CylancePROTECT for Endpoints Achieves PCI DSS Compliance Certification

  • Certification establishes CylancePROTECT as the first next-generation anti-virus program capable of deployment in PCI environments
  • CylancePROTECT performed up to 40 percent better than its competitors during compliance testing
  • Cylance’s ability to detect both mundane and advanced threats offline distinguishes the company

IRVINE, Calif.--()--Cylance, the first math and machine learning-based advanced threat detection and prevention cybersecurity company, today announced that CylancePROTECT has been certified as compliant by DirectDefense, a leading provider of PCI and security assessment services to the Payment Card Industry Data Security Standard for anti-virus/anti-malware solutions (PCI DSS Requirement 5). This certification establishes CylancePROTECT as the first next-generation endpoint security capable of deployment in PCI environments, delivering a level of protection that far surpasses traditional tier 1 anti-virus vendors.

The PCI DSS, developed by the founding payment brands of the PCI Security Standards Council, was created to increase controls around cardholder data to reduce credit card fraud via its exposure. CylancePROTECT for endpoints fulfilled Requirement 5 to achieve 100 percent compliant PCI DSS certification.

“We understand how important it is for enterprises looking to replace their current ineffective anti-virus to know that our technology meets PCI Requirement 5,” said Jon Miller, vice president of strategy at Cylance. “Not only is CylancePROTECT the first next-generation malware product capable of replacing traditional anti-virus in a PCI environment, but our technology outperformed the biggest players in the field, identifying and blocking malware weeks and months before competitive protection.”

During the vigorous testing that is part of the PCI compliance process, Cylance products detected and blocked between 30 to 40 percent more viruses when offline than competing products by ESET, McAfee and Symantec. The ability to effectively detect both mundane and advanced threats offline distinguishes Cylance in the market, given that other programs rely on a cloud connection or constant updates. Cylance also outperformed competitors when online.

Cylance is a fundamentally new approach of applying algorithmic science to detect and stop the execution of malware, APTs and advanced cyberthreats. The technology continually evolves, learning how to detect new and morphing threats through a mathematical process. Just as the invention of night vision devices allowed soldiers to see enemies that were previously invisible, Cylance identifies and blocks threats that were previously undetectable.

Below is an analysis of CylancePROTECT as it applies to each sub-control of PCI Requirement 5, which demands that a product protect all systems against malware and regularly update anti-virus software or programs:

  • Detect all known types of malicious software – DirectDefense found CylancePROTECT to be significantly superior in finding malicious software compared to any other anti-virus or anti-malware product it has encountered. By having no reliance on signatures, it is possible for CylancePROTECT to discover malware weeks before traditional anti-viruses have created signatures to detect.
  • Remove all known types of malicious software – CylancePROTECT can quarantine malware in real time before it executes on the host. It also supports full whitelisting and blacklisting capabilities to respond to non-traditional attacks.
  • Protect against all known types of malicious software – DirectDefense tested CylancePROTECT and found its efficacy to exceed traditional Tier 1 anti-viruses on commoditized known malware. It can also identify and block new variants in true APT style attacks, where traditional vendors had efficacy rates under 50 percent.
  • Ensure that all anti-virus mechanisms are maintained as follows:



Are kept current – CylancePROTECT is updated continually and has self-learning capabilities. Updates are pushed to the endpoint via HTTPS, or can be updated manually on air-gapped systems.


Perform periodic scans – CylancePROTECT has the capability to perform full disk scans (every 9 days), as well as offering on-execution scanning of all portable executables, with a delay in load time that did not exceed 100ms during testing.


Generate audit logs which are retained per PCI DSS Requirement – CylancePROTECT has multiple audit log features, including a centralized console, as well as supporting full syslog traps and full SEIM integration.

The complete PCI Requirement 5 Attestation Report can be found at

About Cylance

Cylance is the first company to apply artificial intelligence, algorithmic science and machine learning to cyber security and improve the way companies, governments and end users proactively solve the world’s most difficult security problems. Using a breakthrough mathematical process, Cylance quickly and accurately identifies what is safe and what is a threat at the point before execution, without signatures, cloud connectivity or complexity. By coupling sophisticated math and machine learning with a unique understanding of a hacker’s mentality, Cylance provides the technology and services that are truly predictive and preventive against advanced threats. For more information, visit


Cylance Public Relations
Spencer Parkinson, 801-461-9767

Release Summary

Cylance announces CylancePROTECT has been certified as compliant by DirectDefense, establishing CylancePROTECT as the first next-generation endpoint security capable of deployment in PCI environments.


Cylance Public Relations
Spencer Parkinson, 801-461-9767