BlackBerry Optics

Fast, Reliable Endpoint Detection and Response.

Our cloud-native BlackBerry® Optics provide visibility, on-device threat detection and remediation across your organization. In milliseconds. And our EDR approach effectively and efficiently hunts threats while eliminating response latency. It’s the difference between a minor security event—and one that’s widespread and uncontrolled. 
Edge AI Edge AI Edge AI
Edge AI
Identify security threats and trigger automated responses on-device with AI-driven security and context-driven threat detection rules to reduce detection and remediation time.
Cloud-Enabled Cloud-Enabled Cloud-Enabled
Cloud-Enabled
Gain visibility with consolidated, AI-driven security and an enterprise-wide view of all endpoint activity, empowering detection and response capabilities for online and offline devices.
Deep Insight Deep Insight Deep Insight
Deep Insight
Enable threat hunting and root cause analysis experiences with intuitive query language and up to 365 days of data retention options.

Why Choose BlackBerry Optics

  • CLOUD-ENABLED
  • EDGE AI
  • MINIMIZE ATTACK SURFACE
  • RESPOND IN MILLISECONDS
  • DEEP INSIGHT

Cloud-Enabled—Not Cloud-Dependent

Our cloud-based BlackBerry Optics provide monitoring and visibility that span your entire organization, enabling detection and threat hunting for both online and offline devices. 
Cloud-Enabled—Not Cloud-Dependent

Quickly Detect and Respond to Ransomware

Ready to move beyond attack visibility? Our AI-driven security proactively detects and automates response capabilities. So you can find and neutralize advanced cyberthreats in milliseconds–not hours or days.
Quickly Detect and Respond to Ransomware

Prevent Widespread Incidents with Machine Learning

BlackBerry Optics mitigates and contains threats at the endpoints–drastically minimizing your attack surface and potential lateral movement. So your SOC teams have more time to perform essential duties, instead of monitoring and re-imaging compromised endpoints.
Prevent Widespread Incidents with Machine Learning

Custom Automated Responses

BlackBerry Optics have a built-in playbook with automated incident responses to mitigate endpoint threats. As it automatically collects relevant security information for hunting and forensic analysis, you’ll save your SOC analysts some time.
Custom Automated Responses

Unconstrained Threat Hunting

Our advanced, intuitive querying capabilities with Query language objects is purpose-built for MITRE ATT&CK®. It’s designed to enable deep insight for threat hunting and forensics with superior data retention packages—30 days out-of-the-box and up to 365 days.
Unconstrained Threat Hunting

Why Choose BlackBerry Optics

  • CLOUD-ENABLED

    Cloud-Enabled—Not Cloud-Dependent

    Our cloud-based BlackBerry Optics provide monitoring and visibility that span your entire organization, enabling detection and threat hunting for both online and offline devices. 
    Cloud-Enabled—Not Cloud-Dependent
  • EDGE AI

    Quickly Detect and Respond to Ransomware

    Ready to move beyond attack visibility? Our AI-driven security proactively detects and automates response capabilities. So you can find and neutralize advanced cyberthreats in milliseconds–not hours or days.
    Quickly Detect and Respond to Ransomware
  • MINIMIZE ATTACK SURFACE

    Prevent Widespread Incidents with Machine Learning

    BlackBerry Optics mitigates and contains threats at the endpoints–drastically minimizing your attack surface and potential lateral movement. So your SOC teams have more time to perform essential duties, instead of monitoring and re-imaging compromised endpoints.
    Prevent Widespread Incidents with Machine Learning
  • RESPOND IN MILLISECONDS

    Custom Automated Responses

    BlackBerry Optics have a built-in playbook with automated incident responses to mitigate endpoint threats. As it automatically collects relevant security information for hunting and forensic analysis, you’ll save your SOC analysts some time.
    Custom Automated Responses
  • DEEP INSIGHT

    Unconstrained Threat Hunting

    Our advanced, intuitive querying capabilities with Query language objects is purpose-built for MITRE ATT&CK®. It’s designed to enable deep insight for threat hunting and forensics with superior data retention packages—30 days out-of-the-box and up to 365 days.
    Unconstrained Threat Hunting
BlackBerry® Optics Capabilities

BlackBerry® Optics Capabilities

  • EDR Engine
  • Automated forensic events logging
  • Automated response
  • Custom detection rules
  • Integrated MITRE ATT&CK
  • Secure remote response
  • Private Network Visibility
  • Advanced Scripting Visibility
  • Deep Insight 30-day retention, included
  • Deep Insight 90-day, 365-day retention, available
  • Cryptomining detection
  • Audit logging

Gain and Maintain an Edge Over Attackers

Artificial Intelligence. Real Performance. Artificial Intelligence. Real Performance. Artificial Intelligence. Real Performance.
Artificial Intelligence. Real Performance.
AI-driven security threat prevention and response and attack mitigation prevents cyberattacks that legacy products miss while simultaneously reducing alert fatigue.
Gain Deep Insight. Gain Deep Insight. Gain Deep Insight.
Gain Deep Insight.
An extensive set of manual and automated incident investigation and threat hunting tools provide your analysts with seamless access to endpoint data.
Workflow-Based Incident Response. Workflow-Based Incident Response. Workflow-Based Incident Response.
Workflow-Based Incident Response.
React to threats at machine speed. Automated playbooks can drive responses to detected threats, taking immediate action without human intervention.

BlackBerry® Guard – MDR

24/7/365 proactive monitoring; intelligence-based threat hunting; automated, rapid response; threat intelligence overlay; and more.

BlackBerry Spark® Suite – UEM & UES

For comprehensive unified endpoint management and security, BlackBerry® Spark® Unified Endpoint Management Suite plus BlackBerry® Cyber Unified Endpoint Security offer complete protection. 

BlackBerry® Cyber Suite – UES

Our AI-driven security endpoint solution proactively delivers protection, detection and response, integrated mobile threat defense, continuous authentication and adaptive risk scoring.

RESOURCES

Structural Dependency
BlackBerry Optics
Learn More
Structural Dependency
BlackBerry Optics
Read More
Structural Dependency
BlackBerry MITRE ATT&CK® APT20
Read Now
Structural Dependency
The Case for a New Approach to Endpoint Detection and Response
View Now