I typically deploy it into typical business environments such as law offices, doctors' offices, and marketing companies. I have clients of all walks of life, including accountants, attorneys, doctors, and veterinarians. I work in a very simple environment and am not dealing with high security, such as CIA-level security. For example, I use it in a doctor's office where it does a good job staying HIPAA compliant.
SentinelOne Singularity Platform
SentinelOneExternal reviews
External reviews are not included in the AWS star rating for the product.
Almost perfect
The imprementation was extremaly fast easy. The support is top class in comparison to other brands I have experience wth.
prevention of ransomware attacks shows reliability and effectiveness in business environments
What is our primary use case?
How has it helped my organization?
The best aspects of SentinelOne Singularity Complete for these clients are its ability to detect malicious activity. While there are sometimes false positives, they are minimal, making it quite effective. It recently stopped a ransomware attack at one of my clients, proving its reliability. The clients do not see immediate efficiency gains or significant time savings.
What needs improvement?
I haven't done any integrations, as I'm just in the beginning stage of ramping up the product implementation and mastering the product. I don't qualify myself as a master in the use of SentinelOne Singularity Complete, so I cannot offer great insight on this.
For how long have I used the solution?
I have dealt with SentinelOne Singularity Complete for less than a year.
What do I think about the stability of the solution?
The stability of SentinelOne Singularity Complete is demonstrated through its ability to detect malicious activity. While there are sometimes false positives, they are minimal. It recently stopped a ransomware attack at one of my clients, proving its reliability.
What do I think about the scalability of the solution?
My clients are mostly small, and my largest client has about thirty computers. I do the deployment myself, and it's not a huge effort. It's not comparable to dealing with a company that has three thousand computers.
Which solution did I use previously and why did I switch?
In the past, I used another product that malfunctioned and caused high processor activity which required stopping and reinstalling it. However, this hasn't happened with SentinelOne Singularity Complete. I used to have many false positives with other products that would block good programs, but I haven't experienced that with SentinelOne Singularity Complete, making it more quiet and efficient.
How was the initial setup?
The initial setup was very simple; deployment is straightforward. Fine-tuning it is a bit more involved, but overall, it's a very simple product to get started with.
What about the implementation team?
I was a part of the setup and deployment process.
What was our ROI?
The return on investment for my clients isn't visible until there is an incident or an attack that gets stopped. Then they realize the value of prevention. The challenge with security products is that ROI isn't apparent until an incident demonstrates the potential for loss. Clients often think they are immune, especially small ones, believing they're too small to be attacked. They don't realize that the cost of an attack could be a hundred thousand dollars, while they perceive the likelihood as very low.
What's my experience with pricing, setup cost, and licensing?
The pricing for SentinelOne Singularity Complete is good. There are other products that are less expensive, but I tell my clients that in security, they cannot cut corners or look for the cheapest solution. If they want security, looking for the cheapest solution means they have the wrong approach, because good products are not cheap.
What other advice do I have?
I don't have hands-on experience with CrowdStrike, Cisco, or Palo Alto products, but I know the companies. I do not have experience with AI features or AI analytics yet. I don't think there is real-time threat intelligence within SentinelOne Singularity Complete, and if there is, I'm not using it. I'm just getting to learn the product, so I cannot offer any deep insightful opinion. On a scale of one to ten, I would rate it a nine or a ten, as I'm very happy with it currently.
Review For SentinelOne
Sentinel One Singularity
Singularity Unleashed : One platform for all threats & Autonomous security
single unified console for Endpoint ,identity and cloud security .
User friendly console you can easily manage all the assets easy to deploy policy.Single policy for window ,mac and linux .and auto response also available one click kill & quarantine , remediate and best feature is one click rollback .Rollback feature helps you to revert back impact of ransomware in attack condition.
and much more features like device control and patient feature storyline star custom rule.Ease to implementation for all types of OS ,legacy os also supported.
Frequently usable and ease to integrate with other vendors.
Good EDR product with bad customer support team.
it is easy to use.
there is no automation to do full disk scan in the UI.
Bad customer support. they take months to solve a simple issue. they hide behing the chat and they are reluctant to come on call to fix certain issue.
User-friendly interface and policy customization helps with server protection
What is our primary use case?
Our main use case is to protect all the Linux servers. We use it only for servers, not for users.
How has it helped my organization?
SentinelOne Singularity Complete is one of the most mature solutions available. It shows great benefits over time.
We can install filters to analyze every alert, and make some whitelists, blacklists, and exceptions, thus helping reduce alerts.
It can reduce the organization's risk. It gives better control to our limited team resources.
It already has AI capabilities, which is one of their advantages.
What is most valuable?
When you select a policy for a type of server, such as an Active Directory, we can apply a dedicated policy. We can have a dedicated policy for Exchange Server and a dedicated policy for MS SQL, Oracle server, etc.
