CrowdStrike Falcon on GovCloud
Cloud-delivered endpoint security, trusted to protect the US public sector

delivering more secure and efficient services

The 2018 Verizon Data Breach Investigations Report (DBIR) showed that the public sector is one of the top three most exploited sectors in the United States, with more than 300 reported cyber breaches in 2017 alone. Highly resourceful adversaries - often nation-state sponsored or affiliated and equipped with an arsenal of advanced tactics, techniques, and procedures (TTPs) - continue to overwhelm security teams that are already pushed to the brink. As a result, bad actors continue to slip through agency infrastructure cracks, resulting in dwell times averaging well over a year.

To counter this trend, federal, state and local governments have increasingly mandated that public sector organizations modernize their IT infrastructure, as well as their overall approach to cybersecurity risk management. In their research article "Get Ready for the Inflection Point in U.S. Federal Government Cloud Adoption¹", Gartner highlights that federal government CIOs are poised to make a major push into the commercial cloud in 2018 and beyond*. CrowdStrike believes that although this push will greatly enhance services, evolving this framework and protecting against modern threats remains a daunting task, and moving sensitive data to the cloud brings its own set of new risks.

CrowdStrike Falcon® on GovCloud provides the industry's first cloud-delivered endpoint security and IT hygiene solution. Each component is tailored for securing the U.S. public sector, FedRAMP authorised and delivered from AWS GovCloud (US). Falcon on GovCloud enables customers to prevent all types of modern attacks and significantly reduces the cost of operating security infrastructure.

Key Benefits of Falcon on GovCloud

UNMATCHED PROTECTION & VISIBILITY

• Prevent all attack types - both malware and malware-free


• 5-second visibility and protection across all endpoints


• Proactive human threat hunting

SCALABILITY AND EFFICIENCY

• SaaS-based, operational in minutes, no on-premises infrastructure


• Single, lightweight agent


• No reboots or scans required

READY FOR PUBLIC SECTOR

• FedRAMP authorised


• Delivered from AWS GovCloud (U.S.).

delivering endpoint protection, from the cloud, with us federal specific trust standards

Moving critical capabilities such as security into the cloud requires careful consideration of a wide range of privacy and security assurances. Programs such as the Federal Risk Authorization and Management Program (FedRAMP) and DoD Cloud Computing Security Requirements have been developed in order to increase the confidence in the security of cloud solutions and accelerate their adoption.

Amazon Web Services (AWS) is one of the industry's most well known, broadly utilized providers of cloud-based infrastructure. AWS GovCloud (U.S.) (often simply referred to as "GovCloud") is an AWS Region designed to meet the requirements imposed by FedRAMP and other regulations. GovCloud has been validated to meet the requirements of the following regulations:

• Federal Risk and Authorization Management Program (FedRAMP) Impact Levels 2, 4 and 5


• Department of Defense (DoD) Cloud Computing Security Requirements Guide (CC SRG) Impact Levels 2, 4 and 5


• US International Traffic in Arms Regulations (ITAR)

GovCloud is broadly trusted by US government agencies at the federal, state and local levels, as well as contractors, educational institutions and other US customers that run sensitive workloads in the cloud.

CrowdStrike® partners with AWS to deliver next-gen endpoint protection from GovCloud: CrowdStrike Falcon® on GovCloud. CrowdStrike is the first and only endpoint protection platform delivered from AWS GovCloud (US) and also validated to meet or exceed the requirements laid out in the U.S. FedRAMP program at IL2/Moderate. CrowdStrike strongly supports the mission of civilian government, military and intelligence to deliver advanced services in a cost-effective manner, while maintaining the highest level of protection.

Modules Included

FALCON PREVENT™ on GOVCLOUD
Next-gen Antivirus (NGAV)

---

Protects against both malware and malware-free attacks; third-party tested and certified, it allows organizations to confidently replace their existing legacy AV

FALCON INSIGHT™ on GOVCLOUD
Endpoint Detection & Response (EDR)

---

Delivers continuous and comprehensive endpoint visibility across detection, response and forensics, so nothing is missed and potential breaches can be stopped

FALCON OVERWATCH™ on GOVCLOUD
Proactive Threat Hunting Service

---

Identifies attacks and stops breaches with an elite team of experts who proactively hunt, investigate and advise on threat activity in your environment