Try our new research platform with insights from 80,000+ expert users
reviewer1976382 - PeerSpot reviewer
Team Lead for Global Security at a non-tech company with 201-500 employees
Real User
Great threat intelligence with a healthy MDR response time and excellent SLAs
Pros and Cons
  • "As an end-point solution, nothing beats it, to be honest."
  • "Their UI is a bit noisy."

What is our primary use case?

This is their XDR/MDR service offering. Basically, we used it as our endpoint EDR software. We also leveraged their MDR services to outsource any SOC duties for threat detection and containment. 

We used it in conjunction with LogicHub to have some SOAR capabilities for specific use cases in our environment, which was very useful. It really reduced time for our analysts to do simple detections or things that are triggered for basic automation rules based on a threat instance. 

We used it as a vulnerability dashboard for endpoint management. We deployed the agent in 95% of our endpoints.

It worked much better as an endpoint management tool, like for vulnerability management to track vulnerabilities. It's more about trust and verification rather than relying on the IT Ops team to give us regular reports on the vulnerabilities on the endpoints. 

We relied on the CrowdStrike system to provide evidence to the IT Ops team for patching things that were not really patched. It really worked well for third-party patch management. It's not labeled for that use. However, it worked really well and really helped our patch management initiative with 24/7 coverage for all our endpoints.

We used the quarantine feature as well a few times. We did a trial for it. 

As an end-point solution, nothing beats it, to be honest.

What is most valuable?

Their threat intelligence is very good. Their MDR response time and the SLAs they have with their MDR SOC team are very good and responsive. Those two have saved us from breaches a few times in my previous role, so it's proven pretty valuable.

What needs improvement?

The only thing is you have to pay for it, and it's on the expensive side. That's the one thing with any of these services. It also rates highly on the Gartner scale, so obviously, pricing is a bit high.

Their agent is a bit finicky for Mac devices. It works great once you get it working, however, it is a bit finicky to get it deployed across the board. It's not CrowdStrike's fault for the Mac thing, it's just the way Mac is, even though it's not a big concern. 

Their UI is a bit noisy. They have too many sections and they have too many components. It's hard to get all that data into one dashboard, and Falcon Complete has multiple dashboards. It gets a bit cumbersome, that's the only area I would focus maybe a little bit.

Other than that, we didn't really hit any roadblocks, to be honest.

For how long have I used the solution?

I used it in my previous role for about three and a half years.

Buyer's Guide
CrowdStrike Falcon Complete MDR
December 2024
Learn what your peers think about CrowdStrike Falcon Complete MDR. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.

What do I think about the stability of the solution?

The stability is very good. 

What do I think about the scalability of the solution?

Scaling is very easy. We had over 4,000 systems, and we had them installed in AWS servers. Scalability and installation-wise, it is super easy.

How are customer service and support?

Support has been very good.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I've also used Sophos, those guys are very similar.

How was the initial setup?

Installation is very easy.

Once it's installed, we have a team of four that can handle maintenance duties. SOC operations and IT operations can handle deployment and maintenance tasks. 

What about the implementation team?

IT Ops helps with the installs and they do some of the installs themselves.

What's my experience with pricing, setup cost, and licensing?

I cannot recall the exact pricing of the solution. 

The pricing is fair for what it is. They do provide good service, and the threat intelligence engine is really awesome. I would rate them 4.5 out of five in terms of affordability.

What other advice do I have?

We are just customers and end-users.

What you have to do with any type of endpoint management solution is look at the effort that's required to deploy any solution. I'd recommend new users do a POC for sure in the beginning. And then, based on the POC, always try to negotiate pricing. Definitely do as long as a POC as you can, proof of concept, and see if the solution meets your environment's needs.

I'd rate the solution a nine out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
RageshSingh - PeerSpot reviewer
Cyber Security Engineer at a computer software company with 51-200 employees
Real User
Top 10
Has a nice interface and good integrations but there should be an uninstall feature on the cloud
Pros and Cons
  • "It is a cloud-based solution. You can easily scale it."
  • "The installation could always be a bit easier. You need to install it manually at the endpoint."

What is our primary use case?

I use the solution for a lot of things. It has more visibility than core tech. For example, it's better the TSC scores and that any integration visibility with Zscalar.

How has it helped my organization?

The solution helps to provide a better security posture. 

What is most valuable?

The solution provides more visibility than Zscaler.

There's more security. It provides enhanced security with integration capabilities with third-party tools. 

The threat detection and response are easy. If you have a subscription for the Falcon Consultant Complete sublicense, then they will take care of your MDL service. They will assign their team to it, and they will manage your incident detection and monitoring. CrowdStrike will take care of it via its own expertise so you don't have to overload your existing resources. 

