External reviews are not included in the AWS star rating for the product.
I use SentinelOne Singularity Cloud Security to detect vulnerabilities and threats.
I use SentinelOne Singularity Cloud Security for continuous monitoring, as it provides constant threat detection with minimal impact on our system's performance compared to other endpoint security solutions.
SentinelOne Singularity Cloud Security's initiative dashboards have a user-friendly interface that is easy to understand, even for new users. The intuitive design eliminates the need for extensive knowledge transfer, allowing anyone to grasp the essential functions of SentinelOne quickly.
The evidence-based reporting effectively prioritizes and resolves critical cloud security issues. Its operational metrics, including key performance indicators and security metrics like false-positive rates, mean time to detection, and mean time to response, provide valuable insights for improvement.
SentinelOne Singularity Cloud Security offers exceptionally clear proof of exploitability for security practices. This clarity fosters trust among stakeholders and managers, assuring them of a secure environment by simplifying vulnerability identification and remediation.
It has significantly enhanced our security visibility. The system provides alerts for any vulnerabilities, along with comprehensive documentation and user-friendly solutions. Its multi-cloud support streamlines issue resolution, allowing for quicker remediation.
SentinelOne Singularity Cloud Security has reduced the number of false positives by 40 percent, our mean time to detect by 20 percent, and our mean time to remediate by 30 percent.
As an application developer and infrastructure/technical support specialist, I find SentinelOne Singularity Cloud Security extremely helpful for our security needs. The notifications and other features are particularly useful in my daily work.
SentinelOne Singularity Cloud Security has saved up to 50 percent in engineering time.
SentinelOne's behavior analytics are valuable because they detect anomalies and malicious behavior that signature-based solutions might miss. The cost is also much cheaper than other products in the market.
SentinelOne Singularity Cloud Security has limited legacy system support and may not fully support older operating systems or legacy environments. The depth of features may be overwhelming for small-scale organizations with less complex security needs. It can sometimes feel complex for smaller teams, requiring specialized expertise that might be challenging for teams without skilled cybersecurity professionals.
I have been using SentinelOne Singularity Cloud Security for eight months.
I would rate the stability of SentinelOne Singularity Cloud Security a seven out of ten because sometimes the UI feels laggy.
I would rate the scalability of SentinelOne Singularity Cloud Security nine out of ten.
The technical support has been satisfactory.
Positive
Without SentinelOne, I would need to add two to three resources to my team for monitoring and threat detection. It has reduced the need for additional resources and saved money by 40 percent.
While I'm slightly out of touch with pricing, I know SentinelOne is much cheaper than other products.
I would rate SentinelOne Singularity Cloud Security eight out of ten.
SentinelOne Singularity Cloud Security is deployed across various departments and locations for approximately 70 users.
SentinelOne manages the maintenance for Singularity Cloud Security.
I recommend SentinelOne Singularity Cloud Security to other users for security, monitoring, and threat detection purposes. SentinelOne uses AI-based detection, continuously upgrading itself to be on top of the market.
We use SentinelOne Singularity Cloud Security to enhance the security of our cloud and data center infrastructure. Its primary functions include providing alerts and guiding the implementation of best practices for cloud security.
To enhance our security posture, we implemented SentinelOne Singularity Cloud Security, as we lack a dedicated managed service for continuous environmental monitoring.
SentinelOne Singularity Cloud Security is easy to use. It offers an intuitive dashboard making it user-friendly.
The evidence-based reporting is helpful for navigating the evolving threat landscape. It enables us to implement security measures proven to reduce risk.
The inclusion of proof of exploitability in its evidence-based reporting fosters stakeholder trust and reduces reliance on human intervention.
SentinelOne Singularity Cloud Security has a minimal impact on system performance compared to traditional antivirus solutions and helps meet compliance requirements by maintaining detailed logs and audit trails.
It has reduced our false positive rate by 20 percent and has significantly improved our security posture by providing comprehensive visibility into all activities across our infrastructure.
SentinelOne Singularity Cloud Security has decreased our mean time to detect by 60 to 70 percent.
Singularity Cloud Security offers autonomous response capabilities, automatically remediating threats and restoring affected files without manual intervention. Its AI-powered threat detection utilizes advanced AI and machine learning to identify and respond to threats in real-time. Its scalability makes it particularly beneficial for small organizations.
