I use it for security purposes, and it is deployed on the cloud. It helps me look into potential threats and resolve issues.
External reviews
187 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Fantastic Product - One of the Best
What do you like best about the product?
It's an incredibly powerful Next Gen-EDR, we rely on it heavily and it works along side Windows Defender
What do you dislike about the product?
The interface/UI is a little clunky and the login process can be cumbersome.
What problems is the product solving and how is that benefiting you?
As a NG-AV - it's amazing, it mitigates threats, alerts our PSA software and provides a layer of protection that few other AVs can
Achieve enhanced threat detection and protection with continuous monitoring
What is our primary use case?
What is most valuable?
For Singularity, the task capability is easy to use and it has a very intuitive dashboard, which streamlines the processes. It provides user-friendly privacy protection, 24/7 threat detection monitoring, and managed services for continuous monitoring and threat hunting. It also offers ransomware protection with excellent defense mechanisms, rollback features, and extended detection and response features.
What needs improvement?
The area of improvement is the cost, which is high compared to other traditional endpoint protections. Additionally, it has limited legacy system support and may not fully support older operating systems or legacy environments.
For how long have I used the solution?
I have been using SentinelOne for one year.
What do I think about the stability of the solution?
I rate the stability nine out of ten, indicating strong stability with limited bugs, glitches, or downtime.
What do I think about the scalability of the solution?
The solution is scalable, and I rate it nine out of ten.
How are customer service and support?
I rate technical support eight out of ten, indicating satisfaction with the support provided.
Which solution did I use previously and why did I switch?
I did not personally use any other solution before using SentinelOne, however, I have heard about multiple products compared to SentinelOne.
How was the initial setup?
The initial setup was easy and completed in a couple of days, involving three people.
What about the implementation team?
Three people were involved in the deployment, working together to ensure the setup was successful.
What was our ROI?
Meantime to remediation improved from seven to eight minutes to two to three minutes, reducing time and money by 40% to 45%. Overall, time to detect is now in milliseconds.
What's my experience with pricing, setup cost, and licensing?
On a scale of one to ten, I would rate the pricing and setup costs an eight out of ten, indicating it leans towards the expensive side.
What other advice do I have?
I recommend SentinelOne due to its high-security capabilities, which are essential to safeguard data and systems from potential threats.
I would rate the overall solution nine out of ten.
Behavior analytics detect anomalies for proactive threat management
What is our primary use case?
I use SentinelOne Singularity Cloud Security to detect vulnerabilities and threats.
I use SentinelOne Singularity Cloud Security for continuous monitoring, as it provides constant threat detection with minimal impact on our system's performance compared to other endpoint security solutions.
How has it helped my organization?
SentinelOne Singularity Cloud Security's initiative dashboards have a user-friendly interface that is easy to understand, even for new users. The intuitive design eliminates the need for extensive knowledge transfer, allowing anyone to grasp the essential functions of SentinelOne quickly.
The evidence-based reporting effectively prioritizes and resolves critical cloud security issues. Its operational metrics, including key performance indicators and security metrics like false-positive rates, mean time to detection, and mean time to response, provide valuable insights for improvement.
SentinelOne Singularity Cloud Security offers exceptionally clear proof of exploitability for security practices. This clarity fosters trust among stakeholders and managers, assuring them of a secure environment by simplifying vulnerability identification and remediation.
It has significantly enhanced our security visibility. The system provides alerts for any vulnerabilities, along with comprehensive documentation and user-friendly solutions. Its multi-cloud support streamlines issue resolution, allowing for quicker remediation.
SentinelOne Singularity Cloud Security has reduced the number of false positives by 40 percent, our mean time to detect by 20 percent, and our mean time to remediate by 30 percent.
As an application developer and infrastructure/technical support specialist, I find SentinelOne Singularity Cloud Security extremely helpful for our security needs. The notifications and other features are particularly useful in my daily work.
SentinelOne Singularity Cloud Security has saved up to 50 percent in engineering time.
What is most valuable?
SentinelOne's behavior analytics are valuable because they detect anomalies and malicious behavior that signature-based solutions might miss. The cost is also much cheaper than other products in the market.
