• Home

  • Documents

  • Solution Brief GOOGLE CLOUD AND CROWDSTRIKE FALCON
3
Solution Brief Achieve defense in depth with cloud-scale cybersecurity strategies GOOGLE CLOUD AND CROWDSTRIKE FALCON CHALLENGES Organizations adopting cloud-native applications face an increasingly diverse and sophisticated threat landscape, and require deeper integration of cloud services and security solutions, with shared responsibility for securing and controlling the cloud estate. The rise of DevSecOps teams — combining IT operations and security functions into one — has been occurring in enterprises that are instrumenting cloud-native security controls and integrating them with existing IT infrastructure. SOLUTION The CrowdStrike Falcon® platform provides comprehensive visibility into endpoints — and the workloads, events and instance metadata that enable detection, response, proactive threat hunting and investigation — to ensure that nothing goes unseen in your hybrid environments. Google Cloud service integrations with the Falcon platform include: Chronicle, Google Cloud’s security analytics platform for accelerated incident response and proactive threat hunting VirusTotal for enriched threat intelligence Security Command Center (SCC) for threat detection aggregation BeyondCorp Enterprise for Zero Trust posture assessment and access control Google Operating System Configuration Management for automated and scalable sensor deployment These integrations between Google and CrowdStrike’s cloud-scale platforms leverage powerful APIs and rich telemetry to help deliver multi-level cybersecurity defense and drive effective, efficient solutions to the market. KEY BENEFITS Discover unknown threats with the right context and actionable intelligence Expedite and augment incident response, increasing efficiency and productivity Improve efficiency, ease of use and speed of deployment — with virtually no performance impact Gain security posture visibility and control with continuous Zero Trust checks across workloads, endpoints and identities CrowdStrike Technology Partners

Solution Brief GOOGLE CLOUD AND CROWDSTRIKE FALCON

  • Upload
    others

  • View
    8

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Solution Brief GOOGLE CLOUD AND CROWDSTRIKE FALCON

Solution Brief

Achieve defense in depth with cloud-scale cybersecurity strategies

GOOGLE CLOUD AND CROWDSTRIKE FALCON

CHALLENGESOrganizations adopting cloud-native applications face an increasingly diverse and

sophisticated threat landscape, and require deeper integration of cloud services and

security solutions, with shared responsibility for securing and controlling the cloud estate.

The rise of DevSecOps teams — combining IT operations and security functions into one

— has been occurring in enterprises that are instrumenting cloud-native security controls

and integrating them with existing IT infrastructure.

SOLUTION The CrowdStrike Falcon® platform provides comprehensive visibility into endpoints — and

the workloads, events and instance metadata that enable detection, response, proactive

threat hunting and investigation — to ensure that nothing goes unseen in your hybrid

environments. Google Cloud service integrations with the Falcon platform include:

Chronicle, Google Cloud’s security analytics platform for accelerated incident response

and proactive threat hunting

VirusTotal for enriched threat intelligence

Security Command Center (SCC) for threat detection aggregation

BeyondCorp Enterprise for Zero Trust posture assessment and access control

Google Operating System Configuration Management for automated and scalable

sensor deployment

These integrations between Google and CrowdStrike’s cloud-scale platforms leverage

powerful APIs and rich telemetry to help deliver multi-level cybersecurity defense and

drive effective, efficient solutions to the market.

KEY BENEFITS

Discover unknown threats with the right context and actionable intelligence

Expedite and augment incident response, increasing efficiency and productivity

Improve efficiency, ease of use and speed of deployment — with virtually no performance impact

Gain security posture visibility and control with continuous Zero Trust checks across workloads, endpoints and identities

CrowdStrike Technology Partners

Page 2: Solution Brief GOOGLE CLOUD AND CROWDSTRIKE FALCON

GOOGLE CLOUD AND CROWDSTRIKE FALCON

BUSINESS VALUE Comprehensive visibility and control: Gain visibility into Google Cloud workload events

and compute instance metadata with aggregated data findings — and enable detection,

response, proactive threat hunting and investigation — to ensure that nothing goes unseen

in your cloud environments.

Accelerated threat investigation and remediation: By correlating the Falcon platform’s

rich endpoint and workload telemetry with Chronicle and Security Command Center,

security teams can prioritize violations and investigate alerts, anomalies and threats with

improved contextual insight to proactively stop cyberattacks.

Proactive defense with enriched threat intelligence: VirusTotal provides access to

enriched security data coming in from over 70 security vendors to increase investigation

accuracy, and reduces alert fatigue by profiling adversaries and focusing on TTP-based

threat hunting — all leading to improved security posture.

Frictionless Zero Trust-led security posture: The seamless integration of the Falcon

platform with BeyondCorp Enterprise converges users and endpoint risk assessment to

prohibit access from untrusted hosts and improve security posture.

