Singapore – ExtraHop, a provider of modern network detection and response (NDR), and CrowdStrike have announced the next stage of their partnership.
The collaboration builds on recent integrations with Falcon Next-Gen security information and event management (SIEM), with the two companies aiming to unify data sources and improve investigation speed and simplicity for security operations teams.
Security operations centres (SOCs) are increasingly challenged by fragmented tools and rising operational costs. To address these issues, ExtraHop and CrowdStrike are developing capabilities that combine endpoint, network, and log data more effectively.
Kanaiya Vasani, chief product officer at ExtraHop, explained that SOC teams are under constant pressure, often wasting time piecing together fragmented data.
“Together with CrowdStrike, we’re working toward a simpler, more unified SOC experience–one that gives analysts the clarity they need to stay ahead of threats and respond with confidence,” Kanaiya said.
The joint effort is designed to provide analysts with deeper visibility, faster access to evidence, and simplified workflows without the need for data duplication or added complexity.
As part of the integration, customers using ExtraHop RevealX Premium Investigation will be able to access ExtraHop data directly within the Falcon platform. This approach aims to streamline investigations, improve operational efficiency, and enhance security response outcomes for enterprises operating at scale.
“The agentic era is accelerating everything, and legacy SOC models can’t keep up with today’s scale of threats and data,” Daniel Bernard, chief business officer at CrowdStrike, explained.
“By expanding our partnership with ExtraHop into Falcon Nex-Gen SIEM, we’re giving customers a modern foundation that unifies endpoint and network visibility, helping them respond faster.”
By aligning network and endpoint visibility within a unified environment, the partnership intends to support SOC teams in managing growing volumes of threat data more efficiently, while also reducing the reliance on siloed security tools.