What needs improvement?
SentinelOne Singularity Cloud Security has limited legacy system support and may not fully support older operating systems or legacy environments. The depth of features may be overwhelming for small-scale organizations with less complex security needs. It can sometimes feel complex for smaller teams, requiring specialized expertise that might be challenging for teams without skilled cybersecurity professionals.
For how long have I used the solution?
I have been using SentinelOne Singularity Cloud Security for eight months.
What do I think about the stability of the solution?
I would rate the stability of SentinelOne Singularity Cloud Security a seven out of ten because sometimes the UI feels laggy.
What do I think about the scalability of the solution?
I would rate the scalability of SentinelOne Singularity Cloud Security nine out of ten.
How are customer service and support?
The technical support has been satisfactory.
What was our ROI?
Without SentinelOne, I would need to add two to three resources to my team for monitoring and threat detection. It has reduced the need for additional resources and saved money by 40 percent.
What's my experience with pricing, setup cost, and licensing?
While I'm slightly out of touch with pricing, I know SentinelOne is much cheaper than other products.
Which other solutions did I evaluate?
What other advice do I have?
I would rate SentinelOne Singularity Cloud Security eight out of ten.
SentinelOne Singularity Cloud Security is deployed across various departments and locations for approximately 70 users.
SentinelOne manages the maintenance for Singularity Cloud Security.
I recommend SentinelOne Singularity Cloud Security to other users for security, monitoring, and threat detection purposes. SentinelOne uses AI-based detection, continuously upgrading itself to be on top of the market.
Effortlessly remediate threats with autonomous AI responses while navigating customer support delays
What is our primary use case?
We use SentinelOne Singularity Cloud Security to enhance the security of our cloud and data center infrastructure. Its primary functions include providing alerts and guiding the implementation of best practices for cloud security.
To enhance our security posture, we implemented SentinelOne Singularity Cloud Security, as we lack a dedicated managed service for continuous environmental monitoring.
How has it helped my organization?
SentinelOne Singularity Cloud Security is easy to use. It offers an intuitive dashboard making it user-friendly.
The evidence-based reporting is helpful for navigating the evolving threat landscape. It enables us to implement security measures proven to reduce risk.
The inclusion of proof of exploitability in its evidence-based reporting fosters stakeholder trust and reduces reliance on human intervention.
SentinelOne Singularity Cloud Security has a minimal impact on system performance compared to traditional antivirus solutions and helps meet compliance requirements by maintaining detailed logs and audit trails.
It has reduced our false positive rate by 20 percent and has significantly improved our security posture by providing comprehensive visibility into all activities across our infrastructure.
SentinelOne Singularity Cloud Security has decreased our mean time to detect by 60 to 70 percent.
What is most valuable?
Singularity Cloud Security offers autonomous response capabilities, automatically remediating threats and restoring affected files without manual intervention. Its AI-powered threat detection utilizes advanced AI and machine learning to identify and respond to threats in real-time. Its scalability makes it particularly beneficial for small organizations.
What needs improvement?
The SentinelOne customer support needs improvement, as they are sometimes late in responding, which is critical in a production issue. Cost is also an area for improvement as it must be more affordable, particularly for smaller companies.
For how long have I used the solution?
We have been using SentinelOne Singularity Cloud Security for almost one year.
What do I think about the stability of the solution?
I rate the stability of SentinelOne Singularity Cloud Security as eight out of ten. There are no major bugs, glitches, or downtime issues.
What do I think about the scalability of the solution?
I rate the scalability of SentinelOne Singularity Cloud Security a nine out of ten. It is very scalable and suits our needs.
How are customer service and support?
The technical support team's response time is slow at times.
Which solution did I use previously and why did I switch?
SentinelOne is far superior to our previous solution, Accops, due to its seamless updates, effortless maintenance, and user-friendly interface and dashboard.
How was the initial setup?
The initial setup can be slightly time-consuming, requiring about two to three days for deployment on both cloud and data center infrastructure.
What's my experience with pricing, setup cost, and licensing?
