Senior Information Security Engineer at a tech services company with 1,001-5,000 employees
Real User
Top 10
2024-03-26T13:33:00Z
Mar 26, 2024
File integrity monitoring could be improved. They need to have more clarity on the policies and how we can apply them to get the file modification details. In terms of vulnerability management, CrowdStrike doesn't have the network scanning feature, which other competitors have. We sometimes get false positives. We have had to create some exceptions. However, we have been able to minimize the noise.
Information Security Engineer at a non-tech company with 10,001+ employees
Real User
Top 10
2024-03-19T20:40:00Z
Mar 19, 2024
I've found that CrowdStrike's technical support could benefit from increased technical expertise. In my experience, their representatives haven't been able to resolve my issues as effectively as I would have liked.
They are good at what they are doing, but they can add more use cases. They can improve their documentation. It is a very big aspect where they are lacking. They have documentation, but it is behind the wall of authentication. It is not available publicly. In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it. If they can add more information about an event, it will be beneficial for us and everyone else who is using CrowdStrike.
Vice President at a financial services firm with 10,001+ employees
Real User
Top 10
2024-01-25T07:24:00Z
Jan 25, 2024
The current database schema presents challenges and has potential for improvement. The technical support response time can be improved. There are a lot of false positives reported.
The content-filtering features for children could be improved. We have young grandchildren aged 12 and 8. My daughter, their mother, wants to keep them from getting in trouble on the net. She looked at all these other solutions from Google, Microsoft, etc., and she couldn't figure out how to make any of those work. I told her that I bet CrowdStrike could handle this. Sure enough, CrowdStrike can do exactly that. It's the same solution that the Defense Department gets. It works, but it's a little complicated to implement. It could be simpler to set the policies.
IT Consultant at a comms service provider with 5,001-10,000 employees
Consultant
Top 20
2024-01-18T10:33:00Z
Jan 18, 2024
There is room for improvement in managing multiple customer IDs. Enhancements in the console web for better control and customization of sensor features would be valuable to ensure a smoother experience in handling various customer IDs and installations.
IT Workplace Coordinator at a consumer goods company with 1-10 employees
Real User
Top 20
2024-01-03T18:15:00Z
Jan 3, 2024
The support for different OS versions needs improvement because sometimes due to business conditions, updating our OS is impossible. For example, I have a production environment connected to the PNC that runs Windows XP on computers that CrowdStrike Falcon does not support.
Security Analyst at a insurance company with 1,001-5,000 employees
Real User
Top 20
2023-12-13T14:55:00Z
Dec 13, 2023
Despite implementing tuning rules specifically designed to address them, we are still encountering a significant number of false positives. This issue persists even after collaborating with their support team to find a solution. I have worked with their technical support on several problems that were never fully resolved.
Cyber Security Manager at a university with 10,001+ employees
Real User
Top 5
2023-04-10T13:10:18Z
Apr 10, 2023
We've tried some integrations with solutions, closing off false positives and things like that. Falcon could include more features in that area. In addition, some features are modularized and we're unable to buy them as we're in the healthcare field and limited in the amount we can invest.
Forensic controls have room for improvement, and CrowdStrike Falcon can add more features here. Another improvement could be the support for this product could be cheaper.
Security Principal at Trifecta Cloud Security Solutions
Real User
Top 5
2023-04-07T18:36:45Z
Apr 7, 2023
CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition. I would like to see CrowdStrike become closer to an agentless solution where I wouldn't have to deploy software and maintain the version of the solution.
AVP of Tech at a insurance company with 201-500 employees
Real User
Top 10
2023-03-17T13:54:00Z
Mar 17, 2023
I do not have any notes for improvement. It just works. They offered a white glove service that was extremely costly. When we got into it, we saw it was relatively easy. If I was being nitpicky, I'd say that I don't like being sold something that's unnecessary. That's the only downside I've seen to the solution.
