CrowdStrike Falcon OverWatch now offers additional services levels for customers who want guided response and remote incident management
CrowdStrike has launched new service levels for its Falcon OverWatch managed threat hunting solution. The new offerings add guided remediation and remote incident management options for customers and the flexibility to choose the best response and remediation strategy that meets their needs.
CrowdStrike is leading the market by offering a managed threat hunting service (referred to as Managed Detection and Response (MDR) Services by Gartner) supported by the CrowdStrike Falcon Platform to help companies detect threats and prevent the mega breach. Leveraging CrowdStrike’s industry-leading threat telemetry, collecting more than 40 billion events a day, the Falcon OverWatch team has unrivalled insights into the modern-day threat landscape and takes managed hunting to a new level of fidelity and precision. With real-time backing by CrowdStrike Falcon Insight, CrowdStrike’s endpoint detection and response (EDR) solution, and world-class threat intelligence, the Falcon OverWatch team has deep visibility, rapid investigation and remediation capabilities to support customers with threat hunting, alert prioritisation and response 24x7x365.
According to Anton Chuvakin, research Vice President at Gartner for Technical Professionals (GTP) Security and Risk Management group, “In addition to uncovering the hidden threats in your environment, ongoing threat hunting will improve your knowledge of your IT environment, reveal unmanaged and rogue systems, and deliver other side benefits. It will also enrich your internal threat intelligence efforts, if any.” [1]
CrowdStrike is releasing new service levels for its Falcon OverWatch managed threat hunting service. These unique service levels provide flexible options for organisations of all sizes:
- OverWatch Standard – Built for organisations that elect to handle response to security alerts internally, OverWatch Standard provides all the advantages of 24x7x365 managed threat hunting, with prioritised actionable alerts that include recommendations for remediation, enabling efficient and effective internal incident response.
- OverWatch Essential – Developed for organisations that prefer assistance with OverWatch alerts, OverWatch Essential includes all the benefits of OverWatch Standard and adds closed loop communication and 24/7 follow-up in the event of a detection. OverWatch Essential also includes the ability to engage directly with CrowdStrike experts who can provide guidance and expert advice.
- OverWatch Elite – For organisations that want incident hunting and response handled by CrowdStrike, OverWatch Elite provides the highest level of support, including fully-managed OverWatch alert response, custom response to incidents, and effective remediation implementation.
With Falcon OverWatch, CrowdStrike stops more than 15,000 breach attempts every year across its global customer base located in 176 countries. In addition, customers benefit from the crowdsourcing power of CrowdStrike’s fully cloud-based platform as each attack detection feeds into defences for the entire community.
“Earlier this year, we expanded our CrowdStrike Falcon portfolio to enable customers to implement our endpoint security technology in a flexible and modular manner that best meets their needs,” said Dmitri Alperovitch, CrowdStrike’s co-founder and chief technology officer. “Following this same model, the new Premium Support levels will deliver the expertise and benefits of our managed hunting and response at the service levels fit for customers of every size. We couldn’t be more pleased to expand our service tiers as our customers see our OverWatch team as a critical line of defence to stop the mega breach. ”
For additional information on Falcon OverWatch, watch the on-demand webcast, “Proactive Threat Hunting: Game-Changing Endpoint Protection Above and Beyond Alerting.”
About CrowdStrike
CrowdStrike is the leader in cloud-delivered, next-generation endpoint protection. CrowdStrike has revolutionised endpoint protection by being the first and only company to unify next-generation AV, endpoint detection and response (EDR), and a 24/7 managed hunting service — all delivered via a single lightweight agent. The CrowdStrike Falcon platform, certified to replace legacy antivirus, has reinvented how endpoint security is delivered with its industry-leading, cloud-native architecture. CrowdStrike Falcon protects customers against all cyber attacks, using sophisticated signatureless artificial intelligence/machine learning and Indicator-of-Attack (IOA) based threat prevention to stop known and unknown threats in real time. Core to its innovative approach is the CrowdStrike Threat Graph which analyses and correlates over 34 billion events per day from millions of sensors deployed across 176 countries, uniquely providing crowdsourced protection for the entire customer community.
Many of the world’s largest organisations put their trust in CrowdStrike, including three of the 10 largest global companies by revenue, five of the 10 largest financial institutions, three of the top 10 healthcare providers, and three of the top 10 energy companies.