The interface of SentinelOne Singularity Complete is user-friendly, and we can quickly find what we need.
What needs improvement?
The main issue with SentinelOne Singularity Complete was the process memory used for Linux servers, which generated a lot of tickets and incidents due to the high load of disk consumption and memory. The problem was on all systems, but especially on Linux servers. It might have already been fixed.
SentinelOne Singularity Complete is the best EDR in the market, but it will evolve, though I have concerns about using US partners in Europe due to the geopolitical context. It is better to work with European companies.
For how long have I used the solution?
I have been using SentinelOne Singularity Complete for approximately four years.
What do I think about the stability of the solution?
For stability, I would rate it a nine, as I have experienced only the issue of overload.
How are customer service and support?
The technical support from SentinelOne Singularity Complete is very active and good, with a strong knowledge base available online. The response time of technical support is satisfactory and acceptable.
I would rate their support a nine out of ten based on reactivity and the solutions they provide; this is based on my team's interactions, not mine.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
For Windows servers, we are using Defender. SentinelOne Singularity Complete is only used for Linux servers.
How was the initial setup?
The initial setup was not really complex; we only needed one on-premise management server to deploy to different servers. It took about two months for about 300 servers.
What about the implementation team?
I am the third party assisting in the deployment.
What's my experience with pricing, setup cost, and licensing?
I don't know about the licensing model. It seems easy, but it's not my area of expertise. I don't have information on how it compares to its competitors, but the pricing is per device.
Which other solutions did I evaluate?
We conducted some PoCs between SentinelOne Singularity Complete, Defender, and Carbon Black, and we decided to go with SentinelOne Singularity Complete based on usability.
What other advice do I have?
It is unclear if it has helped reduce our organization's mean time to detect or respond because we have a platform with four people, and we are using SOC as well. Our main activities are done by four people, and we don't have much time to conduct thorough investigations.
I cannot assess SentinelOne Singularity Complete's ability to be innovative because we stayed with it after choosing it and never compared it with others.
Overall, I would rate SentinelOne Singularity Complete a nine out of ten because nothing is perfect, but it is close.
Simplifies operations with good UI and centralization
How has it helped my organization?
Singularity Complete has helped reduce alerts. We have one place to go to check them, and there is also a reduction in false alerts.
Singularity Complete helped free up our staff for other projects and tasks. I do not have the metrics, but it saves a lot of time compared to what I have used at other companies.
Singularity Complete has helped reduce our mean time to detect. We only have to look at the portal. We can quickly isolate the user or the device, which also stops the virus from spreading. It also reduces our mean time to respond.
What is most valuable?
The web portal has a really good web UI, and all the things are well integrated. It is easy for us to increase the number of users because it is pretty simple.
What needs improvement?
The maintenance window can be improved because once it happened that I had multiple laptops, and the maintenance window caused a lot of laptops to get stuck in the portal, blocking access. This is important to address. The basic functionalities should be up and running even during maintenance windows. I understand that it is a software-as-a-service model, but it becomes a problem if I cannot do anything when issues occur during maintenance.
They could make it simple to have a SIEM integrated with their solution so that we can send logs to their server and then analyze them.
For how long have I used the solution?
I have been using SentinelOne Singularity Complete for almost one year.
What do I think about the stability of the solution?
It is stable.
What do I think about the scalability of the solution?
It is scalable. We have 50 users in our company. We have three administrators. We also have a consultant.
How are customer service and support?
I did not have the opportunity to contact them because I had almost no issues.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
We were probably using Webroot. I was not there when they made the decision to switch.
How was the initial setup?
I did not participate in the initial setup, but our new onboarding process for laptops is really straightforward. You just join the domain, and the software gets installed automatically. It is bound to our site, making it very easy.
What was our ROI?
It is difficult to measure ROI, but since we started using it, we have not had any problems related to security. We have not experienced any breaches or issues so far.
It has absolutely helped reduce our organizational risk.
What's my experience with pricing, setup cost, and licensing?
Overall, it was a good experience. It is pretty easy for us to increase the number.
What other advice do I have?
SentinelOne is focused on this solution. This is evident in the GUI. The GUI is well done compared to solutions like Microsoft Defender which I have been trying to get into, but it almost repels me. SentinelOne Singularity Complete is very stable and mature. It is one of the best solutions that one can choose.
I would rate SentinelOne Singularity Complete a nine out of ten.
Which deployment model are you using for this solution?
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Reduces workload by consolidating functionalities into a single platform
How has it helped my organization?
Singularity Complete integrates well. We have changed our monitoring solution, and SentinelOne supports that solution. We are using SecureWorks to monitor our system. It is directly using the SentinelOne agent. All security logs for SentinelOne and other security products are being pushed to that one. SecureWorks consolidates all the logs and alerts, and we are getting 24/7 monitoring.
