I have been using CrowdStrike Falcon Cloud Security extensively for maintaining endpoint security. It is mainly used to protect systems against malicious binaries. In our cloud environment, we use it by deploying agents on our cloud instances operating in AWS and GCP to protect these instances from malicious binaries.

The solution has significantly enhanced our incident response times when dealing with malware or possible malicious file activities. It allows me to log into machines and pull copies of suspected files, eliminating the need to physically obtain the machines for analysis.

The most valuable features are the real-time response, which allows me to log into a machine to pull files and check signatures for malicious activities, and the ability to restrict USB block storage usage on endpoints by policy.

There is room for improvement in the solution's ability to handle Linux systems. It does well for Windows, but it relies on binary scanning for Linux and lacks comprehensive rules for detecting suspicious behavior. I have had to develop my own custom rules in CrowdStrike for Linux.

I have been using this product extensively for about the past four years.

Apart from the recent media attention for causing some instability worldwide, the solution is quite stable and I haven't had any major concerns.

The solution scales very well, with the only limitation being the licensing purchased.

I have used Carbon Black extensively in the past.

The initial setup is mostly straightforward. They provide a simple way to deploy the endpoint, simplifying the installation process for users.

The solution is quite expensive. The pricing fluctuates based on various factors such as company size, and there is room for negotiation, but it is generally expensive enough that most midsize companies find it difficult to afford.

I would advise first-time users to monitor the number of endpoints regularly to ensure they are checking in. Additionally, they should add custom detections for Linux to identify unexpected behaviors, as the default detection for Linux is not very comprehensive.

I'd rate the solution nine out of ten.

I sell and resell CrowdStrike Falcon Cloud Security as part of my company's cybersecurity portfolio for endpoint detection platforms.

CrowdStrike Falcon Cloud Security assists in detecting malware and provides effective security solutions without the need for hardware servers, saving resources on infrastructure.

I find the easy installation process, quick detection capabilities, and the cloud-based console very useful for this solution.

CrowdStrike had a significant issue with Windows integration two months back. The pricing is very high and should be improved.

I have been working with and reselling CrowdStrike Falcon Cloud Security for five years.

CrowdStrike Falcon Cloud Security is very stable, and I would rate it at ten out of ten for stability.

CrowdStrike Falcon Cloud Security is scalable. I would rate its scalability as seven out of ten.

The technical support is very easy to reach and helpful; I would rate it as ten out of ten.

My company is an integrator, and I handle the deployment and implementation process personally.

The pricing of CrowdStrike Falcon Cloud Security is very high, and I would rate the current pricing as four out of ten.

I also work with Microsoft and ESET as part of my company's cybersecurity portfolio for endpoint detection platforms.

I recommend CrowdStrike Falcon Cloud Security because it provides excellent services for endpoint security and is very effective as a security solution.

I'd rate the solution nine out of ten.

We primarily use CrowdStrike Falcon Cloud Security as an XDR (Extended Detection and Response) solution, focusing on antivirus and malware protection.

It has been effective in protecting against common virus alerts, operating as a reliable security measure.

The most valuable feature is the auto-detection capability for threat hunting and issuing advisories on remedies.

The main area for improvement is pricing, as it is quite expensive. We are also curious about how it will interact with other AI tools, however, we have not encountered any limitations.

I use the solution lightly, not extensively.

It has been stable, with no observed glitches.

The solution is scalable enough, as we are managing more than 4,000 endpoints.

The customer support is very good, earning a rating of nine out of ten.

The initial setup is straightforward as it is cloud-based and one person is sufficient for installation.

We are budget-conscious and look for cost-effective solutions that can do the job efficiently.

Pricing is expensive. That said, if it does the job and is cost-effective, we go for it.

I'd rate the solution eight out of ten.

CrowdStrike Falcon is used primarily to enhance cloud security through a lot of automation in the platform. It provides benefits like automation, efficacy, and lower risk, allowing security analysts to focus on high-value tasks.

By deploying CrowdStrike Falcon, the organization can repurpose security analysts to focus on more high-value tasks due to the automation. It also optimizes on licensing because CrowdStrike covers a significant number of capabilities, which allows for the replacement of several vendors, thus reducing licensing and labor costs.

