I use the solution for protection on the go for end-user computers, identity management, proactive awareness of devices on the network, and statistical collection on the devices.
CrowdStrike Falcon Cloud Security
CrowdStrikeExternal reviews
101 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Crowdstrike falcon best EDR tool
What do you like best about the product?
It's real time detection and proactive response based on predefined rules.
What do you dislike about the product?
Time zone UTC has to reset everytime if you are in pst
What problems is the product solving and how is that benefiting you?
Real time response to APTs
Inbuilt Mitre attacks tactics to identify threats
Inbuilt Mitre attacks tactics to identify threats
Lightweight and has login features like multi factor authentication
What is our primary use case?
What is most valuable?
The solution's most valuable feature is that the solution for IT security is not based on the on-premises solution; it is available on demand. It is lightweight and can be held on a mobile device. The solution has login features like multi factor authentication. The tool facilitates data collection of the equipment on the network, including solutions on whether to remove or keep some computers.
The solution interacts with the domain controller and gives an update on what specifics may be harmful to the environment so that we can tag it to the users before they actually contact the IT team for support.
What needs improvement?
While it may be able to show the user in the drill zone, it could have a listed column at a higher level. That way, it would help the IT team do targeted interventions rather than having to drill into the details. The tool could give us more templates so that people who are not updated with the platform can easily get acquainted with how to secure and utilize the product more.
The only thing I don't like about the application is when a computer name changes, the CrowdStrike app maintains the two devices. The name or the MAC address was different. I'm unsure if the solution can flush the database based on the similarities in the MAC address.
The solution lists the equipment but maintains the tool name on to something else. If we have renamed the equipment that joined the platform before, we just delete it manually. So, we know which one is now the new name.
For how long have I used the solution?
I have been using CrowdStrike Falcon Cloud Security for more than two years.
What do I think about the scalability of the solution?
We are confident that the solution should be able to scale well based on the current features and the modular programming that it appears to be doing. The idea of scalability is that it can handle volumes of data requests outside of what our environment is doing. We not only deploy the solution in one domain controller, but what we can see on the domain controller is based on our environment setup. Based on the hybrid point of view, I think the solution is very scalable.
We have around 500 users working with the solution in our environment. In my environment, we're testing to see if we need to increase usage. If not, the other solution would be mobile device management to handle the other exceptions we currently see.
I rate the solution’s scalability an eight out of ten.
How are customer service and support?
When we recently got the licenses, we were told to do something. When we observed that we didn't want to transfer where we were, they did something else to help with the solution. The technical team is not just technical; they're also human in that they're adaptable to customer needs and provide guidance.
How would you rate customer service and support?
Positive
How was the initial setup?
The team was awesome at implementing the tool. When we transferred to the paid version, the technician or engineer from CrowdStrike transferred to the new tenant without redeploying the endpoint, which was awesome for me.
On a scale from one to ten, where one is difficult and ten is easy, I rate the solution's initial setup a nine out of ten.
What was our ROI?
I can't give you a percentage of the return on investment. The solution protects me from the cybersecurity threats, which is very good for me and my team. So, I'm giving you a qualitative response as opposed to a quantitative response.
What's my experience with pricing, setup cost, and licensing?
It's an expensive package but does what it says it will do. Specialists are usually not cheap, so you expect to have a great package. They help you customize it, so I think it is worth it. The solution's pricing is in the same range as FortiEDR's. We paid over five million dollars for our package based on the number of subscriptions and the other add-ons to the package bundle.
The licensing fee we pay for the solution doesn't include managed services because my technical team and I were able to handle the product. It's very easy to maneuver. There's no additional cost for us to use the product outside the bundle we've requested. We ask for the basics, and then we include add-ons for the identity and server management. That will be the only add-ons cost that is manageable.
I rate the solution’s pricing an eight out of ten.
What other advice do I have?
The dashboard gives an overview of the last login for somebody besides you. You know what is going on at a high level since you don't always have to have one operating system or environment. The suggestion and the data dictionary or the look of the threat environment are also helpful because they help us prepare against the threat landscape once it is known.
Based on how the organization is listed, you could classify the equipment according to an organizational unit to identify the component. That is helpful because if you're being attacked, you can see where the entry point comes from based on the response coming from the panel. This response can be emailed to the team.
The solution is deployed on the cloud. Before buying the solution, understand the technology gap so that you can look for the features you need. Any lightweight product that can be accessed on a mobile device on the go or outside the office is a great product for security specialists. The solution offers good availability and multi factor authentication. Some security concerns are built into the tool's security package.
It helps you understand the ecosystem of lurking threats waiting to come to your network or already on it. It is a great product for those who want inventory insight into their network. It gives you a lot of details that you probably wouldn't have captured if you didn't have great inventory management from an IT perspective.
