Efficient and effective endpoint detection and response
April 17, 2023
Efficient and effective endpoint detection and response
Score 10 out of 10
Vetted Review
Verified User
Software Version
Falcon Enterprise
Modules Used
- Falcon Prevent
- Falcon Device Control
- Falcon Overwatch
- Falcon Spotlight
- LogScale
Overall Satisfaction with CrowdStrike Falcon
We use Falcon to ensure we protect all our endpoint devices across the whole globally distributed organisation. We aim to utilise Falcon capabilities to prevent malware being distributed and exploited on all endpoint devices. Falcon Spotlight assists with getting visibility of the number of vulnerabilities we have on our endpoints to address by ensuring robust patch management capabilities.
- Efficiently picking up and preventing malware threats on endpoints
- Prompt notification capabilities on any issues
- Ability to "set and forget" with minimal maintenance required
- Falcon Spotlight integrations with automatic patching solution would be a good feature
- LogScale with SIEM functionalities would be an added feature
- Simplified one dashboard with all high-level information
- Reduced our internal exploitability risk level from high to medium
- Provided positive impact for the audit and risk committee approval
- Provided positive impact on additional resourcing available with "set and forget" maintenance required
We were able to replace our legacy type anti-virus with Falcon that provided additional capabilities. Additionally, we were able to remove vulnerability scanning agents that were replaced with Falcon Spotlight.
Overall, although there was limited cost savings, there were more human resourcing available to focus on other core security tasks.
As a holistic product, we are able to manage cyber threats such as ransomware across our endpoint devices. One of our key objectives was to ensure we get the "prevent" pillar of the NIST framework matured and CrowdStrike Falcon assisted with this. Another objective was ensure we get vulnerability visibility across our organisation which CrowdStrike Falcon ensured we reached the defined objectives.
- Prevent USB use across the organisation
- Asset management setup with Falcon visibility
- Reduce vulnerability count with continuous monitoring available
CrowdStrike Falcon provided more capability in a consolidated manner with reduced costing overall. Additionally, they have better presence and support in Australia region for any issues that might arise.
Do you think CrowdStrike Falcon delivers good value for the price?
Yes
Are you happy with CrowdStrike Falcon's feature set?
Yes
Did CrowdStrike Falcon live up to sales and marketing promises?
Yes
Did implementation of CrowdStrike Falcon go as expected?
Yes
Would you buy CrowdStrike Falcon again?
Yes