Sign in
Sign in
or
Create a new account
Agent Mode
Categories
Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

SentinelOne Singularity Platform

SentinelOne

Reviews from AWS customer

27 AWS reviews

External reviews

322 reviews
from and

External reviews are not included in the AWS star rating for the product.

5-star reviews ( Show all reviews )

    Dev Reshwal

Endpoint protection has improved threat response and incident rollback across thousands of devices

  • April 03, 2026
  • Review from a verified AWS customer

What is our primary use case?

My use cases for SentinelOne Singularity Complete are mainly for endpoint security to detect, prevent, and respond to cyber threats in real time. SentinelOne Singularity Complete serves as the first use case for endpoint security.

Our organization does not have the Ranger functionality because our customer does not require it.

We have integrated SentinelOne Singularity Complete with Shuffle SOAR technology, which is a most powerful tool.

Our organization is an MSSP provider with 10+ customers for whom we are providing security. We have 8,000 endpoints installed for our customers, and we are a 24/7 team providing security to our clients.

We have applied the protect policy and take basic analysis, which takes a couple of minutes before we raise the alert.

Regarding Purple AI, we are using it to identify the IOC. We have limited access to Purple AI, but we are using it for threat hunting purposes to find the IOCs.

What is most valuable?

What I like the most about SentinelOne Singularity Complete is the rollback capability for Windows systems. The TAC team and VSS rollback are the two features I appreciate most about SentinelOne Singularity Complete.

The response of the TAC team is very good. If SentinelOne Singularity Complete did not have a TAC team or support team, I would say it would be very lacking. When we get stuck anywhere, whether in any admin task or any threat hunting or investigation path, they are very helpful because there is a human voice on the other side helping us.

What needs improvement?

What I dislike about SentinelOne Singularity Complete is the high number of false positive alerts we get because our client sends us mail within one week stating that the CPU is highly utilized and resource consumption is high.

Regarding data privacy and security when using Purple AI, I can say that security-wise, it is good, though anyone can exploit that one.

For how long have I used the solution?

I have been using SentinelOne Singularity Complete for two years.

What do I think about the stability of the solution?

Stability-wise, SentinelOne Singularity Complete is very good. It runs continuously, and if our endpoint is online, it will protect our endpoint 100 percent.

What do I think about the scalability of the solution?

Regarding scalability, I heard that one of our competitor organizations deploys 15,000-plus endpoints for their customers. Scalability-wise, SentinelOne Singularity Complete is very good in that 15,000-plus endpoints are managed on one management console, which is double of our organization's deployment.

How are customer service and support?

I have contacted the technical support or customer support, and this is the most significant reason we are using SentinelOne Singularity Complete. They are very helpful because there is a human voice on the other side helping us.

If you compare with CrowdStrike, our organization has shifted to SentinelOne Singularity Complete only because of that TAC team or support team.

Which solution did I use previously and why did I switch?

We are using CrowdStrike, and in CrowdStrike, we are using Charlotte AI. If we raise a ticket on the community portal, within one or two hours, we get a reply from the team, and they are very helpful and can also come to the call. However, with CrowdStrike, I do not prefer it from my perspective as compared to SentinelOne Singularity Complete.

How was the initial setup?

For the initial deployment of SentinelOne Singularity Complete, I can say that it is very easy. We just need to create one tenant for the SentinelOne Singularity Complete platform. SentinelOne Singularity Complete setup is very easy.

What about the implementation team?

Maintenance is not actually required from my end because we are an MSSP provider, so no maintenance is necessary.

What was our ROI?

I can say that when an alert comes, we already have the protect policy and protect mode. After applying the protect policy, everything is taken care of by SentinelOne Singularity Complete.

What's my experience with pricing, setup cost, and licensing?

I do not have knowledge about the pricing for SentinelOne Singularity Complete because our sales team handles that. SentinelOne Singularity Complete is very valuable to me.

Which other solutions did I evaluate?

I would give SentinelOne Singularity Complete a rating of 10 out of 10 because you can compare it with CrowdStrike, and I can say that SentinelOne Singularity Complete is top tier.

What other advice do I have?