The SentinelOne customer support needs improvement, as they are sometimes late in responding, which is critical in a production issue. Cost is also an area for improvement as it must be more affordable, particularly for smaller companies.
We have been using SentinelOne Singularity Cloud Security for almost one year.
I rate the stability of SentinelOne Singularity Cloud Security as eight out of ten. There are no major bugs, glitches, or downtime issues.
I rate the scalability of SentinelOne Singularity Cloud Security a nine out of ten. It is very scalable and suits our needs.
The technical support team's response time is slow at times.
Neutral
SentinelOne is far superior to our previous solution, Accops, due to its seamless updates, effortless maintenance, and user-friendly interface and dashboard.
The initial setup can be slightly time-consuming, requiring about two to three days for deployment on both cloud and data center infrastructure.
SentinelOne Singularity Cloud Security is costly. I would rate the price an eight out of ten, with ten being the most expensive.
I rate SentinelOne Singularity Cloud Security a nine out of ten.
SentinelOne Singularity Cloud Security is deployed across multiple departments in a single location. We have 14 direct users of the tool.
SentinelOne manages the maintenance for Singularity Cloud Security.
I would recommend SentinelOne for security, as it is easy to use. Even without technical knowledge, users can manage it through the dashboard and provided documentation.
I have experience in both cloud and developer roles. In my cloud infrastructure role, I focused on the infrastructure itself, not the application level. We deployed SentinelOne Singularity Cloud Security across our cloud and data center environments for security purposes. This tool provided alerts and best practice recommendations, including vulnerability notifications. I would then use the Singularity console to address any issues promptly, which significantly reduced our mean time to resolution.
SentinelOne Singularity Cloud Security has an intuitive dashboard and streamlined setup process, making it user-friendly for security teams.
It categorizes alerts into four levels: critical, high, medium, and low. Singularity Cloud Security automatically prioritizes security concerns, such as ransomware attacks or best practices, eliminating the need for manual intervention and presenting the most urgent alerts.
SentinelOne Singularity Cloud Security is important because its reporting includes proof of exploitability. This is very helpful for engineers as it provides alerts, identifies areas needing attention, and directs us to the relevant documentation.
The benefits of SentinelOne Singularity Cloud Security were immediately apparent after deployment in our data center and cloud environment.
SentinelOne Singularity Cloud Security helps reduce false positives and improves system accuracy through machine learning. The detailed alerts aid in investigating potential threats, enhancing our security posture.
SentinelOne Singularity Cloud Security reduces our mean time to detect.
SentinelOne Singularity Cloud Security offers valuable scalability suitable for organizations of all sizes, from small businesses to large enterprises. Its comprehensive ransomware protection includes rollback features and 24/7 threat monitoring, with managed services providing continuous monitoring and threat hunting.
While SentinelOne Singularity Cloud Security offers robust protection, its cost could be a barrier for some users. Additionally, compatibility issues may arise with older operating systems and legacy environments. Organizations with limited internet connectivity might also face challenges due to the cloud-based nature of the platform.
The Singularity Cloud Security console is experiencing delays in clearing resolved issues, which can take over an hour to be removed from the display.
I have been using SentinelOne Singularity Cloud Security for about two years.
Sometimes, I experience lag issues with SentinelOne Singularity Cloud Security, which might be related to my laptop or Internet connection.
SentinelOne Singularity Cloud Security scales well, making it suitable for organizations of all sizes, from small enterprises to large businesses.
Customer support is knowledgeable about the company's software and operating systems, responding quickly within two to four minutes.
Positive
While GuardDuty and CloudTrail offer some overlapping functionalities with SentinelOne Singularity Cloud Security in cloud environments, SentinelOne provides a more comprehensive and integrated approach to cloud security.
The initial setup was somewhat straightforward but took about three to four days due to the extensive infrastructure involved. Testing added more time to the process.
Our team of six or seven collaborated with a third-party installer and SentinelOne's technical support team.
While SentinelOne Singularity Cloud Security offers robust protection, its high cost may be prohibitive for small and medium-sized businesses.
I rate SentinelOne Singularity Cloud Security ten out of ten.
SentinelOne manages the maintenance of Singularity Cloud Security.
My primary use case for SentinelOne Singularity Cloud Security is for security purposes. It provides me with alerts.