Singularity Complete significantly reduces alerts. It has reduced false positives by 30% to 40%.
Singularity Complete helps free up our staff for other projects and tasks. We have fewer false positives. We are very comfortable with it. Before, we had to provide extensive technical support for endpoint protection, but after installing the agent, administration became much easier.
Singularity Complete has been excellent, and we have not faced any issues in the last three to four years. It has reduced critical risks significantly.
Singularity Complete has reduced our mean time to remediate to a good level. It has also reduced the organizational risk.
We have used Ranger, but it is not always useful for us because most of our users are working from remote areas. It is a bit difficult for Ranger to identify them because they are working with some local networks. However, we are protecting our endpoints with the agents. It is mandatory for our technicians to install this agent.
What is most valuable?
APT and ransomware protection is valuable. We also use the Vigilance service from SentinelOne. It is a complete XDR platform for us.
What needs improvement?
Sometimes, support can be lacking. We would like to have more interactive sessions, which are not currently available. A chat service for technical support would also be beneficial. With other vendors, we are able to resolve small issues through the chat, whereas with SentinelOne, we have to open a ticket. Without a ticket, we cannot do anything. It takes more time.
They should host a data center in Saudi Arabia, making it easy for customers to go for a SaaS model.
For how long have I used the solution?
We have been working with SentinelOne since 2019. It has been almost five years.
What do I think about the stability of the solution?
For EDR, the solution is perfect. Over the five years of using it, many improvements have been made. Initially, there were issues, particularly on the management side, but now the console is much more stable.
How are customer service and support?
They can provide more interactive options for support. For example, a chat service would be beneficial.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Previously, we were using Trend Micro, which posed a lot of issues. Trend Micro has different products for different things. For example, they have a different product for servers and a different product for clients. For management and reporting, there is another product. We have to manage a lot of things in Trend Micro.
SentinelOne has consolidated these functionalities into a single platform, greatly reducing our workload.
How was the initial setup?
The SaaS model is better, but due to some regulations, companies are hesitant to go for it.
Deployment was challenging because we did not have software distribution capabilities at the time, and my technicians faced many challenges. I tried using group policy, and it worked for some clients, but not all, since half of my employees work remotely. Once deployed, agent updates were automated from SentinelOne.
Maintenance is not required because we are using the SaaS model. We do not have any servers to manage, as it is a SaaS-based solution. When there is a new agent release from SentinelOne, we just have to deploy it from the console.
We have different entities inside our organization. It took us three to four weeks to deploy to about 1,500 endpoints.
What about the implementation team?
My team handled the deployments. We had five to six technicians.
What was our ROI?
We have not faced any attacks since we implemented it. We had some critical incidents before this. In that respect, we have saved costs.
What's my experience with pricing, setup cost, and licensing?
Its cost is similar to Trend Micro, but the protection is much better. If you want protection, you have to pay the price.
What other advice do I have?
This technology is perfect for us. They are good at innovation and enhancements. We have good visibility across the network and endpoints. The product is continually improving, and I am very satisfied with it. I have already recommended it to a few people.
Overall, I would rate SentinelOne Singularity Complete a nine out of ten. There are areas for improvement, such as support and hosting data inside Saudi Arabia.
Automation has freed up our team, streamlining quick actions and restoration capabilities
What is our primary use case?
First, budget-wise, and for the quick actions I take in automation, certainly AI plays a crucial role.
What is most valuable?
The most valuable features are the quick action and restoration capabilities. I can catch any behavior and restore everything for the last two changes. There's also automation that gives my team free time, preventing them from having to look for every alert. As a result, we don't need their action on some emails.
What needs improvement?
Integration with the firewalls is needed because there is no integration with Forti as a FortiAnalyzer. It is currently integrated with FortiManager and the Forti box, but if I have an analyzer, it doesn’t integrate with them. It would be better if there were direct integration with FortiAnalyzer.
For how long have I used the solution?
I have used the solution for two years.
What do I think about the stability of the solution?
The stability is just okay.
What do I think about the scalability of the solution?
The scalability is good at more than ninety percent.
How are customer service and support?
I would rate the customer service at an eight.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I tried, when busy, CrowdStrike, and as an endpoint, I work with FortiClient.
How was the initial setup?
The setup is complex related to the XDR because there are more logs, and the queries need someone expert for that. I should create a guide.
What about the implementation team?
The deployment has been done in-house by my team.
What was our ROI?
If I compare prices between SentinelOne and another solution, I have already conducted this exercise, and SentinelOne is cheaper by more than sixteen percent.
What's my experience with pricing, setup cost, and licensing?
It’s cheaper than other competitors.
What other advice do I have?
I will recommend it to other clients. The quality is good for us based on our operations. We don't have a huge amount of transactions, but it’s good for us. The solution meets our needs. It’s good. Overall product rating is eight out of ten.