One of the biggest challenges that SecOps teams face is being able to have tools that pinpoint vulnerabilities all under one roof.
By having an informative platform that highlights where the vulnerabilities are, CrowdStrike Holdings Inc. is enabling SecOps and ITOps to do a better job, ultimately strengthening ROI, according to Geoff Swaine (pictured), global vice president of cloud and tech ecosystems and program strategy at CrowdStrike, who said the power of a lightweight agent is also a perfect fit.
“The combination of being able to provide tools, not only to the SecOps team, but the ITOps team as well, being able to give the ITOps team visibility on how many assets they have — I mean, these are simple questions that we should be able to answer,” Swaine said.
Swaine spoke with theCUBE industry analysts Dave Vellante and David Nicholson at last year’s theCUBE @ Fal.Con event, during an exclusive broadcast on theCUBE, SiliconANGLE Media’s livestreaming studio. They discussed how CrowdStrike is painting a security picture for enhanced productivity. (* Disclosure below.)
Cyber investments go beyond being non-discretionary
Even though cyber is a non-discretionary spend, Swaine believes it goes beyond this characteristic. This is because undertaking a cyber project increases the business case, with the ultimate goal being risk reduction.
“I think in this current macroeconomic environment, where CIOs and CSOs are being asked to sweat their assets for a significantly longer period of time, that actually creates vulnerabilities because they have older kit that’s running for a longer period,” he said. “So that means that we need the best possible telemetry that we can get to protect those in the best possible way.”
Meeting customer demands is fundamental in the security space. Therefore, the industry is partnering to do a better job for enterprises and XDR is an ideal platform, according to Swaine.
“I think we’re going to continually go with where the customer demand is, and firewalls is one of the first, and email is very significant other one,” he pointed out. “You’ll see that we’re announcing support for Microsoft 365, as well.”
Since CrowdStrike has cloud-native architecture, the ability to ingest, and near real-time analysis capability, this helps bridge the security gaps, according to Swaine. Also, threat hunting and intel capacities are incorporated into the picture.
“You know, it’s not just relying purely on AI, but we have a human aspect to it as well, to make sure we’re getting extremely accurate responses,” he noted. “Then the final phase is the response phase. So being able to take action on a [cloud access security broker], for example — when we have a known bad actor operating in the cloud — is a really important, easy action for our customer to take.”
Here’s the complete video interview, part of SiliconANGLE’s and theCUBE’s coverage of theCUBE @ Fal.Con 2022:
(* Disclosure: CrowdStrike Holdings Inc. sponsored this segment of theCUBE. Neither CrowdStrike nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)