100% Reliable with fully autonomous threat mitigation and real-time ransomware file encryption roll back, without human intervention.
What is our primary use case?
The product is used to provide cybersecurity protection to SMBs predominantly in the financial, manufacturing, and retail industry as well as private individuals.
SentinelOne is key in achieving compliance with the General Data Protection Regulation (GDPR) in the European Union and the Protection of Personal Information (POPI) Act in South Africa.
Resolving ransomware encrypted servers or personal computers is costly to the customer, both in repair costs and loss of business due to downtime. In addition, the customer may suffer reputational damage if any of its customer data is compromised.
How has it helped my organization?
Our clients trust us to protect their IT systems and data.
We use SentinelOne because it has proven itself and has never been breached. It offers us a 100% protection record and our company reputation stays intact.
Resolving ransomware encrypted servers or personal computers is both costly and time consuming to both the customer as well as the service provider - protecting against these attacks is a win-win for all.
The SentinelOne portal dashboard provides a good overview of all the sentinels deployed and offers quick access to review and resolve affected sites and endpoints
What is most valuable?
The most valuable feature is that it works and is reliable.
Other solutions I have researched have all been breached, and as far as I can see, SentinelOne is the only one that has never been breached. It provides fully autonomous threat mitigation and ransomware file encryption roll back in real-time without human intervention.
Our clients have been able to survive a ransomware attack without even knowing that they had had files encrypted and automatically rolled back - even their Point of Sale (POS) system did not miss a beat and the business continued as normal without interruption.
What needs improvement?
SentinelOne's ongoing updates and rate of technology improvments are adequate for now, and have kept SentinelOne ahead of the cyber criminals, but we cannot rest, and continuous development - in particular with regard to the areas of automation, machine learning, and artificial intelligence - is required to stay ahead of the cyber criminal techniques and exploits. The "false positive" detection rate could be improved, if possible, but this should not increase the risk of the endpoint being breached.
For how long have I used the solution?
I've used the solution for over 5 years.
What do I think about the stability of the solution?
The stability is excellent.
What do I think about the scalability of the solution?
The scalability is excellent.
How are customer service and support?
The customer support has been good.
Which solution did I use previously and why did I switch?
I did not use a different solution previously.
How was the initial setup?
The initial setup is straightforward.
What about the implementation team?
We are able to handle implementations in-house.
What's my experience with pricing, setup cost, and licensing?
If you are an end-user you should procure the service through a Managed Cyber Security Systems Provider.
Which other solutions did I evaluate?
Yes, I have looked into ESET, Crowdstrike, Cylance, Webroot, and many others.
What other advice do I have?
Contact me on cybersec[at]global[dot]co[dot]za
SentinelOne is very powerful
What do you like best about the product?
The endpoint does its job like it is supposed to do. I love how it will take the computer offline if it detects malware but still allows me back in via a shell. It will also schedule updates, firewall rules, USB rules, and it tells me of lapsed software. Plus, they keep up with everything that is happening out there in real time.
What do you dislike about the product?
There is nothing I dislike about this product. This product works as described.
What problems is the product solving and how is that benefiting you?
The benefit is that I don't have to watch the systems. It protects it for me, and I get alerts in real-time. The dashboard is terrific.
Recommendations to others considering the product:
I recommend this product.
Sentinel One
What do you like best about the product?
Ease of installation. It is very to install from a batch file with the msi and key.
What do you dislike about the product?
It is cumbersome to uninstall. You need to get the uninstall key from the Sentinel One admin portal.
What problems is the product solving and how is that benefiting you?
It is excellent at detecting abnormalities in network traffic for possible ransonware, virus, and other malware attacks.
Recommendations to others considering the product:
I would recommend going thru the Admin portal training course.
Very powerful solution that highlights threats in real-time, effective 0 day detection
What is our primary use case?
Singularity Complete combines prevention, detection, response, and remediation for endpoints, servers, and VMs. It autonomously blocks malware, ransomware, and zero-day threats using behavioral AI and machine-speed prevention.
Enables natural language queries, auto-summaries, and investigation notebooks for faster triage and hunting
How has it helped my organization?
It has reduced the need for manual intervention and accelerates incident response, lowering operational overhead.
What is most valuable?
Provides rich forensic data and automated root cause analysis cuts down investigation time from hours/days to minutes, improving SOC efficiency.
What needs improvement?
I believe it is currently at its best.
Moreover SentinelOne development teams is working for continuous improvement of agent and console features.
For how long have I used the solution?
We started deploying it in 2018.
What do I think about the stability of the solution?
I do confirm, it is a really stable solution: we have been using sentinelOne solution for years and the agent minimizes conflicts and reduces system resource consumption, which contributes to stability across diverse environments.
What do I think about the scalability of the solution?
The platform is built on a cloud-native foundation, So we don’t need heavy on-prem infrastructure, it means we can easily scale up or down as our organization grows, without worrying about hardware limitations.
One lightweight agent handles EPP, EDR, threat hunting, and even IoT/identity protection, reducing complexity and makes scaling across thousands of endpoints straightforward.
