Skip to main content

Help us improve the Digital Marketplace - send your feedback

FullProxy Ltd

Endpoint Management (CrowdStrike)

The CrowdStrike Falcon platform provides cybersecurity services, such as endpoint protection, threat intelligence, endpoint detection and response (EDR), and managed security services.
It protects endpoints (such as desktops, laptops, servers, and other devices) from a wide range of cybersecurity threats, including malware, ransomware, exploits, and advanced persistent threats (APTs).

Features

  • Next-generation antivirus (NGAV)
  • Endpoint Detection and Response (EDR)
  • Threat Intelligence
  • Endpoint Firewall
  • Endpoint Remediation

Benefits

  • Provides organizations with advanced threat prevention, detection, and response capabilities
  • Detects and prevents known and unknown malware
  • Provides advanced machine learning algorithms and behavioral analysis
  • Allows security teams to quickly identify and investigate security incidents
  • Improves accuracy of threat detection and response efforts
  • Cloud-Native Architecture allows seamless deployment and scalability across distributed environments
  • Enhances overall security posture

Pricing

£50 a licence

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at g-cloud@fullproxy.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

3 6 9 0 1 2 7 4 8 4 0 2 1 1 8

Contact

FullProxy Ltd Chris Templeton / Ewan Ferguson
Telephone: 0141 291 5500
Email: g-cloud@fullproxy.com

Service scope

Service constraints
While CrowdStrike offers powerful endpoint protection and threat intelligence services, organizations should carefully evaluate their specific requirements, constraints, and considerations to ensure a successful deployment and maximize the effectiveness of CrowdStrike's solutions within their environment.
System requirements
Review official documentation for up-to-date and detailed system requirements

User support

Email or online ticketing support
Yes, at extra cost
Support response times
Response time SLAs are negotiable with the client
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
None or don’t know
Phone support
Yes
Phone support availability
24 hours, 7 days a week
Web chat support
Yes, at an extra cost
Web chat support availability
24 hours, 7 days a week
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
N/A
Web chat accessibility testing
N/A
Onsite support
Yes, at extra cost
Support levels
Access to Support differs with contract purchased.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Pre-sales consultancy Online Training User documentation
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
No user data is retained as part of the service.
End-of-contract process
Renewal notice issued 90 days prior to contract end date.

Using the service

Web browser interface
Yes
Using the web interface
CrowdStrike provides a comprehensive web-based interface for administration purposes called the CrowdStrike Falcon Console. The Falcon Console serves as the central management hub for CrowdStrike Falcon, allowing administrators to configure security policies, monitor endpoint activity, investigate security incidents, and access threat intelligence.
Web interface accessibility standard
WCAG 2.1 AAA
Web interface accessibility testing
Please refer to vendor documentation.
API
Yes
What users can and can't do using the API
CrowdStrike provides a robust and comprehensive API (Application Programming Interface) known as the Falcon API, which allows administrators to programmatically manage and administer CrowdStrike Falcon's endpoint security platform. The Falcon API enables automation, integration with third-party tools, and customization of security workflows.
API automation tools
  • Ansible
  • Chef
  • Terraform
  • Puppet
API documentation
Yes
API documentation formats
Open API (also known as Swagger)
Command line interface
Yes
Command line interface compatibility
Other
Using the command line interface
The falconctl CLI tool allows administrators to interact with Falcon's endpoint security platform from the command line, enabling them to perform various administrative tasks and security operations without using the web-based Falcon Console.

Scaling

Scaling available
Yes
Scaling type
  • Automatic
  • Manual
Independence of resources
The underlying resources (CPU and Memory) are under the control of the client and can be extended if required. The product is sold based on per instance therefore a client may have to purchase multiple instances if usage goes beyond initially anticipated levels.
Usage notifications
Yes
Usage reporting
  • API
  • Email
  • SMS

Analytics

Infrastructure or application metrics
No

Resellers

Supplier type
Reseller providing extra features and support
Organisation whose services are being resold
CrowdStrike

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Security Clearance (SC)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
User control over data storage and processing locations
Yes
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least every 6 months
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
A third-party destruction service

Backup and recovery

Backup and recovery
No

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
Availability of the deployed service is the responsibility of the customer
Approach to resilience
This information can be made available upon request
Outage reporting
This information can be made available upon request

Identity and authentication

User authentication
Username or password
Access restrictions in management interfaces and support channels
Role based access control
Access restriction testing frequency
At least every 6 months
Management access authentication
Username or password
Devices users manage the service through
Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
User-defined
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
User-defined

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
QMS International Ltd
ISO/IEC 27001 accreditation date
30/11/2022
What the ISO/IEC 27001 doesn’t cover
N/A
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
Yes
Cyber essentials plus
Yes
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
Security governance policies available upon request

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
CrowdStrike can provide documentation on their configuration and change management approach on request.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
CrowdStrike can provide documentation on their Vulnerability Management approach on request.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
CrowdStrike can provide documentation on their proactive monitoring approach on request.
Incident management type
Supplier-defined controls
Incident management approach
CrowdStrike can provide documentation on their incident Management approach on request.

Secure development

Approach to secure software development best practice
Supplier-defined process

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart
No

Energy efficiency

Energy-efficient datacentres
Yes
Description of energy efficient datacentres
Documentation on the EU code of conduct for Energy Efficient datacentres can be provided upon request.

Social Value

Social Value

Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

Fighting climate change

FullProxy's position on Social Values can be provided upon request

Covid-19 recovery

FullProxy's position on Social Values can be provided upon request

Tackling economic inequality

FullProxy's position on Social Values can be provided upon request

Equal opportunity

FullProxy's position on Social Values can be provided upon request

Wellbeing

FullProxy's position on Social Values can be provided upon request

Pricing

Price
£50 a licence
Discount for educational organisations
Yes
Free trial available
Yes
Description of free trial
A free or trial version/PoC can be requested from FullProxy. More details can be provided upon request.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at g-cloud@fullproxy.com. Tell them what format you need. It will help if you say what assistive technology you use.