CrowdStrike
Service Description
The primary function of this fully managed service is to provide immediate visibility, detection and prevention of cybersecurity threats at the endpoint thereby greatly reducing the risk and potential impact of a cybersecurity incident.
FOR SECURITY IN THE CLOUD ERA
Internal Continuous Vulnerability Scanning Efforts
Security Domain
CIS Control 7 – Continuous Vulnerability Management
NIST CSF – Detect: Continuous Monitoring (DE.CM)
NIST 800-53 – Assessment, Authorization, and Monitoring
- Only monitors assets where sensor is deployed
- Vulnerability info based on kernel visibility
- Data updates constantly – changes reflected in console within an hour
- Some remediation functionality
Malware Defenses Efforts
Security Domain
CIS Control 10 – Malware Defenses
NIST CSF – Detect: Continuous Monitoring
NIST 800-53 – System and Information Integrity
- Enhanced Protection: continuous, comprehensive visibility that spans detection, response, and forensics to ensure nothing is missed
- Easy to Operate: Consolidate systems into a single lightweight agent that’s simpler to manage
PSU Time Commitment
Upfront/Setup: 6 Week Onboarding period, ~40 hours +/- based on size/complexity of PSU
Ongoing: Varies based PSU environment, minimized by MCNC management of service
How to get this service
Contact MCNC POC to opt in for the service
Point of Contact
Name: MCNC
Email: securityservices@mcnc.org
