CrowdStrike Falcon® and PCI DSS Compliance

CrowdStrike Falcon® platform’s advanced prevention, detection and mitigation capabilities are ideal for organizations that need to protect endpoints and critical data from the latest threats. This is especially important to organizations that store, process, or transmit payment card data during day-to-day operations.

This white paper is intended for Payment Card Industry (PCI) entities considering, or currently using CrowdStrike Falcon® as well as other interested parties involved in sales, architecture, operation, and assessment of the CrowdStrike platform or by its consumers. This document is intended to help CrowdStrike customers understand the controls that may be leveraged by the customer to support and implement CrowdStrike Falcon in a PCI Data Security Standard (DSS)-compliant manner.

Merchants, payment processors, issuers, and service providers are required by the payment-acquiring banks to comply with the PCI DSS on an ongoing basis.

CrowdStrike engaged Coalfire, a leading independent security and risk management consulting firm, to assess CrowdStrike Falcon® functionality with respect to the PCI DSS 4.0 requirements and document how CrowdStrike meets all elements of each of the 12 requirements.

Download the report* to learn:

  • The features of CrowdStrike Falcon® platform that can be leveraged for PCI DSS compliance
  • The requirements of the PCI DSS framework
  • How CrowdStrike Falcon® features map to specific requirements in the PCI DSS framework

*This report was produced by Coalfire, a PCI Qualified Security Assessor (QSA).


  • OS icon
  • deployment icon
  • installation icon

For technical information on installation, policy configuration and more, please visit the CrowdStrike Tech Center.

Visit the Tech Center