CrowdStrike Host and Endpoint Security

Key Features:

• Next-Generation Antivirus and Endpoint Detection: Uses signature-less, machine learning-based detection for real-time identification of malware, ransomware, and other threats. It monitors endpoint activities continuously, leveraging behavioral analysis and AI to detect sophisticated attacks. • Container and Kubernetes Security: Protects containerized applications and Kubernetes environments. Offers runtime protection, vulnerability management, and compliance features. It integrates with CI/CD pipelines and container registries for development lifecycle security. • Visibility and Threat Intelligence: Provides visibility across AWS endpoints, workloads, and network activities. Uses CrowdStrike Threat Graph and Falcon X for context-aware threat insights. Integrates with popular SIEM, SOAR, and ITSM solutions for streamlined security operations. • Centralized Management and Reporting: Offers a single-pane-of-glass management console (Falcon UI) for AWS security and endpoint protection. Supports customizable reporting, dashboards for tracking security posture, and role-based access control for large-scale AWS environments. • CrowdStrike Falcon for AWS delivers a comprehensive and powerful endpoint protection solution, ensuring robust security for AWS workloads and infrastructure. Its key technical capabilities include cloud-native architecture and integration, next-generation antivirus and endpoint detection.

• Next-Generation Antivirus (NGAV) and Endpoint Detection and Response (EDR): o Offers signature-less, machine learning-based threat detection to identify known and unknown malware, ransomware, and other threats in real-time. o Provides continuous monitoring and recording of endpoint activities, allowing for rapid threat detection, investigation, and response. o Leverages behavioral analysis and artificial intelligence to identify sophisticated attacks and advanced persistent threats (APTs). • Container and Kubernetes Security: o Secures containerized applications and Kubernetes environments against threats and vulnerabilities. o Offers runtime protection, vulnerability management, and compliance features for containerized workloads. o Integrates with CI/CD pipelines and container registries to provide security throughout the development lifecycle. • Visibility and Threat Intelligence: o Delivers comprehensive visibility across AWS endpoints, workloads, and network activities, facilitating better security decision-making. o Leverages CrowdStrike Threat Graph and Falcon X threat intelligence to provide context-aware threat insights and indicators of compromise (IOCs). o Integrates with popular SIEM, SOAR, and ITSM solutions for streamlined security operations and data sharing. • Centralized Management and Reporting: o Provides a single-pane-of-glass management console (Falcon UI) for visibility and control over AWS security and endpoint protection. o Supports customizable reporting and dashboards for tracking security posture, compliance, and risk metrics. o Offers role-based access control (RBAC) and multi-tenancy support for large-scale and complex AWS environments.