Swimlane and CrowdStrike: A Force Multiplier
As a security automation platform, Swimlane recognizes that deep partnerships and integrations with other vendors is absolutely key to enabling customers. The ability to overcome common barriers and product silos across many different products through integration effectively makes SOAR the security glue that enables truly powerful automation and orchestration. Swimlane works with many of the most respected security manufacturers in the industry and ongoing collaboration with CrowdStrike is a perfect example of our drive to enable joint customers. Today, Swimlane is excited to announce our updated listing in the CrowdStrike Store that highlights our work together. The CrowdStrike Store provides CrowdStrike customers with curated and trusted applications and add-ons for its Falcon platform.
Swimlane and CrowdStrike have been working together for years to add automation through to the endpoint. Together, our products act as a powerful force multiplier for use cases such as troubleshooting endpoint related issues, breaking down organizational silos within IT and security, and investigating IOCs. Swimlane’s security automation platform integrates with CrowdStrike to enrich data, orchestrate security tools and automate incident response processes. This delivers better threat response capabilities with significantly faster mean time to resolution without adding overhead.
In a recent joint webinar, CrowdStrike Field Sales Engineer Jason Teplitz commented that as far as he knows, there is not a single other platform integrated with CrowdStrike that can drive automation all the way to the endpoint, other than Swimlane. “I don’t know a single other vendor that can do it. Between the API data and the custom alerts driving SOAR events, the flexibility of our two platforms together is currently not challenged by another combination as far as I know,” said Teplitz.
Continued integration yields enhanced functionality
Swimlane continues to expand CrowdStrike integrations, including adding additional functionality. Most recently, we added multiple use cases and new features via an API integration with CrowdStrike Falcon Real-Time Response API. Swimlane works hand in hand with the CrowdStrike engineering team to not only address multiple use cases that mutual customers request, but also to create some unique offerings.
By introducing automation to gather diagnostics and relevant data while coordinating with multiple business units, security and IT teams can focus on more important issues and threats to their environment. Swimlane is able to carry out a machine-speed response to any CrowdStrike Falcon Insight threat detection to dramatically reduce MTTR and resources required during an incident. Additionally, by using Swimlane in conjunction with CrowdStrike, a very simple email-based alert can lead to rapid response and immediate investigation of these events. Combining Swimlane’s SOAR use cases with CrowdStrike’s Real Time Response, users can investigate and interact directly with the endpoint.
Swimlane can also provide teams with the ability to gather diagnostics and relevant data, while coordinating with multiple business units. This enhances collaboration across departments or teams and again has led to a decrease in MTTR during incident response or triage.
Looking towards the future
There is more to come as Swimlane continues to build new integrations with CrowdStrike. We are currently preparing for an integration on the new Crowdstrike Falcon Sandbox on behalf of some mutual customer requests. Integrations like this will continue to grow the power of our mutual offerings with CrowdStrike, and we can’t wait to see what the future has in store.
To learn more about how you can SOAR to the Endpoint with CrowdStrike Falcon, listen to our webinar here.
*** This is a Security Bloggers Network syndicated blog from Swimlane (en-US) authored by Greg Sherman. Read the original post at: https://www.swimlane.com/blog/swimlane-and-crowdstrike-a-force-multiplier/
