A year ago, CrowdStrike brought its next-generation SIEM solution to market to give organizations a better tool to address the increasing speed and sophistication of modern cyberattacks and to better fit with an evolving security field that includes emerging technologies like AI.
Now, the company is turning to its partner ecosystem to accelerate the adoption of the product by its more than 29,000 customers.
At the cybersecurity vendor’s Americas Partner Symposium this week in Utah, executives launched its Services Partner Program for MSSPs, MSPs, system integrators, and others. The program includes new incentives, tools, support, and training focused on CrowdStrike’s Falcon Next-Gen SIEM services.
In addition, enablement resources, technical certifications, and a structured engagement framework are also folded into the program, which is designed to grow what executives say is a $330 million business for the Austin, Texas-based company.
“This is our very first dedicated services program with incentives around delivery, migration, automation, not just license sales,” CrowdStrike Chief Business Officer Daniel Bernard told MSSP Alert. “It’s tailored for partners driving SOC [security operations center] transformation. The market is consolidating. MSSPs increasingly want a single platform that gives them more — endpoint, cloud, identity, SIEM.”
Threats, Cloud, Edge Driving Market
Security information and event management is a fast-growing sector of the cybersecurity space, with SkyQuest Technology market analysts expecting the global SIEM market to expand from $8.33 billion last year to $28.85 billion by 2032.
The myriad market drivers include the widespread adoption of cloud computing and the ongoing expansion by enterprises into the edge through mobile devices and other connected Internet of Things (IoT) systems, the analysts wrote. That’s driving demand for greater visibility and control over their entire IT environment, from on-premises to the cloud and edge.
Organizations now also have to ensure compliance with the growing number of government regulations – including PCI DSS, the European Union’s GDPR, and HIPAA in the United States – that demand they have strong security frameworks in place to protect systems and the data they hold.
A Platform Approach
When announcing Falcon Next-Gen SIEM last year, co-founder and CEO George Kurtz spoke of the “failed promise of SIEM” to enable enterprises to rapidly analyze massive amounts of data to detect, investigate, and respond quickly enough to rapidly accelerating cyberattacks.
“Customers are hungry for better technology that delivers instant time-to-value and increased functionality at a lower total cost of ownership,” Kurtz said in a statement at the time.
With the new SIEM product, the vendor moved to close that gap by taking a platform approach, an ongoing trend in the wider cybersecurity field as organizations look for more tightly integrated security architecture rather than trying to pull together and manage large numbers of point products.
CrowdStrike’s Bernard said that platform approach is helping to drive demand for Falcon Next-Gen SIEM.
“SIEM isn’t a plug-and-play sensor like EDR [endpoint detection and response],” he said. “SIEM migration requires movement of data, ingestion of data, and requires dashboarding and workflow automation. It’s a true SOC transformation.”
Partners in Charge
MSSPs and other channel partners with expertise in technology implementation and management are key to ensuring that the transformation is successful and scalable, which was the impetus to creating the new SIEM services program.
“MSSPs are on the frontlines helping customers reduce complexity, consolidate vendors, and rethink their detection and response approach,” Bernard said. “In many cases, they manage and operate technology on behalf of end customers. … These partners help organizations move away from legacy tools with high cost and slow time-to-value.”
CrowdStrike is bringing along a number of high-profile services partners with this new program, including Deloitte, Echelon, Ernst and Young, eSentire, NETbuilder, and Wipro. eSentire, for example, said it is combining Falcon Next-Gen SIEM and its own managed detection and response (MDR) solution.
