malware infections.

  • Incident Response and Remediation: In the event of a security incident or the detection of a malicious file or process, the integration between Cylance and Privilege Manager facilitates an efficient incident response and remediation process. Privilege Manager can automatically revoke privileges or remove access rights for compromised applications or processes identified by Cylance, limiting their impact and preventing further damage.

  • Centralized Management and Reporting: Integrating Cylance with Privilege Manager provides centralized management and reporting capabilities. Security teams can access a consolidated view of endpoint security and privilege management data, including threat intelligence, malware detections, and privileged access events. This centralized visibility helps in monitoring and responding to security incidents effectively.

  • Policy Enforcement: The integration allows organizations to enforce privilege management policies based on Cylance's threat intelligence. Privilege Manager can dynamically adjust privilege levels for applications based on their reputation, risk score, or threat classification provided by Cylance. This enables a fine-grained and adaptive privilege management approach, ensuring that applications with higher security risks have restricted privilege.

To learn more about this integration, click here.