SentinelOne Singularity Cloud Security is costly. I would rate the price an eight out of ten, with ten being the most expensive.
What other advice do I have?
I rate SentinelOne Singularity Cloud Security a nine out of ten.
SentinelOne Singularity Cloud Security is deployed across multiple departments in a single location. We have 14 direct users of the tool.
SentinelOne manages the maintenance for Singularity Cloud Security.
I would recommend SentinelOne for security, as it is easy to use. Even without technical knowledge, users can manage it through the dashboard and provided documentation.
Gives centralized and real-time data and improves our security posture
What is our primary use case?
My primary use case for SentinelOne Singularity Cloud Security is for security purposes. It provides me with alerts.
By implementing this solution, we wanted notifications about any potential threats, such as port scanning or unauthorized access attempts. This is why we have deployed it on the cloud to monitor and secure our systems.
How has it helped my organization?
It has an intuitive dashboard, which streamlines the setup process. It is a user-friendly tool for security teams handling cloud or data centers.
For fewer false positives, they ensure that their threat intelligence databases are up to date. That reduces misclassification and improves system accuracy over time through machine learning.
SentinelOne Singularity Cloud Security has improved our security posture. We are almost 100% secure.
It has reduced our mean time to remediate by 40% and the mean time to detect by about 70%.
What is most valuable?
SentinelOne Singularity Cloud Security offers valuable features like runtime notifications. These alerts come to my account, ensuring that if any port or component within my infrastructure is opened or compromised, I am informed immediately. It highlights issues within minutes or even seconds.
It is very easy to use. It is user-friendly. Dashboards and other features are easy to use even for newbies. Someone new can easily understand the dashboard and other features.
What needs improvement?
The cloud-based operations might pose challenges in areas with limited or unavailable internet connectivity. Desktop features might be useful for smaller organizations with less complex security needs.
Moreover, there is a higher price point compared to traditional endpoint protection solutions, which may not be ideal for smaller organizations.
For how long have I used the solution?
I have been using SentinelOne Singularity Cloud Security for around one and a half to two years.
What do I think about the stability of the solution?
It is stable. I would rate its stability a nine out of ten.
What do I think about the scalability of the solution?
I would rate its scalability as seven out of ten because there might be issues due to internet connectivity or occasional lag when deploying for monitoring purposes.
It is being used at multiple locations and by multiple teams. In my team, there are about 12 people.
How are customer service and support?
I would rate the customer service and support as eight out of ten.
Which solution did I use previously and why did I switch?
Before SentinelOne Singularity Cloud Security, we did not use any solution in the cloud. We had no centralized system. We had to go through cloud services such as GuardDuty, but it took time to analyze the issue and the root cause.
We wanted to follow the best practices and have something centralized. SentinelOne Singularity Cloud Security gives us centralized and real-time data.
How was the initial setup?
We have multiple clouds and a data center. Its deployment is easy. The initial setup was straightforward, and it took a total of around five days, including testing time.
What was our ROI?
We have seen approximately 30% return on investment.
What's my experience with pricing, setup cost, and licensing?
It is a little expensive. I would rate it a four out of ten for pricing.
What other advice do I have?
I would rate SentinelOne Singularity Cloud Security an eight out of ten overall. I would recommend it to other users due to its effectiveness in providing centralized notifications and reducing the meantime to address issues.
Provides real-time inspection and supports multiple cloud engines
What is our primary use case?
We use SentinelOne Singularity Cloud Security for real-time alerts, enabling us to address potential threats proactively.
SentinelOne Singularity Cloud Security was implemented to enforce best practices, monitor runtime activity, and expedite troubleshooting.
How has it helped my organization?
SentinelOne Singularity Cloud Security provides easy-to-follow documentation on the steps required to resolve issues.
It offers a user-friendly experience with a centralized console for managing assets and delivering devices.
Singularity Cloud Security provides a real-time inspection for organizational growth, which makes it suitable for both small and large enterprises. It is interactive and easy to navigate, simplifying self-service.
What is most valuable?
Singularity Cloud Security's most valuable features are its ease of scalability and comprehensive security measures.
Singularity Cloud Security has a centralized console for managing assets and delivering devices.
