The CrowdStrike Falcon endpoint protection platform was named a Leader in The Forrester Wave: Enterprise Detection And Response, Q1 2020. CrowdStrike received the highest score in 11 criteria, including scoring among the top in the Strategy and Market Presence categories. Forrester states, “Customers buy an EDR solution for its detection capabilities, and there simply are no other vendors in the space that have an intelligence organisation of CrowdStrike’s scale to enable the development and services to deliver that capability.”
Q1 Forrester Wave 2020 on Crowdstrike EDR
The Forrester Wave™: Enterprise Detection And Response, Q1 2020 report identified what it stated are the 12 most significant EDR vendors to evaluate strengths and weaknesses based on 14 criteria grouped into three high-level segments: Current Offering, Strategy and Market Presence. In Forrester’s evaluation, CrowdStrike received the highest score possible in 11 of the 14 criteria:
- Current Offering: Endpoint Telemetry, Security Analytics, Threat Hunting, ATT&CK Mapping, Collection
- Strategy: Product Vision, Performance, Commercial Model
- Market Presence: Enterprise Clients, Deployed Endpoint, Product Line Revenue
According to Forrester, “It should come as no surprise that CrowdStrike Falcon is seldom purchased as a standalone product, since the company’s adjacent services, such as threat hunting and cyber intelligence, are often the benchmark other client references use when describing capabilities they wish were available in their selected products.”
CrowdStrike’s EDR solution Falcon Insight delivers continuous, comprehensive endpoint visibility that spans detection, response and forensics to ensure nothing is missed and potential breaches are stopped.
Powered by the CrowdStrike Threat Graph, Falcon Insight answers queries in five seconds or less – even across trillions of events – and stores event data for 90 days regardless of the number of endpoints in the environment. Falcon Insight automatically detects and prioritizes malicious attacker activity and then distils security alerts into incidents, reducing alert fatigue by 90% or more. Falcon Insight also provides a real-time enterprise threat score that helps organizations measure and understand their current threat level and how it’s changing over time.
The breadth and depth of endpoint activity details captured by the lightweight Falcon agent enable proactively and managed threat hunting and powerful response actions allow customers to contain and immediately remediate endpoints. Built upon CrowdStrike’s single-agent cloud-native platform, Falcon Insight is deployed and operational within minutes without impacting endpoints.