Sold by: CrowdStrike
Deployed on AWS
Vendor Insights
CrowdStrike Cloud Security unifies cloud security posture management together with breach protection for cloud workloads and containers for any cloud, in a single platform. The cloud-native solution provides end-to-end protection from the host to the cloud and everywhere in between.
4.5
Overview
CrowdStrike Falcon Cloud Security provides threat detection and response, breach protection, and continuous posture management for any with our adversary-focused Cloud Native Application Protection Platform powered by holistic intelligence and end-to-end protection from the host to the cloud, delivering greater visibility, compliance and the industry's fastest threat detection and response to outsmart the adversary.
CrowdStrike's Cloud Security Offerings Include:
Falcon Cloud Security: Breach protection including threat intelligence, detection and response, workload runtime protection and cloud security posture management across AWS, Azure and GCP.
Falcon Cloud Security for Containers: Includes the features and capabilities of Falcon Cloud Security, and also container and Kubernetes protection. It can be deployed across on-premises, hybrid and multi-cloud environments.
Falcon for Managed Containers: Container security and runtime protection for cloud service providers managed containers, including threat intelligence, detection and response, container image security and Kubernetes protection.
Get started in minutes with CrowdStrike Falcon Cloud Security through CrowdStrike Falcon® for AWS (pay-as-you-go) - https://aws.amazon.com/marketplace/pp/prodview-vubjuepxztndi
CrowdStrike Falcon Cloud Security leverages AWS Built-in for event-driven deployment automation in multi-account environments. Integrations with AWS services including CloudTrail, EventBridge, IAM, Systems Manager, AWS Control Tower, and AWS Organizations will dynamically keep your cloud resources protected. Use the AWS Built-in template for the simplest deployment path. Documentation and templates available at https://aws-abi.s3.amazonaws.com/guide/cfn-abi-crowdstrike-fcs/overview/index.html
Learn more at: https://www.crowdstrike.com/products/cloud-security/
CrowdStrike Sensor Licensing FAQ: https://www.crowdstrike.com/crowdstrike-sensor-licensing-faq/
Highlights
- End-to-end Cloud Native Security: Gain real-time visibility, detection, and response to prevent data breaches, enforce security policies and ensure compliance, reduce alert fatigue creating less work for security teams and optimize cloud deployments
- Discovery, Visibility and Compliance For Any Cloud: Gain visibility into your entire cloud infrastructure, continuously monitor for misconfigurations, ensure security policy and compliance enforcement, and proactively detect and prevent threats
- Protect Workloads, Hosts and Containers: Get access to automated discovery, runtime protection, EDR for cloud workloads and containers, and managed threat hunting on a single lightweight agent enabling you to securely deploy applications in the cloud
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. Request a private offer to receive a custom quote. Sign in to view any offers that have been extended to you.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
You can log a support ticket for any issues directly from the Falcon Portal or by emailing the support team at cloudmarketplaceoffers@crowdstrike.com Basic support services such as email communications to the CrowdStrike Support team, access to the support portal and basic troubleshooting and technical assistance.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By CrowdStrike
By Trellix
By Sophos
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Cloud Security Posture Management
Unified cloud security platform providing continuous monitoring and management of cloud infrastructure security configurations
Threat Detection and Response
Advanced threat intelligence and detection capabilities with real-time monitoring and response across cloud environments
Container and Kubernetes Protection
Comprehensive security solution for containerized applications and Kubernetes environments with runtime protection
Multi-Cloud Coverage
Seamless security protection across AWS, Azure, and GCP cloud platforms with consistent security controls
Workload Runtime Protection
Automated discovery and protection for cloud workloads with lightweight agent-based security monitoring
Threat Detection Mechanism
Advanced multi-layered endpoint protection using AI, machine learning, and threat intelligence for detecting ransomware, fileless, and zero-day threats
Endpoint Response Capabilities
Real-time Endpoint Detection and Response (EDR) with automated correlation and comprehensive MITRE ATT&CK framework mapping
Generative AI Integration
Generative AI-powered capabilities for threat hunting, including multi-lingual analysis and interactive threat knowledge graph generation
Security Environment Coverage
Unified protection across on-premises, cloud, hybrid, and disconnected environments through a single agent management platform
Advanced Threat Protection
Comprehensive security controls including Next Generation Antivirus, Host Firewall, Web Device Control, and Adaptive Threat Protection
Threat Detection
Advanced endpoint detection and response (EDR) capabilities with multi-stage threat identification across attack vectors
Cross-Source Security Monitoring
Unified XDR platform enabling threat detection and investigation across network, cloud, endpoint, identity, and email data sources
Prevention Technology
Sophisticated prevention-first approach using advanced blocking technologies against broad range of cyber attacks
Incident Response
Comprehensive tools for investigating, hunting, and responding to suspicious activities and indicators of attack
Security Integration
Flexible cybersecurity platform with integration capabilities across multiple security tools and technology ecosystems
Standard contract
No
No
No
Customer reviews
Abhimanyu Das
Unified endpoint protection has reduced false positives and simplified daily incident response.
