Endpoint Security, CrowdStrike, What is CrowdStrike?

Introduction to CrowdStrike's Falcon platform.

What is CrowdStrike?

CrowdStrike—also known as "Falcon"—is a software tool designed to mitigate real-time cybersecurity threats and incidents, give visibility and security capability to the Cybersecurity team and local IT staff, protect systems against malware, and enable institutional measurement and understanding of security conditions and events. CrowdStrike utilizes machine learning and a lightweight agent, providing visibility into the entire threat lifecycle, allowing IT and security professionals to act quickly and effectively to critical security events on Linux, Mac and Windows devices. CrowdStrike is a component integral to Endpoint Security. It exists as a fundamental part of Cybersecurity's charge, obligations, provisions, and directives presented to it under the Campus Administrative Manual, Appropriate Use of Computers and Network Systems, and as authorized by the Chief Privacy & Security Officer.

How do I get this?

Option 1: Get and install in the Community Instance in your environment

Option 2: Set up in a Named instance with advanced access.

  • Named instance agents are deployable by IT Pros and are available for any Urbana-Champaign unit. Deployment may be done via MECM and Munki.
  • Units wanting a Named instance may request consultation. See below.

Option 3: Deploy in a Self-Managed instance with additional advanced access.

  • Consultation required, see below.

To request provisioning and/or consultation

Go to Endpoint Security, CrowdStrike, Getting Started with CrowdStrike to get started.

Who do I contact?

What happens if there is a security issue?

  • There are many tools within CrowdStrike to aid in detection, inspection, impact measurement, and mitigation.
  • If there are indicators of compromise, critical event/incident response may be undertaken by the Security team to mitigate. Please see Endpoint Security, CrowdStrike, Notification from Security.


Contact the EPS team



Keywords:
introduction, intro, falcon, antivirus, malware, security, instance, cid, cids, community, named, self-managed, EPS, windows, mac, macos, linux, TechS-EPS-CS 
Doc ID:
93944
Owned by:
Security S. in University of Illinois Technology Services
Created:
2019-08-19
Updated:
2024-05-30
Sites:
University of Illinois Technology Services