By implementing this solution, we wanted notifications about any potential threats, such as port scanning or unauthorized access attempts. This is why we have deployed it on the cloud to monitor and secure our systems.
It has an intuitive dashboard, which streamlines the setup process. It is a user-friendly tool for security teams handling cloud or data centers.
For fewer false positives, they ensure that their threat intelligence databases are up to date. That reduces misclassification and improves system accuracy over time through machine learning.
SentinelOne Singularity Cloud Security has improved our security posture. We are almost 100% secure.
It has reduced our mean time to remediate by 40% and the mean time to detect by about 70%.
SentinelOne Singularity Cloud Security offers valuable features like runtime notifications. These alerts come to my account, ensuring that if any port or component within my infrastructure is opened or compromised, I am informed immediately. It highlights issues within minutes or even seconds.
It is very easy to use. It is user-friendly. Dashboards and other features are easy to use even for newbies. Someone new can easily understand the dashboard and other features.
The cloud-based operations might pose challenges in areas with limited or unavailable internet connectivity. Desktop features might be useful for smaller organizations with less complex security needs.
Moreover, there is a higher price point compared to traditional endpoint protection solutions, which may not be ideal for smaller organizations.
I have been using SentinelOne Singularity Cloud Security for around one and a half to two years.
It is stable. I would rate its stability a nine out of ten.
I would rate its scalability as seven out of ten because there might be issues due to internet connectivity or occasional lag when deploying for monitoring purposes.
It is being used at multiple locations and by multiple teams. In my team, there are about 12 people.
I would rate the customer service and support as eight out of ten.
Positive
Before SentinelOne Singularity Cloud Security, we did not use any solution in the cloud. We had no centralized system. We had to go through cloud services such as GuardDuty, but it took time to analyze the issue and the root cause.
We wanted to follow the best practices and have something centralized. SentinelOne Singularity Cloud Security gives us centralized and real-time data.
We have multiple clouds and a data center. Its deployment is easy. The initial setup was straightforward, and it took a total of around five days, including testing time.
We have seen approximately 30% return on investment.
It is a little expensive. I would rate it a four out of ten for pricing.
I would rate SentinelOne Singularity Cloud Security an eight out of ten overall. I would recommend it to other users due to its effectiveness in providing centralized notifications and reducing the meantime to address issues.
We use SentinelOne Singularity Cloud Security for real-time alerts, enabling us to address potential threats proactively.
SentinelOne Singularity Cloud Security was implemented to enforce best practices, monitor runtime activity, and expedite troubleshooting.
SentinelOne Singularity Cloud Security provides easy-to-follow documentation on the steps required to resolve issues.
It offers a user-friendly experience with a centralized console for managing assets and delivering devices.
Singularity Cloud Security provides a real-time inspection for organizational growth, which makes it suitable for both small and large enterprises. It is interactive and easy to navigate, simplifying self-service.
Singularity Cloud Security's most valuable features are its ease of scalability and comprehensive security measures.
Singularity Cloud Security has a centralized console for managing assets and delivering devices.
Singularity Cloud security supports various cloud engines, such as Azure and AWS.
Once fine-tuned, Singularity Cloud Security reduces false positives by 80 percent.
Singularity Cloud security improves our risk posture. We have not had any security issues.
It has reduced our mean time to detect by up to 20 percent.
Our mean time to resolve has significantly improved with the implementation of Singularity Cloud security. Previously, our MTTR ranged from 15 to 20 minutes, but now it has been reduced to 5 to 7 minutes.
Singularity Cloud security has been a valuable asset to our application developers and AppSec team. Its support for various cloud platforms and user-friendly interface have greatly improved our security posture.
While SentinelOne offers robust security features, its higher cost may present a challenge for budget-conscious organizations. Additionally, some users have reported experiencing delays in issue resolution due to slower response times from the support team.
I have been using SentinelOne Singularity Cloud Security for around two years.
I would rate the stability of Singularity Cloud Security nine out of ten.
I would rate the scalability of Singularity Cloud Security ten out of ten.
Sometimes, the response time of the support team is lagging.
Neutral
The initial deployment was straightforward and took three days to complete.
Their customer service support team was on the call with us. Our team leads and technical people were there, and they jointly deployed Singularity Cloud Security on the data center as well as on the cloud.