Pre-Sales Architect at Network Techlab (I) Pvt. Ltd
Real User
Top 5
2022-09-19T09:20:00Z
Sep 19, 2022
Sometimes CrowdStrike changes the GUI, and they need to be better at informing us and providing guidance concerning that. I would like to see a web filtering feature, and better application features. This would make the product easier to sell to smaller businesses, and would make it so that devices follow the applied policies anywhere; even when users are at home or travelling in another country, for example.
CrowdStrike Falcon offers advanced threat detection, real-time visibility, easy interface, and responsive customer support. It enhances workflow and efficiency, promotes collaboration, streamlines processes, and boosts productivity. With features like incident response options, customizable alerts, and proactive threat hunting, it helps protect organizations from malware and ransomware attacks.
File integrity monitoring could be improved. They need to have more clarity on the policies and how we can apply them to get the file modification details. In terms of vulnerability management, CrowdStrike doesn't have the network scanning feature, which other competitors have. We sometimes get false positives. We have had to create some exceptions. However, we have been able to minimize the noise.
I've found that CrowdStrike's technical support could benefit from increased technical expertise. In my experience, their representatives haven't been able to resolve my issues as effectively as I would have liked.
If CrowdStrike can further expand its support for XDR compatibility, that would give it an edge over all the other competing new products.
They are good at what they are doing, but they can add more use cases. They can improve their documentation. It is a very big aspect where they are lacking. They have documentation, but it is behind the wall of authentication. It is not available publicly. In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it. If they can add more information about an event, it will be beneficial for us and everyone else who is using CrowdStrike.
The current database schema presents challenges and has potential for improvement. The technical support response time can be improved. There are a lot of false positives reported.
The content-filtering features for children could be improved. We have young grandchildren aged 12 and 8. My daughter, their mother, wants to keep them from getting in trouble on the net. She looked at all these other solutions from Google, Microsoft, etc., and she couldn't figure out how to make any of those work. I told her that I bet CrowdStrike could handle this. Sure enough, CrowdStrike can do exactly that. It's the same solution that the Defense Department gets. It works, but it's a little complicated to implement. It could be simpler to set the policies.
We'd like to see more integration capabilities. We need more log storage as CrowdStrike will dump all logs to the centralized server.
There is room for improvement in managing multiple customer IDs. Enhancements in the console web for better control and customization of sensor features would be valuable to ensure a smoother experience in handling various customer IDs and installations.
The portal can be clunky to navigate at times and has room for improvement.
The support for different OS versions needs improvement because sometimes due to business conditions, updating our OS is impossible. For example, I have a production environment connected to the PNC that runs Windows XP on computers that CrowdStrike Falcon does not support.
Despite implementing tuning rules specifically designed to address them, we are still encountering a significant number of false positives. This issue persists even after collaborating with their support team to find a solution. I have worked with their technical support on several problems that were never fully resolved.
We've tried some integrations with solutions, closing off false positives and things like that. Falcon could include more features in that area. In addition, some features are modularized and we're unable to buy them as we're in the healthcare field and limited in the amount we can invest.
Forensic controls have room for improvement, and CrowdStrike Falcon can add more features here. Another improvement could be the support for this product could be cheaper.
CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition. I would like to see CrowdStrike become closer to an agentless solution where I wouldn't have to deploy software and maintain the version of the solution.
I do not have any notes for improvement. It just works. They offered a white glove service that was extremely costly. When we got into it, we saw it was relatively easy. If I was being nitpicky, I'd say that I don't like being sold something that's unnecessary. That's the only downside I've seen to the solution.
We can't do scanning audits or device blocking or application control. There are traditional antivirus features missing in XDR, and that is an issue.
Technical support could be better than what is currently offered.
Sometimes CrowdStrike changes the GUI, and they need to be better at informing us and providing guidance concerning that. I would like to see a web filtering feature, and better application features. This would make the product easier to sell to smaller businesses, and would make it so that devices follow the applied policies anywhere; even when users are at home or travelling in another country, for example.
Crowdstrike Falcon XDR can improve the integration. There are some locks on the cloud to on-premise integrations.