CrowdStrike Falcon

We use a company called Act Zero as an XDR solution provider. The tool they use is CrowdStrike Falcon and we use it and they use it to help protect our environment. We wanted to provide greater security across our enterprise and evalauted different soltuions. We liked CrowdStrike and that is why we chose Act Zero - they were using tool we liked.

CrowdStrike Falcon is the Extended Detection and Response (XDR) solution we use to secure our corporate assets and production servers. It single-handedly gives us the necessary protection and visibility into all our assets. I am security engineer and I use CrowdStrike Falcon everyday. My scope is to use it to investigate abnormalities in our assets and alerts it generates. The alerts comes with a great amount of details which is mostly helpful. Furthermore, it helps us keep an eye on unwanted applications installed by users and help get rid of it.

CrowdStrike Falcon provides end-user security, as well as data security, and sandboxing further allowing security researchers and analysts to dig into the malware some. It is an over security solution, or stack, that allows companies to use one platform rather than multiple. What I like most though is the compliance assessment. CrowdStrike Falcon recently added HIPAA to the list of compliance frameworks that it will test your environment against so that you can see how your companies security compares to different compliance standards. For example, I need to be hipaa compliant, so I can see how my company‘s security compares to hipaa compliance requirement and if it is not hipaa compliant, it will show me what to fix and how to fix it.

CrowdStrike is used for endpoint detection and response capability as part of our standard operating system. This ensures that anomalous activity on end user compute devices is detected and arrested before it can propogate and impact the network. Further, it allows for investigtion and response by providing a detailed map of activity to isolate, understand and identify affected systems.

needed a new EDR as the current on was best at the time and there are way better for the same or better price point. Since our contract was up and the features that was present in the current EDR was outdated and not the best out there. We took a step back and had a look at what was on the market and came down to CrowdStrike as a short list candidate

We used CrowdStrike Falcon as our main XDR platform within our organisation.
We can investigate/remediate and run scripts when we suspect any anomalies on the network. Using event search we are able to analyse events and devices on the network. We have an easy way of finding EOL devices through the asset dashboard. I can analyse user accounts and ensure that there are no strange accounts with passwords over the set period.

I use CrowdStrike Falcon as the main source of monitoring threats originating from operating systems used by our servers, workstations, staff laptops and guest users machines.
Our organization being a university where thousands of students and hundreds of staff turn up daily, puts our critical assets at risk of being compromised by an insider. CrowdStrike Falcon helps us identify the source of a threat accurately, blocks the triggering file or script before it can cause damage. The AI / ML based detections are very helpful because they catch threats that other vendors may fail at. The scope of our use case is endpoint monitoring and threat management.

Our EDR and its operations utilize CrowdStrike Falcon as the cornerstone of security. Currently, people are concerned about the protection of IDs.

We deployed CrowdStrike Falcon across our organization to strengthen our cyber defenses. The use cases ranged from endpoint protection to threat intelligence, covering a broad spectrum of security needs. The deployment was organization-wide, safeguarding endpoints and critical systems against evolving cyber threats. The reduction in manual tasks and real-time updates contribute to time savings for our security team.

We use CrowdStrike Falcon to detect potential malicious activity on both end user computers and servers.

We use it to protect all of our computers and servers.

Fully Managed Security Service that investigates detections and either escalates or deals with them directly for us.

We use CrowdStrike as an end-point protection application. We also use CrowdStrike's Identity Threat Protection module, which allows us to gain greater insight into and secure our end user by tying into our IAM solution. This helps us achieve our new cybersecurity goals of providing a primary focus on protecting user's identities and not putting the main focus on protecting endpoints. By implementing CrowdStrike Falcon Complete, we are able to monitor security for our endpoints and our user identities 24/7. This is a big plus for us as we are not staffed 24/7 and can rely on a reputable SOC from CrowdStrike to oversee and monitor security for all of our endpoints and our identities.

We use CrowdStrike Falcon Complete to augment our IT staff. Using complete gives us the 24X7 protection we need without burdening our already time challenged staff. The combination of CrowdStrike Falcon on our endpoints and monitoring by Crowdstrike Falcon complete gives us the coverage we need.

