SOCs seeking to address blindspots and increase effectiveness have turned to NDR and EDR solutions to acquire the telemetry and detection capabilities necessary to combat adversaries. Gigamon has partnered with CrowdStrike® to provide users with a fully unified detection and response solution for active threats. The seamless cloud-to-cloud integration between Gigamon ThreatINSIGHT and the CrowdStrike Falcon® platform ensures the right data is available at the right time to the right people from within the ThreatINSIGHT console:
CrowdStrike Falcon® Intelligence Threat Intelligence is applied against real-time network traffic for immediate detections.
CrowdStrike Falcon® Insight detections appear alongside ThreatINSIGHT ML and threat intelligence detections for fast adversary identification.
CrowdStrike Falcon® Insight endpoint telemetry appears alongside ThreatINSIGHT’s L2 –L7 network telemetry to speed triage, hunting, and investigations.
Close the SOC Visibility Gap
With a simple cloud-to-cloud integration, gain in-depth host and L2-L7 network telemetry in a single console plus visibility to IoT, BYOD, and unmanaged devices where the CrowdStrike Falcon® agent is not present
Advanced Adversary Detection
Correlated Gigamon and CrowdStrike detections with ThreatINSIGHT and CrowdStrike Falcon® Intelligence threat intelligence on live network traffic and machine learning.
Rapid Response and Containment
Efficient and effective access to data and tools for hunting and investigation, and easy containment of compromised hosts in real-time from within ThreatINSIGHT’s single console.