CrowdStrike and Zscaler Bring Continuous Identity to Zero Trust Access

___ Blog Featured Recent Video Category Try free CrowdStrike and Zscaler Bring Continuous Identity to Zero Trust Access A new Falcon Next-Gen Identity Security integration brings CrowdStrike’s Continuous Identity approach to the Zscaler Zero Trust Exchange, enabling real-time, risk-based access decisions that stop identity-driven attacks. June 08, 2026 • Chris Kachigian • Next-Gen Identity Security Modern adversaries are accelerating attacks across identities, endpoints, cloud environments, and SaaS applications, often moving faster than security teams can respond. Identity has become a primary attack vector as attackers leverage credential abuse to evade detection and expand their foothold. Stopping today’s threats requires visibility and context across every domain to accurately assess risk before adversaries can move laterally. Without comprehensive visibility, rich threat context, and coordinated response, security teams are left managing disconnected tools and manually correlating signals. This leads to slower response — and gives adversaries a larger window to act. That's why CrowdStrike and Zscaler continue to deepen their strategic partnership. Together, the two platforms bring together AI-native cybersecurity and Zero Trust to help organizations stop cross-domain attacks, reduce complexity, and strengthen security across the enterprise. Today, we're previewing a new integration coming soon between CrowdStrike Falcon® Next-Gen Identity Security and Zscaler that helps organizations adapt access based on real-time identity risk. Powered by CrowdStrike’s Continuous Identity approach, the CrowdStrike Falcon® platform continuously evaluates user risk and shares that context with Zscaler's Adaptive Access Engine (AAE) to enable real-time, risk-based access decisions across the Zero Trust Exchange. Unlike traditional identity solutions that rely primarily on authentication events, CrowdStrike's Continuous Identity approach evaluates risk using signals across identity, endpoint, cloud, SaaS, and threat intelligence domains. This richer context enables organizations to make more informed access decisions and respond to emerging threats in real time. Stop Identity-Driven Attacks Before They Spread Detecting risk is only half the battle. Security teams must act on that risk before attackers can access critical applications or move laterally across the environment. The new Falcon Next-Gen Identity Security integration continuously shares real-time risk signals from the CrowdStrike Falcon® platform with Zscaler using open standards, including the OpenID Shared Signals Framework (SSF) and Continuous Access Evaluation Profile (CAEP). When Falcon Next-Gen Identity Security identifies high-risk activity, such as a malicious script execution or suspicious user behavior, Zscaler can automatically adjust access policies based on the user's current risk posture — no manual intervention required. See it in action: Here's how it works in practice: A user activity triggers a detection in Falcon Next-Gen Identity Security; for example, due to suspicious credential activity, a brute-force attempt, impossible travel, or malicious execution on a device. Falcon Next-Gen Identity Security continuously evaluates user risk by correlating identity, endpoint, and threat signals to determine when access policies should adapt to changing risk conditions.   A rule configured in Falcon Next-Gen Identity Security's CAEP Hub triggers a risk level change event, which is sent to Zscaler in real time. Zscaler AAE receives the elevated risk signal and reevaluates the AAE profile to take appropriate actions, such as automatically blocking the user's access to sensitive resources, like a code repository or requiring step-up authentication. When the incident is resolved and risk decreases, the Falcon platform sends an updated signal to Zscaler, and access is automatically restored. With this integration, organizations can dynamically restrict access to sensitive resources, prevent lateral movement, and automatically restore access in real time once risk has been mitigated without manual intervention. Turn Security Signals into Security Outcomes Modern attacks don't stay in one place. A compromised endpoint can quickly escalate into identity abuse, unauthorized access, and broad organizational compromise. The longer it takes to respond, the greater the business risk. Together, CrowdStrike and Zscaler give security leaders a unified defense that detects threats earlier across endpoint, identity, network, and additional domains, and automatically shares risk context in real time to enforce access decisions the moment circumstances change. The result is seamless interoperability, stronger cross-domain visibility, and the ability to stop attacks before they become breaches. As adversaries grow faster and more sophisticated, the ability to act on risk across every domain, without manual intervention, is a business imperative. The upcoming Falcon Next-Gen Identity Security integration extends CrowdStrike and Zscaler's shared vision of unified defense by bringing CrowdStrike’s Continuous Identity approach to Zero Trust access, which will help organizations continuously adapt access as risk changes, automatically and at scale. Disclaimer This content includes discussion of unreleased services or features. Any references to unreleased features reflect our current plans only and do not constitute a promise or commitment to deliver such features. These items may change or may not be made available in all regions. Customers should make purchase decisions based on features currently available. Additional Resources Be part of Fal.Con 2026 and connect with 10,000+ cybersecurity professionals shaping the future of the industry. Explore the Falcon Next-Gen Identity Security product page. Download the Complete Guide to Next-Gen Identity Security. CrowdStrike 2026 Global Threat Report AI threats have reached a critical turning point. Access the definitive look at the cyber threat landscape. Download Related Content Next-Gen Identity Security | May 26, 2026 CrowdStrike Named a Leader in Identity Threat Detection and Response Next-Gen Identity Security | May 20, 2026 How to Protect Identities and Sessions from Infostealers Next-Gen Identity Security | Mar 31, 2026 Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Categories Agentic SOC 52 Cloud & Application Security 144 Data Security 24 Endpoint Security & XDR 357 Engineering & Tech 87 Executive Viewpoint 180 Exposure Management 119 From The Front Lines 204 Next-Gen Identity Security 71 Next-Gen SIEM & Log Management 113 Public Sector 42 Securing AI 36 Threat Hunting & Intel 218 CrowdStrike Falcon Platform Ready to protect your business? Try CrowdStrike free today Start free trial Subscribe Sign up now to receive the latest notifications and updates from CrowdStrike Subscribe See CrowdStrike Falcon in action Explore demos Copyright © 2026 CrowdStrike Privacy Request Info Blog Contact Us 1.888.512.8906 Accessibility ABOUT COOKIES ON THIS SITE In order to provide you with the most relevant content and best browser experience, we use cookies to remember and store information about how you use our website. See how we use this information in our Privacy Notice and more information about cookies in our Cookie Notice. Privacy Preference Center Privacy Preference Center Your Privacy Strictly Necessary Cookies Performance Cookies Functional Cookies Targeting Cookies Your Privacy When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences, or your device, and is mostly used to make the site work as you expect. The information does not usually identify you directly, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to learn more and change our default settings. Blocking some types of cookies may impact your experience of the site and the services we are able to offer. More information Strictly Necessary Cookies Always Active These cookies are necessary for the website to function and cannot be switched off in our systems. They may be set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies may process limited personal information, such as technical or device identifiers, where necessary to ensure the security, functionality, and integrity of the website or web portal. Such processing is strictly limited to what is required for these purposes and is not used for advertising or marketing. Cookies Details Performance Cookies Performance Cookies These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore does not identify you. If you do not allow these cookies, your visit to our website will not be included in our analytics, and our ability to monitor website performance and make improvements will be reduced. Cookies Details Functional Cookies Functional Cookies These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly. Cookies Details Targeting Cookies Targeting Cookies These cookies may be set on our site by our advertising partners. They assign a unique identifier to your browser or device and may track your activity across sites to build a profile of your interests and show you relevant adverts on other sites. If you do not allow these cookies, you will still see ads, but they may be less relevant to you. Cookies Details Cookie List Consent Leg.Interest checkbox label label checkbox label label checkbox label label Clear checkbox label label Apply Cancel Confirm My Choices Allow All