Finally the management console provides centralized control for endpoints across multiple regions and environments (Windows, macOS, Linux, cloud workloads).
How are customer service and support?
5 star.
Very fast and very professional.
P.S.: I cannot edit “Pros” and “Cons”
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
Previously, we had the McAfee, which was complicated to managed.
We heard about this SentinelOne and its new antivirus, so we contacted our consultant who organized a PoC. After the PoC, we decided to migrate the solution.
How was the initial setup?
For deploying, it takes a long time. Our process was first to install SentinelOne with McAfee, having two antiviruses in the same host. Then, we started to uninstall McAfee. That process took about six to nine months because we had a lots of endpoints to deploy.
The antivirus migration was smooth. The only thing that was tricky was the removal of the McAfee tool because sometimes it worked incorrectly and didn't uninstall the antivirus.
What about the implementation team?
The deploy was almost completely autonomous, we just followed the suggestions provided by SORINT and used our software distribution tool to install the agents on our assets.
What was our ROI?
I am sure the solution has reduced our incident response time and detection as well, but we have never evaluate, calculate an actual Return of investment of the solution. We will think about it, thank you.
What's my experience with pricing, setup cost, and licensing?
I haven't managed budget so far, so I have no experience with licenses and costs
Which other solutions did I evaluate?
No other solutions were evaluated.
What other advice do I have?
I would rate this solution as a 10 out of 10.
The only advice I would give is to try the solution with a POC/POV and evaluate the solution features provided with the complete.
I am sure they will be surprised by the effectiveness of the solution and the simplicity of its management.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Awesome Product
What do you like best about the product?
very easy deployment, low resource usage
What do you dislike about the product?
I feel like there is too many buttons in the Dashboard. It can get a little confusing
What problems is the product solving and how is that benefiting you?
We now have forensics and went from 2 AV's to just SentinelOne
Recommendations to others considering the product:
Do the trainings. There is so much you can do in SentinelOne. You can do deep Forensics
Excellent product
What do you like best about the product?
Having an Endpoint protection solution in our environment that flags and prevents any potential threats on both the client and server endpoints, is excellent.
What do you dislike about the product?
It is sometime difficult to upgrade the client on an Endpoint from the console.
What problems is the product solving and how is that benefiting you?
Protection against potential threats on client and server endpoints. SentinelOne has meant we now no longer need to dedicate considerable resource to this aspect of security.
Recommendations to others considering the product:
Buy it.
Very good
What do you like best about the product?
Sentinel one is very reliable and provide us peace of mind. It covers us from virus but also every script with a bad behavior. A must have for us.
What do you dislike about the product?
it should be harder to blacklist a critical exe like svchost. Could lead to misusage
What problems is the product solving and how is that benefiting you?
very strong detection of virus even if they are developed just for targeting you.
Easy deployment and rapid adoption
What do you like best about the product?
There is a ton of data you can get out of SentinelOne.
What do you dislike about the product?
As with any EDR or endpoint client there are numerous exclusions that need to be put in for it to operate well with other products. I wish there was an easier way to implement them based on other products used.
What problems is the product solving and how is that benefiting you?
We have greater visibility into machines and can get data back from them whether or not they’re on the corporate network.
Recommendations to others considering the product:
I would recommend to research exclusions necessary for interoperability with other products and applications.
Great EDR solution
What do you like best about the product?
Great, easy to use cloud portal. The in-depth analysis and path tracing is a great tool to use to find root causes. Ranger is helping us to identify rogue/shadow IT machines that sites were hiding from corporate policy. The software vulnerability tool has helped us to find a wide variety of 3rd party applications that needed patching. We also use the Vigilance service to proactively monitor our portal which gives me more time to work on the issues that matter.
What do you dislike about the product?
Could use some better, more in depth reporting. The executive overviews are good, but not for my needs. For ranger, I wish there was a way to whitelist machines being detected, and allow specific vendors as trusted sources that we cannot install on. Client Updates are not an auto roll-out option. Going between version requires manual push from the console. Update failures do not always give concrete reasons as to why.
What problems is the product solving and how is that benefiting you?
The software vulnerability tool has helped us to find old unpatched 3rd party software that needed upgrading, Ranger has helped us to find some Shadow IT boxes that the sites have created and tried to hide away from corporate policy.
SentinelOne, The Myth is Real
What do you like best about the product?
Ease of deployment has to be one of the unspoken secrets to SentinelOne. This product was a breeze to deploy.
What do you dislike about the product?
I've not found anything I do not like. I'm so impressed by the capabilities of the core product as well as the Ranger product. Always looking for systems we may have missed makes me sleep better at night.
What problems is the product solving and how is that benefiting you?
Stopping a threat of any kind in its tracks was the problem we needed to solve. SentinelOne does this so I can sleep at night. Prior to SentinelOne we were constantly getting alerts that were false positives at all hours of the day and night.
Recommendations to others considering the product:
When you get down to the two primary competitors SentinelOne and Carbon Black... Ask Carbon Black about the additional modules and pricing. Also ask them about the support. They only provide their best support for the big companies. Smaller companies like mine don't get the best support. That played a key role in picking SentinelOne.
