Zscaler, Inc. announced integration with the CrowdStrike XDR platform
September 2022 by Marc Jacob
Zscaler, Inc. announced new security detection capabilities available through its Zero Trust Exchange cloud security platform and the CrowdStrike XDR platform as part of its expanded partnership with industry-leading CrowdStrike. Joint ZscalerTM and CrowdStrike customers now have unparalleled endpoint and network visibility across their entire enterprise to more effectively correlate diverse sets of data sources to identify new indicators-of-compromise (IoCs) while turning suspicious signals into concrete threat detections. The expanded integration builds on CrowdStrike’s recent announcement to name Zscaler as its Ecosystem Go-to-Market Partner of the Year for 2022 and is expected to help organizations of all sizes better identify ransomware and other threats when adopting a Zero Trust architecture.
Today, businesses suffer from trying to manage too many siloed security solutions that limit visibility into systems for the purposes of threat detection and decrease security teams’ abilities to find and react to increasing volume of sophisticated attacks. This is particularly difficult in workplaces where a large portion of the employees work from anywhere. By synchronising their Zscaler policy engine with the CrowdStrike Falcon Fusion (SOAR) workflows, IT administrators can now have access to the following new capabilities:
Integrated closed-loop response: Based on newly detected threat or suspicious activity found within CrowdStrike Falcon Insight XDR, customers can trigger direct response actions from detections or leverage CrowdStrike Falcon Fusion workflows to change user group membership and apply adaptive access control policies to limit or prevent access to critical information through the Zscaler Zero Trust Exchange. Integrating these workflows helps apply more comprehensive zero trust policies to protect systems without compromising on flexibility users need to stay productive, reacting with more granularity based on the severity and confidence of the threat detection from CrowdStrike
Rich, unified context for investigations: Incorporating network telemetry from Zscaler in Falcon Insight XDR provides greater context for security analysts, speeding the ability to detect, investigate and respond to the most advanced attacks from CrowdStrike’s unified command console
Closed-loop full-cycle incident response: Building on Zscaler’s existing partnership with CrowdStrike, customers can now enable closed-loop threat analytics, detection and response workflows from endpoint, to network and applications anywhere
In addition, Zscaler has been awarded the Ecosystem Go-to-Market Partner of the Year during CrowdStrike Fal.Con 2022. This award recognises technology partners in the CrowdStrike partner ecosystem that exceed revenue expectations, outpace the investment in CrowdStrike training and enablement, have been nominated by the CrowdStrike team and create successful customer relationships through the delivery of CrowdStrike-based solutions.