CrowdStrike Falcon Cloud Workload Protection
A solution for securing cloud workloads across hybrid and multi-cloud environments.
| Category | Workload Protection |
|---|---|
| Last Commit | 1 year ago |
| Last page update | 19 days ago |
| Pricing Details | Contact for pricing details. |
| Target Audience | Organizations using cloud services and seeking to secure their workloads. |
CrowdStrike Falcon Cloud Workload Protection addresses the complex challenge of securing dynamic and diverse cloud environments by providing comprehensive visibility, protection, and response capabilities across hybrid and multi-cloud setups.
The Falcon platform leverages a lightweight, cloud-native agent that secures both hosts and containers, offering real-time protection and visibility. This architecture allows for the automatic discovery of cloud workload footprints, including AWS EC2 instances, GCP Compute Engine instances, and Azure virtual machines, without the need for additional agents. It captures detailed metadata on system configuration, networking, and security groups, ensuring that all workloads are visible and protected.
Key to its effectiveness is the integration of cloud-scale artificial intelligence (AI) and machine learning (ML) through the CrowdStrike Threat Graph, which correlates over 3 trillion endpoint-related events weekly. This enables the detection and response to known and unknown malware, as well as sophisticated attacks, without relying on signatures or scanning. The platform supports a broad range of environments, including Windows and Linux, and is compatible with various container orchestration platforms like Kubernetes, EKS, GKE, and AKS.
Operational considerations include the platform's ability to integrate with DevOps workflows, allowing security to be applied at the speed of continuous integration/continuous delivery (CI/CD) processes without impacting performance. However, the dynamic nature of cloud workloads means that the solution must adapt quickly to scaling and ephemeral workloads, which can sometimes introduce complexity in managing and scaling the security posture.
The Falcon Cloud Workload Protection Complete offering further enhances this capability by providing 24/7 expert security management, threat hunting, and response, backed by CrowdStrike’s Breach Prevention Warranty. This includes continuous human threat hunting by the Falcon OverWatch team, which leverages proprietary methodologies to detect and stop sophisticated threats in real-time.