We used SentinelOne Singularity Cloud Security for approximately one year during a nine-month period. We attempted to onboard it and used it for application security and to track vulnerability management. However, as we are part of the Danaher organization and one of the operating companies under it, they decided to move to a different vendor, resulting in this short period of usage.

SentinelOne Singularity Cloud Security was implemented across our multi-cloud infrastructure, with all of these infrastructures integrated into the platform. The solution pulled all accounts and subscriptions from AWS and Azure, providing a consolidated view of our entire infrastructure. Within those infrastructures, it ran agentless scanning and could identify any vulnerabilities, malware, or risks associated with our infrastructure resources.

SentinelOne Singularity Cloud Security was user-friendly and not difficult to understand in terms of how the application works. The integration process was pretty straightforward. We integrated with AWS, Azure, and Google, though integration with Google required significant workarounds involving Terraform. Once the integration was completed, the process became straightforward. The onboarding process for accounts was somewhat tedious, but apart from that aspect, everything was straightforward.

The visibility provided by SentinelOne Singularity Cloud Security around infrastructure was very valuable. The platform has levels that notify you of information-level risks, and these notifications increase as risks escalate, such as when malware is detected. The system continuously defines and alerts you about risks. There are mechanisms where you can integrate with messaging tools and notifications according to your preferences, which helps you get notified on a priority basis. You can configure how often you want to receive notifications based on whether a risk is medium or high priority. We were working on configuring these features when we stopped because we were moving to another tool.

From a security operations perspective, SentinelOne Singularity Cloud Security played an important role. I work with the infrastructure team and closely work with the Infosec team, which is the primary security team. They relied on all the risks and alerts from the platform and worked on how to remediate them and determine whether patching was required. All remediation decisions were based on the initial visibility of any infrastructure risk provided by this application.

The secret scanning feature in SentinelOne Singularity Cloud Security is very important. When we create new accounts or onboard new accounts for any business unit, we gain visibility into what exactly that team is doing and what risks are associated with their activities. As a platform engineer, I work with multiple business units who want to work on Kubernetes or Docker solutions in test environments or sandboxes. When we create an account for a business unit without segmentation around what connects to what, SentinelOne Singularity Cloud Security runs scanning and provides visibility. For example, if a developer creates a vulnerable Jenkins instance, the SOC team and I get a better view of the risks associated with instances that the developer team is working on, even though the developers themselves may not be aware of those risks.

We did not try to use the threat investigations feature from SentinelOne Singularity Cloud Security.

Drift detection with respect to infrastructure code is important. When somebody makes changes to infrastructure code, it creates a drift and lets you know what changes have been made at the infrastructure level.

The first downside of SentinelOne Singularity Cloud Security was the onboarding process, which was very challenging and took a lot of time. We faced many challenges around onboarding accounts. However, once we got past that initial phase, everything became pretty straightforward and we did not have any issues.

We used SentinelOne Singularity Cloud Security for approximately one year during a nine-month period.

I have not observed any lagging, crashing, downtime, or any sort of instability with SentinelOne Singularity Cloud Security.

We did not attempt to scale extensively with SentinelOne Singularity Cloud Security. As of the time we used it, the application was working fine. Since we did not use it for a longer period of time, we did not face any challenges in terms of scalability.

The maintenance part of SentinelOne Singularity Cloud Security was not very challenging. The platform had some bugs in between, but when we reached out to support, they helped us and indicated that the issue would be resolved. They could reach out to the engineering team and provided us with a resolution in one to two weeks if the bug was not critical. We did not face any challenges with support or maintenance.

The speed of opening a ticket with SentinelOne Singularity Cloud Security support is good. However, there were some cases where getting a support agent on a call was a little difficult.

We moved to another application after discontinuing SentinelOne Singularity Cloud Security. We are now using Palo Alto's application called Prisma. Prisma is also going to be rebranded into Cortex, which is probably going to be released next year. Currently, all operating companies under Danaher, which we are part of, are using Palo Alto Prisma.

