Image source: Shutterstock

Highlights

  • Charlotte AI Innovations: Introduction of Charlotte AI Agentic Response and Charlotte AI Agentic Workflows, bringing autonomous reasoning and action to cybersecurity.

  • Enhanced SOC Efficiency: CrowdStrike combines AI-driven detection, investigation, and response for faster, more efficient threat management.

  • New Falcon Capabilities: Expands protection across critical infrastructure with Falcon for XIoT and expert-led CrowdStrike Pulse Services.

CrowdStrike (NASDAQ:CRWD), a leader in cloud-delivered cybersecurity, has announced significant advancements in its artificial intelligence capabilities with the unveiling of the Charlotte AI Agentic Response and Charlotte AI Agentic Workflows. These innovations mark a major step forward in cybersecurity, pushing the boundaries of traditional security operations by introducing autonomous reasoning and action in response to both first-party and third-party data. This leap builds upon the previously introduced Charlotte AI Agentic Detection Triage, turning CrowdStrike's Falcon® platform into an intelligent, reasoning-driven cybersecurity system.

Charlotte AI Agentic Innovations: Redefining Security Operations

CrowdStrike’s Charlotte AI suite brings AI-native capabilities to the forefront of modern Security Operations Centers (SOCs), transcending traditional “ask-and-respond” copilots. The new Charlotte AI Agentic Response exponentially enhances analyst productivity by automating investigative processes. The AI now automatically poses and answers the questions that a seasoned security analyst would typically ask, drastically accelerating root cause analysis, mapping lateral movement, and guiding next steps. This innovation is designed to save hours of manual work weekly, making it easier for security teams to identify and respond to threats more effectively.

Another powerful addition is Charlotte AI Agentic Workflows, which are integrated into Falcon Fusion SOAR (Security Orchestration, Automation, and Response). These workflows, powered by large language models (LLMs), allow analysts to insert AI reasoning directly into automated playbooks. For example, AI can determine whether a device should be contained based on company policies and generate communications for various audiences, from technical updates to executive summaries, complete with automatic translation for global teams.

Falcon Complete: AI-Powered, Expert-Enhanced Threat Management

CrowdStrike’s Falcon Complete Next-Gen Managed Detection and Response (MDR) service now integrates Charlotte AI, leveraging AI’s triage capabilities to accelerate alert investigations. By combining expert human oversight with AI-powered automation, Falcon Complete enhances breach detection and response times, providing security teams with a more streamlined and efficient way to stop attacks.

The new Charlotte AI Agentic Detection Triage for Identity extends its capabilities to Falcon® Identity Protection, allowing analysts to prioritize and act on identity-related threats faster, reducing the noise of irrelevant alerts and ensuring that real attacks are addressed swiftly.

Expanding Protection Across Critical Infrastructure

In addition to the new AI features, CrowdStrike has also expanded its platform’s capabilities to offer enhanced protection across critical infrastructure and IoT systems. Falcon for XIoT with ExPRT.AI has been validated by more than a dozen leading industrial control system (ICS) vendors, providing real-time, adversary-driven risk insights. Moreover, CrowdStrike introduced CrowdStrike Pulse Services, expert-led offerings that help organizations operationalize agentic AI. These services include modular engagements that assess security readiness, align workflows, and fine-tune policies, ultimately accelerating security maturity.