CrowdStrike for State & Local Government
43 of the 50 U.S. states choose CrowdStrike
Defending critical infrastructure, agencies, and citizens.
Citizen data and public services are under siege
Adversary speed
It only takes adversaries an average of 29 minutes to escalate their breach from a compromised host to the wider network.1
Public targets
With millions of citizens’ data at stake, adversaries often prey on state and local governments as targets of opportunity.
Resource constraints
Budget limitations and a nationwide gap in skilled cybersecurity workers makes staffing challenging.
Secure XIoT assets on FedRAMP High-authorized architecture
CrowdStrike Falcon® for XIoT delivers asset discovery and profiling across critical government infrastructure. Using XIoT-specific asset and adversary context, Falcon for XIoT supports IT and OT convergence with FedRAMP High authorization — ensuring operational resilience for essential public service and institutions.
Accelerate security modernization
Disrupt adversaries, modernize infrastructure, and securely adopt AI with CrowdStrike’s unified, FedRAMP-certified agentic security platform. Combine autonomous speed with human oversight to reason, decide, and act at machine speed — always under analyst control.
Defend your entire enterprise
CrowdStrike integrates industry-leading endpoint security, threat intelligence, identity protection, cloud security, and more, into a single, unified platform for a robust defense of your entire IT environment.
Cut costs and consolidate
The CrowdStrike Falcon® platform delivers comprehensive protection with a single solution, reducing fees, training, and operational hassle. Generative AI tools and automated workflows turn hours of work into minutes, maximizing your personnel and resources.2
Now available: Falcon Flex for state and local government
CrowdStrike Falcon® Flex is now available to state and local government organizations, providing flexible access to the CrowdStrike Falcon® platform as mission needs evolve. Consolidate tools, modernize operations and deploy the capabilities you need across endpoint, identity and cloud — all within a unified platform agreement.
Get a FedRAMP High cybersecurity platform
The Falcon platform is authorized under the Federal Risk and Authorization Management Program (FedRAMP). CrowdStrike has an Authorization to Operate (ATO) at the High Impact Level from the U.S. Department of Justice.
Tailored solutions for whole-of-state success
CrowdStrike solutions support federal funding requirements through the Infrastructure Investment and Jobs Act (IIJA) State and Local Cybersecurity Grant Programs (SLCGP).
One platform. One console. One agent.
The state of Wyoming trusts CrowdStrike
Featured Resources
Customer Story
State of Oklahoma Deploys CrowdStrike to Defend Thousands of Endpoints
Customer Story
City of Phoenix Deploys CrowdStrike to Protect Diverse Infrastructure
Case Study
CrowdStrike Helps the State of Arizona Protect Against Security Threats Using AWS
FAQs
Yes. CrowdStrike has several internal and external election security initiatives that directly and indirectly support local, state and national election efforts. Please contact your CrowdStrike representative for details on the program that could best support your needs.
Yes. CrowdStrike has partnered with multiple states for both fully managed and customer-managed implementations. CrowdStrike offers true multi-tenancy in addition to scalable managed security solution provider (MSSP) technology feature sets to facilitate expedited organization and deployment for quicker return on investment.
Yes. CrowdStrike aligns with and can help validate self-monitoring for CJIS compliance. Many of Crowdstrike’s state and local government customers have opted to utilize the Falcon FedRAMP-compliant offering hosted within AWS GovCloud.
1CrowdStrike 2026 Global Threat Report
2Calculated by multiplying the average number of alerts triaged by Charlotte AI by a 5-minute triage time per alert as estimated by the Falcon Complete team. Individual results may vary based on factors such as total alert volume.