KEY CAPABILITIES Discover unknown threats with the right context and actionable intelligence: Eliminate

blind spots with automatic indicator of compromise (IOC) feeds derived from VirusTotal

dynamic campaign monitoring. Instantly pivot to related infrastructure and identify IOCs to

feed your network perimeter defenses and cloud services.

Proactive threat hunting: Hunt for threats across live and historical endpoint and workload

security telemetry at unprecedented speed, with shared IOCs across Chronicle and the

Falcon platform, providing proactive security. Profile adversaries with VirusTotal, conduct

proactive TTP-based hunts and automatically generate detection rules that can be

deployed in your endpoint detection and response (EDR).

Increased visibility and control: With Security Command Center integration, gain

additional visibility and control over your environment with a unified management console

that consolidates aggregate security findings to help improve the security posture of your

organization.

Real-time notification and remediation: Notify users to take action deep within the family

of Google Cloud services to correct policy violations and address security threats, based

on detections and alerts from the Falcon platform.

Continuous Zero Trust checks: Automate ongoing Zero Trust assessments of all

managed devices running Windows and macOS, sent through APIs to BeyondCorp

Enterprise to prohibit access from untrusted hosts and improve security posture.

CrowdStrike Technology Partners

WHY CHOOSE FALCON CLOUD SECURITY

Automatically gain insight into the scope and nature of cloud workloads to mitigate attacks and reduce risk

Gain comprehensive visibility into workload and container events and compute instance metadata to eliminate blind spots

Protect against active attacks and threats when cloud workloads are the most vulnerable — at runtime

Simplify deployments with cloud services without custom scripts, leveraging rich API and data stream integrations

Page 3: Solution Brief GOOGLE CLOUD AND CROWDSTRIKE FALCON

In addition to deep integrations, the CrowdStrike Falcon platform offers comprehensive visibility into cloud

workload events and instance metadata and cloud security posture management solutions (CSPM).

Falcon Cloud Workload Protection provides detection, investigation, response and proactive threat

hunting capabilities across cloud workloads and containers. DevOps and DevSecOps teams can identify

and correct any misconfigurations or vulnerabilities using CrowdStrike Falcon Horizon™ CSPM, which

provides visibility across multiple environments and reduces alert fatigue for security operations centers.

ABOUT CROWDSTRIKECrowdStrike, a global cybersecurity leader, is redefining security for the cloud era with an endpoint

protection platform built from the ground up to stop breaches. The CrowdStrike Falcon® platform’s

single lightweight-agent architecture leverages cloud-scale artificial intelligence (AI) and offers real-time

protection and visibility across the enterprise, preventing attacks on endpoints on or off the network.

Powered by the proprietary CrowdStrike Threat Graph®, CrowdStrike Falcon correlates over 5 trillion

endpoint-related events per week in real time from across the globe, fueling one of the world’s most

advanced data platforms for security.

Learn more www.crowdstrike.com

© 2021 CrowdStrike, Inc. All rights reserved.

GOOGLE CLOUD AND CROWDSTRIKE FALCON

CrowdStrike Technology Partners


CROWDSTRIKE FALCON FOR MOBILE - CrowdStrike: Cloud …ATT&CK™ for Mobile framework Unifies EDR across mobile devices, endpoints and cloud workloads Protects user privacy and preserves

CROWDSTRIKE FALCON FOR MOBILE - CrowdStrike: Cloud …ATT&CK™ for Mobile framework Unifies EDR across mobile devices, endpoints and cloud workloads Protects user privacy and preserves

Documents
CrowdStrike Services CROWDSTRIKE INCIDENT RESPONSE AND PROACTIVE …€¦ · CrowdStrike Incident Response & Proactive Services. 01 AM I BREACHED? INCIDENT RESPONSE The CrowdStrike

CrowdStrike Services CROWDSTRIKE INCIDENT RESPONSE AND PROACTIVE …€¦ · CrowdStrike Incident Response & Proactive Services. 01 AM I BREACHED? INCIDENT RESPONSE The CrowdStrike

Documents
CrowdStrike Putter Panda Intelligence Reportcdn0.vox-cdn.com/assets/4589853/crowdstrike-intelligence-report...CrowdStrike Intelligence Report ... hacking campaign is limited to five

CrowdStrike Putter Panda Intelligence Reportcdn0.vox-cdn.com/assets/4589853/crowdstrike-intelligence-report...CrowdStrike Intelligence Report ... hacking campaign is limited to five

Documents
CrowdStrike Holdings, Inc. - Stifel · CrowdStrike Holdings, Inc. Class A Common Stock This is the initial public offering of shares of Class A common stock of CrowdStrike Holdings,