We are managing 7,000 to 8,000 endpoints for clients, and the setup is very easy. I have given SentinelOne Singularity Complete an overall review rating of 10 out of 10.

Which deployment model are you using for this solution?

On-premises

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)

    Manoranjan Rana

Advanced endpoint protection has reduced alerts and has enabled rapid rollback and threat response

  • March 02, 2026
  • Review from a verified AWS customer

What is our primary use case?

My usual use cases for SentinelOne Singularity Complete revolve around EDR and XDR, focusing on protecting end machines, including servers, particularly for users with critical applications running on endpoints. It is crucial for them to know how to protect those systems. If at any point phishing or an attack happens, I can provide data protection and restoration to my customers. Those are the primary use cases.

The feature I find most valuable in this solution is its rollback feature.

What is most valuable?

The rollback feature is incredibly valuable because if my organization gets hacked, I can restore complete data from up to half an hour back by clicking a one-click rollback option available in SentinelOne Singularity Complete.

SentinelOne Singularity Complete's ability to ingest and correlate across my security solutions is significant. It correlates with all other services, for instance with Netskope or Forcepoint. It also correlates with Proofpoint and many other endpoint machines like CyberArk, which is PIM/PAM, along with Netskope, Forcepoint, and Proofpoint, which involve DLP.

SentinelOne Singularity Complete helps me consolidate my security solutions overall, though the consolidation only happens at the endpoint level, not at all levels.

My impression of the Ranger functionality in SentinelOne is that it is a good product that is helpful for my AD environment. It effectively protects my AD machines in that environment.

In my experience, SentinelOne Singularity Complete helps reduce alerts significantly. If any machine comes up, I will receive a notification. So in a day, I might get a thousand emails or alerts. What Singularity does is filter those alerts and provide me with the top 10 or top 15 threats to understand and mitigate the risk. That is a lot of help from Singularity. The reduction in alerts has been around 60 to 70%.

What needs improvement?

SentinelOne is definitely improving, with a lot of new versions coming out and patches happening on a regular basis. They are acquiring a lot of AI companies and conducting R&D backend work, which is ongoing. By the end of this year, I believe a fully-fledged product will be available. One area needing enhancement is on the commercial front, especially considering the major competition with CrowdStrike. Hence, we must address some challenges, at least for the Indian market.

For how long have I used the solution?

My experience with SentinelOne Singularity Complete spans four years.

What do I think about the stability of the solution?

I can rate how stable and reliable SentinelOne Singularity Complete is as a 9.

What do I think about the scalability of the solution?

I can rate the scalability of SentinelOne Singularity Complete as a 10. Whether it is 50, 5,000, or 5 lakh endpoints, it remains scalable.

How are customer service and support?

I do not often communicate directly with the technical support of SentinelOne, but my technical team does.

I would rate SentinelOne's technical support as an 8. Sometimes I get a response from them, but at times they may not have answers and defer to the engineering team, which can prolong the resolution time beyond expectations for customer satisfaction. Overall, it takes a couple of days longer than desired, but the rest of the service is good.

Which solution did I use previously and why did I switch?

Before my experience with SentinelOne Singularity Complete, we worked with different technologies such as Trellix and Trend Micro.

How was the initial setup?

I usually participate in the initial setup and deployment of SentinelOne Singularity Complete.

I can describe the initial setup process, but I am not deeply involved in the technical details because my technical team takes care of that. I am mainly focused on the business side.

From my perspective, the initial setup is straightforward. During a demo POC, they showcase the complete process, and the presentation along with the dashboard walkthrough helps the customer partner understand everything. It is not that complex.

What was our ROI?

SentinelOne Singularity Complete has positively impacted my company by being hassle-free. It provides good ROI, which stands for return on investment. It gives the best security, ensuring that if anything happens, I can utilize the rollback feature. Moreover, it offers a lot of integration scope with other solutions. The agent is so lightweight that it does not cause any system slowness when in use, making everything good.

The ROI I have experienced is straightforward. If I want to buy it for one year or three years, safeguarding it for three or five years down the line means my investment reduces. That is nothing but the ROI. Additionally, if I engage five engineers for this project and implement SentinelOne, then only one resource is needed to manage the dashboard and criticality alerts. This is how ROI materializes in my organization.