It helps improve our security posture by integrating with web security, email security, and other forms of security. There are also a lot of third-party tools. You have the opportunity for more alerts and security. CrowdStrike shares information with third-party tools that really help with visibility.

The solution is constantly being updated. 

I've been satisfied with the interface. 

What needs improvement?

We'd like to see the option for an uninstall feature directly on the cloud. It's a tokenless install; however, you should have a token while installing and uninstalling. 

The installation could always be a bit easier. You need to install it manually at the endpoint. 

For how long have I used the solution?

I've used the solution for a year. 

What do I think about the stability of the solution?

The stability is very good. I have not witnessed any downtime. 

What do I think about the scalability of the solution?

This is a cloud-based solution, You can easily scale it. 

How are customer service and support?

Technical support has been very good. They are very helpful. It's a strong point for the product.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I have also used different solutions. For example, I have used Cortex.

How was the initial setup?

The initial setup is very straightforward. It was a simple process.

What's my experience with pricing, setup cost, and licensing?

I'm a technical engineer and don't have visibility on the pricing. However, it can be a bit lower than other options. 

What other advice do I have?

I'd rate the solution 8 out of 10. I can completely rely on CrowdStrike. 

Which deployment model are you using for this solution?

Public Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: partner
Flag as inappropriate
PeerSpot user
Buyer's Guide
CrowdStrike Falcon Complete MDR
December 2024
Learn what your peers think about CrowdStrike Falcon Complete MDR. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
IT Security & Audit Compliance Analyst at Milwaukee City and County
Real User
Top 5
It has better support than the competing solution we tried
Pros and Cons
  • "Crowdstrike has better support than Carbon Black."
  • "Crowdstrike could be cheaper. It's pricier than Carbon Black."

What is our primary use case?

We use Crowdstrike for monitoring. The Department of Homeland Security's SOC is managing it, so I like it better than Carbon Black because we don't have to provide any support for it.

How has it helped my organization?

Crowdstrike provides us with some peace of mind knowing we're secure.

What is most valuable?

Crowdstrike has better support than Carbon Black.

What needs improvement?

Crowdstrike could be cheaper. It's pricier than Carbon Black.

For how long have I used the solution?

I have used CrowdStrike for nearly a year.

What's my experience with pricing, setup cost, and licensing?

I rate Crowdstrike Falcon Complete eight out of 10 for affordability. 

Which other solutions did I evaluate?

We started using Crowdstrike and Carbon Black at the same time. We've beend doing a simultaneous test to see which one we like better. 

What other advice do I have?

I rate CrowdStrike Falcon Complete nine out of 10. I deducted one point because of the price, which is the only thing I don't like about it. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1619394 - PeerSpot reviewer
Group CIO at a construction company with 10,001+ employees
Real User
Top 5Leaderboard
Stable and scalable solution for behavioural analysis and ransomware
Pros and Cons
  • "If someone is using the old Microsoft Office and the system is not updated, then CrowdStrike takes action on behalf of the operating system."
  • "The analysis of the investigation of the incident could be easier."

What is our primary use case?

The solution did a good job of preventing ransomware. It is used for behavioral analysis. For instance, if something appears to be suspicious then the solution blocks it.

What is most valuable?

If someone is using the old Microsoft Office and the system is not updated then CrowdStrike takes action on behalf of the operating system. So it is not only going above the application level but also the operating system level.

What needs improvement?

The analysis of the investigation of the incident could be easier. Offline scanning can be included in the next release. 

Moreover, Crowdstrike should think about making the price cheaper.

For how long have I used the solution?

I have been using it for one year.

What do I think about the stability of the solution?

It is a stable solution.

What do I think about the scalability of the solution?

The solution is scalable. Presently, in the company, there are three hundred users, and in the group, there are one thousand users.

How are customer service and support?

The technical support team is in the middle range and not very good. We have a dedicated team from CrowdStrike working for us; it is called the watch service. 

We also subscribe to EDR Plus watch service. So we have a team from CrowdStrike always monitoring things before it happens.

Which solution did I use previously and why did I switch?

Previously, I used Carbon Black EDR for three years, and I was a very happy user, but their technical support was not very relevant, so I switched.

How was the initial setup?

The initial setup was straightforward. The deployment took around two weeks. We have only one engineer helping with the deployment.

What was our ROI?

There has been a Return on Investment. We have been working with two incidents, and the support team was really helpful from their side.

What's my experience with pricing, setup cost, and licensing?

We need to pay a yearly subscription fee, which is expensive compared to others.

What other advice do I have?

Anyone using CrowdStrike should ensure that they have the watch service. Though I do not remember the name of the service, it says Crowdstrike engineers are also monitoring.

