We deploy and manage the product for hundreds of clients.
SentinelOne Singularity Platform
SentinelOneExternal reviews
299 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Good range and functionality with increased visibility of threats
What is our primary use case?
How has it helped my organization?
We are a large global insurance company and we're trying to help proactively find a way for clients not to get breached by ransomware. This product is part of the way we do that.
What is most valuable?
The range and functionality are great.
The remote script orientation is good.
The level of vigilance is impressive.
Its ability to interact with other third-party tools has been great for us. It can work through APIs and partners and integrate well.
The solution's ability to ingest and correlate across other security solutions is helpful. It's been very important in terms of how we will move forward with the product. We're in the process of consolidating security solutions right now. Hopefully, it will help us reduce the use of some tool sets. It's helped us automate more and correlate better by bringing in data sets from different areas or systems so that we get a sense of threats. That's been really critical.
It provides increased visibility through Ranger. We don't need new agents or hardware. The ability to look for and find new devices that come onto the network helps us protect more efficiently.
It's been a great product in a couple of ways from my analysis of working on it. They have a great user interface, for example. It's easy to install and easy to support. It's allowing integration from all the different parts of our business and data points. Then there is the breadth of services that are tied into it. The support infrastructure overall has been great.
Singularity can correlate with other data and it helps us put an automated lens around everything to reduce the amount of alerts we'll get.
We can scale with the solution and not have to scale more analysts. It helps us be more efficient.
It has already helped reduce the mean time to detect. The mean time to respond has been okay.
It's also helped us save costs. We're able to deploy a standardized solution that's really well-defined and offers very good training. The ability to scale has been wonderful and it's helped reduce the overall cost of the service we provide.
Singularity helps us reduce organizational risk from a customer perspective.
What needs improvement?
I'm able to have my analyst view everything from one console, and we have multiple boxes with them, and we have to log into separate consoles to access each of those one boxes. We really need a more centralized view of all of our environments.
The MDM functionality and maturity still need improvement.
For how long have I used the solution?
I've been using the solution for two years.
How are customer service and support?
I have contacted technical support in the past. They've been very responsive and helped us drive problems to completion. We've had no issues there.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We were using Carbon Black previously. Singularity has been much better about mean time to detect. It's likely 15% to 20% better by comparison.
Carbon Black also didn't operate from a place of integrity.
How was the initial setup?
I was involved in the initial setup and found it to be straightforward. I cannot really how long it took to fully deploy.
What about the implementation team?
We handed the setup internally.
What's my experience with pricing, setup cost, and licensing?
The pricing is great. I don't have any issues with it.
What other advice do I have?
I'd rate the solution eight out of ten.
We have good network and device controls, as well as real-time threat detection
What is our primary use case?
SentinelOne Singularity Complete serves as our everyday Endpoint Defense solution. We oversee daily detections and manage Sentinels, workstations, and servers. We strive to safeguard our assets and environment, while also defending against malicious processes and files.
How has it helped my organization?
We utilize Visions and its services. Visions and SentinelOne Singularity Complete are closely linked because we are now monitoring not only our products, endpoints, and environment, but we have also engaged Visions as a form of Managed Security Services Provider. Another aspect I find particularly valuable is their API. As a result, we've seamlessly integrated this solution with our SIEM system, which is functioning effectively. This is undoubtedly a tool that we employ, both in conjunction with Visions and our SIEM products.
It's capability to ingest and correlate data across our security solutions is impressive. I utilize tools such as Visions and Sentinel whenever I need to access or retrieve any telemetry. These tools, along with the enhanced visibility they provide, enable me to proactively conduct threat intelligence, explore my environment, and query assets generating alerts.
SentinelOne Singularity Complete has assisted us in streamlining our security solutions. We now possess the capability to identify malicious threats, and the system will automatically safeguard the relevant information, quarantine the threats, and revert any alterations made by the threat.
It has effectively defended our environment against numerous malicious actors. With a membership of over ten thousand, the solutions help safeguard their data effectively.
Singularity Complete has helped us reduce the number of alerts we receive by approximately 30 percent. The false positive issue has been addressed by working with Visions. We remediate these issues and then classify them as false positives, rather than repeatedly receiving alerts as in other solutions. As a result, we now experience fewer alerts than initially expected from day one.
It has assisted in releasing our staff to focus on other projects and tasks. Visions reviews all alerts, forwarding only the true positives to my team for investigation and response.
The agents are live, so our Mean Time To Detect is in real-time.
Our mean time to respond is in real-time. If an issue is escalated by Visions, we receive it instantly. Once it's recorded on the disk, it promptly gets escalated to them. They detect it, review the matter, and subsequently escalate it to us. Then, we review it together, all in real time. There is no downtime during which we have to wait.
SentinelOne Singularity Complete certainly reduces costs for our organization, as we need fewer personnel and don't have to involve numerous analysts due to the presence of Visions. It has also decreased our organization's risk by approximately 30 percent.
What is most valuable?
I appreciate the network control as well as the device control. These two features are truly excellent. I occasionally utilize the custom rules as well.
What needs improvement?
I would love to see improvement in the integration of SentinelOne Singularity Complete and Visions to better utilize the information we receive.