Which other solutions did I evaluate?

The decision to switch from the previous solutions was primarily driven by customer base comfort, customer adoption, and market responsiveness. Since SentinelOne is relatively new in India, having been around for five years, the customer adoption rate and ease of use made it easier for many customers to agree to replace Trellix, Trend Micro, and others. This led to a significant switch on their part.

What other advice do I have?

SentinelOne Singularity Complete has definitely helped free up employees for other projects and tasks, both for me and for my customers.

SentinelOne Singularity Complete has greatly aided in reducing my mean time to detect. It is actually very fast because the agent works as an AI agent. It detects any kind of malicious activity or threat in a pretty fast way. It is very fast, and as it is an AI agent, it runs automatically, ensuring rapid detection.

Regarding the mean time to respond, my time is getting reduced by 80, 85, or even 90 percent, which is good.

When considering stability and reliability, if CrowdStrike can replace Trend Micro, then similarly, if SentinelOne can replace Trend Micro and Trellix, the same way CrowdStrike could potentially replace SentinelOne, indicating that the market remains highly flexible.

Based on everything I have described, I rate SentinelOne Singularity Complete as a 10 because I have to promote it, so I present it as my best product.

    Akash Das Barman

Log analysis has become faster and more accurate, enabling precise threat detection

  • February 16, 2026
  • Review from a verified AWS customer

What is our primary use case?

My use case for the solution is scientific research involving legacy software on older OS versions for complex overflows.

What is most valuable?

The best features of Singularity Platform are AI-powered autonomous threat detection and extended detection and response, along with cloud workload protection.

Regarding the real-time personalization features, I find that it helps me in detection. It assists me to find detections and furthermore evaluate the detections. It helps me a lot because it is completely beneficial, showing fewer alerts than competitors. In other competitors, alerts are excessive, but here the alerts are fewer rather than too many. It is much more useful for me compared to other products.

The real-time monitoring capabilities are much faster. I would say that it is significantly faster in decision making. In my previous experience with other log analysis tools, whether paid or free, the processing time was excessive, but here the processing time is very minimal and I get what I need very quickly.

What needs improvement?

Regarding areas for improvement in Singularity Platform, I would say the data security posture and control over sensitive information could be enhanced. If the control were more robust, then it would be better. For instance, when I analyze a log using Singularity Platform, the logs I see are clear, but if they were more descriptive, it would be much better. For example, when I find a log suspicious, if it automatically points out that a particular point in the log at a specific timing or frame is looking malicious, it would be easier for me. I would not have to go through many logs to find this information.

For how long have I used the solution?

I have been using Singularity Platform, which refers to SentinelOne, for a few months, approximately five to six months.

What do I think about the stability of the solution?

Regarding stability, I have not encountered any downtime. Depending on my system where I use it, I have seen that even with less RAM, it does not lag. In other SIEM tools, they give lags and glitches, but I have not found any bugs. It is working well.

For stability, I would rate it a nine out of ten.

What do I think about the scalability of the solution?

Singularity Platform is scalable. On scalability, I would rate it between eight and 8.5.

How are customer service and support?

For technical support, I have not needed any technical support until now, so I cannot answer clearly. However, I hope it will be nice because if the application is working so well, why would I need technical support? I think if I need technical support, it will be good.

How would you rate customer service and support?

Negative

Which solution did I use previously and why did I switch?

I have tested Splunk Enterprise edition and the paid editions, and I have also tested Wazuh. I have tried some paid tools, but I have found that Singularity Platform is far better than others. As a log analyst and SOC analyst, I find it better than others.

How was the initial setup?

The deployment is easier. When I compare it with other SIEM tools, it is much easier. There are not too many settings I have to adjust. For example, with Splunk, it takes too many settings to set up on AWS, but here it does not require too many settings and it does its work well.

What about the implementation team?

Initially, we used two people, and then we expanded to three people using it.

What was our ROI?

If I estimate how much time it has saved me, I would say it has saved almost 30 to 40 percent of time compared to other tools.

