We use the product across all of our entities for EDR, threat detection, and response methods.
External reviews
187 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Easy to use with good historical data and real-time detection
What is our primary use case?
How has it helped my organization?
We wanted a solution for protection. We had a number of entities with various EDR solutions. We wanted to centralize under one EDR solution, and we wanted one that was efficient and easy to manage with a small team.
The biggest thing for us was getting to a single platform. A single pane of glass has been nice. The ability to segment various sites out. The R-Back involved is super helpful for us as we are a multi-company organization. In general, the time has been greatly reduced for incidents.
What is most valuable?
The ease of use of the platform is very nice. The console provides excellent visibility into events that occur and, in general, the wide range of tools that are built into the agent itself.
My impression of the product's real-time detection and response capabilities is good. It definitely is a little bit different. It takes a little bit more time to learn than some of the other solutions that we have worked with in the past. Once you do understand it and once you're capable of running through the GUI and you understand what the logs and various windows they're trying to tell you, it's fairly straightforward.
The solution's automated remediation is good. I like that you can segment it into four options. You can choose to kill it at any time in the kill chain, so you can choose to quarantine it, you can choose to remediate, you can choose to roll back, you can choose to let it run. Being able to choose how far along you want those events to get is pretty nice.
The historical data record provided by the solution after an attack is decent. It gives you a flowchart of the attack. All along the processes you get good visibility and see all that were detected. Definitely, from a post-incident analysis perspective, it's very strong.
The solution has helped reduce our organization's mean time to detect by 20% to 30%. Given that extra 20% to 30%, it frees us up to focus on other items.
The solution's impact on our organization's productivity is good. It provides robust whitelisting capabilities and improves our productivity.
What needs improvement?
Agent releases need to be more stable before being pushed out.
Bugs need to be disclosed quickly.
The reporting, and the logging visibility, are not there. It's very, very crude and simple. It needs to be drastically expanded.
They need to expand their third-party integrations with SIM tools, and sites need to be given the option to expire at the end of the contract as well.
They could expand their integration with Kubernetes. They are trying to build out their third-party integrations. It does work well on Windows and Mac.
For how long have I used the solution?
I've used the product for three and a half years.
What do I think about the stability of the solution?
Agent stability and communication with the console and agents going offline can be an issue. It can be time-consuming to coordinate and fix. However, the cloud console is very resilient. It's mostly the agent releases where we might have issues. CrowdStrike agents seem a little more stable.
What do I think about the scalability of the solution?
We have about 3,000 users using the solution.
Scaling is no issue.
How are customer service and support?
Technical support is hit or miss. We have worked with some good agents and some less knowledgeable.
Which solution did I use previously and why did I switch?
We have used different solutions, including the fact that we still CrowdStrike at a couple of companies. We are now moving more fully towards SentinelOne.
The simplicity and ease of use were big and where SentinelOne stands out. It's a set-and-forget policy. Based on what we saw in testing, it was the best option.
In terms of telemetry data, we were all over the board.
How was the initial setup?
The initial setup was a little more complex when we first started. However, they've smoothed a lot of their implementation out and so it's gotten easier over time. It took us a couple of weeks to a month to deploy. About 20 were involved in the deployment. We have 30 to 40 companies around the world and it's across every company and every department.
The solution does require maintenance. You need to have agents up to date and cases closed properly. It does require you to be invested.
What was our ROI?
We have witnessed ROI. It's comprehensive in its detection capabilities and has saved us from multiple attacks. We've likely saved 30% based on prevented attacks.
What's my experience with pricing, setup cost, and licensing?
The solution is relatively cheaper and is willing to work with companies on pricing.
What other advice do I have?
We are customers.
For those who believe they already have a continuous monitoring solution in place, I'd advise that SentinelOne knows its own product. They can provide that extra confidence that nothing gets missed. And if you see a high number of alerts, they're able to really help you discern those and get down to the ones that matter most.
The solution doesn't affect our ability to innovate one way or another. It doesn't hold us back.
I'd recommend the solution and advise running a POC in your environment. It's good to run against CRowdStrike. They are seriously contending against CrowdStrike.
I'd rate the solution eight out of ten.
Helps keep the environment safe and is easy to deploy and maintain
What is our primary use case?