Singularity Cloud security supports various cloud engines, such as Azure and AWS.
Once fine-tuned, Singularity Cloud Security reduces false positives by 80 percent.
Singularity Cloud security improves our risk posture. We have not had any security issues.
It has reduced our mean time to detect by up to 20 percent.
Our mean time to resolve has significantly improved with the implementation of Singularity Cloud security. Previously, our MTTR ranged from 15 to 20 minutes, but now it has been reduced to 5 to 7 minutes.
Singularity Cloud security has been a valuable asset to our application developers and AppSec team. Its support for various cloud platforms and user-friendly interface have greatly improved our security posture.
What needs improvement?
While SentinelOne offers robust security features, its higher cost may present a challenge for budget-conscious organizations. Additionally, some users have reported experiencing delays in issue resolution due to slower response times from the support team.
For how long have I used the solution?
I have been using SentinelOne Singularity Cloud Security for around two years.
What do I think about the stability of the solution?
I would rate the stability of Singularity Cloud Security nine out of ten.
What do I think about the scalability of the solution?
I would rate the scalability of Singularity Cloud Security ten out of ten.
How are customer service and support?
Sometimes, the response time of the support team is lagging.
Which solution did I use previously and why did I switch?
How was the initial setup?
The initial deployment was straightforward and took three days to complete.
What about the implementation team?
Their customer service support team was on the call with us. Our team leads and technical people were there, and they jointly deployed Singularity Cloud Security on the data center as well as on the cloud.
What was our ROI?
Before SentinelOne, I used to take around 15 to 20 minutes to resolve an issue. After implementing SentinelOne, it takes about five to seven minutes.
What's my experience with pricing, setup cost, and licensing?
SentinelOne is more expensive compared to other security solutions.
I would rate the cost a seven out of ten with ten being the most costly.
What other advice do I have?
I rate SentinelOne Singularity Cloud Security a nine out of ten.
Singularity Cloud Security is deployed across our infrastructure, and we currently have 13 users.
I would recommend SentinelOne Singularity Cloud Security to other users for security purposes.
The AI/ML-driven backend engine effectively identifies and resolves threats
What is our primary use case?
As an application developer focused on AWS and cloud components, I rely on SentinelOne Singularity Cloud Security to stay informed about vulnerabilities and maintain best security practices.
How has it helped my organization?
I would rate the ease of use of Singularity Cloud Security a nine out of ten. It is very helpful for beginners due to its simplicity and straightforward integration with various cloud platforms like AWS, GCP, and Azure. Its user-friendly interface and familiarity across different cloud environments make it easy to understand and implement, regardless of prior experience.
Singularity Cloud Security prioritizes and resolves critical cloud security issues. When a problem arises in my infrastructure, SentinelOne alerts me, such as an open port in our AWS environment or a deviation from best practices. It provides alerts, suggests solutions, and offers documentation with best practices, which is helpful for those new to cloud platforms. This has reduced my response time by approximately 45 minutes.
The Offensive Security Engine, powered by impressive AI/ML capabilities, seamlessly integrates with cloud infrastructure to analyze data and provide optimal security solutions. Its AI/ML-driven backend engine effectively identifies and resolves threats, making it a powerful tool for comprehensive security monitoring and protection.
We saw the benefits of SentinelOne Singularity Cloud Security immediately.
SentinelOne Singularity Cloud Security categorizes risk into four levels: low, medium, high, and critical. Teams handle low and medium alerts, which are based on best practices that we must follow. High and critical alerts are very important and require immediate attention. When these critical alerts occur, we contact PingSafe or the SentinelOne data team for support. They help us resolve the issue, identify affected resources, and provide comprehensive information. Occasionally, we receive direct support from SentinelOne, collaborating with them using their tools. The system is reliable and accurate, with no false positives.
It significantly reduced our mean time to detect threats. Previously, we didn't use security tools, so I had to identify and address vulnerabilities independently. To ensure best practices were followed, I had to manually investigate issues within our AWS environment and troubleshoot them alone. SentinelOne has been instrumental in guiding us toward securing our infrastructure by providing insights into best practices and automating threat detection.