We use Falcon to ensure we protect all our endpoint devices across the whole globally distributed organisation. We aim to utilise Falcon capabilities to prevent malware being distributed and exploited on all endpoint devices. Falcon Spotlight assists with getting visibility of the number of vulnerabilities we have on our endpoints to address by ensuring robust patch management capabilities.

Deployed CS Falcon in a higher education research environment. We needed to leverage a tool that can build a models and be on the advancement of technology due to the nature of higher education and BYOD. We installed the CS Falcon on all machines and worked with the CS team to build a Gov Cloud for research equipment that required a different set of cloud protocols.

We use CrowdStrike Falcon as an endpoint sensor to detect vulnerabilities throughout our organizations endpoints, in this day and age vulnerabilities come in all shapes and sizes from all different kinds of directions bet it from; an e-mail that contains a malicious link, an infected file you unintensionally downloaded from the web, existing programs with old or new vulnerabilities that are installed on our endpoints etc.CrowdStrike Falcon really addresses these issues on a wider proportion making sure we stay up to date with new CVEs and that our endpoints are secured.

Crowdstrike Falcon is one of the leading NG-AV endpoint detection platforms in the market which is always up to date with the emerging threats. We use Crowdstrike Falcon to give MDR services to many of our customers. It helps to prevent, block all types of Cyber-attacks and also helps to get the detailed overview of the attack. It is very user friendly in access and management.

CrowdStrike Falcon Complete is utilized to provide managed EDR services on all server and workstation endpoints throughout our Corporate network. The software itself provides endpoint protection at the EDR level and the Falcon Complete service is leveraged as a 24x7x365 SOC MSSP to manage and remediate all endpoints plus analyze and provide proactive threat hunting capabilities for all data provided.

We use CrowdStrike Falcon as our EDR solution across our servers and client machines, about 200 endpoints in total.

CS Falcon is our primary tool of choice for endpoint protection. It has a small footprint and impact while being highly intelligent and very well supported.
With the majority of our users working in hybrid mode we needed a strong security control that could provide top-class protection with the minimum amount of False Positives (and, of course, of True Positives).
Falcon provides full visibility on processes, communication flows and all sorts of activities that are happening on the endpoints. It works smoothly with other tools that we have co-deployed, like DLP, DNS protection, SWG/CASB, App monitoring and Control.
Recently we added to our arsenal the Identity Protection and the Cloud Protection modules, driven by the business needs to reduce the number of vendors, tools and dashboards while achieving maximum protection and synergy/consolidation.
We believe that as a company, Crowdstrike sits on top of the range of security vendors that we work with, has the right vision and keeps delivering excellence.
We are quite happy with their Customer Success Management and Support Services and look forward to trialling their new functions: LogsScale and External Surface Risk Management.

We use CrowdStrike as our endpoint protection and server protection, anti-virus, and malware product. We also leverage the firewall and USB device restrictions for our endpoint systems. We use it on both our Windows and Mac endpoints and on our Windows server infrastructure.

I use the product on all of our servers and users' windows devices to protect them from being exploited. The huge problem that was solved was being monitored by CrowdStrike 24/7 365 days out of the year. You can't be looking for attackers and attack vectors 24/7 without a huge amount of increase to staff. The monitoring provides peace of mind that when you working on something else or are at home the infrastructure is safe from attacks.

Crowdstrike Falcon is used to provide a comprehensive suite of endpoint detection and response capabilities across the enterprise. It is the primary platform for detecting and preventing malicious content and actions on endpoints. Additionally, we leverage Crowdstrike Falcon Intelligence as a primary source of cyber threat intelligence to further enhance our cyber security program capabilities. The complementary set of modules and capabilities provides a robust set of functionality that allows us to better control and protect the enterprise.

We had a need for a leading endpoint protection platform with EDR capabilities to protect against modern threats. Further, we had a need to have 24x7x365 coverage with subject matter experts working around the clock. Because we, as many security teams are, running very lean there was a requirement to have a fully managed solution to help ensure our alignment with best practices but to also have eyes on our environment at all times.