The company went with Prisma because within multiple operating companies, there is a significant footprint of Palo Alto devices for firewalls and endpoint firewalls on-premise. Since Prisma is also a Palo Alto product, it integrates natively with their existing applications. SentinelOne Singularity Cloud Security operated through the cloud, while Prisma also provides risk assessment for on-premise devices, which is an additional capability. This is the reason why Prisma is preferred currently.

I was not part of the onboarding process, so I do not know how difficult or challenging the implementation was. However, I did not observe any issues or discussions within the team indicating that implementation of SentinelOne Singularity Cloud Security was difficult.

I have not tried using the Offensive Security Engine feature. My overall rating for SentinelOne Singularity Cloud Security is seven out of ten.

My use case for SentinelOne Singularity Cloud Security was mostly for cloud security, to identify vulnerabilities in the environment and to secure important sensitive data. These were the two primary use cases.

SentinelOne Singularity Cloud Security improved our risk posture significantly. There was a very great improvement that I can definitely confirm.

SentinelOne Singularity Cloud Security helped reduce our mean time to detect and mean time to remediate.

The inclusion of proof of exploitability in SentinelOne Singularity Cloud Security's evidence-based reporting is quite important to me, as they were quite useful.

Regarding its evidence-based reporting for helping prioritize and solve the most important cloud security issues, it mostly relates to our VMs running on GCP, which was the most important use case for us. I assess this agentless vulnerability scanning for vulnerability discovery across my cloud infrastructure as good; they frequently provide us with existing vulnerabilities, so overall, it was great to work with.

SentinelOne Singularity Cloud Security helped to reduce the number of false positives. I was using automated malware scanning for S3 buckets in SentinelOne, and we were able to resolve quite a good number of use cases with that, so it was pretty helpful.

SentinelOne Singularity Cloud Security improved collaboration among our cloud security teams, application developers, and AppSec teams. We were able to collaborate with different teams, sharing information about vulnerabilities related to development, explaining the actual problems, how they could be resolved, and how they could be verified first. This collaboration helped save engineering time, approximately three to four hours.

I appreciate its ability to scan the entire environment and fetch all items that are not configured properly, which is one of the best capabilities. It also suggests what the actual configuration should be, notifies instantly about any information that is leaked, and regularly gives updates about vulnerabilities that are present in the market.

SentinelOne Singularity Cloud Security is quite easy to use; there is not much complexity. The UI is quite user-friendly, making it very easy to use.

One area that could be improved in SentinelOne Singularity Cloud Security is their policies; the way they have configured the policies could be enhanced. There could be a better way to configure custom policies, which is one aspect that I feel can be improved further.

I used this solution for two years.

In my opinion, it is stable.

It is a scalable solution.

I would rate my experience with the technical support of SentinelOne Singularity Cloud Security as eight out of ten.

I did not use a different SentinelOne solution or solutions from other vendors.

I was not involved in the deployment of the solution or the initial setup of SentinelOne Singularity Cloud Security.

We saw a return on investment with SentinelOne Singularity Cloud Security. The aspects where I have seen ROI were mainly in time-saving, as it saved considerable time in identifying vulnerabilities, testing vulnerabilities, and it helped in preventing quite a few incidents that could have led to major issues.

I think the pricing of SentinelOne Singularity Cloud Security is a bit high.

I would rate SentinelOne Singularity Cloud Security an eight out of ten.

As an engineer, I'm using the solution for managing infrastructure and security posture management.

It's primarily for cloud infrastructure, data center infrastructure, and security posture management, but it also provides other capabilities such as infrastructure-as-code scanning and detects hardcoded secrets in the source code, including for EKS, DevOps tools, etc.

Evidence-based reporting helps us to prioritize and solve critical security issues. The new visualization feature demonstrates how an attacker can enter the system, highlighting the potential path that can be exploited and outlining all the steps the attacker could take. With that visibility, we can ensure the perimeter is strong and attackers cannot enter, thus reducing the risk. It has helped us prioritize issues.

