TrustRadius Insights for CrowdStrike Falcon are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.
Pros
AI/ML-based detections: Users have consistently praised the clear presentation on the dashboard and easy filtering options based on various criteria like hostname, detection name, severity, date, and time. Many users find this feature to be highly intuitive and effective in managing security alerts.
Full process chain tracing: The ability to trace the complete process chain instead of just showing the source file or script is highly valued by reviewers as it significantly aids in identifying and addressing main security concerns promptly and accurately.
Enhanced security measures: Users appreciate the network segmentation for hosts and servers using firewall capabilities, USB blocking by the sensor, and IDP alerts from different domains. These features are seen as beneficial for strengthening overall security measures within their environments.
My organization uses CrowdStrike Falcon to monitor and protect all of our endpoints. This provides the team insight into any potential malicious activity based upon scripts spawning from word or excel files. CrowdStrike Falcon allows the team to get detailed analysis and records of the who, what, when, where and why that other solutions could not provide.
Pros
Granular Details
Kill Chain Analysis
Minimal impact to users
Cons
Transparency into the global outage 1-2 years ago
For a new tech, there is sometimes too many details
If there could be an AI guiding a tech where to look/review next.
Likelihood to Recommend
CrowdStrike Falcon is well suited for any size of environment. Large to small, CrowdStrike Falcon does an amazing job. The ability to have the same security as a fortune 500 company and have a solution that sees the same threats that they are seeing is amazing. I do not think that there is a company or environment that wouldn't benefit from the CrowdStrike Falcon solution.
VU
Verified User
Manager in Information Technology (Financial Services company, 201-500 employees)
CrowdStrike allow us to have more confidence when we go to cloud and whenever our endpoints have multiple touchpoint to the outside world. As the company get bigger, threats such as phising and other malicious attack cannot be avoid. That is why we need an active forms of defence where we can rely to help us detect, stop, limit the spread and asses damages if any and prepare us for remedial solution and actions. Their strengh are also in their services where it comes in handy after the incident or preventive way. Also, by adopting integration with other tools will boost both CrowdStrike and the other platform. Integration itself should not be a problem as CrowdStrike is a staple name in the cyber security area making adaptor and other integration are usually already ready out of the box
Pros
Detect
Find source of attack
After incident review
Cons
Android support
Ios support
BYOD scheame and personal devices
Likelihood to Recommend
Corporate and enterprise environment is the best entity to adopt it, but they have very minimal support for smaller and private business. Their top of the line license only available for company with the size of 300 and more endpoint while smaller business with limited IT resources will havr difficulties implementing it
VU
Verified User
Manager in Information Technology (Insurance company, 51-200 employees)
We have CrowdStrike Falcon Complete installed on all devices that a user can log into, so servers, desktops, laptops, etc. CrowdStrike does a terrible job of stopping anything that is unexpected and potentially dangerous, while not impacting the users ability to get their job done. Management is relatively straight forward and notifications are timely and informative
Pros
Block malicious or suspicious activity
Isolate computers, while still maintaining administrative access to troubleshoot
Alerting of activities and interceding on our behalf when warranted to isolate or remediate
Cons
Since we have CrowdStrike installed on all endpoints, and they are already capturing data, i wish the SIEM component was included, but It's a different service
Likelihood to Recommend
CrowdStrike is the gold standard in the endpoint security space. Even after the issue they experienced last year, no one that I speak to had indicated a desire to move aware from them. They provide a very high level of protection and their customer service department is very responsible and knowledgeable
VU
Verified User
Director in Information Technology (Legal Services company, 501-1000 employees)
The Falcon Complete acts on our behalf when a problem/incident happens. they applied the policies for us and monitor the compatibility of windows patches with their agents. The main case for the complete is - We have a team 27/7 that verifies the alerts/incidents for us.
Pros
24/7 Monitoring
Quick response - good SLA
Compatibility with many apps
Good heuristics
Cons
Interface is not so friendly
Support could community more with us
reporting is not the best
Likelihood to Recommend
they have room for improvement related to interface and reports, but overall product is good.
VU
Verified User
Employee in Information Technology (Transportation/Trucking/Railroad company, 501-1000 employees)
We use CrowdStrike and Falcon Complete as our security partner. It is deployed across all desktop endpoints. It is one of our primary layers of defense with regard to security. It is managed by our head of security and some tasks are outsourced to other I.T. staff. We count on this product to increase our uptime with employees and, therefore, their productivity.
