We use the tool for malware protection and the XDR portion to track intrusions and possible exploitations.
SentinelOne Singularity Platform
SentinelOneExternal reviews
308 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Offers threat hunting, visibility, and malware protection in one console
What is our primary use case?
What is most valuable?
I find the product very easy to maintain and troubleshoot. Their engineers are very helpful if you need additional assistance. It's one of the best products I've used. It's easy to use from my standpoint, both for troubleshooting and with the support we get from their team if necessary.
I find its interoperability with other solutions very good. When there are issues, because everything eventually has issues, the team is very good about running logs and finding out what portion is having issues. We can either exclude a portion of it or make it work. They find a solution.
We haven't had any issues with how we ingest or correlate data across security solutions. We use APIs and things like that to ingest data. For us, we haven't had any issues with the tools we use, but I can't speak for other organizations.
We now have threat hunting, visibility, and malware protection in one console. There are other portions we don't leverage because we choose to keep them separate, like our firewall, but we could if we wanted to.
The solution has helped us reduce false positives. We still get alerts, but I think they're more dynamic now. We have fewer issues with systems. It doesn't take as many resources, so we don't have outages caused by hijacking resources. We've probably reduced our issues with that by 90 percent from the previous program we were using.
The tool has helped free up our team's time. Especially when it comes to upgrades, I went from taking several months with the previous software to getting it done in a week or two for 15,000 to 17,000 assets. It's freed up months.
While I don't track mean time to detect specifically, I know it's very quick because of the way it detects intrusions. It's anomaly-based, not signature-based. It will flag something, review it, determine whether it's a false positive or actually malicious, and then quarantine it. It's pretty instantaneous. We've averted several ransomware attempts before they could infect anything.
Our mean time to respond has decreased significantly. The response is much quicker now, especially since very little gets reverted to us for handling. The Vigilance AI portion usually takes care of most of it, determining the severity of something and whether it needs human attention.
It has helped us save costs, particularly regarding fewer infections throughout the network. While I don't have exact numbers, we've had a reduction in costs associated with reimaging machines due to malware.
What needs improvement?
It would be nice to be able to adjust the canned reports manually and choose the specific data we want to report on instead of being limited to their pre-set reports.
For how long have I used the solution?
I have been using the product for three years.
What do I think about the stability of the solution?
In terms of stability, we have no downtime from SentinelOne Singularity Complete. We may have some complications with interoperability when we deploy something new that didn't get tested, but that's usually not SentinelOne's fault. It's usually because a third party changed something that had already been whitelisted.
What do I think about the scalability of the solution?
We haven't had any issues with scalability. It scales very well from small to large. We're at 16,000 endpoints, and it's very easy to deploy and manage.
How are customer service and support?
I've contacted technical support myself. Their response time depends on the severity with which you submit the case. For low priority, it takes about a day or two. For high priority, it's within an hour or two, according to their SLA. They're very prompt.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We switched from Symantec to SentinelOne Singularity Complete mainly because of cost and technology changes. Symantec wasn't changing quickly enough as technology moved toward the cloud, and things were going faster. Broadcom was still using heavy, clunky on-premises agents that used a lot of resources. SentinelOne Singularity Complete was new, next-gen, smoother, and quicker with less downtime. They manage their end in the cloud, so we don't have to maintain our console.
How was the initial setup?
We saw the benefits immediately after deployment. The deployment was seamless, easy to learn, and easy to use—very intuitive. The initial deployment was pretty seamless and easy. It took us about six months to fully deploy, but that was because we did it in segments. We're a global organization with many different entities, so we had to do it segmented. It probably would have taken us a quarter if we had just set it out all at once.
The only maintenance we require is keeping our agents up to date. We do this manually because we go through a change approval process to ensure we don't introduce anything that will harm the system. We then test and deploy.
What about the implementation team?
We used SentinelOne's guidance, but we did the deployment ourselves in-house.
What other advice do I have?
My impression of SentinelOne Singularity Complete as a strategic security partner is that it's state-of-the-art, easy, and uncomplicated. As an engineer, I find the product easy to deploy, maintain, and efficiently. I rate the overall solution a ten out of ten.
I advise new users to read the manual before they start using it. Understand all the different modules to utilize them as intended and get the best out of them. Also, use their support if you have questions before you deploy. Get a game plan and follow their recommendations.
Great Tool
What do you like best about the product?
Easy to use and easy to implement, the system just works. We have had excellent customer support and this is used daily on hundreds of endpoints within our organization. We found Sentinel One to be feature rich and easy to integrate with our Nable RMM.
What do you dislike about the product?
Sometimes endpoints will drop out of the management even though they are connected.
What problems is the product solving and how is that benefiting you?
We use Sentinel One as a first line defense againt intrusions.
Hassle free protection withEDR
What do you like best about the product?
Easy deployment and monitoring, Easy manageble by technical staff and secure.
What do you dislike about the product?
The solution works, So no negativity on the product.
What problems is the product solving and how is that benefiting you?
Easy deployment and securing our enviroments. Easy rollbacks and all round security.
The best in business
What do you like best about the product?
What I like most is the one thing other security solutions do not have, and that is, the ability to rollback a machine to the last known stable state after a Ransomware infection. This entirely sets S1 apart from anything else in the market. It just gives you that extra level of comfort that whatever happens, you can always go back.
