At its annual Fal.Con conference, CrowdStrike announced a new wave of innovations in its Falcon® Next-Gen Identity Security platform, aimed at closing the critical security gaps left by traditional identity and access management (IAM) and privileged access management (PAM) solutions.
The enhancements bring unified protection to human, machine, and AI agent identities across the entire hybrid identity lifecycle, introducing phishing-resistant MFA, advanced privileged access capabilities, and identity-driven case management. Together, these features strengthen initial access defenses, privilege controls, and SOC response.
“Identity is the front line of modern attacks. In today’s enterprise, access is constantly evolving across identities spanning human users, machines, and AI agents that operate dynamically in hybrid environments,” said Elia Zaitsev, chief technology officer at CrowdStrike. “Traditional IAM and PAM were designed to manage access, not stop adversaries. CrowdStrike closes the gaps adversaries exploit with these fragmented solutions, securing every identity across every stage of the attack and environment. Our latest innovations provide deeper visibility, more powerful automation, and streamlined response to extend the unified advantage of Falcon Next-Gen Identity Security.”
Also Read: Catchpoint Unveils AI-Powered Monitoring to Eliminate Guesswork in IT Incident Response
The new capabilities include:
-
FalconID: A phishing-resistant, passwordless MFA built on FIDO2 standards and powered by real-time identity and endpoint telemetry, blocking sophisticated attacks that bypass legacy MFA.
-
Enhanced Falcon Privileged Access: Simplifies Active Directory and Entra ID configurations, automates access provisioning through Microsoft Teams and Fusion SOAR, and minimizes standing privileges by delivering real-time visibility into access behavior.
-
Identity-driven Case Management: Correlates identity detections into a single Falcon® Next-Gen SIEM case enriched with endpoint, cloud, and SaaS telemetry, accelerating investigations into cross-domain attacks.
By unifying identity protection with endpoint, cloud, and SOC operations, CrowdStrike aims to strengthen enterprise defenses against increasingly complex identity-driven threats.