CrowdStrike Falcon Cloud Security Reviews

I sell and resell CrowdStrike Falcon Cloud Security as part of my company's cybersecurity portfolio for endpoint detection platforms.

CrowdStrike Falcon Cloud Security assists in detecting malware and provides effective security solutions without the need for hardware servers, saving resources on infrastructure.

I find the easy installation process, quick detection capabilities, and the cloud-based console very useful for this solution.

CrowdStrike had a significant issue with Windows integration two months back. The pricing is very high and should be improved.

I have been working with and reselling CrowdStrike Falcon Cloud Security for five years.

CrowdStrike Falcon Cloud Security is very stable, and I would rate it at ten out of ten for stability.

CrowdStrike Falcon Cloud Security is scalable. I would rate its scalability as seven out of ten.

The technical support is very easy to reach and helpful; I would rate it as ten out of ten.

Positive

My company is an integrator, and I handle the deployment and implementation process personally.

The pricing of CrowdStrike Falcon Cloud Security is very high, and I would rate the current pricing as four out of ten.

I also work with Microsoft and ESET as part of my company's cybersecurity portfolio for endpoint detection platforms.

I recommend CrowdStrike Falcon Cloud Security because it provides excellent services for endpoint security and is very effective as a security solution.

I'd rate the solution nine out of ten.

The solution is used for endpoint management and profiling. CrowdStrike Falcon Cloud Security offers protection against security threats or attacks. 

The threat intelligence is the most vital feature of CrowdStrike Falcon Cloud Security. 

Certain endpoint management features, such as encryption and extensive file integrity monitoring, should be added to the solution. The file integrity monitoring feature should be enhanced and offered more control. The functionality of DLP also needs to be enhanced. 

I have been using CrowdStrike Falcon Cloud Security for two years. 

The solution exhibits impressive stability. I would rate the stability a nine out of ten. 

In our company, about 20 clients use CrowdStrike Falcon Cloud Security, and the total number of end-users combining all clients exceeds 1000. I would rate the scalability an eight out of ten. 

Support is provided based on the service level availed from CrowdStrike. I would rate the basic tech support a six out of ten. An advanced service contract with the vendor includes more available support members for rapid response, I would rate the advanced support from the vendor an eight out of ten. 

Neutral

I have worked with Trend Micro, Symantec and McAfee. CrowdStrike Falcon Cloud Security is a more enhanced and cost-effective solution than Trend Micro. 

The solution can be easily deployed. If numerous endpoints are involved in the deployment, automation tools like SCM can push the packages, which then start communicating with the servers. 

Our company offers security service management, therefore we manage the license renewals and facilitate the regular maintenance. One product manager from our company and a team of three professionals are needed to maintain CrowdStrike Falcon Cloud Security. 

It's an expensive product. The solution costs around $60 for a single user on a yearly basis. I would rate the pricing a four out of ten. 

The solution's threat intelligence features enhance endpoint detection and security to a great extent. The aforementioned feature quickly detects new malware based on behavior with the assistance of an AI learning model. 

The solution acts as a single agent with multiple capabilities, but some features don't perform optimally, including DLP and file integrity monitoring, which aren't extensive enough. 

The product enhances endpoint security and management of global threats. The solution's AI module learns from behavior and it's able to detect behavior inconsistencies, facilitating rapid threat detection and mitigation. 

I would definitely recommend the product to other users. CrowdStrike Falcon Cloud Security is slightly more expensive than other competitor solutions. Every customer of our company can't afford CrowdStrike Falcon Cloud Security, and there isn't always a need for its high-end features, so we recommend a different solution. I would rate the product a nine out of ten. I believe some features are still missing from the solution. 

I use CrowdStrike Falcon Cloud Security primarily for endpoint protection, including detection and response. It acts like a modern antivirus, automatically detecting and responding to threats based on defined policies. Additionally, it offers a vulnerability management module, highlighting machine vulnerabilities based on the number of managed machines.

The most valuable feature of CrowdStrike Falcon Cloud Security is its lightweight sensor, taking minimal space and not impacting server performance. The centralized console is a huge advantage, letting me manage everything from one place. It also allows running scripts directly on machines through the portal, making it highly convenient.

In terms of improvement, it would be more convenient if there was an easier way to install CrowdStrike, perhaps through better integration with Active Directory. This could automate the installation process for new machines in the environment.

 I have been using CrowdStrike Falcon Cloud Security since 2020.

CrowdStrike Falcon Cloud Security is highly stable, with minimal false positives and performance issues. It operates smoothly without requiring much intervention.

