Falcon OverWatch: Proactive Managed Threat Hunting
Falcon OverWatchTM is a human threat detection engine that operates as an extension of your team, hunting relentlessly to see and stop the most sophisticated hidden threats
Download Data Sheet
Why Choose Falcon OverWatch
3d彩报全部ability to see and stop hidden advanced attacks
the overwatch team hunts relentlessly to see and stop the stealthiest sophisticated threats: the 1% of 1% of threats that blend in silently and lead to a breach if they remain undetected.
3d彩报全部maximum effectiveness and efficiency
OverWatch delivers the best results by augmenting skilled analysts with the most advanced technology. Our elite human experts use cloud-scale data, custom tools and up-to-the-minute threat intelligence to hunt with unprecedented speed and scale.
seamless extension of your team
3d彩报全部as a core component of the crowdstrike falcon® platform, overwatch delivers results for organizations of all sizes, operating as a seamless extension of your team — minimizing overhead, complexity and cost.
People, Process and Technology Are All Key to Stopping Breaches
- Attacker mentality. Effective threat hunting requires the ability and expertise to think like an attacker.
- Cross-disciplinary expertise. OverWatch employs elite experts from a wide range of backgrounds, including government, law enforcement, commercial enterprise, the intelligence community and defense.
- 24/7/365 availability. When a sophisticated intrusion occurs, time is critical. Your adversaries do not sleep and are not restricted by time zones or geography — and neither should your threat hunting team.
- Continuous vigilance. OverWatch’s continuous, proactive operations deliver results every minute of every day.
- Finely-tuned response. OverWatch identifies and responds to hundreds of potential breaches per week. Each threat handled helps team members fine-tune their skills and processes, ensuring they are always sharp and effective.
- Tools for the hunt. Threat hunting requires more than just expert hunters — those hunters need the right tools. Scalable and effective threat hunting requires access to vast amounts of data and also the ability to mine that data in real time for signs of intrusions.
- Real-time visibility. OverWatch takes advantage of the cloud-scale telemetry of the proprietary CrowdStrike Threat Graph® to get broad, deep visibility, delivered in real time.
- Massive data. Threat Graph ingests trillions of events each week, giving Falcon OverWatch an extensive, global real-time view of threat activity, as it happens.
- Threat context. You can’t detect a threat you don’t understand.
- CrowdStrike threat intelligence. This intel empowers OverWatch with detailed, always-current knowledge of tradecraft from more than 130 adversaries.
- Current TTPs. This intimate knowledge of the latest TTPs (tactics, techniques, and procedures) in use today ensures that OverWatch is able to hunt effectively and efficiently.
- One team, one fight. OverWatch operates as an extension of the Falcon platform and your team, delivering timely threat information via the single cloud-native console.
- Alerts augmented with context. OverWatch analysts deliver alerts that are augmented with contextual details and global insights to help organizations understand threats and act faster.
Customers Trust CrowdStrike
3d彩报全部since 2016, crowdstrike has demonstrated a strong commitment to continuous industry collaboration, scrutiny, and testing. time and time again, crowdstrike has been independently certified to replace legacy solutions.
Forrester Total Economic Impact
Falcon OverWatch helps organizations reduce risks and improve efficiencies, resulting in 316% ROI.
SANS Review of OverWatch
SANS experts review how Falcon OverWatch responds in real time to sophisticated threats including credential theft, lateral movement and defense evasion.
3d彩报全部visit our third-party evaluations page to see how crowdstrike performed against the industry’s most rigorous tests and trials.
3d彩报全部falcon overwatch offerings
Choose the one that meets your requirements:
see and stop hidden advanced attacks and reduce dwell time with 24 x 7 proactive human threat hunting.
3d彩报全部falcon overwatch elite expands the basic overwatch offering by adding an assigned overwatch threat analyst to consult on root causes, assist with analysis, perform weekly health checks and provide proactive configuration recommendations and customized quarterly briefings.
|OverWatch Standard||OverWatch Elite |
|Cross-disciplinary human experts|
|Seamless integration with the Falcon platform|
|Alerts augmented with context|
|Assigned threat analyst|
|Hunting and investigation coaching|
|Recurring environmental checkups|
|Tailored threat reports and briefings|
|Response advice, advanced investigation and context support|
|Proactive, closed-loop communications|