The most valuable features of CrowdStrike Falcon include its automation capabilities, efficacy, and lower risk. It also helps optimize on licensing since it covers a wide range of capabilities.

The SIEM needs to be more developed. Additionally, AI features could be enhanced.

I have been using the solution for only one year.

On a scale of one to ten, the stability of CrowdStrike Falcon Cloud Security is nine.

CrowdStrike Falcon is very scalable. I would rate its scalability as nine out of ten.

As far as I know, the technical support for CrowdStrike is rated as another nine out of ten.

One person from the partner side and two people from the customer side are usually involved in the installation process.

One person from our side and about one or two people from the customer's side are generally involved.

CrowdStrike Falcon is definitely affordable compared to competitors in the market. On a scale of one to ten, I would rate the pricing as eight out of ten, indicating some room for improvement.

I'd rate the solution nine out of ten.

I use the solution in my company to collect information about protecting the endpoint, configuration assessment, and vulnerability assessment.

The solution's most valuable feature is its threat emulation part, but there are many other important features for cybersecurity security, including endpoint protection. However, vulnerability management is for prevention, and so on.

In terms of the improvements, a detailed profile for the users for the administration of the assets will be provided so they can see the events directly on the platform if needed. In order to see events, with our policies, it should be possible from the specific assets; a user should be able to see the events related to the datasets. One of the main concerns about the tool is that the solution provides features without detailed profiles for those who should see what type of information.

The tool should do some more tests before going for updates automatically.

I have been using CrowdStrike Falcon Cloud Security for around a year. I am a user of the tool.

In terms of stability, a few days ago, there was a huge issue with CrowdStrike Falcon Cloud Security. There are some issues with the tool's stability. Many airports faced issues as airplanes were delayed in July 2024. It was a large event that left a bad impact worldwide.

I rate the tool's stability as a six out of ten.

It is a scalable solution. Scalability-wise, I rate the solution an eight out of ten.

The tool is used in telecommunications.

Around 20 people use the tool with the administration team.

I think there is a plan to increase the number of users, and it is necessary to provide this information for the different operational areas where there are a lot of people.

The support team is not able to resolve our issues in a timely manner. I rate the technical support a seven out of ten.

The product's initial setup phase is easy. If ten is easy, I rate the product's initial setup phase an eight out of ten.

It takes a long time to deploy the product since we have a large pack of devices here. We have a lot of different types of devices, so we need to be careful when implementing the functionalities and the agents.

The solution is deployed on an on-premises model, but we are planning to go to the cloud.

The solution can be deployed in around six months.

My company has evaluated tools for vulnerability management.

In terms of the threat detection capabilities, it is a good product. It is a good tool, considering all the information it provides and the automation it delivers.

In terms of the automation part, the tool has some rules that can be applied automatically. I can identify or be aware about a specific event with the help of the tool.

In terms of the improvements I have seen in my company using the tool, I would say that it offers a clear visualization of all the threats that could be on our network. I can see all types of vulnerabilities that could be dangerous or critical for us.

For now, it seems the tool is a good solution for protecting endpoints and mainly for the areas that are using Windows-operated systems.

I recommend the tool to others. It seems that when we installed the agent, it became a solution that could provide a lot of information in a centralized way.

I rate the tool an eight out of ten.

We give MDR services to many clients and extend the basic capabilities with these modules.

The automation capabilities that the tool has in order to automate responses and actions.

It's quite easy to use, as I understand the feedback from the team.

It is effective for detecting and mitigating threats.

We are automating a lot. So, it offers good automated response capabilities.

There are some issues with certain applications. We have been having some problems with Microsoft Teams and other applications.

So, there were some integration issues with this product.

The main concerns are occasional maintenance issues, less than perfect stability, and complexity compared to SentinelOne.

We have been CrowdStrike partners for three years and have been using ASPM for one year.

The agent is usually stable, but there have been recent instances of high CPU usage. In general, it works fine.

Overall, I would rate the stability a nine out of ten, one being unstable and ten being very stable. So, there's always room for improvement.

In our experience with clients no larger than 10,000 endpoints, it's scalable.

