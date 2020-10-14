As cyberattacks have increased in frequency and severity, organizations have responded by adding cumbersome point products to the security stack in an effort to fortify their defenses. This has resulted in complex security operations environments which has hindered organizations’ speed of response in identifying threat activity and hampered their ability to stop breaches.

Fal.Con 2020 – CrowdStrike Inc. (Nasdaq: CRWD), a leader in cloud-delivered endpoint and workload protection, today announced the availability of contextual enrichment for threat detections via a unified console experience. This new capability seamlessly integrates third-party threat intelligence data with CrowdStrike Falcon detections and incidents, delivering a comprehensive picture of an organization’s threat landscape.

To address these challenges and the complex process involved with different solutions having their own management consoles and varied threat intelligence data, CrowdStrike has introduced a unified console experience for security teams, where threat intelligence from various vendors enrich detections from the Falcon platform. This provides security teams with complete visibility and richer context of threat detections required to quickly understand, stop and remediate incidents.

“In today’s fast-moving threat environment, organizations cannot afford to waste time triaging incidents in multiple, disparate solutions, before understanding the best course of action to take against a threat actor,” said Andy Horwitz, vice president, CrowdStrike Store Business. “With advanced contextual enrichment on the Falcon platform, we give CrowdStrike customers the ability to better understand alerts and incidents from external data sources. These capabilities remove the complexity and burden of managing multiple feed views and reduce manual investigation and triage work, bringing simplicity and effectiveness to security operations.”

Rich intelligence data delivered from CrowdStrike Store partners can be accessed using the cloud-native Falcon platform without requiring security teams to pivot across multiple management consoles, providing a better user experience. Organizations can simply enable the third-party app within the CrowdStrike Store to leverage threat intelligence feeds, such as indicators of compromise (IOCs), for additional context during an incident investigation, streamlining threat operations and significantly increasing the velocity of triage and remediation.