Sold by: CrowdStrike
Deployed on AWS
Vendor Insights
CrowdStrike Cloud Security unifies cloud security posture management together with breach protection for cloud workloads and containers for any cloud, in a single platform. The cloud-native solution provides end-to-end protection from the host to the cloud and everywhere in between.
4.5
Overview
CrowdStrike Falcon Cloud Security provides threat detection and response, breach protection, and continuous posture management for any with our adversary-focused Cloud Native Application Protection Platform powered by holistic intelligence and end-to-end protection from the host to the cloud, delivering greater visibility, compliance and the industry's fastest threat detection and response to outsmart the adversary.
CrowdStrike's Cloud Security Offerings Include:
Falcon Cloud Security: Breach protection including threat intelligence, detection and response, workload runtime protection and cloud security posture management across AWS, Azure and GCP.
Falcon Cloud Security for Containers: Includes the features and capabilities of Falcon Cloud Security, and also container and Kubernetes protection. It can be deployed across on-premises, hybrid and multi-cloud environments.
Falcon for Managed Containers: Container security and runtime protection for cloud service providers managed containers, including threat intelligence, detection and response, container image security and Kubernetes protection.
Get started in minutes with CrowdStrike Falcon Cloud Security through CrowdStrike Falcon® for AWS (pay-as-you-go) - https://aws.amazon.com/marketplace/pp/prodview-vubjuepxztndi
CrowdStrike Falcon Cloud Security leverages AWS Built-in for event-driven deployment automation in multi-account environments. Integrations with AWS services including CloudTrail, EventBridge, IAM, Systems Manager, AWS Control Tower, and AWS Organizations will dynamically keep your cloud resources protected. Use the AWS Built-in template for the simplest deployment path. Documentation and templates available at https://aws-abi.s3.amazonaws.com/guide/cfn-abi-crowdstrike-fcs/overview/index.html
Learn more at: https://www.crowdstrike.com/products/cloud-security/
CrowdStrike Sensor Licensing FAQ: https://www.crowdstrike.com/crowdstrike-sensor-licensing-faq/
Highlights
- End-to-end Cloud Native Security: Gain real-time visibility, detection, and response to prevent data breaches, enforce security policies and ensure compliance, reduce alert fatigue creating less work for security teams and optimize cloud deployments
- Discovery, Visibility and Compliance For Any Cloud: Gain visibility into your entire cloud infrastructure, continuously monitor for misconfigurations, ensure security policy and compliance enforcement, and proactively detect and prevent threats
- Protect Workloads, Hosts and Containers: Get access to automated discovery, runtime protection, EDR for cloud workloads and containers, and managed threat hunting on a single lightweight agent enabling you to securely deploy applications in the cloud
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. Request a private offer to receive a custom quote. Sign in to view any offers that have been extended to you.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
You can log a support ticket for any issues directly from the Falcon Portal or by emailing the support team at cloudmarketplaceoffers@crowdstrike.com Basic support services such as email communications to the CrowdStrike Support team, access to the support portal and basic troubleshooting and technical assistance.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By CrowdStrike
By Trellix
By Sophos
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Cloud Security Posture Management
Unified cloud security platform providing continuous monitoring and management of cloud infrastructure security configurations
Threat Detection and Response
Advanced threat intelligence and detection capabilities with real-time monitoring and response across cloud environments
Container and Kubernetes Protection
Comprehensive security solution for containerized applications and Kubernetes environments with runtime protection
Multi-Cloud Coverage
Seamless security protection across AWS, Azure, and GCP cloud platforms with consistent security controls
Workload Runtime Protection
Automated discovery and protection for cloud workloads with lightweight agent-based security monitoring
Threat Detection Mechanism
Advanced multi-layered endpoint protection using AI, machine learning, and threat intelligence for detecting ransomware, fileless, and zero-day threats
Endpoint Response Capabilities
Real-time Endpoint Detection and Response (EDR) with automated correlation and comprehensive MITRE ATT&CK framework mapping
Generative AI Integration
Generative AI-powered capabilities for threat hunting, including multi-lingual analysis and interactive threat knowledge graph generation
Security Environment Coverage
Unified protection across on-premises, cloud, hybrid, and disconnected environments through a single agent management platform
Advanced Threat Protection
Comprehensive security controls including Next Generation Antivirus, Host Firewall, Web Device Control, and Adaptive Threat Protection
Threat Detection
Advanced endpoint detection and response (EDR) capabilities with multi-stage threat identification across attack vectors
Cross-Source Security Monitoring
Unified XDR platform enabling threat detection and investigation across network, cloud, endpoint, identity, and email data sources
Prevention Technology
Sophisticated prevention-first approach using advanced blocking technologies against broad range of cyber attacks
Incident Response
Comprehensive tools for investigating, hunting, and responding to suspicious activities and indicators of attack
Security Integration
Flexible cybersecurity platform with integration capabilities across multiple security tools and technology ecosystems
Standard contract
No
No
No
Customer reviews
Prasanth K.
