Sold by: SentinelOne
Deployed on AWS
Vendor Insights
The First Security AI Platform to Protect the Entire Enterprise.
Break Down Security Silos. Gain Enterprise-Wide Visibility and Control. Action Your Data In Real-time with AI.
One intelligent platform. Unprecedented speed. Infinite scale. Singularity™ enables unfettered visibility, industry-leading detection, and autonomous response. Discover the power of AI-powered, enterprise-wide cybersecurity. Enterprise security across endpoints, cloud, and identity, backed by a unified data lake, and with the power of Purple AI.
Overview
Addressing threats across different attack surfaces is a huge challenge for organizations. The existence of data silos and disconnected tools result in analysts conducting manual investigations without complete visibility and context. To better safeguard organizations, security teams need comprehensive protection across the entire enterprise.
The SentinelOne Singularity Platform is the first AI security platform to provide enterprise-wide visibility and protection, bringing all enterprise data together in a unified data lake to reduce risk and help protect businesses.
Solutions and capabilities include: -Purple AI, an autonomous, AI-powered SOC analyst -AI-powered Cloud Native Application Protection Platform (CNAPP) with agentless and agent based approach, including an Offensive Security Engine -Extended Detection and Response (XDR) -Endpoint Prevention, Detection, Response and Remediation (EPP, EDR) -Identity Threat Detection and Response (ITDR) -Unified security data lake -Threat Intelligence and Vulnerability Management
and more.
Highlights
- MITRE Enginuity Leader with record breaking ATTACK evaluation, Gartner Peer Insights Leader with 96% recommendation, PeerSpot category Leader
- Streamline security operation workflows with industry-leading AI security, including Purple AI, an AI powered SOC assistant.
- Consolidate vendors and agents into one single platform and a single data lake, with multiple integrations including with AWS native services such as Amazon Security Lake.
Details
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Security credentials achieved
(1)
FedRAMP
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/month |
|---|---|---|
Custom Pricing and Packaging | Contact SentinelOne for custom pricing and packaging including Private Offers | $10,000.00 |
Vendor refund policy
Refunds available as required by law.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Multiple support options available. Email support available: support@sentinelone.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By SentinelOne
By Trellix
By Trend Micro
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Artificial Intelligence Security
Advanced AI-powered security platform with autonomous threat detection and response capabilities
Cloud Native Application Protection
Comprehensive CNAPP solution with agentless and agent-based protection, including an Offensive Security Engine
Extended Detection and Response
Cross-platform XDR capabilities providing unified threat detection and response across multiple security domains
Endpoint Security
Integrated Endpoint Prevention, Detection, Response and Remediation (EPP, EDR) with comprehensive protection mechanisms
Identity Threat Management
Advanced Identity Threat Detection and Response (ITDR) with real-time monitoring and protection capabilities
Threat Detection Correlation
Multi-vector threat detection through integration of 500+ third-party security controls and 13 AWS integrations
AI-Powered Analytics
Pre-built analytics and correlation rules for comprehensive attack story generation and threat prioritization
Security Automation
UI-driven point-and-click automation to offload repetitive security operations tasks
Alert Triage Capability
100% automated alert triage with AI-powered prioritization and investigation guidance
Adaptive Security Insights
GenAI-powered insights enabling threat investigation and remediation across different analyst skill levels
Cloud Risk Management
Unified cyber risk exposure management with asset discovery, vulnerability prioritization, and attack surface management
Extended Detection and Response
Cross-cloud XDR capabilities with enhanced visibility, threat correlation, and streamlined security operations center investigations
Multi-Cloud Security Coverage
Comprehensive protection across containers, code, cloud workloads, and file storage environments using integrated security stack
Predictive Threat Intelligence
AI-powered and machine learning-driven threat detection, prevention, and automated response mechanisms
Real-Time Risk Monitoring
Centralized dashboard with real-time risk scoring, threat exposure mapping, and comprehensive multi-cloud environment monitoring
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
-
-
-
-
-
No security profile
-
-
Standard contract
No
No
No
Customer reviews
4.3
14 ratings
14 AWS reviews
|
295 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
David Heinz
Has improved threat response time and reduced staffing needs through automation and visibility
Reviewed on Nov 12, 2025
Review provided by PeerSpot
What is our primary use case?