SentinelOne Singularity Cloud Security has helped reduce our mean time to remediate.
What is most valuable?
The most valuable feature is the notification system, providing real-time alerts and comparisons crucial for maintaining security. Additionally, the dashboard's user interface and user experience are intuitive and easy to understand, even for new users.
What needs improvement?
One potential drawback is the cost of SentinelOne Singularity Cloud Security, which may be prohibitive for smaller businesses or startups, particularly those in regions with lower average incomes, such as India.
For how long have I used the solution?
I have been using Singularity for around one year.
How are customer service and support?
The customer service and support team is knowledgeable and helpful. Throughout the migration, they remained available for several hours without complaint, providing assistance at every step.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
How was the initial setup?
The initial deployment was not difficult. It was smooth, with support from experienced team members and customer support during the two to three-day migration process.
What about the implementation team?
During migration, more than two people were involved, though only two were necessary.
What's my experience with pricing, setup cost, and licensing?
The pricing is somewhat high compared to other market tools. This cost can be particularly prohibitive for small businesses and startups.
Which other solutions did I evaluate?
What other advice do I have?
I would rate SentinelOne Singularity Cloud Security nine out of ten.
My responsibility within our infrastructure is limited to the infrastructure itself, excluding the application and database layers. As such, I can only offer guidance on the infrastructure aspects of our implementation. When we deployed SentinelOne Singularity Cloud Security in our hybrid infrastructure, both cloud and data center-based, the migration was smooth, taking approximately two to three days of testing to complete successfully.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Evidence-based reporting helps prioritize and solve cloud security issues
What is our primary use case?
In my organization, we use SentinelOne Singularity Cloud Security to enhance our security posture. The platform provides alerts and recommendations on best practices, policies, and necessary updates to strengthen our infrastructure security.
We implemented SentinelOne Singularity Cloud Security to strengthen our security posture. Previously, we lacked clear guidance on best practices, including password reset policies, patching procedures, and VM updates. SentinelOne provides these best practices and recommendations, significantly improving our infrastructure security.
How has it helped my organization?
SentinelOne Singularity Cloud Security is user-friendly.
Evidence-based reporting helps prioritize and solve cloud security issues. When an issue occurs in my infrastructure, I receive an alert on their dashboard and a notification is sent to our common email address. SentinelOne Singularity Cloud Security provides a direct link to the affected resource in the AWS console, allowing me to navigate to the issue and resolve it quickly.
SentinelOne Singularity Cloud Security has improved my organization's security posture significantly. Before its implementation, we lacked an understanding of best practices for security. The solution has clarified our path by providing guidelines and alerts, which have helped us secure our infrastructure effectively.
It has reduced the number of false positives significantly, providing accurate data for our security processes.
SentinelOne Singularity Cloud Security has significantly improved our risk posture.
Prior to implementing SentinelOne Singularity Cloud Security, our mean time to detect ranged from 30 to 35 minutes. Now, with SentinelOne, our MTTD has significantly improved, falling within the range of 5 to 10 minutes.
Our mean time to remediate has been reduced to five minutes since implementing SentinelOne Singularity Cloud Security.
What is most valuable?
SentinelOne Singularity Cloud Security offers several valuable features, most notably the rapid vulnerability notifications that provide timely alerts regarding our infrastructure. Furthermore, the platform's intuitive interface enables even novice team members to navigate the dashboard with ease, minimizing the need for extensive documentation.
What needs improvement?
I believe the UI/UX updates for SentinelOne Singularity Cloud Security have room for improvement. While the current interface is excellent, enhancements could make it more user-friendly. Additionally, an improved notification system that sends alerts about vulnerabilities directly to our centralized console would allow for a more prompt response.
For how long have I used the solution?
I have been using SentinelOne Singularity Cloud Security for almost one and a half years.
What do I think about the stability of the solution?
I rate the stability of SentinelOne Singularity Cloud Security as nine out of ten.
What do I think about the scalability of the solution?
I rate the scalability of SentinelOne Singularity Cloud Security as ten out of ten.
How are customer service and support?