Powerful Cloud Security with Great Visibility, But Some Learning Curve and Pricing Concerns
Reviewed on Dec 20, 2025
Review provided by G2
What do you like best about the product?
I like how easily it plugs into our AWS environment and gives us real‑time visibility into what’s happening across our cloud workloads. The threat detection is strong — it quickly flags unusual behavior or misconfigurations without a lot of noise. I also appreciate how lightweight it is; it doesn’t slow anything down and requires very little maintenance once it’s set up. The unified dashboard makes it simple to monitor EC2 instances, containers, and IAM risks all in one place, which saves a lot of time during investigations.
What do you dislike about the product?
I’ve noticed that some of the findings can feel a bit noisy at times, especially when it flags low‑risk configuration issues that don’t always need immediate attention. The pricing can also be on the higher side as you scale, which makes it harder for smaller teams to justify. And while the dashboard is powerful, it takes a little time to get used to where everything lives, especially when switching between cloud and workload views.
However, even the security scans does the same, so this is not a major complaint.
However, even the security scans does the same, so this is not a major complaint.
What problems is the product solving and how is that benefiting you?
It helps us spot security risks in our AWS environment much earlier, especially things like misconfiguartions, unusual activity or access, or workloads behaving in ways they shouldn’t be. It also gave us a single place to monitor everything, so we dont have to jump between different AWS tools to understand what’s going on. The automated alerts and clear visibility make investigations faster in most environments, and that cuts down the time we spend chasing issues. Overall, it keeps our cloud setup safer and lets us focus more on building instead of constantly worrying about security gaps that users introduce.
Abhimanyu Das
Unified endpoint protection has reduced false positives and simplified daily incident response.
Reviewed on Dec 12, 2025
Review from a verified AWS customer
What is our primary use case?
I have been using CrowdStrike Falcon Cloud Security for almost three years.
My primary use case involves securing endpoints and servers — approximately 6,000 endpoints and over 500 servers running CrowdStrike Falcon under the EDR framework.
In my daily work, we primarily use CrowdStrike Falcon to respond to alerts and handle BAU activities related to malware. This includes investigating both false positives and true positives, as the platform provides comprehensive protection for all our workstations and servers against malicious or suspicious activity.
Additionally, we leverage CrowdStrike Falcon for incident response and antivirus compliance purposes, alongside its robust EDR capabilities.
How has it helped my organization?
CrowdStrike Falcon Cloud Security has been a game-changer for us at our organization, securing around 6,000 endpoints and 500+ servers over the past few years. We've seen quicker incident responses, clearer visibility into what's happening across our setup, and less hassle managing tools since everything runs on one platform.
It spots threats in real time using behavioral analytics and machine learning, catching both known bad stuff and sneaky unknowns before they cause trouble. False positives dropped, making daily SOC work smoother without chasing ghosts.
When alerts hit, we isolate issues, kill processes, and remediate fast across on-prem and cloud. Ties right into threat intel for proactive hunting, fitting our endpoint-heavy workflow perfectly.
What is most valuable?
The best features of CrowdStrike Falcon Cloud Security, in my opinion, include the deployment process and management; it offers a simplified approach that is user-friendly for new users to understand quickly.
The dashboard of CrowdStrike Falcon Cloud Security is particularly helpful because it simplifies creating and maintaining policies, and managing endpoints becomes an easy process by allowing us to isolate endpoints as needed.
In addition to the dashboard, the features related to malware protection, integrated monitoring, file protection, network scanning, firewall policies, and IPS are really good.
CrowdStrike Falcon Cloud Security has positively impacted my organization by reducing false positives and enhancing security day by day; after testing it on 100 to 200 systems, we convinced the client to deploy it across 6,000 workstations and over 500 servers.