Reviewed on Dec 12, 2025
Review from a verified AWS customer
What is our primary use case?
I have been using CrowdStrike Falcon Cloud Security for almost three years.
My primary use case involves securing endpoints and servers — approximately 6,000 endpoints and over 500 servers running CrowdStrike Falcon under the EDR framework.
In my daily work, we primarily use CrowdStrike Falcon to respond to alerts and handle BAU activities related to malware. This includes investigating both false positives and true positives, as the platform provides comprehensive protection for all our workstations and servers against malicious or suspicious activity.
Additionally, we leverage CrowdStrike Falcon for incident response and antivirus compliance purposes, alongside its robust EDR capabilities.
How has it helped my organization?
CrowdStrike Falcon Cloud Security has been a game-changer for us at our organization, securing around 6,000 endpoints and 500+ servers over the past few years. We've seen quicker incident responses, clearer visibility into what's happening across our setup, and less hassle managing tools since everything runs on one platform.
It spots threats in real time using behavioral analytics and machine learning, catching both known bad stuff and sneaky unknowns before they cause trouble. False positives dropped, making daily SOC work smoother without chasing ghosts.
When alerts hit, we isolate issues, kill processes, and remediate fast across on-prem and cloud. Ties right into threat intel for proactive hunting, fitting our endpoint-heavy workflow perfectly.
What is most valuable?
The best features of CrowdStrike Falcon Cloud Security, in my opinion, include the deployment process and management; it offers a simplified approach that is user-friendly for new users to understand quickly.
The dashboard of CrowdStrike Falcon Cloud Security is particularly helpful because it simplifies creating and maintaining policies, and managing endpoints becomes an easy process by allowing us to isolate endpoints as needed.
In addition to the dashboard, the features related to malware protection, integrated monitoring, file protection, network scanning, firewall policies, and IPS are really good.
CrowdStrike Falcon Cloud Security has positively impacted my organization by reducing false positives and enhancing security day by day; after testing it on 100 to 200 systems, we convinced the client to deploy it across 6,000 workstations and over 500 servers.
I did see significant changes; previously, there were multiple AV products, and after deploying EDR, many initial issues were resolved as we strengthened our policies over time.
What needs improvement?
I recommend enhancing CrowdStrike Falcon Cloud Security, particularly in the areas of vulnerability management and agent troubleshooting. Improvements in these aspects would help streamline the troubleshooting process and strengthen overall security management.
For how long have I used the solution?
I have been using CrowdStrike Falcon Cloud Security for over 2.5 years.
What do I think about the stability of the solution?
CrowdStrike Falcon Cloud Security is stable in my experience.
What do I think about the scalability of the solution?
The scalability of CrowdStrike Falcon Cloud Security is good, and it can easily scale up to over 20,000 or 30,000 endpoints.
How are customer service and support?
Customer support for CrowdStrike Falcon Cloud Security is good; I find it satisfactory.
I would rate the customer support an eight out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Previously, I used multiple solutions including Microsoft Defender, Sentinel , Trend Micro, Trimix, Palo Alto, and Symantec, and while I am currently working with CrowdStrike Falcon Cloud Security and others, I have not made a full switch yet.
How was the initial setup?
CrowdStrike Falcon Cloud Security setup is straightforward.
What about the implementation team?
No integrator, reseller, or consultant was used for CrowdStrike Falcon Cloud Security deployment at our organization.