I rate the solution a nine out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1982841 - PeerSpot reviewer
IT Director at a computer software company with 51-200 employees
Real User
Top 20
Helps reduce the efforts of our SOC team, simplifies the response process, and remediates cyber threats
Pros and Cons
  • "The overwatch module is the most valuable feature of CrowdStrike Falcon."
  • "CrowdStrike Falcon Complete MDR offers an optional module that might not be cost-effective for all organizations."

What is our primary use case?

CrowdStrike Falcon Complete is an XDR solution that we use for our endpoint protection.

We currently don't have a complete CrowdStrike Falcon bundle; instead, we have an enterprise bundle in place. For this bundle, agents are installed on all endpoints, and we define security rules to ensure automated workflows are executed through multiple cells using pre-defined playbooks.

How has it helped my organization?

CrowdStrike Falcon's detailed dashboard simplifies the process to respond to and remediate cyber threats.

CrowdStrike Falcon Complete's AI-powered analytics have demonstrated good performance and accuracy in real-world scenarios.

CrowdStrike Falcon has helped reduce the efforts of our SOC team by remediating most of the alerts, directly allowing us to manage things more efficiently.

We realized the benefits of CrowdStrike Falcon Complete within the first year.

CrowdStrike Falcon Complete highlights any endpoint vulnerabilities it detects directly on the dashboard, making it easier for our IT staff to address them and improve our overall security posture.

What is most valuable?

The overwatch module is the most valuable feature of CrowdStrike Falcon.

What needs improvement?

CrowdStrike Falcon Complete MDR offers an optional module that might not be cost-effective for all organizations.

For how long have I used the solution?

I have been using CrowdStrike Falcon Complete for almost two years.

What do I think about the stability of the solution?

We frequently encounter situations where endpoint agents go offline for unknown reasons, necessitating a service restart on affected machines to restore connectivity.

What do I think about the scalability of the solution?

I would rate the scalability of CrowdStrike Falcon Complete an eight out of ten.

How are customer service and support?

The technical support is good.

How would you rate customer service and support?

Positive

How was the initial setup?

As part of the integration team, I manage the entire transaction process. While the initial deployment presented a challenge due to the need to contact all end users, it was a one-time effort necessary to implement the solution. The deployment itself took four months to complete and required eight people.

We implemented a hybrid work model, allowing employees to work both from home and in the office. As a part of this model, we empowered end users to deploy the agents themselves. We carefully monitored the entire process through a designated dashboard, assigning agents to their respective groups and ensuring timely policy implementations based on individual agent online status. This approach granted us ultimate control over the process.

What about the implementation team?

We used an integrator in the middle of the deployment.

What was our ROI?

We have seen a return on investment with CrowdStrike Falcon Complete.

What's my experience with pricing, setup cost, and licensing?

CrowdStrike Falcon Complete is expensive.

What other advice do I have?

I would rate CrowdStrike Falcon Complete a nine out of ten.

CrowdStrike Falcon Complete is deployed across our entire organization.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Other
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Arunachalam S. - PeerSpot reviewer
Technical Specialist at Brilyant IT Solutions
Reseller
Top 5Leaderboard
Offers great visibility, quick detection of malicious activity, and detailed reporting
Pros and Cons
  • "The detection and response times are impressive."
  • "Instead of a single dashboard with an overload of information, I favor a more user-friendly approach with an interactive dashboard."

What is our primary use case?

We are a partner of CrowdStrike Falcon Complete and it serves as our primary tool for enhanced network visibility and threat detection. Through its capabilities, we can efficiently identify and mitigate malicious activity.

What is most valuable?

The detection and response times are impressive. For example, I added a VM and made some changes. CrowdStrike Falcon Complete immediately detected these changes, halted them, and notified me of the suspicious behavior, providing all the relevant details.

What needs improvement?

Instead of a single dashboard with an overload of information, I favor a more user-friendly approach with an interactive dashboard. This would reduce visual clutter and improve information accessibility, minimizing the time users spend searching for relevant data.

The price for CrowdStrike Falcon Complete has room for improvement and should be reduced.

For how long have I used the solution?

I have been using CrowdStrike Falcon Complete for almost five months.

What do I think about the stability of the solution?

I would rate the stability of CrowdStrike Falcon Complete a nine out of ten.

What do I think about the scalability of the solution?

I would rate the scalability of CrowdStrike Falcon Complete a nine out of ten.

How are customer service and support?

The technical support is good.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

Before adopting CrowdStrike, we relied on Jamf Protect. As a CrowdStrike partner, we piloted the solution within our department before successfully deploying it across the organization.

CrowdStrike offers excellent visibility and comprehensive vulnerability detection, pinpointing both established and newly discovered threats within our network. Its detailed reporting allows us to track the origin, propagation, and eventual containment of vulnerabilities, a feature notably absent from Jamf Protect. Conversely, Jamf Protect possesses ECAS compliance and CSAM functionalities, which are currently unavailable in CrowdStrike. 