SentinelOne Singularity Complete has allowed me to perform multiple functions. It enables asset ingestion, and I have been able to identify other machines that don't have the endpoint agent installed. We've caught some malware. SentinelOne has internal reporting features and Ranger features that search the subnets where SentinelOne agents are located for other devices that may not be protected with the agent. The platform itself allows me to visualize my entire environment.
What is most valuable?
SentinelOne Singularity Complete has allowed me to perform multiple functions. It enables asset ingestion, and I have been able to identify other machines that don't have the endpoint agent installed. We've caught some malware. SentinelOne has internal reporting features and Ranger features that search the subnets where SentinelOne agents are located for other devices that may not be protected with the agent. The platform itself allows me to visualize my entire environment.
The ransomware rollback feature is the best aspect of SentinelOne Singularity Complete that stands out the most. We haven't had to use it yet, but it allowed me to demonstrate to our insurance providers that I had a recovery mechanism for the rollback.
SentinelOne Singularity Complete has positively impacted my organization by helping with trust amongst the organization. There is no longer any doubt that we are protecting the endpoints. Also, with USB exclusions and other features, it has helped with data loss prevention. I am now able to measure DLP attacks.
My impression of SentinelOne Singularity Complete's ability to ingest and correlate across my security solutions is phenomenal. It's great to have that central location. With SentinelOne Singularity Complete, I have been able to remove three additional products from the environment.
I use SentinelOne Singularity Complete's Ranger functionality, and it's one of the most important things I have.
What needs improvement?
There really aren't any areas for improvement in SentinelOne Singularity Complete. I'm excited to watch the continuous improvement to the storyline.
What do I think about the stability of the solution?
SentinelOne Singularity Complete is stable in my experience.
What do I think about the scalability of the solution?
SentinelOne Singularity Complete's scalability is extremely easy to achieve as new endpoints and new detection points come on board.
How are customer service and support?
The customer support for SentinelOne Singularity Complete is phenomenal.
I would rate the customer support a ten on a scale of one to ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We were a new company, and we picked SentinelOne Singularity Complete first without using a different solution before.
What was our ROI?
SentinelOne Singularity Complete has helped free up my staff for other projects and tasks by saving us multiple hours a day because we can now get the visibility and the automation.
SentinelOne Singularity Complete has helped reduce my organization's mean time to detect by fifty percent.
SentinelOne Singularity Complete has helped reduce my organization's mean time to respond by eighty percent.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing for SentinelOne Singularity Complete was flawless while working with my account manager. For the first time in a long time, I enjoyed the process.
Which other solutions did I evaluate?
I did not evaluate other options before choosing SentinelOne Singularity Complete.
What other advice do I have?
The advice I would give to others looking into using SentinelOne Singularity Complete is to have your inventory counts available, document your ingestion points, and proceed with the implementation. I think it's a great product. I would rate this review a ten on a scale of one to ten.
Nick L.
Effortless Deployment and Outstanding Support
Reviewed on Nov 05, 2025
Review provided by G2
What do you like best about the product?
Easy to deploy and use. Very responsive to config changes. Support team is amazing.
What do you dislike about the product?
I have not found anything I don’t like. The platform is very user friendly.
What problems is the product solving and how is that benefiting you?
EDR and single pane of glass view of our environment.
Olive Kusumbara
Has improved threat detection and streamlined integrations through strong XDR and forensic capabilities
Reviewed on Nov 04, 2025
Review provided by PeerSpot
What is our primary use case?
I'm only dealing with Google SecOps right now, not other Google Cloud products. On a limited scale, I think we use Microsoft Defender for one particular customer; for the others, we are using SentinelOne Singularity Complete and Palo Alto Cortex.
What is most valuable?
I've seen a lot of improvements and simplifications, and Google SecOps has recently moved into Gartner's as the highest one for visionaries. The AI, agentic AI, integration with SOARs, and simplified SKUs and pricing are noteworthy. Most customers who have various platforms for cybersecurity do not choose Azure Defender unless they are on a Microsoft stack right now. SentinelOne Singularity Complete is the most capable in terms of detection and response, and I use it quite extensively for forensic capabilities.