Before SentinelOne, I used to take around 15 to 20 minutes to resolve an issue. After implementing SentinelOne, it takes about five to seven minutes.
SentinelOne is more expensive compared to other security solutions.
I would rate the cost a seven out of ten with ten being the most costly.
I rate SentinelOne Singularity Cloud Security a nine out of ten.
Singularity Cloud Security is deployed across our infrastructure, and we currently have 13 users.
I would recommend SentinelOne Singularity Cloud Security to other users for security purposes.
As an application developer focused on AWS and cloud components, I rely on SentinelOne Singularity Cloud Security to stay informed about vulnerabilities and maintain best security practices.
I would rate the ease of use of Singularity Cloud Security a nine out of ten. It is very helpful for beginners due to its simplicity and straightforward integration with various cloud platforms like AWS, GCP, and Azure. Its user-friendly interface and familiarity across different cloud environments make it easy to understand and implement, regardless of prior experience.
Singularity Cloud Security prioritizes and resolves critical cloud security issues. When a problem arises in my infrastructure, SentinelOne alerts me, such as an open port in our AWS environment or a deviation from best practices. It provides alerts, suggests solutions, and offers documentation with best practices, which is helpful for those new to cloud platforms. This has reduced my response time by approximately 45 minutes.
The Offensive Security Engine, powered by impressive AI/ML capabilities, seamlessly integrates with cloud infrastructure to analyze data and provide optimal security solutions. Its AI/ML-driven backend engine effectively identifies and resolves threats, making it a powerful tool for comprehensive security monitoring and protection.
We saw the benefits of SentinelOne Singularity Cloud Security immediately.
SentinelOne Singularity Cloud Security categorizes risk into four levels: low, medium, high, and critical. Teams handle low and medium alerts, which are based on best practices that we must follow. High and critical alerts are very important and require immediate attention. When these critical alerts occur, we contact PingSafe or the SentinelOne data team for support. They help us resolve the issue, identify affected resources, and provide comprehensive information. Occasionally, we receive direct support from SentinelOne, collaborating with them using their tools. The system is reliable and accurate, with no false positives.
It significantly reduced our mean time to detect threats. Previously, we didn't use security tools, so I had to identify and address vulnerabilities independently. To ensure best practices were followed, I had to manually investigate issues within our AWS environment and troubleshoot them alone. SentinelOne has been instrumental in guiding us toward securing our infrastructure by providing insights into best practices and automating threat detection.
SentinelOne Singularity Cloud Security has helped reduce our mean time to remediate.
The most valuable feature is the notification system, providing real-time alerts and comparisons crucial for maintaining security. Additionally, the dashboard's user interface and user experience are intuitive and easy to understand, even for new users.
One potential drawback is the cost of SentinelOne Singularity Cloud Security, which may be prohibitive for smaller businesses or startups, particularly those in regions with lower average incomes, such as India.
I have been using Singularity for around one year.
The customer service and support team is knowledgeable and helpful. Throughout the migration, they remained available for several hours without complaint, providing assistance at every step.
Positive
The initial deployment was not difficult. It was smooth, with support from experienced team members and customer support during the two to three-day migration process.
During migration, more than two people were involved, though only two were necessary.
The pricing is somewhat high compared to other market tools. This cost can be particularly prohibitive for small businesses and startups.
I would rate SentinelOne Singularity Cloud Security nine out of ten.
My responsibility within our infrastructure is limited to the infrastructure itself, excluding the application and database layers. As such, I can only offer guidance on the infrastructure aspects of our implementation. When we deployed SentinelOne Singularity Cloud Security in our hybrid infrastructure, both cloud and data center-based, the migration was smooth, taking approximately two to three days of testing to complete successfully.
In my organization, we use SentinelOne Singularity Cloud Security to enhance our security posture. The platform provides alerts and recommendations on best practices, policies, and necessary updates to strengthen our infrastructure security.
We implemented SentinelOne Singularity Cloud Security to strengthen our security posture. Previously, we lacked clear guidance on best practices, including password reset policies, patching procedures, and VM updates. SentinelOne provides these best practices and recommendations, significantly improving our infrastructure security.
SentinelOne Singularity Cloud Security is user-friendly.
