CrowdStrike Named Overall Leader in KuppingerCole Identity Threat Detection and Response (ITDR) Leadership Compass

AUSTIN, Texas – April 30, 2024 – CrowdStrike (Nasdaq: CRWD) today announced that it has been named an Overall Leader in the KuppingerCole Leadership Compass, Identity Threat Detection and Response (ITDR) 2024: IAM Meets the SOC.

CrowdStrike earned a Leader position in every category: Product, Innovation and Market, positioned furthest to the right and highest in Innovation among all vendors evaluated, achieving the overall highest position in the report. This report reinforces CrowdStrike’s global leadership in ITDR.

Adversaries increasingly exploit identities and credentials to ‘log in’ to an environment, move laterally and execute their attacks. ITDR is a critical component of cybersecurity and mitigating risk. By unifying identity and endpoint protection in a single platform, single agent architecture, customers can consolidate point products, drive down costs, and eliminate complexity. Our overall leadership in the report emphasizes our pioneering, platform approach to stop breaches.

In 2023, 75% of attacks used to gain initial access were malware-free, highlighting the prevalence of identity-based attacks and use of compromised credentials. The AI-native CrowdStrike Falcon platform unifies endpoint and identity security to speed response time, lower overall cost of ownership and stop breaches. CrowdStrike Falcon® Identity Protection has shown to deliver up to 85% faster detection of identity attacks and $2 million in savings over three years.

Within the report, KuppingerCole calls CrowdStrike a “cyber industry force” that “demonstrates real attention to detail where threats are related.” KuppingerCole highlighted that “in CrowdStrike’s view, ITDR is not really a standalone product—it’s more of an activity that requires a platform,” and noted the numerous CrowdStrike modules covered in additional Leadership Compass reports. The firm also recognized CrowdStrike for:

• Comprehensive visibility of Microsoft environments: “Falcon Identity Protection excels at its deep coverage of Microsoft environments, including on-premises Active Directory (AD) and Azure-based environments…The heavy focus on Microsoft AD and Azure, according to CrowdStrike, is that a very high percentage of successful attacks begin in those environments.”
• Unifying IT and Security: “Falcon Identity Protection offers unique features to help bridge identity administration—performed by IT—and identity security. It does this by providing guidance to InfoSec personnel who may not have deep knowledge of AD and Entra ID.”
• Cloud-native architecture: “Offered as a cloud-native SaaS service, Falcon Identity Protection component requires a minimal on-premises footprint, requiring only a lightweight Falcon sensor on the AD domain controllers. This architecture also enables packet-level inspection and real-time alerting of suspicious events.”