What's my experience with pricing, setup cost, and licensing?

In terms of pricing, I will say that it is worth it for me. Living in India, it is natural for us to prefer things a little cheaper, but whatever the price is, it is worth it. However, as a SIEM tool, if it were priced less, many more people could explore it.

What other advice do I have?

Regarding the fraud detection feature, I did not use it until now, but I have explored the features of fraud detection.

In fraud detection, the logs which are generated and captured are much clearer, meaning clarity is very good in respect to other platforms. I found that the clarity is very good. It also minimizes false positives, which is critical in some situations. Furthermore, the method is top-performing with a wide range of data sets and evaluation matrices.

Maintenance is necessary with Singularity Platform, as artificial intelligence is implemented, so it is 100 percent needed. It depends on the user and the application totally, but the maintenance is needed.

My feedback is that I will surely recommend it. I have already recommended it to many of my colleagues and I will continue to do so in the future. If it is giving us benefits, then why would I not recommend it? I would give a rating of 10 out of 10 for recommendation.

Which deployment model are you using for this solution?

Public Cloud

If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?

Amazon Web Services (AWS)

    Scott J.

S1: Easy to Use and Great at Catching Things

  • February 13, 2026
  • Review provided by G2

What do you like best about the product?
S1 has been pretty decent at catching things and it is pretty easy to use. I like the fact that I get plenty of details and that we get quick alerts.
What do you dislike about the product?
It catches normal IT admin tools still no matter what we whitelist. It gets annoying but we continue to live and ignore the alert. It is predictable so we know it is false.
What problems is the product solving and how is that benefiting you?
It is quick and reliable and not calling a ton of false positives or missing legit threats keeping is safe and secure in today's dangerous environment.

    Mohit Dhingra

Security correlations have boosted compliance operations and improve user productivity

  • January 20, 2026
  • Review from a verified AWS customer

What is our primary use case?

My main use cases for Singularity Platform are compliance and security operations.

What is most valuable?

I have found the correlations in Singularity Platform to be the most valuable. The main benefits the end-user gets from Singularity Platform are, first, the program itself being very small, and then we get better output from applications running on their systems. The output of the users has gone up 50%, although I don't remember other benefits at this time.

What needs improvement?

There are a lot of false positives in that, which is why I'm not working with it. The use of the fraud detection feature in financial services in Singularity Platform depends on the compliances that are applicable to the organization, so it may be useful for some and may not be useful for others. I did that by myself, not with the help of Singularity Platform. In my opinion, the real-time monitoring capabilities in Singularity Platform sometimes work and sometimes they don't, because there are a lot of false positives and people use unsigned applications which get deleted or quarantined by the product. It's not a 100% foolproof solution.

A point for improvement for SentinelOne is that the false positives are huge since people in India, at least, are using homegrown applications which get blocked. Right now, Singularity Platform is working fine, but people have concerns about enhancements like website monitoring that can be done through Singularity Platform itself, so they don't need to buy any SASE products for people working from home to control their browsing. If that feature can be included, it will be a big advantage.

For how long have I used the solution?

I have been working with Singularity Platform for almost two years now.

What do I think about the stability of the solution?

I had some issues with that.

What do I think about the scalability of the solution?

I would rate the scalability a nine.

How are customer service and support?

Technical support will always be between six and seven.

How was the initial setup?

The initial setup for Singularity Platform is very simple; the dashboard is quite simple, and the agents' installations are very simple, like one click, I would say.

What's my experience with pricing, setup cost, and licensing?

For pricing, I would say it's a six. It could be cheaper, as I understand.

Which other solutions did I evaluate?

The main competitor for Singularity Platform is CrowdStrike at number one, and the second is Trellix, which is coming up very fast. The leader on the market is still SentinelOne, but if they don't add some add-ons to their product like Trellix and CrowdStrike have, they may lag very soon. If we do only apple-to-apple comparison on Singularity Platform, then I'll give it ten marks.

What other advice do I have?