What do you dislike about the product?
Absolutely NOTHING!
It is everything I need in an XDR
It is everything I need in an XDR
What problems is the product solving and how is that benefiting you?
SentinelOne can help you identify vulnerabilities on all onboarded machines. This includes OS-based vulnerabilities and Application-Based vulnerabilities. It gives you a single pane of glass view on your endpoints.
Helps free up time, save costs, and reduce organizational risk
What is our primary use case?
We use SentinelOne Singularity Complete for EDR. It is a one-click recovery.
How has it helped my organization?
SentinelOne Singularity Complete stands out for its ability to collect logs from any security tool we have, bringing together all our data onto a single, unified console.
The Ranger functionality helps identify vulnerabilities in our environment.
Singularity Complete is a complete security solution that goes beyond just alerts. It provides a dashboard that displays all configured security alerts, including lateral movement, consumer attacks, and any other relevant events, on a single console for easy monitoring and response.
Singularity Complete helps free up our time and has reduced the mean time to detection.
It also helps reduce the mean time to remediation and helps cut our client's costs by 75 percent.
Singularity Complete helps reduce organizational risk and improve compliance.
What is most valuable?
The most valuable feature of SentinelOne Singularity Complete is the STAR Rules.
What needs improvement?
While our current remote access to SentinelOne Singularity Complete is achieved through publishing, having a direct GUI interface would be a significant advantage for our user and administrator team. This console access would provide a more intuitive and efficient way to manage the platform.
For how long have I used the solution?
I have been using SentinelOne Singularity Complete for one and a half years.
What do I think about the stability of the solution?
I would rate the stability of SentinelOne Singularity Complete nine out of ten.
What do I think about the scalability of the solution?
I would rate the scalability of SentinelOne Singularity Complete ten out of ten.
How are customer service and support?
The technical support is excellent.
How would you rate customer service and support?
Positive
What's my experience with pricing, setup cost, and licensing?
SentinelOne Singularity Complete is reasonably priced.
What other advice do I have?
I would rate SentinelOne Singularity Complete ten out of ten.
SentinelOne Singularity Complete stands out in the EDR market by offering a unique million-dollar guarantee, demonstrating their confidence in the product's ability to effectively protect our systems. This financial backing signifies a strong belief in its performance, something no other EDR vendor currently offers.
SentinelOne Singularity Complete is a zero-maintenance product. It's supported by their management defense research team which is working on the console update as well as the automation of the agent-client updates.
I would recommend SentinelOne Singularity Complete.
Best AI antivirus I have ever seen
What do you like best about the product?
It is an AI antivirus that monitors behavior. We use this everyday and is easy to implement. It detects any chances of getting infected and quarantines/kills malware right away. If someone tries to run a script from an elevated shell, it detects it within seconds. No one can remove it or disable it. It requires admin approval from the web console. You just click on the threat file from the web console, and we can see everything malicious about it. It has a deep visibility feature as well. Also, it offers seamless integration for ease of use.
What do you dislike about the product?
It might be annoying due to the number of false positives, but we can always whitelist the software if necessary. Once I had a real hard time to remove this software because it went into offline mode. I tried many things even contacted support to remove the software but no luck. We need to manually restart the devices in order to get latest update the antivirus.
What problems is the product solving and how is that benefiting you?
It solves advanced threat detection, provides unified endpoint security, offers real-time visibility, automates response and remediation, and integrates with existing security infrastructure, benefiting our school by enhancing security posture, reducing response times, and simplifying management.
Best EDR we have used by far!
What do you like best about the product?
EDR that constantly updates without intervention. Scans attached drives, and computers when files are downloaded with automatically. Onboarding walks you step by step to get setup and using the portal quickly and efficiently. Support is always available. Threats are stopped automatically and restored back to normal if set to protection mode vs just detection mode.
What do you dislike about the product?
threat hunting has a lot of information to digest. If computers have small harddrives sometimes the agent is disabled because it cannot update the database file needed.
What problems is the product solving and how is that benefiting you?
EDR, protecting us from users downloading or bringing malicious programs/files into our environment.
Absolutely Love SentinelOne!
What do you like best about the product?
This is the best solution out on the market!
What do you dislike about the product?
SentinelOne blocks ALOT of batch files or "automated" processes which can be a pain at times but once you know how to exclude these, it makes it so much easier!
What problems is the product solving and how is that benefiting you?
Peace of mind knowing that any malware will be stopped immediately
SentinelOne Singularity Endpoint & XDR
What do you like best about the product?
Easy to understand and use. It detects threats and provide visibility over the network. It also does threat hunting. Implementing it with other security devices is also feasible. SLA is upto mark and have strong customer support.
What do you dislike about the product?
New dashboard is a bit difficult to understand compared to the older versions.
What problems is the product solving and how is that benefiting you?
By using it across all platform from server to workstations, to MACs, to Windows, to Linux, VDI and embedded systems and on-premise. It improved operational efficiencies and saves time. Effortless operations are performed. Visibility over the network is better. Updated features gives an extra add on.
S1 has been amazing
What do you like best about the product?
How easy it is to manage end points and complete responses.
What do you dislike about the product?
How it sometimes it flags legitimate software.
What problems is the product solving and how is that benefiting you?
We have a client that has in house IT tech that has in the past fallen for malicious software S1 has solved the issue.
showing 21 - 30