SentinelOne Singularity Cloud is on our computers and servers, mainly for threat hunting. I use it to ensure our devices remain healthy and are virus-free, ransomware-free, and threat-free.
How has it helped my organization?
We've felt more comfortable having SentinelOne Singularity Cloud because we've had a safer environment. The benefits from the platform were immediate.
What is most valuable?
What is most valuable in SentinelOne Singularity Cloud is that it can detect any threat on a machine or is being installed on a machine, so it is a platform that helps keep the environment safe.
I also found the real-time detection and response capabilities of SentinelOne Singularity Cloud impressive because it is a platform that uses artificial intelligence to determine what is normal and what is abnormal and can lock down any virus it may encounter.
SentinelOne Singularity Cloud has good automated remediation capabilities. It can catch threats that other antiviruses do not.
The platform also has a very good deep visibility feature, enabling you to run scans and find what you need.
SentinelOne Singularity Cloud provides excellent historical data to find what you need.
The platform reduced my organization's mean time to detect and mean time to remediate anywhere from a week to sixty days.
SentinelOne Singularity Cloud also helped free up SOC staff, enabling staff to work on other projects or tasks. Through the platform, the team does not have to spend as much time trying to go through different objects on the machines manually.
SentinelOne Singularity Cloud hasn't had a direct, everyday impact on my organization's productivity. What it has an impact on is uptime whenever there is a threat on a computer because it blocks it.
The platform has good interoperability with third-party solutions and integrates smoothly.
SentinelOne Singularity Cloud is able to support my organization's ability to innovate. It is good in that aspect, though I have yet to work with that extensively.
What needs improvement?
SentinelOne Singularity Cloud sometimes has false positives, but the main area for improvement I want to see is for it to become less resource-intensive. Right now, it can slow down processes on the machine, and it would be a massive improvement if it were more lightweight than it currently is.
For how long have I used the solution?
I've been working with SentinelOne Singularity Cloud for about three years.
What do I think about the stability of the solution?
I found SentinelOne Singularity Cloud stable.
What do I think about the scalability of the solution?
SentinelOne Singularity Cloud is scalable, and it is pretty seamless in terms of autoscaling based on my organization's workload demands.
How are customer service and support?
I have not contacted the SentinelOne Singularity Cloud technical support team.
Which solution did I use previously and why did I switch?
My organization used Windows Defender but switched because SentinelOne Singularity Cloud was more robust.
Due to its notifications, you can also have the turnout time of obtaining telemetry data from SentinelOne Singularity Cloud automatically, so you do not have to watch it constantly to see the data. The platform automatically shuts down the computer, takes it off the network, and then reports to you versus Windows Defender, which requires you to do a little more research into the items, as it did not provide as much information.
How was the initial setup?
I was involved in the initial setup of SentinelOne Singularity Cloud, which I found pretty straightforward.
What about the implementation team?
We worked with a consultant in implementing SentinelOne Singularity Cloud.
Only two people were involved, and the process took about two weeks.
What was our ROI?
I believe there is ROI from SentinelOne Singularity Cloud because of its impact on productivity through its ability to remediate and self-resolve some of the items.
What's my experience with pricing, setup cost, and licensing?
I have no information on how much SentinelOne Singularity Cloud costs.
Which other solutions did I evaluate?
We did not evaluate other options before choosing SentinelOne Singularity Cloud.
What other advice do I have?
If someone were to tell me that they do not believe they need SentinelOne Singularity Cloud because they have a continuous security monitoring solution in place, I would disagree because, with the SentinelOne Singularity Cloud platform, you can allow or disallow items within the machine. It automatically disconnects the machine from the network, helping you determine what is happening.
My organization works with the cloud version of the platform. It is deployed in multiple departments, and about four hundred users work with the endpoints.
SentinelOne Singularity Cloud requires maintenance, but it's not difficult to maintain.
Only one person takes care of the maintenance of the platform.
My advice to other users who would like to start working with SentinelOne Singularity Cloud is that I would highly recommend it based on its abilities and what it can find and remediate for you. It is easy to deploy and maintain, so I would tell others it is a solid platform.
My rating for SentinelOne Singularity Cloud is eight out of ten.