Singularity Platform functions as a security information and event management solution, and that is an inbuilt part of it. I believe in the correlations that I get because we work on it, but we don't use the Purple AI part of it. I'm not able to get clarity regarding the real-time personalization feature in Singularity Platform. I do not use the real-time personalization feature in Singularity Platform. It is a matter of false positives when people use it in my area.

Regarding the impact of Singularity Platform on supply chain processes, I don't have much on it, but it's a good product and the tracking is better with the log capturing and the data that we get from it. The customer does require customizations on the dashboards as per the requirement of their organizations; if it's manufacturing, medical, or financial institution or banking, then they will have different requirements for their dashboards, which are yet not available, so we have to actually build up those dashboards for them. I can recommend Singularity Platform to other users. I have provided this review a rating of 9.

    Harshul S.

Strong - Reliable Endpoint Protection with Automation

  • January 13, 2026
  • Review provided by G2

What do you like best about the product?
The best thing is how quickly it detects and blocks the threats without any manual work , agent is very light and doesn't slow down the system and it has very reliable real time threat monitoring. Another great part is Storyline, which shows the chain of events in a simple way
What do you dislike about the product?
Just a little complicated if you are new to the platform and some advanced options are hidden for the extra licensing which will increase the cost , and no readymade templates , customization is not easy
What problems is the product solving and how is that benefiting you?
helps us detect threats early and responds automatically which saves a lot of time and energy and also isolates the infected device and kill any harmful processes and rolls back the changes as well, which will reduce the impact of any attack

    Joevanne V.

Innovative Features That Set Sentinel One Apart

  • January 06, 2026
  • Review provided by G2

What do you like best about the product?
Sentinel One has made significant progress and introduced a range of new features, setting itself apart from other solutions in the EDR space. Customer support has been great throughout the deployment process and after implementation. The ease of use can use some improvement as the UI can be convoluted making everyday use a bit complicated.
What do you dislike about the product?
Sentinel One's user interface is quite complicated and not very intuitive. Additionally, the agent often leads to noticeable performance problems on endpoints and tends to produce a large number of false positives.
What problems is the product solving and how is that benefiting you?
Endpoint detection, combined with their managed detection and response service, has been beneficial for us. The S1 team handles and triages the large volume of alerts generated by the tool, which enables us to concentrate on other projects and our daily responsibilities.

    Colin B.

Outstanding Security Solution with Seamless Compliance

  • December 12, 2025
  • Review provided by G2

What do you like best about the product?
SentinelOne was the only player in the market willing to sign a business associate agreement and ensure HIPAA compliance. I also appreciate the really great price they offer considering these features. SentinelOne Singularity was willing to work with us despite our smaller size and heightened compliance requirements, whereas some other companies wouldn't even quote us given our limited number of users. I found the initial setup to be very easy.
What do you dislike about the product?
None, we love it.
What problems is the product solving and how is that benefiting you?
I use SentinelOne Singularity to fulfill compliance requirements, protect endpoints and our network. It offers great pricing and signed a business associate agreement. They were one of the only vendors in the space that would sign a BAA and for HIPAA compliance, and one of the only vendors willing to quote us despite our small size.

    Parag R.

Effortless to Use with an Informative, Well-Designed Dashboard

  • December 10, 2025
  • Review provided by G2

What do you like best about the product?
Easy to use, well-designed, and informative dashboard.
What do you dislike about the product?
I don't have any particular dislikes, though I do think certain areas could definitely be improved.
What problems is the product solving and how is that benefiting you?
The product has done an excellent job of securing all our endpoints, delivering impressive results.

    Shashank K.

Autonomous AI Response and Ransomware Rollback Are Game-Changers

  • November 21, 2025
  • Review provided by G2

What do you like best about the product?
Autonomous ai response , ransomeare rollback storyline
What do you dislike about the product?
There’s really nothing to dislike about this product, although I do find the pricing to be a bit on the higher side.
What problems is the product solving and how is that benefiting you?
This platform offers a single dashboard to manage all endpoints and servers, making it easy to monitor everything in one place. Its storyline analysis feature is helpful, and I haven't experienced any system lag. The tool also consolidates various functions and includes ransomware rollback, which adds an extra layer of security.

showing 1 - 10