We primarily use it for identifying and mitigating zero data.
SentinelOne Singularity Platform
SentinelOneExternal reviews
300 reviews
from
and
External reviews are not included in the AWS star rating for the product.
The best in class EDR, EPP Workload Protection, and IoT Control
What do you like best about the product?
SentinelOne Singularity is the best protection for Organisations to tackle modern-day threats and overcome vulnerabilities. Real-time threat monitoring is also a plus.
What do you dislike about the product?
I have no specific dislike for SentinelOne Singularity, but the False Positives are sometimes painful and cause confusion. Otherwise, it works best with the intended purpose.
What problems is the product solving and how is that benefiting you?
The biggest challenge we may face in today's ever-changing times is new forms of Threats to critical IT infrastructure and End Points; SentinelOne Singularity is solving that problem of security and threat protection for our Organization, and that too in real-time.
Quick, effective threat monitoring.
What do you like best about the product?
Lets me know immediately that a threat has been identified and sequestered.
What do you dislike about the product?
I have no complaints about the product so far.
What problems is the product solving and how is that benefiting you?
Keeping our network safe.
NIST and CMMC compliance brought to reality
What do you like best about the product?
As a small business, with no in house IT department, achieving NIST/CMMC compliance for cybersecurity seemed like an impossible task. Utilizing SentinelOne helps us reach compliance on so many of our controls.
What do you dislike about the product?
For the same things we love about SentinelOne, I could say they are things we dislike. The console is so technical, to achieve the tasks it is set out for, but makes it somewhat hard to understand/use. I'm sure anyone with a strong IT background would have no issues.
What problems is the product solving and how is that benefiting you?
We needed endpoint security, and monitoring. SentinelOne masters this, and allows us to monitor activities, software libraries, and many other responsibilities required for NIST/CMMC compliance.
Excellent AV system
What do you like best about the product?
Eaysy of management. Intuitive interface.
What do you dislike about the product?
An automatic update of the endpoint agents could be helpfull.
What problems is the product solving and how is that benefiting you?
Helps to protect our netework connected devices.
Leader and Cost Effective in Endpoint Detection & Response
What do you like best about the product?
This is one of the first product which we moved from traditional AV to EDR model, hence we have some affinity towards this product. SentinelOne is upgrading themselves towards "one click restore" which is an innovative method which is requried for current situation.
What do you dislike about the product?
Definitely not the No. 1 player, but they are striving to go to that position. If they could add insurance factors and some assurance factors prominently it would give mileage.
What problems is the product solving and how is that benefiting you?
Complete protection to all end-points, we moved in order to clean our environment from malwares, botnets, adwares, virus, trojan etc., Light weight agent is definitely a Yes.
Impressive features, great visibility, with affordable pricing
What is our primary use case?
How has it helped my organization?
SentinelOne Singularity completely has been able to automate incident response to provide peace of mind for the management.
What is most valuable?
The remediation and rollback features are pretty impressive.
What needs improvement?
I would like to see category-based web filtering.
For how long have I used the solution?
I have been using SentinelOne Singularity for about three years now.
What do I think about the stability of the solution?
The stability is excellent.
What do I think about the scalability of the solution?
There is high scalability currently. We have around two hundred individuals in the organization.
How are customer service and support?
Technical support is on point and very good.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We previously used Kaspersky but it lacked visibility onto zero. That was the main reason that we switched SentinelOne Singularity.
How was the initial setup?
The initial setup was very straightforward and convenient and it took a couple of minutes to deploy.
What about the implementation team?
We are certified and our engineers can do the deployment in-house.
What's my experience with pricing, setup cost, and licensing?
The pricing appears to be pretty affordable.
What other advice do I have?
I would rate SentinelOne Singularity a nine out of ten.
I feel secure with SentinelOne
What do you like best about the product?
I love being able to sleep at night knowing that SentinelOne has my network and endpoints secured.
What do you dislike about the product?
There are a few False-Positives that I've had troubles figuring out - and there are a few Kiosks that aren't running properly since we installed.
What problems is the product solving and how is that benefiting you?
It stops the RANSOMWARE and other viruses that our previous Anti-virus was not able to detect nor stop.
SentinelOne Singularity is an AI-driven EDR/XDR platform that detects and responds to threats in real time.
What is our primary use case?
Our main use cases are endpoint protection, EDR, and automated threat response for users and servers. We also use it for ransomware protection, threat hunting, and incident investigations. One thing that helped us a lot is the single-agent approach, because we don’t need multiple tools or agents installed on every machine.
It reduces complexity and makes deployment and updates much easier across different entities. The automated isolation of compromised endpoints has also saved a lot of manual effort. Overall, we use it to improve detection, response, and visibility on all endpoints with minimum overhead.
How has it helped my organization?
SentinelOne has had a very positive impact on our security posture. We see threats being stopped in real time without waiting for manual action. This has reduced the stress on our team and lowered the number of incidents we need to handle directly.