Evidence-based reporting helps prioritize and solve cloud security issues. When an issue occurs in my infrastructure, I receive an alert on their dashboard and a notification is sent to our common email address. SentinelOne Singularity Cloud Security provides a direct link to the affected resource in the AWS console, allowing me to navigate to the issue and resolve it quickly.
SentinelOne Singularity Cloud Security has improved my organization's security posture significantly. Before its implementation, we lacked an understanding of best practices for security. The solution has clarified our path by providing guidelines and alerts, which have helped us secure our infrastructure effectively.
It has reduced the number of false positives significantly, providing accurate data for our security processes.
SentinelOne Singularity Cloud Security has significantly improved our risk posture.
Prior to implementing SentinelOne Singularity Cloud Security, our mean time to detect ranged from 30 to 35 minutes. Now, with SentinelOne, our MTTD has significantly improved, falling within the range of 5 to 10 minutes.
Our mean time to remediate has been reduced to five minutes since implementing SentinelOne Singularity Cloud Security.
SentinelOne Singularity Cloud Security offers several valuable features, most notably the rapid vulnerability notifications that provide timely alerts regarding our infrastructure. Furthermore, the platform's intuitive interface enables even novice team members to navigate the dashboard with ease, minimizing the need for extensive documentation.
I believe the UI/UX updates for SentinelOne Singularity Cloud Security have room for improvement. While the current interface is excellent, enhancements could make it more user-friendly. Additionally, an improved notification system that sends alerts about vulnerabilities directly to our centralized console would allow for a more prompt response.
I have been using SentinelOne Singularity Cloud Security for almost one and a half years.
I rate the stability of SentinelOne Singularity Cloud Security as nine out of ten.
I rate the scalability of SentinelOne Singularity Cloud Security as ten out of ten.
I have contacted SentinelOne's technical support team once, and they were very helpful. Their communication and product knowledge were excellent.
Positive
The initial cloud-based deployment was straightforward, taking approximately two to three working days with a team of three people.
The implementation was handled internally by my team with guidance from a senior resource.
I rate SentinelOne Singularity Cloud Security nine out of ten.
We have 150 users of SentinelOne Singularity Cloud Security.
I recommend SentinelOne Singularity Cloud Security to others because it is very important from a security standpoint.
We use SentinelOne Singularity Cloud Security to maintain security best practices. The platform alerts us to security issues, ranging from low to critical severity, based on our infrastructure.
We chose SentinelOne Singularity Cloud Security for its targeted vulnerability recommendations and best practice guidance, which allow us to address alerts effectively and maintain a secure infrastructure.
SentinelOne Singularity Cloud Security is user-friendly and easy to understand.
SentinelOne Singularity Cloud Security's evidence-based reporting for helping prioritize and solve the most important cloud security issues is excellent.
The exploitability proof in reports is crucial, enabling me to pinpoint issues and solutions. Without it, identifying vulnerabilities and applying fixes would be impossible. The system alerts me to security events, pinpointing the problem's location with resource and account IDs. This detailed information allows for rapid resolution, saving valuable time.
Upon joining the company, the user interface was not very user-friendly. However, over time, upgrades were introduced, such as more issue resolution documentation and best practices, which enhanced the security of our infrastructure. I realized the benefits of SentinelOne Singularity Cloud Security within five months.
SentinelOne Singularity Cloud Security has significantly strengthened our security posture. Previously, we relied on AWS-managed security alarms, which provided a limited and reactive approach to threat detection. Singularity Cloud Security offers a more proactive and comprehensive solution, enhancing our ability to identify and respond to potential threats.
SentinelOne Singularity Cloud Security has reduced our mean time to detect by five to ten minutes.
SentinelOne Singularity Cloud Security allows us to complete remediation in five minutes.
The most valuable feature is the easy-to-understand user interface, which allows even non-technical users to comprehend and resolve issues. Additionally, the solution provides highly useful recommendations.
To enhance the notification system's efficiency, resolved issues should be promptly removed from the portal. Currently, these issues take two to three hours to be removed, creating unnecessary clutter and potentially delaying the identification of new issues.
I have been using SentinelOne Singularity Cloud Security for almost two years.
I would rate the stability of SentinelOne Singularity Cloud Security nine out of ten.
I would rate the scalability of SentinelOne Singularity Cloud Security ten out of ten.