CrowdStrike Holdings, Inc. - Stifel · CrowdStrike Holdings, Inc. Class A Common Stock This is the initial public offering of shares of Class A common stock of CrowdStrike Holdings,

Documents
SOLUTION BRIEF FALCON DISCOVER FOR AWS · a solution designed to stop the breach and evolve with you. LEARN MORE AT Speak to a representative to learn more about how CrowdStrike can

SOLUTION BRIEF FALCON DISCOVER FOR AWS · a solution designed to stop the breach and evolve with you. LEARN MORE AT Speak to a representative to learn more about how CrowdStrike can

Documents
CORPORATE OVERVIEW - CrowdStrike

CORPORATE OVERVIEW - CrowdStrike

Documents
CrowdStrike: Real World DTCS For Operators

CrowdStrike: Real World DTCS For Operators

Technology
EY Cybersecurity - CrowdStrike

EY Cybersecurity - CrowdStrike

Documents
Falcon Integration Gateway - CrowdStrike...In the search bar, search for “CloudFormation”. 3. In the top left corner of the CloudFormation window, select “Create Stack”. V1.6

Falcon Integration Gateway - CrowdStrike...In the search bar, search for “CloudFormation”. 3. In the top left corner of the CloudFormation window, select “Create Stack”. V1.6

Documents
CROWDSTRIKE: TRIED, TESTED, PROVEN CROWDSTRIKE FALCON: CrowdStrike Falcon … · 2020-03-16 · CROWDSTRIKE: TRIED, TESTED, PROVEN With CrowdStrike, you can be confident that your

CROWDSTRIKE: TRIED, TESTED, PROVEN CROWDSTRIKE FALCON: CrowdStrike Falcon … · 2020-03-16 · CROWDSTRIKE: TRIED, TESTED, PROVEN With CrowdStrike, you can be confident that your

Documents
CROWDSTRIKE FALCON - SECURING THE MODERN DATA … · the kernel level across your on-premises, virtual, and cloud data centers. It seamlessly spans across cloud platforms, including

CROWDSTRIKE FALCON - SECURING THE MODERN DATA … · the kernel level across your on-premises, virtual, and cloud data centers. It seamlessly spans across cloud platforms, including

Documents
THREAT INTELLIGENCE - CrowdStrike

THREAT INTELLIGENCE - CrowdStrike

Documents
CrowdStrike Falcon Event Streams Add-on Guide v2.5.1 · 2020. 8. 6. · V2-7-20-TS 1 Getting Started Prior to deploying the CrowdStrike Falcon Event Streams Technical Add-on (TA)

CrowdStrike Falcon Event Streams Add-on Guide v2.5.1 · 2020. 8. 6. · V2-7-20-TS 1 Getting Started Prior to deploying the CrowdStrike Falcon Event Streams Technical Add-on (TA)

Documents
CrowdStrike Global Threat Report 2013 YEAR IN … · CrowdStrike Global Threat Report 2013 YEAR IN REVIEW ... by these adversaries, ... CrowdStrike never confirmed the ultimate payload

CrowdStrike Global Threat Report 2013 YEAR IN … · CrowdStrike Global Threat Report 2013 YEAR IN REVIEW ... by these adversaries, ... CrowdStrike never confirmed the ultimate payload

Documents
CROWDSTRIKE FALCON: MAKING THE “IMPOSSIBLE” POSSIBLE · 2019-03-01 · Retire your legacy antivirus and deploy a next-generation solution that is independently tested and certified

CROWDSTRIKE FALCON: MAKING THE “IMPOSSIBLE” POSSIBLE · 2019-03-01 · Retire your legacy antivirus and deploy a next-generation solution that is independently tested and certified

Documents
CrowdStrike Falcon Intelligence Report on Nigerian ... · INTELLIGENCE REPORT: CSIR ... multimedia interactions ... There have been multiple open-source reports describing how money

CrowdStrike Falcon Intelligence Report on Nigerian ... · INTELLIGENCE REPORT: CSIR ... multimedia interactions ... There have been multiple open-source reports describing how money

Documents
FALCON ENDPOINT PROTECTION PRO - CrowdStrike · 2020-06-17 · CrowdStrike Falcon® Endpoint Protection Pro offers the ideal antivirus (AV) replacement solution by combining the most

FALCON ENDPOINT PROTECTION PRO - CrowdStrike · 2020-06-17 · CrowdStrike Falcon® Endpoint Protection Pro offers the ideal antivirus (AV) replacement solution by combining the most

Documents
BT Managed Endpoint Security CrowdStrike Service · BT Managed Endpoint Security – CrowdStrike Service Schedule BTL_BTGS_BTMngdEndpntScrtySrvc - CrwdStrk_Sch_published_24Aug2020.docx

