CrowdStrike has partnered with MITRE’s Center for Threat-Informed Defense to enhance cloud security by identifying adversarial tactics, techniques, and procedures (TTPs) across Azure and GCP environments. The collaboration resulted in a blueprint documenting 14 key cloud analytics that help reduce alert noise and swiftly detect abnormal behavior, thereby improving threat detection and response times. The CrowdStrike Falcon platform integrates both agent-based and agentless protection to secure cloud environments through real-time analytics and machine learning, addressing the challenges of evolving adversarial TTPs and the complexities of cloud log data. This partnership and the resulting insights aim to advance public cloud security and support organizations in managing multi-cloud and hybrid environments efficiently.