CrowdStrike Falcon Cloud Security is scalable. While installation is manual on each machine, it is easy to deploy on any number of machines, and their console makes it simple to manage them all. CrowdStrike Falcon Cloud Security is widely used in our company, managing endpoint security on almost every device. The user base is around 50,000 plus.

I have been in touch with CrowdStrike's tech support for the past three years. Their support is excellent, quickly resolving issues and providing top-notch assistance, especially compared to other security vendors I have worked with.

We chose CrowdStrike because of its effective detection capabilities with minimal false positives. It enhances the overall safety of our company's environment from cyber threats.

It is a cloud-based solution managed by CrowdStrike. All we need to do is install a simple sensor on our machines, and they take care of the rest, providing us with a comprehensive endpoint security solution. We can easily monitor and manage security through their user-friendly interface. The installation and setup of CrowdStrike Falcon Cloud Security are very easy and require a good internet connection on your machine.

CrowdStrike Falcon Cloud Security is not cheap but it is worth the money. It simplifies administration by handling both vulnerability and endpoint security with just one sensor installation. In terms of cost, it is competitive and comparable to Windows Defender, offering better efficiency without the need for multiple consoles.

We explored other options like Trend Micro and Sophos before deciding on CrowdStrike. However, those tools had performance issues, especially on application servers and desktops due to their heavy installers. CrowdStrike stood out as it is lightweight and doesn't impact system performance during operation.

I would strongly recommend CrowdStrike Falcon Cloud Security to others. It is highly effective in providing accurate security and detecting cyber threats without overwhelming you with false positives. It allows you to focus on meaningful alerts, making it a value-for-money product. Overall, I would rate it as a nine out of ten.

We use it for EDR as well as cloud security posture management. We also use file integrity and vulnerability management.

By implementing CrowdStrike Falcon Cloud Security, we wanted a 360-degree view of the security landscape of our enterprise. We wanted the complete view in one single dashboard, and our requirement was almost met with this solution.

We gained a lot of control and visibility into our cloud infrastructure using CrowdStrike Falcon Cloud Security. Within 30 days of deployment, we started seeing its value.

Cloud security posture management (CSPM) is most valuable.

There should be cloud storage scanning. We would like to have cloud storage vulnerability and threat management on any cloud storage.

I have been using this solution for three years.

It is stable. I would rate it a nine out of ten for stability.

It is scalable. I would rate it a nine out of ten for scalability.

In terms of our environment, we have multiple sites, multiple delivery centers, and multiple clouds. CrowdStrike Falcon Cloud Security is covering all aspects.

We had McAfee, and we replaced McAfee with CrowdStrike because of the features such as EDR. We got multiple security features from a single vendor.

It is deployed on the public cloud. We use AWS and Azure.

Its initial setup was straightforward. Its implementation took about 15 days.

We did the agent installation on a test bed or less critical devices. We monitored the performance, and we monitored the data coming into CrowdStrike from those deployments. Once we were satisfied, we followed a phased approach. Phase by phase, we covered all our resources under the CrowdStrike umbrella.

We implemented it in-house. We had two senior engineers involved.

In terms of maintenance, it does not require any maintenance from our side.

It is worth the money.

Its price is moderate.

I would recommend trying its features, evaluating it, and seeing if it fits your requirements. Only then proceed with the purchase. 

I would rate CrowdStrike Falcon Cloud Security a ten out of ten. It is good.

We use Falcon to protect endpoints, including the on-premise systems and cloud environment. 

CrowdStrike protects us from vulnerabilities and threats while mitigating the risk. The security integration is quite good, but we had a few issues integrating with some of our client's endpoints. They wanted us to monitor some of their medical devices, such as MRIs, in case anyone attempted to attack through them. 

It's easy to gather insights and conduct analysis about existing threats. Threat hunting enables you to track on-prem services, and the real-time response capability improves threat and risk analysis. 

The threat intelligence and user behavioral analysis could be more comprehensive. 

I have used CrowdStrike Falcon for 3 years.

I rate CrowdStrike Falcon 6 out of 10 for stability. 

I rate CrowdStrike Falcon 7 out of 10 for scalability.

I rate CrowdStrike support 8 out of 10. We've had a good experience with them. They're helpful and always respond quickly. 

Positive

I've worked with Microsoft Defender. I'm more familiar with that. 

I don't have hands-on experience with the deployment. My team deployed it. The deployment time varies, and we do it in batches. It involves many tasks, and it can take weeks. After deployment, it requires regular patching. 