The tool can also help you plan your next product or procurement of equipment to get better feedback on what's going on from your user experience. For me, the solution's statistics insight is great. The dashboard is awesome because you don't have to look for something. It can tell you exactly which computers are online and which haven't come online for a long time.
From a technological point of view, you can call and find out why equipment is not online to make a proactive decision.
I believe AI has always been a part of the package we've been using for a time. The proactive threat hunt based on statistics in the environment is a part of the AI search feature in the portal. From a cybersecurity point of view, if the product can detect a threat lurking in your network, it helps you sleep better at night because you don't have to look for it all the time.
The statistics provided via email or in the CrowdStrike environment point you in a direction so you can do something. If you don't want to do it yourself, the tool can be trained to do it automatically for you if you allow the settings.
Overall, I rate the solution a nine out of ten.
CrowdStrike Falcon Cloud Security Review
What do you like best about the product?
It is the fast cloud security scanner and manage the entire infrastructure in couple of seconds.
What do you dislike about the product?
It's price is high as compared to Indian markets trends.
What problems is the product solving and how is that benefiting you?
It managed my entire cloud infrastructure and scan it in less time. So save my more time on enhancing my cloud.
Greatest of all time
What do you like best about the product?
It's ability to identify threats on proactive basis, having MITRE tactics integrated makes it more capable
What do you dislike about the product?
Sometimes it creates false positives because of lack of information of client with CS team
What problems is the product solving and how is that benefiting you?
It helps us to identify threats based on its predefined rules, MITRE tactics and APTs
Best in EDR Category, Provides enriched details on Process data , IOC & TTP database remains updated
What do you like best about the product?
I would like to keep this short & crisp, Crowdstike has really helped our organization in blocking a lot of threats, malicious executions, C&C connections & discovered malicious behavior in our company environment. It gives a lot of enriched data on process involved in any alert which helps to investigate the incidents.
Their IOC database is also very updated all the time, in recent times it helped us to stop the 3CX vulnerability to spread in our environment by alerting us on time and providing all the details about the already present infection
Their IOC database is also very updated all the time, in recent times it helped us to stop the 3CX vulnerability to spread in our environment by alerting us on time and providing all the details about the already present infection
What do you dislike about the product?
The only disadvantage I can think as of now is the cost of data storage in crowdstrike cloud, which is pretty high. We need to store all the historical logs in our amazon storage as logs are in crowdstrike for a small time only
What problems is the product solving and how is that benefiting you?
Other vendors which we were using earlier were giving a lot of false positives & their IOC database was staled too(old data). Crowdstrike has solved this problem for us which helps us to provide good data to the management
Crowdstrike Falcon Cloud Security - a comprehensive cloud security solution
What do you like best about the product?
Coherent admin platform, excellent AI and ML capabilities, less false positives, overall a secure solution
What do you dislike about the product?
the only thing I can mention here is its a expensive solution.
What problems is the product solving and how is that benefiting you?
It helps in controlling and managing the Cyber threats in the cloud environment in a centralized way.
All in One cloud Based Security for the multi cloud providers
What do you like best about the product?
All the solution of the crowd strike is Best but i liked most is the user friendly and with the best of best security solution with cloud technology
What do you dislike about the product?
NO, As of now i have not seen the any limitation with the crowdstrike falcon
What problems is the product solving and how is that benefiting you?
In your organization we have implemented a multi-cloud solution but we were lagging between the cloud security because one cloud security had a limitation with another cloud provider then we got to know about Cloudstrike Falcon cloud security all in one solution for the multi-cloud companies
Amazing ool to track down all the host
What do you like best about the product?
Real-time protection quick detection and response
What do you dislike about the product?
In my opinion I thinl the investigation part can be more improved
What problems is the product solving and how is that benefiting you?
The problem i had face is the time zone it is always showed me 7:00+ hours
Most effective edr tool I have used till now
What do you like best about the product?
Using host and ip investigation feature on my day to day task in investigating incident, sandbox is also a great feature to deal with malicious files and network containment is by far the most used and helpful features security wise I think
What do you dislike about the product?
Need to improve commands that we can use after connecting with the host and also there should be demo videos page in the portal to help in certain times
What problems is the product solving and how is that benefiting you?
It is definitely effective in client security, scanning of client in real time, malicious process program and file injection can be monitored, also network containment in case of a threat is a great to have as an security admin
Best SIEM Tool
What do you like best about the product?
Crowdstrike Falcon Cloud Security is one the best SIEM tool with ease of installation and use. There are multiple features and it is easy to integrate with other tools. We have been using it from past 1 year and are fully satisfied.
What do you dislike about the product?
The only issue faced is of time-zone setup, the logs are generated in UTC and the nwe have to convert it to the requried time-zone/
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Cloud Security is helping getting the granular details of the processes and activities running on the hosts on a single dashboard.
showing 31 - 40