By Dark Reading
Publication Date: 2026-04-03 11:53:00
Last week, Microsoft Defender for Endpoint became the first endpoint detection and response (EDR) solution to be integrated with CrowdStrike’s Falcon Next-Gen SIEM, leveraging Defender data to support third-party EDRs.
This new support lets customers use Defender telemetry and controls in CrowdStrike’s Next-Gen SIEM.
“We’ll tap into that and provide comprehensive security in our platform, even if they’re using other endpoint technology,” said CrowdStrike CTO Elia Zaitsev.
The platform now ingests data directly, accelerating Falcon’s threat detection and enabling smart filtering and real-time analytics, he said.
“We can perform intelligent filtering to more efficiently manage which data is being ingested into our platform,” Zaitsev said.
CrowdStrike also launched Falcon Onum to manage log data for its Next-Gen SIEM, letting Microsoft Defender telemetry be processed at scale. Onum is the company CrowdStrike acquired last year for its real-time pipeline technology.