How was the initial setup?

The initial setup is straightforward. Deploying the console through MDM takes just a few minutes, and a single person can handle deployments of up to 10,000 devices.

What was our ROI?

We have seen a return on investment with CrowdStrike. It also comes with a one million dollar money-back guarantee in the event of a breach.

What's my experience with pricing, setup cost, and licensing?

CrowdStrike Falcon Complete is one of the more expensive security protection solutions. We pay an annual subscription for the enterprise bundle which includes support and deployment so there are no additional fees.

What other advice do I have?

I would rate CrowdStrike Falcon Complete a nine out of ten.

The number of people required for maintenance depends on the size of the organization. A small company might benefit from a team of four, while a medium-sized company may require 12, and a large company could need as many as 20 team members dedicated to maintenance.

I recommend CrowdStrike Falcon Complete for organizations that require a primary security solution.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Senior Principal Security Manager
Reseller
A good endpoint protection tool, with strong threat response features
Pros and Cons
  • "The threat response from this solution is very comprehensive. It not only allows us to detect the threat, but also to isolate it and check the recovery capability of the compromised system."
  • "This solution is lacking in a recovery feature. If there is a full compromise, this product can't recover the machine, which results in us having to rebuild the entire system."

What is our primary use case?

We use this solution for endpoint protection of a user, a computer, a server, or a virtualization.

What is most valuable?

The threat response from this solution is very comprehensive. It not only allows us to detect the threat, but also to isolate it and check the recovery capability of the compromised system.

What needs improvement?

This solution is lacking in a recovery feature. If there is a full compromise, this product can't recover the machine, which results in us having to rebuild the entire system.

We would also like some data analysis features to be developed for this product.

What do I think about the stability of the solution?

We have found this solution to be stable.

What do I think about the scalability of the solution?

This product is easily scalable, if it is deployed with consideration being given to increasing the scale.

How are customer service and support?

The technical support for this solution is not very good, and issues will not be picked up unless the ticket raised is extremely precise about what the problem is. Fortunately there is extensive documentation provided to allow for self-help to take place.

There is also a very good user-community group that has been set up, which allows us to contact users in other organizations and knowledge-share with them.

How was the initial setup?

The initial setup of this solution was very easy. However, the deployment could be quite complicated if there is no basic understanding of computer science.

What's my experience with pricing, setup cost, and licensing?

The licensing cost for this solution is $5000, per license, with each machine requiring its own license.

What other advice do I have?

I would rate this solution a nine out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
reviewer1870947 - PeerSpot reviewer
IT Analyst at a government with 5,001-10,000 employees
Real User
Proven to improve our meantime to closure, and provides a much richer and broader scale of intelligence to each of the incidents and detections
Pros and Cons
  • "The threat intelligence of CrowdStrike Falcon is the most valuable feature."
  • "The solution could use an on-demand scan feature."

What is our primary use case?

We use CrowdStrike Falcon Complete as an endpoint detection and response solution. We have over 10,000 users of this product. It requires less than 10 staff to deploy and maintain CrowdStrike. We are looking at rolling out more features of the product.

How has it helped my organization?

CrowdStrike has improved our meantime to closure on incidents. By enabling us to have more contextual awareness for each of the detections, it provides a much richer and broader scale of intelligence to each of the incidents and detections.

What is most valuable?

The threat intelligence of CrowdStrike Falcon is the most valuable feature. I also  enjoy their contextual awareness, endpoint detection and response.

What needs improvement?

The solution could use an on-demand scan feature.

For how long have I used the solution?

I have been using CrowdStrike Falcon for 18 months.

What do I think about the stability of the solution?

CrowdStrike Falcon Complete is stable. 

What do I think about the scalability of the solution?

The solution is scalable. We did a proof of concept with CrowdStrike versus others. CrowdStrik lived up to these capabilities.

How are customer service and support?

I have used their technical support, and they are good. I would rate them a four out of five.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

We were using a couple of other solutions before CrowdStrike and decided to move away from them as they weren't as good.

How was the initial setup?

The initial setup of CrowdStrike is fairly straightforward. I would rate the initial setup a four out of five.

What about the implementation team?

We used a professional service, an integrator, to implement the solution. Our organization is complex, so the roll-out took a couple of months.

What other advice do I have?

From what I understand from our network architect, CrowdStrike Falcon is good value for the money required. We receive good service and support. The training is excellent. They offer a number of free classes to train users and analysts. It is a very capable product.

I would rate CrowdStrike Falcon Complete an eight out of ten overall.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Buyer's Guide
Download our free CrowdStrike Falcon Complete MDR Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Buyer's Guide
Download our free CrowdStrike Falcon Complete MDR Report and get advice and tips from experienced pros sharing their opinions.