I am not sure about the large infrastructure for around 20,000 to 50,000 endpoints because it is complex for a large infrastructure.

The customer service and support are satisfactory.

We are CrowdStrike partners and have a client that uses Kaspersky, but we are looking at what kind of analysis and comparisons are available in the market.

It's easy. In general, all of the CrowdStrike modules and deployments are easy.

We provide support to the client, and the IT people install it. There are no problems because some clients have better tools to deploy, but there are many ways to do the deployment. It's easy, and we have a 24/7 support team. Deployment doesn't consume many hours.

It's easy to maintain, but sometimes there are issues with particular applications. Those have to be worked around, but in general, there are no other issues.

One engineer is enough to deploy the solution.

It's not the cheapest, but the price is fair. Some clients find it expensive, but it's scalable and has many modules.

So, the price is not too high, it is okay.

We have tried others but ultimately decided to provide MDR service only with CrowdStrike. We tested Microsoft and Palo Alto Cortex.

We do a lot of incident response, and we chose CrowdStrike for its superior features in that field. The alerts are clearer, and the capabilities are much better than the others.

But, it's a complex product. SentinelOne, for example, is much easier to use but lacks the same capabilities. For an EDR, it's better to have experts handling it and utilizing all the features CrowdStrike offers.

So, CrowdStrike is a bit complex compared to SentinelOne. It's more complex because it has more features and configuration options, but not inherently complex. The solution is complex because it's very good and has a lot of customization options.

Overall, I would rate it a nine out of ten.

I use the solution in my company primarily for endpoint detection and response. Our company has multiple endpoints at different levels, and this is basically to detect anomalies. At the back end, we have a Splunk Data Lake, where all the data goes. We use the same for alerting and monitoring purposes, on the basis of which we take action. The tool is basically used in combination with Splunk and other tools that we have in our company.

I am not part of the current monitoring team, so I do not know how they feel about the tool. I am sharing information related to the tool based on the feedback and on my experience deploying it four to five years ago.

I would not say the tool's integration capabilities were straightforward because the complexity depends on the volume of the data. I am talking about petabytes of data, so sometimes, the integration part is not so straightforward. I would say we have had our own share of issues. All in all, we were able to manage it in the long run. I tried to integrate the issue with Splunk Enterprise Security and Splunk Data Lake, too. I am not a user of Splunk, but I have just implemented it to support my customers, who are the primary users of the data.

I have been using CrowdStrike Falcon Cloud Security for four to five years.

The scalability of the product has been great. My company started off with 1,50,000 endpoints, and now we are at 2,00,000, and I believe that it speaks volumes for itself. The tool's team has been super supportive when it comes to providing support, helping us out with upgrades, and letting us know how things could work. I believe the experience with the tool has been good.

Nothing is perfect in this world. There will always be positive and negative aspects associated with the product. I have heard more positive things about the product than negative statements. As an enterprise, when you are dealing with a vendor, there are chances where, you know, there will be few misses and lots of hits.

I have experience with FireEye. In 2019, my company migrated from FireEye to CrowdStrike Falcon Cloud Security.

The product's initial setup phase is not really difficult, especially if you have managed the setup phase before. In our company, we migrated from Mandiant to FireEye and from FireEye to CrowdStrike, so it has been a journey for us over the last ten years. You get to learn as you go and embark on a journey. We were able to deal with challenges in the area of deployment that we were trying to perform, and there were not many from the vendor side. Still, at the enterprise level, you have endpoints that are across different landscapes, like if you have a cloud platform or an on-prem model, and then you have things that the vendors manage. If you are trying to deploy things at different levels with different scales, you may face some challenges, but nothing in particular with the vendor, I would say.

I have experienced an ROI from the use of the product, and it is definitely one of the biggest takeaways or the reasons that my company migrated from FireEye to CrowdStrike. The features that CrowdStrike offered our company were far more in-depth than those of FireEye. I am not saying that FireEye does not offer great features, but with the kind of landscape that we operate on, we felt that we would be better off with CrowdStrike than with FireEye. We have FireEye, and we saw that there were certain shortcomings. Getting down to the specifics, I am not part of the monitoring team, so I will not be able to give you very crisp data about it.

