Dragos & CrowdStrike expand partnership to tackle cyber threats
Dragos has revealed an expanded partnership with CrowdStrike to help enhance threat detection and expedite response times to cybersecurity threats aimed at industrial infrastructure.
The partnership will leverage Dragos OT threat intelligence by incorporating it into the CrowdStrike Falcon Next-Gen SIEM. The tandem work is designed to assist SOC analysts in identifying malicious behaviours in OT networks swiftly and provide the contextual information required to reduce false positives, ensuring more effective and efficient mitigations while also speeding up response rates. Compatible with both first and third-party data, CrowdStrike Falcon Next-Gen SIEM utilises native threat intelligence, AI, and workflow automation to achieve transformative security operations.
This collaboration is of the essence, given the escalating cyber threats in OT environments, such as the 50% rise in reported ransomware attacks. Numerous industrial organisations remain in the dark with visibility across their OT networks. Dragos Platform fills this gap by offering critical enhancements to cybersecurity defences. It provides an OT-native network visibility and monitoring capabilities. Coupled with the Falcon Next-Gen SIEM, SOC analysts are offered a wealth of context for alerts, curtailing the frequency of false positives thanks to intelligence-driven threat detections. Rapid identification of malign activities in OT environments boosts industrial organisations' ability to prioritise and counter tangible threats, thereby optimising their cybersecurity investments and enhancing operational efficiencies.
Underlined by CrowdStrike, Falcon Next-Gen SIEM features an 80% lower total cost of ownership while delivering more capabilities and up to 150 times faster search performance than legacy SIEMs and other alternatives. As a result of this extended integration, organisations can discover and scrutinise evasive threats using AI-powered detections and Dragos's rich contextual threat behaviour analytics. They can also speed up deployment thanks to streamlined Dragos Platform data onboarding and automated responses, unify SOC data and workflows to achieve superior security outcomes, and carry out in-depth investigations for a reduced mean time to respond and recover (MTTR).
Matt Cowell, Global VP of Business Development at Dragos, stated, "The number and sophistication of cyber threats to Industrial systems is on the rise, and SOCs are increasingly charged with protecting operational technology in addition to IT. Our extended partnership with CrowdStrike will equip SOC analysts with the OT technology and insights they need to safeguard their entire organisation."
An upcoming webinar titled "Unified SOC: Centralised Security Data with OT Visibility for Intelligence Driven Investigations" shall offer more details about this partnership and will occur on June 27, 2024. Considering the escalation of threats, this integration, which is currently available in the CrowdStrike Marketplace, promises to make an instrumental change in the cybersecurity landscape and position both Dragos and CrowdStrike as pioneering entities in the defence against cyber threats.