Pros
The false positives are minimal for our I.T. staff.
I think it's an innovative product.
There is a large user base, which gives us some confidence in their reliability.
Cons
Support - we are often tasked with running down problems rather than being directed by support.
The sales staff we have dealt with are not very responsive or timely.
I believe this is a product built for installations of 300 users or more.
Likelihood to Recommend
As I mentioned, I think it's built for larger infrastructures rather than small to medium businesses. Their price models seem to reflect that. For our number of users, it seems to be a little on the expensive side. I believe for that reason, it would scale well to thousands of endpoints. Their dashboard page is built well for an overview of security issues.
VU
Verified User
C-Level Executive in Information Technology (Construction company, 51-200 employees)
We use CrowdStrike for XDR and Identity protection. We have a very distributed team; for us, it is very important to keep our assets protected, and to maintain a healthy AD, we rely on identity protection. We love the ease of use and the valuable insights and dashboards we receive from CrowdStrike. We compared it against other vendors, and the most complete was CrowdStrike. It features numerous third-party integrations for logs, elevating our SOC to the next level.
Pros
Endpoint protection.
Next Gen Siem.
Identity Protection.
CNAP
Cons
Offline protection.
Likelihood to Recommend
Falcon boasts numerous exciting features. In our case, we like that it has a lot of Intelligence, which allows us to detect different attack vectors and respond to them in a very timely fashion. Having the NGSiem, it will enable us to cross data, act on different alerts, and analyze them with a vast amount of data.
We are a business associate to many healthcare organizations, and rely on ingesting ePHI data for our software. We absolutley need "best in class" threat protection and mitigation to protect not only our business, but the hospitals and other healthcare entities we serve. CrowdStrike Falcon complete absolutely protects us and our clients, and provides the visibility and peace of mind into our systems we are looking for.
Pros
Threat protection
Threat Mitigation
Idenity protection
Cons
Customer Service / Tech assistance
Siloed functionality
Likelihood to Recommend
There is absolutely no doubt that CrowdStrike is an industry leader when it comes to cyber threat protection and mitigation. They are recognized for their capabilities and are widely used by many different organizations. However, the trade off is that you will pay for this premier service, as CrowdStrike does not come cheap, and every function is behind another add-on subscription. They also have a very mature document library and knowledge base, which you will find out and get to know every time you have a support question, as you are directed to it whenever you contact tech support.
CrowdStrike Falcon is very good product for all types of organizations.we use CrowdStrike Falcon primarily for endpoint security and threat response.CrowdStrike Falcon features - Lightweight agent,single Console for all modules,easy to use,implement in minutes.traditional antivirus often struggle to detect sophisticated threats like ransomware,fileless threat, zero day exploits .CrowdStrike Falcon gives you rapid response with AL and ML and behaviour monitoring and improve security posture. CrowdStrike Falcon provides you autonomous endpoint protection,threat hunting,auto remediation.So overall CrowdStrike Falcon is value for money product.
Pros
Threat detection in real time.
Rapid response
comprehensive visibility
User friendly Interface
easy to deploy
Innovative road map
Cons
Make single policy for all os
costly for SMB
Need improvement in data protection
Likelihood to Recommend
CrowdStrike Falcon is very good product for detecting and response for sophisticated threat like ransomware ,fileless attack in compare for legacy anti virus .CrowdStrike Falcon is very suitable for endpoint protection but less suitable in data protection because it support only for windows and protect only two channels web and USB and customs regex in bit complicated.
VU
Verified User
Engineer in Information Technology (Security & Investigations company, 501-1000 employees)
We use the CrowdStrike Falcon XDR platform with some of the addons, like IdP and spotlight, and find it works well as a complete solution for endpoint protection, as well as a SIEM. The IdP module integrates well with AD and Entra ID, and the workflows also integrate well enough with everything else via webhooks.
Pros
Endpoint Protection
Identity Protection
SIEM
Cons
Vulnerability and Patch Management
Integration with a lot of cloud services, like Meraki, require a local syslog server as a forwarder
All help articles and the knowledge base require a login every time
Likelihood to Recommend
Good for medium to large businesses, but small businesses would find it a bit too complex to set up and manage. You need to take the time to fine tune the settings and to manage and respond to detections, as well as build up a number of automated responses based on your particular risk strategy.
VU
Verified User
Employee in Information Technology (Real Estate company, 51-200 employees)