At RSA 2026, CrowdStrike announced the launch of Flex for Services, extending its Falcon Flex licensing model to cybersecurity services and enabling flexible, outcome-driven consumption for organizations navigating the agentic era.
With Flex for Services, businesses can now access CrowdStrike’s full portfolio of expert-led security services on demand, powered by the Falcon platform and delivered in collaboration with its global partner ecosystem.
The introduction of Flex for Services comes alongside the Zero Dollar Flex Fund, offering new entry points for organizations and accelerating adoption across enterprise environments.
By removing traditional procurement barriers, Flex for Services allows organizations to align cybersecurity services with evolving risks, data flows, and threat landscapes.
Extending Falcon Flex to Cybersecurity Services
With Flex for Services, CrowdStrike extends its Falcon Flex model beyond platform subscriptions to include services such as AI advisory, incident response, threat hunting, red teaming, and readiness assessments.
The offering is designed to allow organizations to consume cybersecurity services when needed, rather than relying on fixed, pre-defined engagements.
“When a model works, the market follows. Falcon Flex is the blueprint for how modern organizations procure cybersecurity and how vendors now go to market,” said Tom Etheridge, chief global services officer at CrowdStrike.
“Flex for Services extends that model to security services, shifting the consumption model from hours to outcomes. It brings Falcon into more environments and opens new opportunities for our service partners. Innovation doesn’t stop at technology.”
By leveraging Flex for Services, organizations can dynamically allocate service hours based on real-time risk, ensuring more responsive and efficient cybersecurity operations.
Also Read: CrowdStrike Positions Endpoint as Epicenter for AI Security with New Falcon Platform Innovations
Falcon Flex: Procurement for the Agentic Era
The launch of Flex for Services builds on the rapid growth of the Falcon Flex model, which is increasingly being adopted as a preferred subscription framework in the AI-driven enterprise landscape.
As AI agents, autonomous coding tools, and evolving attack surfaces reshape enterprise environments, procurement strategies are shifting toward demand-based planning.
With an ending ARR cohort of $1.69 billion in Q4 FY26 – growing more than 120% year-over-year – Falcon Flex is emerging as a key model for managing cybersecurity investments.
Flex for Services complements this by enabling organizations to extend the same flexibility to services, aligning cybersecurity consumption with the pace of technological change.
Flexible Services Consumption for Evolving Threats
As cyber threats become more sophisticated and AI-driven, traditional service models based on fixed engagements are increasingly inadequate. Flex for Services addresses this gap by offering a flexible pool of service hours that organizations can deploy as needed.
This model operates independently of Falcon platform subscriptions, giving organizations greater control over how they consume services.
Whether responding to incidents or proactively assessing vulnerabilities, Flex for Services ensures that cybersecurity efforts remain aligned with current risk levels.
Zero Dollar Flex Fund Lowers Entry Barriers
To accelerate adoption, CrowdStrike has introduced the Zero Dollar Flex Fund alongside Flex for Services. For a limited time, qualifying new customers can access 200 hours of CrowdStrike Services, including:
- 160 hours of incident response
- 40 hours of proactive services
This offering comes with no upfront initiation cost, enabling organizations to immediately engage with CrowdStrike’s cybersecurity expertise. The Zero Dollar Flex Fund complements Flex for Services by providing a scalable pathway for organizations to expand their use of the Falcon platform over time.
Driving Growth Across Partner Ecosystem
Flex for Services also strengthens CrowdStrike’s partner ecosystem by enabling system integrators, managed service providers, and incident response partners to adopt a flexible, consumption-based services model.
Partners can leverage CrowdStrike’s technology and expertise to deliver scalable cybersecurity services, aligning offerings with customer demand while improving operational efficiency. This approach supports repeatable and expandable growth opportunities across the ecosystem.
“CrowdStrike’s technology and cyber expertise are core to the services we deliver to keep our customers safe,” said Robb Mayeski, global head of CrowdStrike Services, Kroll.
“Flex for Services unlocks greater value for our customers, giving them the flexibility to consume the expert services they need as their risk profiles change, while enabling us to scale our business. This isn’t competition, it’s collaboration.”