The visibility into how an attack could happen is valuable. For example, it highlights the system vulnerability and outlines where an attack could propagate. The visualization helps me to prioritize remediation, and if I don't know where to start, I can check to see the score that enables me to prioritize issues.

I am using infrastructure-as-code scanning, and it's one of the useful features. In pre-production, it identifies embedded secrets and misconfigurations, including issues with Kubernetes or some privileged containers. This feature allows us to pass the audit and secure IaC code so that it isn't easily exploitable by attackers. We can more proactively work to identify and resolve vulnerabilities by using the dashboard and the alerting system that SentinelOne provides.

It helps us with audits and compliance. We can show the compliance in percentage. We can confidently say that our company or infrastructure is very secure. It has improved our security posture by 30% to 35%.

It has reduced our false positives by 30%.

It has helped teams collaborate better. The security team manages SentinelOne Singularity Cloud Security, and when it flags vulnerabilities, they are forwarded to DevOps for remediation. Previously, we needed to identify and report the issues, but there would be lapses in communication. Now, there is a centralized dashboard that anyone can look at and see the open issues and work on them.

I go to the dashboard on a daily basis. The UI and the widgets are what I personally appreciate. I find it easy to use. If anyone is a beginner or new to this industry, they'll be able to understand how to use it for their use cases.

There is scope for more application security posture management features. Additionally, the runtime protection needs attention.

I've been using the solution for around 1.2 years.

It is stable. I would rate it a nine out of ten for stability.

The scalability of SentinelOne Singularity Cloud Security is more than Prisma Cloud, and I would rate its scalability a nine out of ten.

We have 17 users working with this solution.

I would rate their technical support a nine out of ten.

Prisma Cloud is more expensive. The stability and scalability of SentinelOne Singularity Cloud Security are better than Prisma Cloud.

It is deployed on the cloud and also in a data center. My cloud is on Azure, and the data center is running in a different location. It's easy to deploy SentinelOne Singularity Cloud Security; it took me around two to three days to deploy it, and some members of the customer support service helped us to deploy this on both locations.

It does require maintenance, but it's not done by my team. There's a different team called InfoSec that handles this maintenance part.

It helped us to secure our infrastructure and applications on the cloud side.

We get notified of any issues immediately, reducing our mean time to detect and remediate by 30%. It saves money and time.

I don't handle the price part, but it isn't more expensive than Palo Alto Prisma Cloud. It's not cheap, but it is worth the price.

I would definitely recommend this product to other members, vendors, or users, as it covers security posture management, auditing, documentation, and compliance management.

I would rate SentinelOne Singularity Cloud Security a nine out of ten.

The primary use of SentinelOne Singularity Cloud Security involves cloud security, posture management, networking, and EKS. I am trying to solve Security Posture Management with this solution.

The best features are audit and compliance monitoring, along with vulnerability assessment, security, and the UI.

I have improved my ability to protect workloads such as containers, serverless, and Kubernetes through serverless functions.

SentinelOne Singularity Cloud Security has helped protect the serverless environment more effectively. There was an incident where my developer mistakenly made my repository public, and SentinelOne Singularity Cloud Security gave me an alert within 25-30 seconds, which helped me address the issue in a minimum time period.

My mean time to detect has been reduced by 30%.

SentinelOne Singularity Cloud Security's automated malware scanning for S3 buckets has reduced my security response time by 10 to 20%.

The solution has had a positive effect on the collaboration between cloud security application developers and AppSec teams. When EKS application teams use the infrastructure, the cloud team can identify vulnerable points and collaborate through Jira, which they follow up on.

The solution saves 40% of my time.

The improvements I have seen are mainly in the dashboard and everything related to EKS. From the Kubernetes perspective, the alerts are more detailed. I would add real-time protection as a feature.

I have been using this solution for almost one year.

I would rate the stability of the solution as nine out of ten.

I would rate the scalability as nine out of ten.

I would rate the technical support as nine out of ten.

