Overview
What is it? CrowdStrike is an Endpoint Detection and Response (EDR). EDR continuously monitors end-user devices to detect and respond to cyber threats like ransomware, malware, and non-malware-based attacks. Utilizing data analytics techniques to detect suspicious system behavior, EDR provides contextual information, blocking malicious activity, and provides remediation suggestions to restore affected systems.
Managed Detection and Response (MDR) services enhance EDR technologies by adding a layer of human expertise and continuous monitoring to the equation. CrowdStrike Falcon Complete is an example of how MDR services can augment EDR capabilities. Falcon Complete combines the advanced EDR technology of the CrowdStrike Falcon platform with a team of cybersecurity experts who manage the entire threat lifecycle on behalf of the customer. This includes proactive threat hunting, real-time monitoring, incident analysis, and response actions. The service ensures that threats are neutralized quickly and efficiently, minimizing the potential impact on the organization. By leveraging Falcon Complete, organizations can benefit from both the technological advantages of EDR and the operational efficiencies of having a managed service, making it an effective solution for comprehensive endpoint security.
Technologies Employed
- Discover - CrowdStrike’s IT hygiene solution offers visibility and entity inventory around applications, assets and accounts spread across your enterprise.
- Falcon Complete with Threat Graph - This product contains an EDR and an MDR solution pair that provide 24x7 coverage.
- Insight - Falcon Insight XDR delivers enterprise-wide visibility, detects advanced threats, and responds automatically across your environment.
- Overwatch - A team of dedicated, proactive threat hunters that work on your behalf.
- Prevent - Falcon Prevent delivers superior protection with a single lightweight agent that operates without the need for constant signature updates, on-premises management infrastructure, or complex integrations.
Falcon Complete Onboarding Process - Learn more about the process.
CrowdStrike FAQs
The SLCGP is offering CrowdStrike Falcon Complete (https://www.crowdstrike.com/services/managed-services/falcon-complete/) to qualified recipients. This product contains an EDR and an MDR solution pair that provide 24x7 coverage. This active set of services looks for threats to your systems and actively shuts down malicious activities in their tracks. To further reduce the impact of an event, active quarantine and live response services will help identify and remove malicious code as quickly as possible.