Offers a highly intuitive management console, easy to deploy, and saves us time
What is our primary use case?
We utilize SentinelOne Singularity Cloud to safeguard our clients and servers from viruses and to perform forensic analysis on threats.
We are a service integrator in the public sector in Italy, and we implemented SentinelOne Singularity Cloud because we lacked an antivirus solution.
How has it helped my organization?
The real-time detection and response capabilities of SentinelOne Singularity Cloud are excellent. We have implemented automated remediation on the Singularity platform. I have tested this on both our tenant and our customers' tenant, and we haven't encountered any issues with this method.
Singularity offers profound forensic visibility, which proves highly advantageous for in-depth analysis of events. Through a single console, we can observe comprehensive event details from start to finish.
The historical data record provided by Singularity after an attack is valuable. It allows us to identify any misconfigurations and has assisted us in rectifying errors during the deployment of group policies in Active Directory. This capability helps us manage group policies more effectively, particularly in terms of security policy deployment.
SentinelOne Singularity Cloud has been immensely helpful in mitigating issues for us. Our organization consists of approximately five hundred employees, including technicians and administrators, and Singularity has played a vital role in safeguarding our organization.
It has helped us reduce our MTTD.
Singularity helps us reduce our MTTR.
We have saved time. The automatic remediation helped me a lot when an event occurred, as it analyzed and remediated the issue automatically. This saved a significant amount of time.
Singularity operates smoothly and does not cause our laptops to experience any performance degradation, which has been very beneficial.
What is most valuable?
Deploying SentinelOne Singularity Cloud is a simple process that requires only three clicks.
The management console is highly intuitive to comprehend and operate.
What needs improvement?
The cost has the potential for improvement. I would appreciate it if the full edition could be made more affordable, allowing me to upgrade from the intermediate version.
For how long have I used the solution?
I have been using SentinelOne Singularity Cloud for more than three years.
What do I think about the stability of the solution?
SentinelOne Singularity Cloud is incredibly reliable. I have never come across a crash or experienced any downtime. I have never needed to initiate a support case.
What do I think about the scalability of the solution?
The SentinelOne Singularity Cloud exhibits high scalability. We only need to incorporate licenses to facilitate scaling, eliminating concerns regarding servers or databases, as it functions as a cloud-based platform.
How was the initial setup?
The initial setup is straightforward because the platform is cloud-based, allowing accessibility from anywhere, and deploying the agent is as easy as clicking three times.
Two people were involved in the deployment.
What about the implementation team?
We are a system integrator and we implemented the solution in-house.
What's my experience with pricing, setup cost, and licensing?
As a partner, we receive a discount on the licenses. Currently, we possess over 250 licenses, but there is potential for the licenses to become even more affordable.
Which other solutions did I evaluate?
We evaluated various products such as Trend Micro, Symantec, and Sophos. SentinelOne Singularity Cloud stood out among the solutions we evaluated as the easiest to manage and with the best performance.
What other advice do I have?
I rate SentinelOne Singularity Cloud a nine out of ten.
SentinelOne is a novel form of endpoint detection and response that has assisted us in effectively managing our clients and servers. It provides us with substantial visibility and aids in safeguarding our infrastructure against emerging threats.
Regarding maintenance, I check the event logs every two weeks, in addition to reviewing emails, and I update the schedule to manage the agents.
The interoperability with third-party solutions is good. We don't have any compatibility issues.
SentinelOne Singularity Cloud is updated bi-weekly or monthly and the signature to the client is updated every two days.
Evaluating SentinelOne Singularity Cloud is made simple by installing the client and logging into the console.
SentinelOne Singularity Cloud Review
What do you like best about the product?
SentinelOne Singularity Cloud can be provisioned quickly and accessed easily. It also provides capabilities such as Deep Visibility, Threat Hunting and Investigation. It also can help to protect cloud infrastructure such as Kubernetes.
What do you dislike about the product?
Deep Visibility is not very comprehensive as not able to detect some of the activities and events. Creating the STAR custom rules may require more extended monitoring of the traffic or behavior and fine-tuning the policies.
What problems is the product solving and how is that benefiting you?
SentinelOne Singularity Cloud can provide complete visibility on the threat events and activities. The agent rollout deployment can be distributed quickly and supports most operating systems and platforms.