I have contacted SentinelOne's technical support team once, and they were very helpful. Their communication and product knowledge were excellent.
How was the initial setup?
The initial cloud-based deployment was straightforward, taking approximately two to three working days with a team of three people.
What about the implementation team?
The implementation was handled internally by my team with guidance from a senior resource.
What other advice do I have?
I rate SentinelOne Singularity Cloud Security nine out of ten.
We have 150 users of SentinelOne Singularity Cloud Security.
I recommend SentinelOne Singularity Cloud Security to others because it is very important from a security standpoint.
Enabled our security posture to become much better
What is our primary use case?
I use SentinelOne for the traffic flow in my customer's account.
How has it helped my organization?
Singularity Cloud Security gives us alerts, and it is helpful for us to get these alerts. We get to know about any issues through these alerts. We can resolve the issues accordingly.
It helps resolve issues more quickly. I do not have to analyze them on my own. We get to know the issues, and we also have documentation and recommendations about how to resolve them. That is very helpful for me.
We were able to realize its benefits pretty quickly because I already had its knowledge. I had studied a little bit and researched it. After implementation, my work got faster by almost 60% to 70%. The client was happy with that.
Singularity Cloud Security has reduced the number of risks. After resolving an issue on one of the servers, I can implement the fix on other servers before getting alerts about those. There is about 70% to 80% reduction.
It has been beneficial for all team members because we are all working in shifts and we are not able to communicate with each other much. The documentation has helped a lot.
Our security posture is much better. I do not have the numbers, but we see fewer notifications about security and threats. We follow the guidelines and best practices.
What is most valuable?
The security that it provides is valuable. It has a user-friendly dashboard that I can access without any difficulty.
Security notifications or alerts are also very useful. The alert mechanism helps in identifying issues.
It is very easy to use. I would rate it a nine out of ten for usability.
What needs improvement?
Sometimes, I am not able to see the flow when there is an issue. When anyone complains and I have to troubleshoot it, I find it difficult to search.
The documentation that I use for the initial setup can be more detailed or written in a more user-friendly language to avoid troubles.
For how long have I used the solution?
I have six months of experience using it.
What do I think about the stability of the solution?
It is stable. I would rate it a nine out of ten for stability.
What do I think about the scalability of the solution?
It is scalable. I would rate it a nine out of ten for scalability. Our clients are large organizations.
In our AWS Cloud, we have multiple accounts. We have almost 400 users. The AppSec team is a different team that is responsible for its installation. We are its users.
How are customer service and support?
I use vendor support. I would rate them a nine out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I did not use any different solution before.
How was the initial setup?
Initially, it took a lot of time because I had to first learn it and then implement it. First time, there can be some challenges. It took some time to understand because it was my first setup. Once I understood the process, it became easier with subsequent setups.
What about the implementation team?
We implemented this solution after reviewing the documentation. Our AppSec team deployed it.
What other advice do I have?
I would recommend this solution. I find it very user-friendly, and the documentation is also good enough to give solutions, which is very important. In addition to notifications, we also get solutions.
I would rate Singularity Cloud Security a nine out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Provides a centralized view of all workloads, enabling us to identify misconfigurations
What is our primary use case?
Working in a highly regulated space with stringent security requirements for money movement necessitates robust security measures. SentinelOne Cloud Security effectively secures our workloads, providing peace of mind and significantly reducing stress by addressing both security and regulatory needs.
How has it helped my organization?
The primary challenge we faced was achieving comprehensive visibility and observability across our extensive cloud environment, which comprises over 50 AWS accounts. It was difficult to determine the specific account and business entity associated with each workload. SentinelOne provided a centralized view of all workloads, enabling us to identify misconfigurations, pinpoint their location, and assess their potential impact. This clarity allowed us to prioritize responses based on the criticality of the affected account, such as production or highly regulated environments, thereby optimizing our response time.
