Dixon Styres, IT SecOps Solution Architect, CrowdStrike and Daniel Chu, VP of Systems Engineering, APJ, ExtraHop Networks
The integration between ExtraHop Reveal(x) and CrowdStrike Falcon Platform merges complete network visibility, machine learning behavioural threat detection and real-time decryption with powerful endpoint security and instant remediation. The addition of Humio's high-performance cloud log management and observability technology elevates this SOC Visibility Triad's capabilities by ingesting and correlating data from any log, application or feed to deliver actionable insights and real-time protection.
In this session, you'll hear how our Fortune 100 customers are already using these leading XDR solutions, providing enterprise security operations teams with extended capabilities and delivering immediate value.
You'll also learn about how our integration provides:
Instant and automated detection, validation, and containment of network threats like ransomware, privilege escalation, and data exfiltration, as well as endpoint threats, for complete attack surface coverage.
Automatic discovery and device identification of everything communicating on the network, including IoT-connected devices, remote connections, devices incompatible with agent installation, and devices impacted by threats where no CrowdStrike agent was yet installed.
Enterprise-grade solution that addresses the challenge of operationalising massive and ever-growing volumes of event and log data, empowering organizations to collect, observe, analyse and act on all structured and unstructured data in their environment.
Broad MITRE ATT&CK Framework coverage of both network-focused and endpoint-focused tactics, techniques, and procedures.