You can't get a fixed price for these tools. If you subscribe to something and need to deploy it to another team, the price goes up. It's the same with Microsoft Defender. I'm not responsible for the budget, but I think it's cost-effective for providing detection and response for an entire organization. 

I rate CrowdStrike Falcon Cloud Security 8 out of 10.

Many different types of data flow into our organization from various sources, each serving different purposes and reaching different departments. For security reasons, we've opted for CrowdStrike Falcon, and it has proven to be highly effective. It consistently detects and removes unwanted viruses and miscellaneous threats from our network and systems. Additionally, we've deployed it on our servers, where it continues to provide robust protection against malware.

It's been employed within our organization to detect and respond to threats in our cloud workload. Upon detection of any issues on a machine, we promptly receive notifications or can view details on the portal, confirming which machines are affected. Additionally, it offers a plethora of features such as investigative tools and deep information sandboxing, enhancing our ability to address security concerns effectively.

Cloud-native threat intelligence is invaluable to me. The information provided is easily accessible through a dedicated tab, offering a wealth of valuable insights and recommendations. This includes various implementations and suggestions for enhancing security measures. Additionally, there's the option for sandboxing, which proves useful on occasion.

Our security operations have greatly benefited from the real-time response capabilities. Upon verification, potentially harmful downloads are promptly blocked and removed automatically. We have several dialer configurations, including medium, moderated, high, and low, with automated settings deployed across most machines. For servers, I opt for a moderated configuration, considering the occasional lack of generated signatures when deploying new software.

Our results clearly show the impact on our incident response time. Whenever an incident occurs, we receive comprehensive information promptly. Sometimes, we even receive emails providing updates and recommendations on how to address the situation effectively.

The most significant benefit is how quickly malware and other malicious attacks are detected. I've extensively tested it on my machine and server by simply double-clicking various files. In many cases, the detection is immediate, preventing the file from running and displaying a message indicating that it contains malware. Additionally, when downloading files for testing purposes, especially from third-party sources, CrowdStrike Falcon often detects potential threats instantly and sometimes even removes them automatically.

The only challenge lies in token verification. Generating the token is crucial, and if it doesn't match, it causes problems. However, this issue mainly arises when new users or inexperienced administrators are involved. They may inadvertently remove the token and struggle with the installation process. Initially, there were some challenges with the portal's user-friendliness, particularly when generating reports, but these issues have since been addressed.

I have been using it for four years now.

It's highly stable with no reported issues. I would rate it ten out of ten.

It provides excellent scalability capabilities. I would rate it nine out of ten.

In my previous role at a different company, I managed Symantec Endpoint Protection hosted on local servers rather than in the cloud. We encountered issues related to the HES file and their engines, as they only added virus definitions without making significant changes to their main framework or engine.

The initial setup is straightforward, especially for experienced users who find it easy to handle. However, for newcomers with only a month or two of experience, there might be a learning curve as they familiarize themselves with the process.

Implementing the tool itself poses no issues. I've successfully created the GPO and installed it without any problems.

We've deployed it using two different methods. First, I established a Group Policy Object to deploy it, and second, we utilized Intune. Following deployment, the machines are promptly visible on the portal. However, configuring additional settings is not a one-day task; it requires understanding user requirements and preferences. The complexity of the setup depends on the level of detail and customization desired.

Initially, I deployed the solution on ten testing machines, comprising both servers and local devices. It took approximately two days to configure and fine-tune the setup before finalizing it for deployment across the organization. As the sole manager responsible for both security and system management, I oversaw the entire process. With multiple branches across different locations, totaling eighteen, efficiency was crucial. One notable advantage is the small footprint of the endpoint engine, typically ranging from forty to seventy megabytes, ensuring minimal bandwidth and resource consumption compared to other antivirus solutions. Maintenance is minimal. I typically monitor the machines to ensure they remain active. If a machine has been inactive for more than ten days, it's flagged and moved to a separate section on the portal for review.

We've observed a positive return on investment. Additionally, we utilize Microsoft Defender Endpoint with our Microsoft Elastic 365 license. Despite having multiple options, it's noteworthy that the CrowdStrike Falcon solution often detects threats before Microsoft Defender.

The pricing is reasonable, neither overly expensive nor excessively cheap, making it competitive compared to other market options. The best aspect is that there's a single price for all types of endpoints. There's no need to purchase separate licenses for servers and Windows systems.

