CrowdStrike Falcon platform enhancements improve SOC efficiency

2021-03-05 03:45

CrowdStrike announced enhancements to the CrowdStrike Falcon platform that significantly improve Security Operations Center efficiency and effectiveness, allowing security teams to focus on critical priorities and fortify their organizations' proactive stance against cyber threats.

CrowdStrike customers can accelerate their security operational response with new notification workflows and Real Time Response capabilities within the CrowdStrike Falcon platform, automating full-cycle incident response.

The new CrowdStrike UI enhancements move the SOC workflow to a proactive incident-based workflow by allowing customers to view, assign, update the status of and comment on related detections.

Customers can streamline their SOC operations with the new CrowdStrike Falcon notification workflows that provide automated real-time notifications tailored to specific types of events, conditions and cloud security posture findings and then be seamlessly delivered via email, generic webhooks or through Slack and PagerDuty integrations.

The power of CrowdStrike's cloud-native and single-agent architecture means that customers can use the RTR framework through CrowdStrike Store apps without needing to update agents or deploy and configure new software to automate response actions.

CrowdStrike customers can now deploy automated security, response and vulnerability remediation playbooks from CrowdStrike Store partners, such as recently launched Tines and Vulcan Cyber, to leverage detections and incidents from the Falcon platform, and bring speed, consistency and scale to distributed SOC teams.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/wc-cYiLg5Wg/

#crowdstrike #SOC