Sentinel for cloud
What do you like best about the product?
Machine learning-based protection, prevention and threat detection.
What do you dislike about the product?
nothing much to dislike except grouping methods of the software
What problems is the product solving and how is that benefiting you?
It helps to detect viruses, malware, and bot wares. Also supported the prevention of threats.
A Comprehensive Cloud Security Platform.
What do you like best about the product?
PingSafe's ability to provide a clear and detailed picture of our organization's cloud security posture helped us uncover various blind spots in our environment. The attack path feature is also highly effective and easy to comprehend.
What do you dislike about the product?
We have no dislikes about PingSafe. It immediately notifies us upon detecting a secret leak and any misconfiguration, enabling us to take swift actions and prevent any possible security breaches.
What problems is the product solving and how is that benefiting you?
The two problems PingSafe solves for us are its cloud security posture management and secret leak detection. Whenever a leak is detected, we receive immediate alerts, enabling us to take prompt action to mitigate potential breaches. Additionally, we've never encountered a false-positive report from PingSafe, which has been a reliable and trustworthy security solution.
CSPM, CWPP & CNAPP with Compliance Monitoring
What do you like best about the product?
We trust PingSafe for cloud misconfigurations, IaC scanning, container security and compliance monitoring. The platform is powerful & their team is super active with feedback & product features.
What do you dislike about the product?
Very less to dislike because of the lovely team at PingSafe.
What problems is the product solving and how is that benefiting you?
Product benefits from PingSafe include:
100% cloud visibility for security
Offensive security with attacker’s intelligence
Shift-left security
100% cloud visibility for security
Offensive security with attacker’s intelligence
Shift-left security
The best CNAPP for multi-cloud environment
What do you like best about the product?
Integration is made easy with Pingsafe, which I did not find in other solutions I have tried.
What do you dislike about the product?
PingSafe is the best security tool our team has used.
What problems is the product solving and how is that benefiting you?
PingSafe solved the issue we previously faced with integration for us. We could integrate BitBucket repositories effortlessly and securely.
Solid security platform, easy integrations & more
What do you like best about the product?
With a single platform, you can easily integrate PingSafe into your existing cloud infrastructure. It most definitely allows you to monitor your cloud security posture of your platform.
Due to the ease of integration of the platform our team has been able to quickly implement and manage our cloud assets. This has further helped us prioritize our efforts in securing and hardening our infrastructure. Highly recommend PingSafe!
Due to the ease of integration of the platform our team has been able to quickly implement and manage our cloud assets. This has further helped us prioritize our efforts in securing and hardening our infrastructure. Highly recommend PingSafe!
What do you dislike about the product?
PingSafe helps solve a lot of use cases and has impressive features. Hence I really like using the product and so far it has most certainly been helpful.
What problems is the product solving and how is that benefiting you?
The best part about Pingsafe is that we can view multi-cloud accounts, threats and vulnerabilities in one place. This helps us in saving time & opening multiple remediation tickets & helps us identify and release fixes quickly. We choose PingSafe over GitGuardian.
We obtain consolidated overview & vulnerability exposures of AWS environments in PingSafe Dashboard
What do you like best about the product?
PingSafe gives a robust prioritization engine that classifies our infrastructure vulnerabilities & helps with mitigating security concerns. Since we're new to its platform, its support team aided with smooth onboarding with our AWS environments. We can utilize remediation incidents to keep track of recurring issues to prevent SLA breaches.
What do you dislike about the product?
We haven't faced any downsides yet while using the PingSafe platform to regulate our cloud security governance. We can quickly evaluate the time taken for vulnerability scanning & include it in our remediation incident details. Unlike other cloud security platforms, PingSafe doesn't have hidden costs & offers the utmost transparency regarding its billing & service expenditures.
What problems is the product solving and how is that benefiting you?
We have multiple AWS accounts, and PingSafe acts as our centralized platform for overviewing security breaches, vulnerability management & providing excellent remediation approaches. For our customized workflows, we simply enable the auto-remediation feature to prevent misconfigurations before it impacts our production environment. It also has various built-in compliance monitoring plugins to ensure that the compliance of our cloud environment is appropriately aligned with our client's regulatory standards.
showing 91 - 100