I would recommend it, particularly for its robust reporting capabilities, which provide access to a wealth of data. Additionally, the automatic updates feature ensures that the software stays current without requiring manual intervention. This eliminates the need to manually update each machine, as the updates are deployed automatically whenever a new version is available. Overall, I would rate it nine out of ten.

CrowdStrike Falcon serves as our go-to tool for endpoint detection and response. We often leverage scripts to implement actions such as blocking and isolating specific machines. These scripts help us pinpoint and flag machines within the system that require investigation. Our focus involves delving into logs, scrutinizing identities, and ensuring a secure cloud posture through effective cloud posture management.

The primary focus lies in the swift and effective response to potential threats. CrowdStrike's Remote Threat Response feature allows remote access to machines under investigation, provided they are online. This capability significantly aids in expediting the investigative process. Additionally, the tool supports threat hunting within the Falcon framework. An aspect worth noting is the tool's proficiency in making correlations within internal data, including both machine and user logs.

The RTR feature stands out as particularly valuable to me due to its capability to log into machines. Whether it's a Linux machine, allowing me to execute native Linux commands, or a Windows machine, where I can use PowerShell commands, it empowers me to seamlessly proceed with my investigations. This flexibility is a key factor that enhances the overall effectiveness of my work.

I tend to focus more on the forensic aspects, believing there's potential for additional improvements in that area. I've noted that CrowdStrike recently introduced a new feature in their latest update, aimed at enhancing forensic capabilities. Incorporating threat intelligence into the system would be a valuable addition.

I have been working with it for two months.

The stability of the platform has been consistently reliable, with no instances of downtime or issues encountered during installations. The process has been remarkably smooth, and I have not encountered any problems so far.

The scalability is quite impressive. With thousands of endpoints in our environment, we can effortlessly deploy additional agents on any new endpoint integrated into our system.

Regarding technical support, the response time typically takes a few hours. The speed of response may be influenced by the specific licensing arrangements in place. I would rate it seven out of ten.

Neutral

In my previous role, we predominantly relied on Azure solutions. Microsoft Advanced Threat Protection, encompassing Defender for Endpoint, Sentinel for Identity, and Security for Cloud Apps, constituted the core components of our security arsenal.

The deployment spans various locations and departments, encompassing all our endpoints. This includes multiple nationwide locations and extends to different continents. Maintenance is not a significant requirement. While we do make occasional updates to rules, our Security Management service takes care of this aspect. Updates, including new rules, are automatically implemented during the update process. Duplicative rules are removed in the course of these updates. Although we have some custom rules, the entire process is managed as part of a service, ensuring seamless and well-controlled cycles.

I have a stronger inclination towards Microsoft ATP. However, since joining this company just three months ago, CrowdStrike Falcon has become a part of my toolkit.

The user interface designs are highly user-friendly with some interesting settings. I would wholeheartedly recommend it to anyone not specifically seeking a source solution but rather a comprehensive Security Orchestration, Automation, and Response platform. The flexibility it offers to analysts is noteworthy, especially when utilizing the RTR feature. This allows seamless remote access to computers, where analysts can execute commands natively without disrupting user activities. It provides a valuable capability for conducting investigations discreetly and efficiently. Overall, I would rate it eight out of ten.

CrowdStrike Falcon is used primarily to enhance cloud security through a lot of automation in the platform. It provides benefits like automation, efficacy, and lower risk, allowing security analysts to focus on high-value tasks.

By deploying CrowdStrike Falcon, the organization can repurpose security analysts to focus on more high-value tasks due to the automation. It also optimizes on licensing because CrowdStrike covers a significant number of capabilities, which allows for the replacement of several vendors, thus reducing licensing and labor costs.

The most valuable features of CrowdStrike Falcon include its automation capabilities, efficacy, and lower risk. It also helps optimize on licensing since it covers a wide range of capabilities.

The SIEM needs to be more developed. Additionally, AI features could be enhanced.

I have been using the solution for only one year.

On a scale of one to ten, the stability of CrowdStrike Falcon Cloud Security is nine.

CrowdStrike Falcon is very scalable. I would rate its scalability as nine out of ten.

As far as I know, the technical support for CrowdStrike is rated as another nine out of ten.

Positive

One person from the partner side and two people from the customer side are usually involved in the installation process.

One person from our side and about one or two people from the customer's side are generally involved.

CrowdStrike Falcon is definitely affordable compared to competitors in the market. On a scale of one to ten, I would rate the pricing as eight out of ten, indicating some room for improvement.

I'd rate the solution nine out of ten.