In-house SOC team handled it directly via lightweight agent scripts and console setup, keeping it straightforward and controlled.
What was our ROI?
I believe we have seen a return on investment through time saved and managed employee workload, allowing fewer employees to manage everything effectively.
What's my experience with pricing, setup cost, and licensing?
In terms of pricing, the setup cost and licensing are comparatively a bit expensive, but the solution's effectiveness and mechanisms justify the cost.
Which other solutions did I evaluate?
Before selecting CrowdStrike Falcon Cloud Security, I evaluated Trend Micro because it provides good solutions, the latest being Vision One.
What other advice do I have?
For those considering deploying CrowdStrike Falcon Cloud Security, I strongly suggest deploying it as soon as possible since it reduces both employee workload and time, while enhancing operational efficiency.
Overall, I find CrowdStrike Falcon Cloud Security to be excellent, making it accessible for both beginners and experienced users alike.
I rate this review a nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Eduardo M.
Comprehensive Cloud Security with Real-Time Threat Protection
Reviewed on Dec 04, 2025
Review provided by G2
What do you like best about the product?
What I appreciate most about CrowdStrike Falcon Cloud Security is how it delivers unified visibility and intelligent protection throughout the entire cloud environment.
What do you dislike about the product?
One aspect I find less appealing about CrowdStrike Falcon Cloud Security is its expensive pricing, which, combined with its complexity, can make it difficult for smaller teams to handle effectively.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Cloud Security addresses cloud misconfigurations and provides real-time threat detection, enhancing our security while also minimizing the need for manual intervention.
Furkan .
“Fast, accurate, and highly dependable endpoint protection”
Reviewed on Nov 19, 2025
Review provided by G2
What do you like best about the product?
“The platform provides excellent threat visibility, a lightweight agent, and highly accurate real-time detection. It is very reliable, performs consistently well, and the investigation and response capabilities are strong. The management console is intuitive, and the detection quality is noticeably hig
What do you dislike about the product?
“Overall, I am very satisfied. I would only prefer to see some advanced filtering options on the dashboard become more intuitive. Other than that, I have not experienced any significant issues.”
What problems is the product solving and how is that benefiting you?
“It helps us maintain continuous visibility across our cloud workloads and quickly detect misconfigurations, vulnerabilities, and abnormal behaviors. By consolidating cloud posture management, threat detection, and analytics on a single platform, it significantly reduces investigation time and strengthens our overall cloud security posture. This results in faster response, reduced operational overhead, and greater confidence in the security of our cloud environment.”
Amar K.
Real-Time Threat Detection with Insightful Dashboard Reports
Reviewed on Nov 18, 2025
Review provided by G2
What do you like best about the product?
The platform offers real-time threat detection and displays reports directly on the dashboard.
What do you dislike about the product?
My main concern with this product is its cost. Additionally, it tends to use a significant amount of system resources, and its features are quite limited when used offline.
What problems is the product solving and how is that benefiting you?
It helps protect against serious threats such as zero-day attacks and ransomware, reducing the risk of successful breaches. This added layer of security makes me feel more confident about my system's safety.
Manish Indupuri
Provides centralized visibility and real-time threat detection across multiple cloud accounts
Reviewed on Nov 14, 2025
Review from a verified AWS customer
What is our primary use case?
I have been using CrowdStrike Falcon Cloud Security for more than a year, approximately one and a half to two years.
My main use case for CrowdStrike Falcon Cloud Security is in our environment where we run workloads across multiple AWS accounts. Our organization is already using native tools from AWS such as GuardDuty, Inspector , and Security Hub. However, management decided they wanted deeper protection and better monitoring across all accounts. They wanted a centralized solution that would provide an additional layer of security. Although we already have in-house tools, we wanted an overlaying layer for faster threat detection and visibility in one central place. CrowdStrike Falcon Cloud Security helped us bridge this gap and extend our security across all other accounts. It has provided us a good layer of protection across all workloads including EC2 , EKS, ECS, and several parts of our Linux servers.
To compare CrowdStrike Falcon Cloud Security to the native AWS tools I mentioned, such as GuardDuty and Inspector , we needed deep visibility and real-time threat protection. Along with the native AWS tools, we wanted an extra overlaying layer of security to our cloud environment to strengthen our environment security. We chose CrowdStrike Falcon Cloud Security to provide faster threat detection. This is why our organization decided to go with this solution.