I did see significant changes; previously, there were multiple AV products, and after deploying EDR, many initial issues were resolved as we strengthened our policies over time.
What needs improvement?
I recommend enhancing CrowdStrike Falcon Cloud Security, particularly in the areas of vulnerability management and agent troubleshooting. Improvements in these aspects would help streamline the troubleshooting process and strengthen overall security management.
For how long have I used the solution?
I have been using CrowdStrike Falcon Cloud Security for over 2.5 years.
What do I think about the stability of the solution?
CrowdStrike Falcon Cloud Security is stable in my experience.
What do I think about the scalability of the solution?
The scalability of CrowdStrike Falcon Cloud Security is good, and it can easily scale up to over 20,000 or 30,000 endpoints.
How are customer service and support?
Customer support for CrowdStrike Falcon Cloud Security is good; I find it satisfactory.
I would rate the customer support an eight out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Previously, I used multiple solutions including Microsoft Defender, Sentinel , Trend Micro, Trimix, Palo Alto, and Symantec, and while I am currently working with CrowdStrike Falcon Cloud Security and others, I have not made a full switch yet.
How was the initial setup?
CrowdStrike Falcon Cloud Security setup is straightforward.
What about the implementation team?
No integrator, reseller, or consultant was used for CrowdStrike Falcon Cloud Security deployment at our organization.
In-house SOC team handled it directly via lightweight agent scripts and console setup, keeping it straightforward and controlled.
What was our ROI?
I believe we have seen a return on investment through time saved and managed employee workload, allowing fewer employees to manage everything effectively.
What's my experience with pricing, setup cost, and licensing?
In terms of pricing, the setup cost and licensing are comparatively a bit expensive, but the solution's effectiveness and mechanisms justify the cost.
Which other solutions did I evaluate?
Before selecting CrowdStrike Falcon Cloud Security, I evaluated Trend Micro because it provides good solutions, the latest being Vision One.
What other advice do I have?
For those considering deploying CrowdStrike Falcon Cloud Security, I strongly suggest deploying it as soon as possible since it reduces both employee workload and time, while enhancing operational efficiency.
Overall, I find CrowdStrike Falcon Cloud Security to be excellent, making it accessible for both beginners and experienced users alike.
I rate this review a nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Eduardo M.
Comprehensive Cloud Security with Real-Time Threat Protection
Reviewed on Dec 04, 2025
Review provided by G2
What do you like best about the product?
What I appreciate most about CrowdStrike Falcon Cloud Security is how it delivers unified visibility and intelligent protection throughout the entire cloud environment.
What do you dislike about the product?
One aspect I find less appealing about CrowdStrike Falcon Cloud Security is its expensive pricing, which, combined with its complexity, can make it difficult for smaller teams to handle effectively.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Cloud Security addresses cloud misconfigurations and provides real-time threat detection, enhancing our security while also minimizing the need for manual intervention.
Furkan .
“Fast, accurate, and highly dependable endpoint protection”
Reviewed on Nov 19, 2025
Review provided by G2
What do you like best about the product?
“The platform provides excellent threat visibility, a lightweight agent, and highly accurate real-time detection. It is very reliable, performs consistently well, and the investigation and response capabilities are strong. The management console is intuitive, and the detection quality is noticeably hig
What do you dislike about the product?
“Overall, I am very satisfied. I would only prefer to see some advanced filtering options on the dashboard become more intuitive. Other than that, I have not experienced any significant issues.”
What problems is the product solving and how is that benefiting you?
“It helps us maintain continuous visibility across our cloud workloads and quickly detect misconfigurations, vulnerabilities, and abnormal behaviors. By consolidating cloud posture management, threat detection, and analytics on a single platform, it significantly reduces investigation time and strengthens our overall cloud security posture. This results in faster response, reduced operational overhead, and greater confidence in the security of our cloud environment.”
Amar K.
Real-Time Threat Detection with Insightful Dashboard Reports
Reviewed on Nov 18, 2025
Review provided by G2
What do you like best about the product?
The platform offers real-time threat detection and displays reports directly on the dashboard.
What do you dislike about the product?
My main concern with this product is its cost. Additionally, it tends to use a significant amount of system resources, and its features are quite limited when used offline.
What problems is the product solving and how is that benefiting you?
It helps protect against serious threats such as zero-day attacks and ransomware, reducing the risk of successful breaches. This added layer of security makes me feel more confident about my system's safety.