-

CrowdStrike Launches Insider Risk Services to Combat Insider Threats

New services integrate industry-leading technology, threat intelligence and human expertise to harden defenses against insider risks

AUSTIN, Texas--(BUSINESS WIRE)--CrowdStrike (NASDAQ: CRWD) today launched CrowdStrike Insider Risk Services, a comprehensive set of offerings designed to help organizations detect and prevent insider threats from negligent employees, malicious insiders and sophisticated adversaries. With CrowdStrike’s new services, organizations can proactively address vulnerabilities, strengthen defenses and mitigate insider risks before they escalate.

The total average cost of activities to resolve insider threats over a 12-month period has risen to $16.2 million, highlighting the impact insider incidents can have on an organization. Insider threats have evolved to include both adversaries posing as legitimate employees to exploit trust and infiltrate environments, as well as internal employees compromising security through negligence or malicious intent. Despite these challenges, many organizations still lack a formal insider risk program, leaving critical gaps in their defenses.

CrowdStrike Insider Risk Services empowers organizations to proactively identify and mitigate insider risks before they escalate. By combining the industry-leading threat detection and response capabilities of the CrowdStrike Falcon® cybersecurity platform with advanced threat intelligence, threat hunting, tailored assessments, program reviews and expert-led incident response, CrowdStrike delivers multi-layered defense strategies that set the standard for insider risk management.

CrowdStrike’s intelligence-driven approach recently uncovered tactics used by the DPRK-nexus adversary FAMOUS CHOLLIMA, a prolific insider threat group that infiltrated over 200 U.S. technology companies by disguising malicious activities as legitimate employment – highlighting the critical need for proactive defenses against insider risks.

Key service offerings include:

  • Insider Risk Program and Technical Reviews: Identify gaps and strengthen security posture using CrowdStrike’s leading intelligence and 24/7 threat hunting capabilities.
  • Tabletop Exercises and Red Team Simulations: Test defenses, enhance detection capabilities and uncover vulnerabilities through real-world insider threat scenarios.
  • Incident Response: Reduce response times to swiftly contain and mitigate risk from insider incidents with expert-led services powered by adversary-driven threat intelligence and telemetry from the Falcon platform.

“Today’s insider risks, whether caused by an accident, negligence, or a sophisticated adversary, demand proactive and comprehensive protection to safeguard critical assets and minimize any potential impact,” said Thomas Etheridge, chief global services officer, CrowdStrike. “With deep adversary insights, extensive experience in countering complex threats and industry-leading visibility and protection provided by the Falcon platform, CrowdStrike Insider Risk Services sets a new standard for combating the modern insider threat.”

To learn more about CrowdStrike Insider Risk Services, please visit our blog and website.

About CrowdStrike

CrowdStrike (NASDAQ: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data.

Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities.

Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value.

CrowdStrike: We stop breaches.

Learn more: https://www.crowdstrike.com/

Follow us: Blog | Twitter | LinkedIn | Facebook | Instagram

Start a free trial today: https://www.crowdstrike.com/free-trial-guide/

© 2025 CrowdStrike, Inc. All rights reserved. CrowdStrike and CrowdStrike Falcon are marks owned by CrowdStrike, Inc. and are registered in the United States and other countries. CrowdStrike owns other trademarks and service marks and may use the brands of third parties to identify their products and services.

Contacts

Media Contact
Jake Schuster
CrowdStrike Corporate Communications
press@crowdstrike.com

CrowdStrike, Inc.

NASDAQ:CRWD

Release Versions

Contacts

Media Contact
Jake Schuster
CrowdStrike Corporate Communications
press@crowdstrike.com

More News From CrowdStrike, Inc.

CrowdStrike Appoints AJ Shipley as Chief Product Officer

AUSTIN, Texas--(BUSINESS WIRE)--CrowdStrike (NASDAQ: CRWD) today announced the appointment of AJ Shipley as Chief Product Officer. Shipley now leads CrowdStrike's product organization, accelerating innovation across the CrowdStrike Falcon® platform to advance the company’s mission of stopping breaches and securing the world’s adoption of AI. As organizations race to deploy AI, every agent, model, and agentic workflow becomes a new attack surface to defend, a new identity to govern, and a new en...

CrowdStrike Named Frost & Sullivan’s 2026 Global Enabling Technology Leader in Zero Trust Browser Security

AUSTIN, Texas--(BUSINESS WIRE)--CrowdStrike (NASDAQ: CRWD) today announced it has been named Frost & Sullivan’s 2026 Global Enabling Technology Leader in Zero Trust Browser Security. The browser has become the operating environment for modern work, where employees access email, SaaS applications, collaboration tools, customer data, and AI services. All this activity makes the browser a high-value target for attackers – sitting between users, identities, applications, and sensitive enterpris...

CrowdStrike Named a Leader in the 2026 IDC MarketScape for Worldwide SIEM

AUSTIN, Texas--(BUSINESS WIRE)--CrowdStrike (NASDAQ: CRWD) today announced it has been named a Leader in the IDC MarketScape: Worldwide SIEM 2026 Vendor Assessment.1 We believe this recognition reflects how CrowdStrike Falcon® Next-Gen SIEM is transforming security operations at global scale, as organizations replace legacy SIEMs to build the agentic SOC on the CrowdStrike Falcon® platform. Legacy SIEMs were built for a threat environment that no longer exists. As AI-enabled adversaries attack...
Back to Newsroom