SentinelOne Singularity Complete can be quite intrusive, but it has strong detection capabilities. The Ranger functionality of SentinelOne Singularity Complete for the EDR is extensively used for customers. Microsoft Defender has recently upgraded to XDR capabilities.
What needs improvement?
For Azure Sentinel , the main issue that needs improvement is the pricing; it's quite unpredictable right now in terms of cost. The use of many components within Azure itself is confusing, especially with the recent move in terms of the console from Azure Sentinel to the Defenders. The highlight is more into the pricing; it is too expensive and unpredictable right now.
For Google SecOps, the only improvement I suggest is in terms of the reporting, especially for out-of-the-box reporting that seems very lacking right now. There aren't too many useful reports coming from out-of-the-box; we have to develop them ourselves right now.
SentinelOne Singularity Complete needs to work more on increasing true positive detections to make it closer to 10. A weakness seen with one large customer was that the detections were too intrusive, blocking many applications that should have been working, which led to many false positives.
How are customer service and support?
I think technical support is quite good; we have been in contact quite occasionally, and they provide expected answers.
How would you rate customer service and support?
Positive
How was the initial setup?
I find the initial setup quite straightforward for SentinelOne Singularity Complete.
Which other solutions did I evaluate?
SentinelOne Singularity Complete can be quite intrusive; that's one of the drawbacks. It's also the first thing that we recommend right now. We prefer to use other EDR platforms such as SentinelOne Singularity Complete and Palo Alto Cortex right now.
What other advice do I have?
I'm using Google SecOps. If you want, I can leave my opinion on Google SecOps.
While the others will be on the cyber threat intelligence, the primary is Google SecOps, and I think the other one is Azure Sentinel.
There is room for improvement for these solutions. It's mostly SIEM and MDR for SentinelOne Singularity Complete. I haven't used Vigilance MDR; I only know the name.
We mainly focus on SentinelOne Singularity Complete and Cortex, while the other EDRs that we have managed are less significant. It's almost similar since both SentinelOne Singularity Complete and Cortex have EDR and XDR capabilities.
In terms of non-locked XDR platforms, the best one is SentinelOne Singularity Complete right now for their XDR capabilities. Other ones such as Palo Alto Cortex or even CrowdStrike are locked into their own ecosystem right now since they have many products within that ecosystem. In terms of integration, even though it looks quite open, some are tightly coupled into their own ecosystem, especially for Palo Alto Cortex.
We haven't had that in-depth experience in terms of ingesting and correlating for SentinelOne Singularity Complete; we mainly use it right now for their EDR capabilities. Since we provide the MDR services, we mainly integrate those with Google SecOps right now for the overall SOC services. I think they are the most capable in terms of detection and response.
We only tried Purple AI but haven't used it quite extensively. I find the pricing very reasonable, especially right now compared to other top-tier EDR platforms at the same level. I usually recommend the product for both smaller and bigger organizations. My overall rating for this review is 9.
Krishna R
Automation has simplified threat detection and enabled seamless hybrid deployments
Reviewed on Oct 28, 2025
Review from a verified AWS customer
What is our primary use case?
The main use cases for SentinelOne Singularity Complete include EDR, XDR , and NGSIEM.
SentinelOne Singulality Complete has the ability to ingest and correlate across security solutions extensively.
SentinelOne Singularity Complete seamlessly ingests logs from various other technologies besides the SentinelOne EDR platform. We have integrated with several firewalls, different firewalls. We have integrated with cloud ingestion, such as AWS and GCP, which is seamless. There are other solutions that can be integrated with SentinelOne Singularity Complete, incorporating security log ingestion.
The XDR platform helps to consolidate different security solutions.
Regarding Ranger functionality, it provides network and asset visibility and can ingest logs from network sources, capturing any threat metrics, including IOCs.
I cannot confirm if SentinelOne Singularity Complete reduces alerts as I have not worked heavily on that aspect. The system captures different telemetry from network devices.
Customers mainly use SentinelOne Singularity Complete on both public and hybrid cloud. This is advantageous, as we can use a relay agent to commit updates for computers that do not have internet access. Those telemetry can also be received, which is a clear value differentiator.
What is most valuable?