To reduce noise and improve security monitoring, we implemented two key strategies. First, we leveraged the SentinelOne platform to identify internet-exposed assets and prioritize them for enhanced monitoring. SentinelOne's cloud-based capabilities significantly reduced false positives and helped establish a baseline for normal network activity. Second, we integrated the Infrastructure as Code module to automatically detect any deviations from the baseline or new misconfigurations. This proactive approach enabled us to efficiently address vulnerabilities and maintain a secure environment. After an initial cleanup, ongoing maintenance became much easier due to the continuous monitoring and automated alerts provided by SentinelOne and the IAC module.
Cloud security has helped reduce false positives by prioritizing vulnerabilities based on two factors: the criticality of the exposed asset and the environment it operates within. This prioritization metric helps eliminate false positives and allows teams to focus on fixing actual security issues.
Cloud security has improved incident response, primarily by enhancing observability. This allows for immediate identification of an IP address's host account and connected resources, which speeds up response time. Understanding the potential damage is also crucial, and this is achieved by knowing all resources accessible to the compromised asset. This comprehensive approach, combining identification and impact assessment, significantly strengthens security response capabilities.
SentinelOne Cloud Security reduces response times by providing context for assets, such as location, access details, and component interactions. This allows for quick identification of the responsible team and facilitates efficient damage assessment and remediation. Automated responses, like automatically fixing public S3 buckets, can be implemented, although caution is needed as some public access may be intentional.
SentinelOne Cloud Security has significantly improved team collaboration by simplifying the process of identifying the owner of a vulnerable or problematic component. Previously, this was a time-consuming task, but now the platform allows for quick identification of the responsible business entity and developer, enabling direct contact with the appropriate DevOps personnel. This streamlined process accelerates both detection and response times, ultimately enhancing overall security.
SentinelOne has released Purple AI, a tool with immense potential. It can analyze sentences and identify specific IP addresses or vulnerable machines, significantly aiding threat detection. This capability allows for rapid computation and complex query execution, delivering crucial answers in minutes and enhancing data analysis for security purposes.
What is most valuable?
Cloud Security has provided a single view to observe all workloads, prioritization for handling cloud assets, and reduced noise by distinguishing false positives effectively.
What needs improvement?
Once all components, including the cloud piece and container runtime piece, integrate further and incorporate an AI layer for better comprehension, it will greatly enhance the utility of Singularity Cloud Security.
For how long have I used the solution?
I have been using SentinelOne's cloud piece for about three to four months.
How are customer service and support?
SentinelOne has provided excellent support, enabling us to implement a robust solution customized to effectively meet our security and compliance needs.
Which solution did I use previously and why did I switch?
Prior to implementing SentinelOne, we faced excessive false positives and an overwhelming number of findings, hindering prioritization. However, SentinelOne Cloud's offensive engine provides reassurance by automatically checking exposed assets for new threats, such as zero-day attacks, ensuring immediate awareness of any issues.
SentinelOne allows for customized prioritization, enabling changes based on specific accounts and the addition of further actions to misconfiguration adjustments. The graphing ability of SentinelOne CNAPP facilitates comprehensive chaining for in-depth analysis. The demos on misconfigurations and the prioritization matrix were particularly informative.
What's my experience with pricing, setup cost, and licensing?
SentinelOne provided competitive pricing compared to other vendors, and we are satisfied with the deal.
Which other solutions did I evaluate?
When evaluating CNAPP vendors, several key considerations emerged. First, it was essential to assess the regulatory frameworks and ensure compliance. Second, the issue of false positives needed to be addressed to maintain efficiency. Finally, the prioritization capabilities, particularly the use of graphs to identify critical assets, were crucial factors in the selection process.
What other advice do I have?
I would rate SentinelOne Cloud Security a nine out of ten. They are bringing all the pieces together, and once the Purple AI can interact with all the different components and correlate across them, I think that's where its real power will come from.
SentinelOne CNAPP was extremely helpful and chosen for three primary reasons: their responsive and efficient team facilitated a rapid deployment; the technology itself proved to be very robust and effective; and the platform's configurability allowed for seamless integration with our specific business needs.
For those evaluating SentinelOne CNAPP, it is advised to engage with their team for potential configuration changes. The tool offers comprehensive insights, providing productive usage from day one for penetration testers and security engineers.
showing 21 - 30