CrowdStrike to Acquire Flow Security to Expand Its Cloud Security Leadership with Data Security Posture Management (DSPM)

CrowdStrike redefines modern data security with the unified platform that protects data at rest and in motion as it flows through the cloud, on-premise and within applications

CrowdStrike  today announced it has agreed to acquire Flow Security, the industry’s first and only cloud data runtime security solution. With this acquisition, CrowdStrike is setting the standard for modern cloud security with comprehensive real-time data protection spanning endpoint and cloud environments, delivering the only cloud data protection platform that secures data in all states, both at rest and in motion.

An organization’s most critical information remains the primary target of the adversary. As businesses use more data than ever, the growing reliance on cloud has led to the distribution of data across cloud-based services, third-party APIs and GenAI applications. Adversaries are increasingly becoming adept at exploiting the gaps created by stitched together platforms and cloud point-products to target and steal sensitive data. Stopping breaches requires a unified security platform that natively protects data at rest and in motion as it flows through the cloud, on-prem and within applications. With the acquisition of Flow Security and by bringing data security posture management (DSPM) to the CrowdStrike Falcon XDR platform, CrowdStrike is setting a new standard for modern cloud security with data security innovations that discover, classify, and protect data in all states from the risk of exposure, wherever it moves or resides.

“CrowdStrike was born in the cloud and pioneered cloud-native cybersecurity. We have been consistently recognized as the strategic leader in cloud security by delivering the outcomes customers need most from a single, unified platform,” said George Kurtz, co-founder and CEO of CrowdStrike. “With the acquisition of Flow Security, we’re expanding our cloud leadership by protecting data in all states as it flows through the cloud, and are redefining the future of data protection by securing data from code, to application, to device and cloud.”

“Since our founding, Flow Security has focused on removing the complexity of securing the massive amounts of critical data businesses manage daily. We saw that the market lacked a solution that provided comprehensive protection of the flow of data as it traversed SaaS applications, on-prem, cloud infrastructure, third-party APIs, etc., and that this lack of visibility and control presented a critical risk to the enterprise,” said Jonathan Roizin, CEO of Flow Security. “We look forward to working with the cloud security leader, CrowdStrike, to bring to market the most extensive cloud data protection solution.”

With the acquisition of Flow Security, the CrowdStrike Falcon platform is poised to become the industry’s most comprehensive data security platform. Following the closing of the acquisition, CrowdStrike plans to fully deliver native Flow Security DSPM capabilities in Falcon Cloud Security as part of the Falcon XDR platform, enabling customers to consolidate cloud point solutions and protect the entire cloud estate. Through this, CrowdStrike will provide visibility into critical cloud data flows, insight into how data interacts with applications, and the ability to detect when sensitive data is at risk or unintentionally leaving an environment.

Transaction Details
The purchase price will be paid predominantly in cash, with a portion delivered in the form of equity subject to vesting conditions. The proposed acquisition is expected to close during CrowdStrike’s fiscal first quarter, subject to customary closing conditions.