BT Managed Endpoint Security CrowdStrike Service · BT Managed Endpoint Security – CrowdStrike Service Schedule BTL_BTGS_BTMngdEndpntScrtySrvc - CrwdStrk_Sch_published_24Aug2020.docx

Documents
OPERATIONALIZING THE CROWDSTRIKE PLATFORM

OPERATIONALIZING THE CROWDSTRIKE PLATFORM

Documents
SOLUTION BRIEF FALCON ENDPOINT PROTECTION PLATFORM … · for AWS Elastic Compute Cloud (EC2) CrowdStrike Solutions SOLUTION BRIEF FALCON ENDPOINT PROTECTION PLATFORM (EPP) FOR AWS

SOLUTION BRIEF FALCON ENDPOINT PROTECTION PLATFORM … · for AWS Elastic Compute Cloud (EC2) CrowdStrike Solutions SOLUTION BRIEF FALCON ENDPOINT PROTECTION PLATFORM (EPP) FOR AWS

Documents
CrowdStrike Products

CrowdStrike Products

Documents
FALCON OVERWATCH MANAGED THREAT HUNTING · Director of Information Technology, TransPak. CrowdStrike Products FALCON OVERWATCH MANAGED THREAT HUNTING CROWDSTRIKE MANAGED THREAT HUNTING

FALCON OVERWATCH MANAGED THREAT HUNTING · Director of Information Technology, TransPak. CrowdStrike Products FALCON OVERWATCH MANAGED THREAT HUNTING CROWDSTRIKE MANAGED THREAT HUNTING

Documents
CROWDSTRIKE FALCON NEXT GENERATION ENDPOINT … · 2020. 6. 17. · detects advanced threats and malicious activities automatically, using IOAs (indicators of attack) to instantly

CROWDSTRIKE FALCON NEXT GENERATION ENDPOINT … · 2020. 6. 17. · detects advanced threats and malicious activities automatically, using IOAs (indicators of attack) to instantly

Documents
FALCON SIEM CONNECTOR - CrowdStrike · OPTIMIZED SECURITY EVENT GATHERING ON THE ENDPOINT Using Falcon Host in conjunction with the Falcon SIEM Connector offers a fast, simple and

FALCON SIEM CONNECTOR - CrowdStrike · OPTIMIZED SECURITY EVENT GATHERING ON THE ENDPOINT Using Falcon Host in conjunction with the Falcon SIEM Connector offers a fast, simple and

Documents
WHY LAW FIRMS TURN TO CROWDSTRIKE...WHY LAW FIRMS TURN TO CROWDSTRIKE Crowdstrike Services 1. EASY TO WORK WITH CrowdStrike is focused on a relationship-based partnership. The consultants

WHY LAW FIRMS TURN TO CROWDSTRIKE...WHY LAW FIRMS TURN TO CROWDSTRIKE Crowdstrike Services 1. EASY TO WORK WITH CrowdStrike is focused on a relationship-based partnership. The consultants

Documents
CrowdStrike Global Threat Report Crowdcast

CrowdStrike Global Threat Report Crowdcast

Technology
Implementation Guide: CrowdStrike Falcon Discover for Cloud · teams find they must pivot across a variety of tools and workflows as they attempt to span ... instantly and scales

Implementation Guide: CrowdStrike Falcon Discover for Cloud · teams find they must pivot across a variety of tools and workflows as they attempt to span ... instantly and scales

Documents
Installation and Configuration Guide€¦ · Getting Started Prior to deploying the CrowdStrike Falcon Intel Indicators Add-on ensure the following: 1. The latest version of the TA

Installation and Configuration Guide€¦ · Getting Started Prior to deploying the CrowdStrike Falcon Intel Indicators Add-on ensure the following: 1. The latest version of the TA

Documents
FALCON ENDPOINT PROTECTION ENTERPRISE · CrowdStrike® Inc., a global cybersecurity leader, is redefining security for the cloud era with an endpoint protection platform built from

FALCON ENDPOINT PROTECTION ENTERPRISE · CrowdStrike® Inc., a global cybersecurity leader, is redefining security for the cloud era with an endpoint protection platform built from

Documents
CrowdStrike Global ThreaT InTel reporTgo.crowdstrike.com/.../ReportGlobalThreatIntelligence.pdf · 2020-04-26 · 4 GLOBAL THReAT INTeL RePORT TwO THOUSAND FOURTEEN At CrowdStrike,

CrowdStrike Global ThreaT InTel reporTgo.crowdstrike.com/.../ReportGlobalThreatIntelligence.pdf · 2020-04-26 · 4 GLOBAL THReAT INTeL RePORT TwO THOUSAND FOURTEEN At CrowdStrike,

Documents