The automatic isolation and remediation really helped us shorten response time. The ransomware rollback feature also gives peace of mind, especially in critical environments.
We now have much better visibility into what actually happened during an attack, which helps with investigations and closing gaps. Overall, it has saved us time and improved our confidence against modern threats.
What is most valuable?
The best feature for us is the autonomous response. We don’t have to wait for a security analyst—SentinelOne isolates the device, kills the malicious process, and stops lateral movement automatically. The ransomware rollback capability is also something we really value because it gives confidence that even if something slips through, we can undo the damage.
The visibility and forensic details are excellent; it actually tells a story of what happened instead of just showing alerts. This helps our investigations and audits a lot.
Performance-wise, the agent is lightweight, and deployment was very smooth across different entities. Overall, the combination of prevention + response + forensics in one platform has been the biggest advantage for us.
What needs improvement?
SentinelOne works very well overall, but there are a few areas that could improve. The reporting and dashboards could be more customizable, especially for audit and compliance needs. Sometimes the UI feels a bit complex when you’re trying to drill down quickly.
More built-in analytics and ready-made reports would help a lot. Also, alert tuning could be simpler, because in some cases we still get false positives that require manual review.
It would also be great to see more visibility into identity-related attacks in future releases. Overall, nothing critical, but these improvements would make the platform even stronger.
For how long have I used the solution?
We have been using SentinelOne Singularity Complete for roughly four years in our production environment.
What do I think about the stability of the solution?
It is a very stable solution.
What do I think about the scalability of the solution?
It is a scalable solution. Everyone is using this solution in our organization, with almost 2000 users. It's mandatory for us to install this EDR solution on all the inputs.
How are customer service and support?
Customer support has been generally good for us, and most questions are handled properly. The platform is stable, so we don’t need support very often. For normal issues, the response time is fine.
However, for complex cases—especially agent-related problems—we sometimes need remote assistance, and that level of support is not included in the basic subscription. In those situations, the resolution can take longer. Overall, support is helpful but could improve in advanced troubleshooting.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Yes, we previously used Trend Micro. We switched to SentinelOne because we wanted stronger detection capabilities, faster automated response, and better visibility into advanced threats. SentinelOne’s AI-based approach and single-agent design were important factors for us, along with the ability to automatically isolate and remediate incidents without relying completely on manual action.
How was the initial setup?
The initial setup was straightforward. We use the SaaS model, cloud-based solution, and console on cloud, so it's very straightforward. I rate the setup a 4.8 out of five, and I would give it a five if they added application control.
What was our ROI?
Yes, we have seen clear ROI after moving to SentinelOne. The biggest saving has been the reduction in manual investigation and remediation time. Since most incidents are handled automatically, our team spends less time reacting and more time on proactive work.
We also avoided several potential ransomware impacts, which in itself protects us from large financial and operational losses. The single agent and tool consolidation also reduced the need for multiple products and maintenance efforts.
Overall, the time saved, lower incident impact, and improved security confidence clearly justified the investment.
What's my experience with pricing, setup cost, and licensing?
Pricing is okay and costs almost the same as Trend Micro. We have a partnership with SentinelOne, and it costs about $30 to $35 per user per year.
Which other solutions did I evaluate?
We also evaluated Malwarebytes and CrowdStrike before choosing SentinelOne. Malwarebytes was simple to use but it didn’t provide the same level of autonomous response or forensic depth that we needed. CrowdStrike was strong in detection, but overall SentinelOne offered better rollback, a single-agent approach, and more automation.
In the end, SentinelOne gave us a more complete platform for prevention, response, and investigation rather than just detection. The balance of features, automation, and usability was the main reason we selected it.
What other advice do I have?
I rate this solution a ten out of ten. SentinelOne is the next-generation EDR solution. Once it is installed, no action is required from the end user. It's machine learning and AI integrated, and 95% of threats are blocked. It's a great product.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Great Security Product
What do you like best about the product?
The confidence that SentinelOne gives me that my customers' endpoints are protected. The ease of configuration and deployment. The fact that we seldom need support. The level of information that is provided if there is a detection.
What do you dislike about the product?
From time to time we have had issues uninstalling the SentinelOne agent. On (very) few occasions, the agent has not uninstalled properly and then it's quite a hassle to remove if that happens.
What problems is the product solving and how is that benefiting you?
SentinelOne has helped our company better and more efficiently protect our customers' critical systems. Also, it has given us better visibility into security vulnerabilities, threats, and events across our customers' sites.
One of the best realtime EDR
What do you like best about the product?
The automated real time detection and blocking of malicious files and commands. It helps to do the deep analysis of the logs and helps to get a detailed traffic analysis.
What do you dislike about the product?
There is nothing as such now as it is a great EDR.
What problems is the product solving and how is that benefiting you?
It helps to do a deep analysis of the logs in the endpoints and helps to find out the detailed activity happening in the edr. It detects threats in a dynamic and static way and helpts to mitigate them. It helps to personalize the tool according to the client needs.
showing 241 - 250