CrowdStrike Falcon Cloud Security's features have proven to be the most effective for detecting and responding to threats. While I was involved in the deployment, I was not involved in the product's day-to-day activity, as I was not a part of the monitoring team. I was basically on the deployment team. I do not use it on a day-to-day basis.

Speaking about the integration of CrowdStrike Falcon Cloud Security within our existing infrastructure and with third-party solutions, I feel that everything has been okay, and it is something that we need to figure out as an enterprise. When you are trying to do things at a very large scale, consisting of more than 1,50,000 endpoints, that is the scale within the enterprise that we were dealing with in the past, and it has crossed 2,00,000 right now. When trying to integrate it with other applications, the likes of Splunk or other data lakes, if I have to say, but categorically and specifically Splunk in the current case, you have to see how that is going to work and ensure whether everything will be seamless or not, and it may not be something that is possible at the first instance, but you need to try things and see what works and what does not. You also got to get the vendors along, and that is basically what my company did. In our case, we got people from CrowdStrike speaking to people from Splunk, after which whatever integration issues we had were resolved.

I recommend the product to others who plan to use it.

Everything depends upon your use cases since not one size fits all templates. The use cases vary from organization to organization. In our case, CrowdStrike Falcon Cloud Security suited us the best, which is why we went with it and moved away from FireEye, which may or may not be the case for others. I know organizations that continue to use FireEye, and they are pretty happy with it because it suits their requirements. It just fits all the use cases that they have listed out.

Whether the product needs to increase your marketing strategy or not is something that depends on what the solution wants to achieve. As far as I know, CrowdSrike has a sizable base in the market, but it completely depends on what they want to do. I don't think I am the right person to suggest or tell CrowdStrike what they need to do because the product is managed by a set of stable and sane minds who would decide how they want to strategize things when it comes to sales.

I rate the tool a seven to eight out of ten.

The solution is used for endpoint management and profiling. CrowdStrike Falcon Cloud Security offers protection against security threats or attacks.

The threat intelligence is the most vital feature of CrowdStrike Falcon Cloud Security.

Certain endpoint management features, such as encryption and extensive file integrity monitoring, should be added to the solution. The file integrity monitoring feature should be enhanced and offered more control. The functionality of DLP also needs to be enhanced.

I have been using CrowdStrike Falcon Cloud Security for two years.

The solution exhibits impressive stability. I would rate the stability a nine out of ten.

In our company, about 20 clients use CrowdStrike Falcon Cloud Security, and the total number of end-users combining all clients exceeds 1000. I would rate the scalability an eight out of ten.

Support is provided based on the service level availed from CrowdStrike. I would rate the basic tech support a six out of ten. An advanced service contract with the vendor includes more available support members for rapid response, I would rate the advanced support from the vendor an eight out of ten.

I have worked with Trend Micro, Symantec and McAfee. CrowdStrike Falcon Cloud Security is a more enhanced and cost-effective solution than Trend Micro.

The solution can be easily deployed. If numerous endpoints are involved in the deployment, automation tools like SCM can push the packages, which then start communicating with the servers.

Our company offers security service management, therefore we manage the license renewals and facilitate the regular maintenance. One product manager from our company and a team of three professionals are needed to maintain CrowdStrike Falcon Cloud Security.

It's an expensive product. The solution costs around $60 for a single user on a yearly basis. I would rate the pricing a four out of ten.

The solution's threat intelligence features enhance endpoint detection and security to a great extent. The aforementioned feature quickly detects new malware based on behavior with the assistance of an AI learning model.

The solution acts as a single agent with multiple capabilities, but some features don't perform optimally, including DLP and file integrity monitoring, which aren't extensive enough.

The product enhances endpoint security and management of global threats. The solution's AI module learns from behavior and it's able to detect behavior inconsistencies, facilitating rapid threat detection and mitigation.

I would definitely recommend the product to other users. CrowdStrike Falcon Cloud Security is slightly more expensive than other competitor solutions. Every customer of our company can't afford CrowdStrike Falcon Cloud Security, and there isn't always a need for its high-end features, so we recommend a different solution. I would rate the product a nine out of ten. I believe some features are still missing from the solution.