The browser extension for SentinelOne Hunter is a product designed for monitoring and detecting at a browser level. This library is widely recognized. It should not only detect incidents but also proactively block them within the browser environment. Therefore, I would appreciate seeing the browser extension react more effectively to events, going beyond mere detection.
For how long have I used the solution?
I have been using SentinelOne Singularity Complete for one year.
What do I think about the stability of the solution?
I rate the stability of Singularity Complete nine out of ten.
What do I think about the scalability of the solution?
I rate the scalability of Singularity Complete nine out of ten.
How are customer service and support?
We have used technical support a few times, and they were excellent and very competent.
How would you rate customer service and support?
Positive
What was our ROI?
We have seen a return on investment.
Which other solutions did I evaluate?
The organization assessed Carbon Black but found greater value in SentinelOne Singularity Complete.
What other advice do I have?
I rate SentinelOne Singularity Complete nine out of ten.
SentinelOne Singularity Complete is a mature solution that offers a multitude of features and the potential to enhance security within an organization. This presents significant value for security professionals.
We have deployed SentinelOne Singularity Complete across multiple divisions, various business units, and numerous locations spanning Europe, the US, and Japan. As a global organization, Singularity Complete seamlessly integrates with any internet-enabled entity, providing robust agent support upon connection.
Two individuals are responsible for the maintenance tasks, which include updating agents, upgrading policies, and deploying packages.
Having SentinelOne as a strategic security partner is a positive development.
Before assessing Singularity Complete, we need to dedicate a substantial six-month period to thoroughly engage with the product. This entails working with it on a daily basis, comprehending its intricacies, and obtaining full administrative rights to explore and interact with all its features and functionalities.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Microsoft Azure
one of the best EDRs I've used
What do you like best about the product?
I love the design of the console, it is very easy to use and understand, this makes it easier to manage the alerts that come from the endpoints unlike its competitors .
What do you dislike about the product?
It would be nice if you could implement that the installed agents update themselves, to avoid creating policies in the MDM every time a new version is released.
What problems is the product solving and how is that benefiting you?
Sentinelone has helped us detect threats on my company's devices that other antivirus programs don't, and it rarely gives us false positives.
Complete solution with additional features
What do you like best about the product?
the telemetry analysis engine; it easily allows you to run queries looking for any indices of compromise.The incident analysis is also very detailed and allows you to graphically explore the chain of events that preceded and followed an incident
What do you dislike about the product?
Lacks traditional antivirus features such as web filtering or ability to block applications directly at the endpoint level.
In some cases, it happened that some applications did not work after installing the agent without generating console-side notifications
In some cases, it happened that some applications did not work after installing the agent without generating console-side notifications
What problems is the product solving and how is that benefiting you?
Maintain a high level of client security. Being able to verify telemetry through the use of a datalake where event correlation can be performed. It allows us to verify the reliability of the alerts generated by the siem
XDR That Can Meet Your Needs
What do you like best about the product?
The managed service portion of the product allows us to gain more coverage and helps us scale. The product has performed well in catching malicious files.
What do you dislike about the product?
I would like to see more integrations with other security products (i.e. SIEM, Zero-Trust Device compliance) or join frameworks like the Shared Signals Working group.
What problems is the product solving and how is that benefiting you?
It is providing us coverage via managed services. We not only get coverage, but 24x7x365 support to triage findings. This allow us to scale coverage while not adding as much overhead.
Great EDR product for most environment
What do you like best about the product?
Product provides robust protection, while allowing for easy managment and oversight of enrolled devices using hte mangment console.
What do you dislike about the product?
Migration process between EDR providers is a challening process and it may block applications without active notifcations within the console, leading to a difficult experince troubleshooting compatbility issues.
What problems is the product solving and how is that benefiting you?
EDR solution that provides montiroing and protection of enrolled systems and workloads. Also provides a good platform for reviewing the overall security status of the enterprise.
SentinelOne is integrated solution
What do you like best about the product?
easy, smart and effective paticularily in deceiption techniques
What do you dislike about the product?
delay of some support and in recieving training certificates
What problems is the product solving and how is that benefiting you?
catching some intruders trying to come into my enviromeent
Another happy SentinelOne customer!
What do you like best about the product?
Fair priced and we get the added service of 24/7 monitoring and alerts from their team.
What do you dislike about the product?
So far, there's nothing we don't like about SentinelOne.
What problems is the product solving and how is that benefiting you?
We switched from multiple products to secure/protect our endpoints to one SentinelOne suite. Better management and administration.
Straightforward and easy to use
What do you like best about the product?
It's very useful and has a great user interface
What do you dislike about the product?
Nothing that I dislike? Everything works well and smoothly
What problems is the product solving and how is that benefiting you?
Gaining visibility and protecting against known and unknown attacks
Highly Recommend SentinelOne Products
What do you like best about the product?
The S1 products do not impact the performance of our endpoints, and we have seen very few false positives. While we don't need to contact support often, our experiences with support have always been fast and helpful.
What do you dislike about the product?
We've been using the product for almost two years, and have very little negative to say about it. The only thing I wish they did better is the auto-update feature of the agents. That process is more involved than it needs to be.
What problems is the product solving and how is that benefiting you?
We needed to update our XDR protection and SentinelOne has been a great choice for us. With our prior solution, we never received anything for legitimate issues, but were constantly gettings false positives.
showing 161 - 170