CrowdStrike has introduced new adversary-focused Cloud-Native Application Protection Platform (CNAPP) capabilities to accelerate threat hunting for cloud environments and workloads and reduce the mean time to respond.
CrowdStrike’s adversary-focused approach to CNAPP provides both agent-based (Falcon CWP) and agentless (Falcon Horizon) solutions delivered from the Falcon platform. This gives organisations the flexibility necessary to determine how best to secure their cloud applications across the continuous integration/continuous delivery (CI/CD) pipeline and cloud infrastructure across AWS, Azure and GCP. The added benefit of an agent-based CWP solution is that it enables pre-runtime and runtime protection, compared to agentless-only solutions that only offer partial visibility and lack remediation capabilities.
“Our adversary-focused approach to CNAPP, powered by our industry-leading threat intelligence, ensures that organisations are best equipped to stop cloud breaches,” said Amol Kulkarni, chief product and engineering officer at CrowdStrike.
Delivered from the Falcon platform, the new capabilities bring together CrowdStrike’s Falcon Horizon (Cloud Security Posture Management or CSPM) and Falcon Cloud Workload Protection (CWP) modules via a common cloud activity dashboard to help security and DevOps teams prioritise top cloud security issues, address runtime threats and enable cloud threat hunting.
The updates also include new ways to use Falcon Fusion (CrowdStrike’s SOAR framework) to automate remediations for Amazon Web Services (AWS), new custom Indicators of Misconfigurations (IOMs) for Google Cloud Platform (GCP), new ways to prevent identity-based threats for Microsoft Azure and more.