I did not use any other product before using SentinelOne Singularity Cloud Security.

The deployment process was carried out by our existing team and customer support teams, with two members from the customer support team helping us deploy the solution on the cloud.

The solution is easy to use.

The training, onboarding, and learning curve are smooth. When I joined my organization, SentinelOne Singularity Cloud Security played a very important role because there was no security-related software deployed on our infrastructures.

My environment consists of 13 people working with SentinelOne Singularity Cloud Security.

The solution requires maintenance, but it does not fall under my team's responsibilities.

I do not currently use Artificial Intelligence with SentinelOne Singularity Cloud Security.

I would recommend SentinelOne Singularity Cloud Security to other users for security and management purposes, as it would help organizations in various ways.

Overall, I would rate the solution as nine out of ten.

As a Security Engineer, I use the SentinelOne Singularity Cloud Security primarily for cloud security posture management. Additionally, I benefit from features such as attack visualization and evidence-based reporting, which help proactively mitigate vulnerabilities, reducing compliance risk and audit pressures.

Infrastructure as code scanning is a valuable capability, and while we primarily use the SentinelOne Singularity Cloud Security for cloud security posture management, we also leverage its infrastructure as code scanning, which is vital given the implications of hard-coded secrets in our source code.

I personally use the SentinelOne Singularity Cloud Security daily, and I have noticed that the dashboard occasionally gets stuck, potentially due to internet issues, suggesting it could benefit from enhancements to be more robust and smoother.

The SentinelOne Singularity Cloud Security has improved our ability to protect containers, Kubernetes, and other systems, especially since we have integrated it with all CWPP and CSPM application security and container scanning features into Jira for more effective vulnerability management.

The monitoring tool has comprehensive monitoring features. They also provide reports with a compliance score that shows how well we meet certain regulatory standards and allows us to present our compliance as a percentage, demonstrating our serious approach to security. My company is fundamentally focused on security, so this solution is a significant part of it.

The ease of use of the SentinelOne Singularity Cloud Security is evident, as the dashboard is very simple, allowing even beginners to understand the product and its purpose without confusion.

The evidence-based reporting proves crucial for prioritizing issues, as when I receive alerts about any DDoS attacks or incidents affecting my infrastructure, the SentinelOne Singularity Cloud Security plays a very important role in alerting me quickly.

The proof of exploitability in the evidence-based reporting is significantly important to us, as it allows the SentinelOne Singularity Cloud Security to identify issues quickly, especially when a developer accidentally makes a repository public, catching problems before they escalate.

The SentinelOne Singularity Cloud Security has substantially affected my risk posture, as it was the first tool that notified me of the public exposure of a repository by a developer, allowing me to resolve the issue within minutes.

The SentinelOne Singularity Cloud Security helps us reduce the number of false positives significantly, as it provides context to alerts, allowing us to manage public-facing resources without overwhelming alerts when exceptions are necessary.

My mean time to remediate has reduced by about 30% to 40% since using the SentinelOne Singularity Cloud Security.

The mean time to detect has also decreased by 20% with the SentinelOne Singularity Cloud Security.

The SentinelOne Singularity Cloud Security facilitates collaboration between cloud security, application developers, and application security teams, centralizing the reporting and communication of flagged vulnerabilities for remediation through dashboards.

I personally use the SentinelOne Singularity Cloud Security daily, and I have noticed that the dashboard occasionally gets stuck, potentially due to internet issues. It could benefit from enhancements to be more robust and smoother.

I have been using the SentinelOne Singularity Cloud Security for around 1.5 years.

Sometimes, we do expereince lagging.

The solution is very scalable.

Technical support is knowledgable.

I did not use an alternative solution.

It's easy to deploy. It took us two to three days.

We did have the customer support team on call during the implementation.

We're just a customer and end-user.

I do not personally use the agentless vulnerability scanning feature, however, my team utilizes it. I do not have extensive insight into its specific workings.

I do not use the offensive security engine feature.

I rate the SentinelOne Singularity Cloud Security nine out of ten.