The rollback feature is the most useful feature of SentinelOne Singularity Complete. When a machine is infected, we have the option to roll back to the earliest date, providing ransomware protection. The second biggest differentiator is the hybrid implementation, which means unlike other EDRs, all machines need not be connected to the internet. We can have a local relay agent that can perform updates and upgrades to machines that are not connected to the internet directly, which is very helpful for updating air-gapped implementations.
The installation of SentinelOne Singularity Complete is very seamless. We are able to implement fresh rollouts of thousands of machines in a matter of one or two days, provided the machines are available. We are immediately able to see the telemetry and ingestions of the log taking place.
The biggest benefit for my customers is that it is autonomous, where mostly everything is automated, and the threat detection, as well as auto-remediation rules, are set up. Hence, minimum intervention is required from our side in case of known threats. I consider the automation and autonomous decision-making as the cornerstone.
What needs improvement?
Sometimes, SentinelOne Singularity Complete takes time to reflect on some machines, which could be due to poor network connectivity. However, I don't see any major problems.
It takes time for updates to reflect on the central console when putting in a new machine.
Regarding recommendations, they have acquired a company called Prompt Security , which is working on AI gateway and AI security posture management. I want to see how it gets integrated with the SentinelOne platform, and I am looking forward to what they will do with Prompt Security .
My customers have not calculated a return on investment because most purchases happen as a mandate. It is imperative for organizations to move from antivirus to EDR and XDR platforms. The decision is mostly for corporate security rather than based on a return on investment.
For how long have I used the solution?
I have been working with SentinelOne Singularity Complete for three years.
What do I think about the stability of the solution?
I have not come across big disruptions or breaches with SentinelOne Singularity Complete. Whatever known viruses exist are automatically eliminated, similar to a usual antivirus. I have not used threat hunting situations and have not been exposed to that currently.
There are not many stability issues regarding upgrades. Everything is managed automatically, so there is no user interference needed for upgrades.
What do I think about the scalability of the solution?
SentinelOne Singularity Complete is very scalable. I have seen customers scaling up to 25,000 users very easily without challenges.
How are customer service and support?
I have contacted SentinelOne support via TAC lines for understanding suspicious behavior, and they help drill down further. We get support directly from the TAC line for any false positives or to understand whether it is a true positive or false positive alert.
I would rate the support from SentinelOne Singularity Complete as an eight out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup of SentinelOne Singularity Complete is straightforward and very easy. All we need to do is set up a tenant, create the package file, and once we install it, it automatically connects. We can set up the entire system in a matter of one hour for a large customer.
What's my experience with pricing, setup cost, and licensing?
SentinelOne Singularity Complete is not expensive; they are very aggressive when it comes to price points.
Compared to Microsoft and other competing solutions, SentinelOne Singularity Complete is very aggressive price-wise.
The cost depends on a per-device basis.
The full-fledged platform should be around $7 to $10 per device per month.
What other advice do I have?
I have had limited experience with Purple AI , which gives copilot-features wherein I can use a pull-down menu to identify based on any IOCs present. The retrieval time is very fast. I can ask certain copilot questions, frame certain queries on the drop-down menu, and immediately see whether those telemetry match in my systems.
Predominantly, my customers buy SentinelOne Singularity Complete from us. Small customers may purchase from the AWS marketplace, but enterprise customers mostly buy through partners.
I recommend SentinelOne Singularity Complete as a good investment where you can rely on the technical support. There is always a human voice available if we get stuck somewhere, and I am very happy about the solutions and interactions we have. You are bound to have clarity when alerts come in, and you need a vendor who can answer and troubleshoot those situations and clarify what the alert is all about. If you are looking for more TAC line support for incidents, go ahead with SentinelOne Singularity Complete.
I rate SentinelOne Singularity Complete eight out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
SAM B.
Inheritly powerful,and a feeling of being protected.
Reviewed on Sep 30, 2025
Review provided by G2
What do you like best about the product?
That when necessary, I don't require to be attentive to the platform. But when I need to be on it or want to learn more, the possibilities are endless. I can go as far as I want. The platform is feature-rich. The use of Purple AI and the real language searching, you can go in depth with the threats.
What do you dislike about the product?
In the beginning, there was a bit of a learning curve.
What problems is the product solving and how is that benefiting you?
It is just one step in the layered defense in depth. Granted, it is a big part. Antiviruses based solely on signatures are a thing of the past.