Overview
The HOOP-Jam “Switch-on” for Crowdstrike Falcon Logscale service package includes a dedicated HOOP Expert to deliver a mix of the the following services to enhance the deployment of your Falcon Logscale instance. This service starts with a kick-off workshop and a full day of enablement (often split into 2 half days due to the amount of content). It is then complimented with ongoing support through the year, in the form of regular (mostly quarterly) check-in workshops and ad-hoc support as needed. Our aim here is to keep the costs to a minimum, and to enable your teams to become highly competent in running the platform.
This service is suitable for any new SaaS or FLTR customers looking to jumpstart their Cyber Security Data journey with Falcon Logscale.
Architecture & Scoping
Identify critical infrastructure and core use cases Design architecture and scope data sources for ingestion Integration of platform with security tooling Advise on best practices for workflow integration and logging
Getting data in
Assist with data source log ingestion into Logscale data platform based on identified use cases Create and/or modify any necessary parsers for proper data presentation Create future roadmap for addition use cases & data sources
Dashboarding & Alerting
Assist with dashboard creating and customisation Deploy any necessary out-of-the-box packs based on data source requirements Enablement of security team on dashboard creating Assist with alert creating and scheduled searches
Continuous support
Monthly or quarterly check ins based on credits and customer requirements Assist with agreed roadmap and future use cases creation as per the scoping of the project Support with upcoming issues on HOOP content Keeping up-to-date with new product updates & features
Highlights
- What does the HOOP-Jam service include? Enable your security teams on what’s new with FLTR and Logscale Dashboards on Logscale Logscale query language (LQL) 101 Investigations (querying) with LQL Continuous Support Quarterly check ins Assist and advise on future adoption requirements Support with use case development
- Benefits of the HOOP-Jam service: Get up and running with Crowdstrike Falcon Logscale in 1 day Get expert continuous support from HOOP Cyber Enable your security teams on what’s new with FLTR and Logscale Get dashboards on Logscale Learn the Logscale query language (LQL) Get support for investigations (querying) with LQL Get assistance and advice on future adoption requirements Get support with use case development
Details
Pricing
Custom pricing options
Legal
Content disclaimer
Support
Vendor support
Delivered as an Annual Subscription Service, HOOP Experts wiht help you every step of the way to maturing your Crowdstrike Falcon Logscale platform.
This service starts with a kick-off workshop and a full day of enablement (often split into 2 half days due to the amount of content). It is then complimented with ongoing support throught the yearin the for of regular (mostly quarterly) check-in workshops and ad-hoc support asd needed. Our aim here is to keep the costs to a minimum, and to enable your teams to become highly competent in running the platform.
This service is intended to be delivered remotely, but can occasionally be delivered onsite depending on your location.
The following high level terms/exclusions
This service should not be seen as a replacement for a full managed service (MSSP). The HOOP team cannot create every single query - however we will assist as best as we can in the time provided. Similarly to above we can't create every dashboard, alert or anything significant outside the pre-agreed scope of the service package. We wont be able to set up every single data source (shipper + ingestion + parser) but we will pre-agree the data sources for the scope of the engagement and ensure they are fit for purpose.