CrowdStrike Falcon

CrowdStrike Falcon provides end-user security, as well as data security, and sandboxing further allowing security researchers and analysts to dig into the malware some. It is an over security solution, or stack, that allows companies to use one platform rather than multiple. What I like most though is the compliance assessment. CrowdStrike Falcon recently added HIPAA to the list of compliance frameworks that it will test your environment against so that you can see how your companies security compares to different compliance standards. For example, I need to be hipaa compliant, so I can see how my company‘s security compares to hipaa compliance requirement and if it is not hipaa compliant, it will show me what to fix and how to fix it.

As I said before, with CrowdStrike Falcon, there isn’t a need for a ton of security tools. CrowdStrike Falcon provides almost all required tools to achieve a comprehensive security state.

As I stated previously , it’s a “one stop shop” for security.

I was focused on a specific need rather than a suite of software, had looked for a complete solution, I would have decided on CrowdStrike Falcon sooner.

Yes, we wanted the full benefit of the software.

Yes, I was having an issue with the new HIPAA compliance scanner. I called support and they walked me through it. I had the premium support package but we were unable to validate it, so the support rep took me at my word that we had it and continued to help me, even though he wasn’t obligated to.

CrowdStrike Falcon Complete is utilized to provide managed EDR services on all server and workstation endpoints throughout our Corporate network. The software itself provides endpoint protection at the EDR level and the Falcon Complete service is leveraged as a 24x7x365 SOC MSSP to manage and remediate all endpoints plus analyze and provide proactive threat hunting capabilities for all data provided.

Traditional AV and anti-malware products have all been eliminated. In addition, we used to employ a 3rd party MSSP SOC to manage our AV products that we were able to deprecate. The cost of CrowdStrike Falcon Complete with superior EDR, expertise, and response capability was comparable to the existing solution that was in place.

Streamlined operations by only having to deal with one vendor for managed EDR capability which previously required multiple vendors to accomplish.

CrowdStrike Falcon Complete has helped us meet our organization objective of providing round the clock EDR services with complete remediation capability for all endpoints throughout the enterprise leveraging a single vendor solution. In addition, we plan to introduce other services offered by CrowdStrike Falcon in the future that layer nicely on top of this solution (AD threat management, XDR, SIEM).

I honestly don't think I would do anything differently. CrowdStrike Falcon allowed us to do a complete bakeoff against our competitors and offered us complimentary licensing for as long as we needed to complete testing. We also had other vendors that were evaluated that were not as polished as CrowdStrike Falcon with a higher price tag.

Yes, we purchased the premium support option of CrowdStrike Falcon Complete which is a full service MSSP for EDR services. We do not employ a dedicated Cybersecurity team at the company so we wanted to leverage their threat intelligence and their 24x7x365 availability to ensure that our endpoints are always kept safe.

Honestly, this happens time and time again. One that comes to mind is when we had a SIEM detection unrelated to the CrowdStrike Falcon EDR data but were struggling with interpreting the threat. We sent it to the CrowdStrike Falcon Complete managed service team and they were good enough to explain that even though what we were asking is technically out of scope for the service, they would still assist and ended up providing us with an acceptable resolution! Bravo for going above and beyond!