How has it helped my organization?
I have seen a return on investment by preventing potential incidents and reducing threats, anomalies, or misconfigurations.CrowdStrike Falcon Cloud Security has nearly saved us some amount, though I am not exactly sure of the numbers since the Finops team handles the financial side. What we have gained from CrowdStrike Falcon Cloud Security is that EC2 downtime has been prevented and time has been saved considerably, around eight to ten hours per week through automatic onboarding and centralized visibility. We no longer need to switch between ten plus AWS accounts or perform manual scanning. We can now bring all our accounts together in one tool or solution. Our security has been significantly increased and it is pretty stable in our environment. This is one thing that CrowdStrike Falcon Cloud Security literally gave us with a positive impact and makes it a good investment.
What is most valuable?
To provide more detail about my main use case and how I use CrowdStrike Falcon Cloud Security day-to-day, I can share a specific example where it helped me respond to a threat. Recently, we had production EC2 instances across multiple AWS accounts, and CrowdStrike Falcon sensor was deployed automatically using the SSM Manager. We saw an alert where CrowdStrike detected anomalous behavior originating from some rogue IP address. This appeared to be potentially a DDoS attack in our cloud environment, which is fairly common when hackers try to get inside your network and gather organizational data. CrowdStrike performed very well here, detecting the alert and helping us identify that someone was trying to gain access. This really helped us have a broader view, and we acted accordingly in response to it. In any fault and threat detection, CrowdStrike Falcon plays a crucial role in our environment and gives us a clear point where we can focus our efforts rather than hunting down what is happening.
The best features CrowdStrike Falcon Cloud Security offers include their runtime security, particularly CrowdStrike CWPP . Their runtime security monitors processes at the kernel level and blocks any malicious behavior in real time. This is really good from Falcon as it protects workloads such as EC2 containers and Linux and Windows workloads at the OS level and kernel level. It detects any kind of credential theft or any movement within these workloads. Additionally, we see it elevates container security in terms of EKS, ECS, and ECR. It scans every image in our ECR and provides real-time vulnerability detection and protection for our container workloads.
Their threat intelligence is really good, and that is one part we really appreciate about Falcon threat intelligence.
What needs improvement?
Regarding how CrowdStrike Falcon Cloud Security can be improved, I would say they can improve their support. There were a couple of cases where we needed to escalate issues in order to get proper support. That part could use some tweaking on their end. Additionally, the recent incident during the last summer literally impacted our systems. We had some of our workloads that affected the business, and it was a difficult experience. Apart from that, it is a good tool and the experience with CrowdStrike Falcon Cloud Security has been excellent. We did not find any kind of issues, but if they could improve their response to security-related incidents and provide on-time support or better understand our concerns and address them accordingly, it could be very helpful.
Regarding needed improvements, I think they should enhance automatic alerting with CI/CD scanning and reporting capabilities. Additionally, it would be better to implement Falcon sensor health monitoring so agents are always active. We could know how it is behaving and how it is treating our environment. That could be a little helpful.
How are customer service and support?
The customer support is pretty good, but it can be improved a little bit. I would rate the customer support on a scale of one to ten as a six. They have many improvements that need to be made.
Which solution did I use previously and why did I switch?
Before choosing CrowdStrike Falcon Cloud Security, we also looked at Wiz , which is another cloud security platform. We evaluated Wiz before moving to CrowdStrike Falcon Cloud Security.
What's my experience with pricing, setup cost, and licensing?
Regarding my experience with pricing, setup cost, and licensing, the sales team deals directly with this kind of pricing. In terms of licensing, it is a little expensive. CrowdStrike Falcon Cloud Security is on the higher side of the price part.
What other advice do I have?
The advice I would give to others looking into using CrowdStrike Falcon Cloud Security is that if they already have any in-house cloud tools and want to enhance their security in their cloud environment, CrowdStrike Falcon Cloud Security can bring a positive impact. It is a really value-for-money tool. Otherwise, we did not see any issues. It runs lightweight and it gives accurate alerts, so there are no more false alarms. It is a good product to enhance your cloud and strengthen your security. I would rate this product an eight out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)