Customer service and support are excellent. They respond promptly, and the technical support is knowledgeable and helpful with any issues we face.
Positive
The initial setup took approximately one week due to the testing phase. It went smoothly with the team's collaboration.
I was present with my team during the deployment process, but I did not personally deploy it.
I would rate SentinelOne Singularity Cloud Security ten out of ten.
Our organization has multiple departments, but only five individuals have access to Singularity Cloud Security.
Singularity Cloud Security's maintenance is handled by SentinelOne.
From a security standpoint, SentinelOne Singularity Cloud Security is excellent, and I highly recommend it.
I use SentinelOne for the traffic flow in my customer's account.
Singularity Cloud Security gives us alerts, and it is helpful for us to get these alerts. We get to know about any issues through these alerts. We can resolve the issues accordingly.
It helps resolve issues more quickly. I do not have to analyze them on my own. We get to know the issues, and we also have documentation and recommendations about how to resolve them. That is very helpful for me.
We were able to realize its benefits pretty quickly because I already had its knowledge. I had studied a little bit and researched it. After implementation, my work got faster by almost 60% to 70%. The client was happy with that.
Singularity Cloud Security has reduced the number of risks. After resolving an issue on one of the servers, I can implement the fix on other servers before getting alerts about those. There is about 70% to 80% reduction.
It has been beneficial for all team members because we are all working in shifts and we are not able to communicate with each other much. The documentation has helped a lot.
Our security posture is much better. I do not have the numbers, but we see fewer notifications about security and threats. We follow the guidelines and best practices.
The security that it provides is valuable. It has a user-friendly dashboard that I can access without any difficulty.
Security notifications or alerts are also very useful. The alert mechanism helps in identifying issues.
It is very easy to use. I would rate it a nine out of ten for usability.
Sometimes, I am not able to see the flow when there is an issue. When anyone complains and I have to troubleshoot it, I find it difficult to search.
The documentation that I use for the initial setup can be more detailed or written in a more user-friendly language to avoid troubles.
I have six months of experience using it.
It is stable. I would rate it a nine out of ten for stability.
It is scalable. I would rate it a nine out of ten for scalability. Our clients are large organizations.
In our AWS Cloud, we have multiple accounts. We have almost 400 users. The AppSec team is a different team that is responsible for its installation. We are its users.
I use vendor support. I would rate them a nine out of ten.
Positive
I did not use any different solution before.
Initially, it took a lot of time because I had to first learn it and then implement it. First time, there can be some challenges. It took some time to understand because it was my first setup. Once I understood the process, it became easier with subsequent setups.
We implemented this solution after reviewing the documentation. Our AppSec team deployed it.
I would recommend this solution. I find it very user-friendly, and the documentation is also good enough to give solutions, which is very important. In addition to notifications, we also get solutions.
I would rate Singularity Cloud Security a nine out of ten.
Working in a highly regulated space with stringent security requirements for money movement necessitates robust security measures. SentinelOne Cloud Security effectively secures our workloads, providing peace of mind and significantly reducing stress by addressing both security and regulatory needs.
The primary challenge we faced was achieving comprehensive visibility and observability across our extensive cloud environment, which comprises over 50 AWS accounts. It was difficult to determine the specific account and business entity associated with each workload. SentinelOne provided a centralized view of all workloads, enabling us to identify misconfigurations, pinpoint their location, and assess their potential impact. This clarity allowed us to prioritize responses based on the criticality of the affected account, such as production or highly regulated environments, thereby optimizing our response time.
To reduce noise and improve security monitoring, we implemented two key strategies. First, we leveraged the SentinelOne platform to identify internet-exposed assets and prioritize them for enhanced monitoring. SentinelOne's cloud-based capabilities significantly reduced false positives and helped establish a baseline for normal network activity. Second, we integrated the Infrastructure as Code module to automatically detect any deviations from the baseline or new misconfigurations. This proactive approach enabled us to efficiently address vulnerabilities and maintain a secure environment. After an initial cleanup, ongoing maintenance became much easier due to the continuous monitoring and automated alerts provided by SentinelOne and the IAC module.
Cloud security has helped reduce false positives by prioritizing vulnerabilities based on two factors: the criticality of the exposed asset and the environment it operates within. This prioritization metric helps eliminate false positives and allows teams to focus on fixing actual security issues.
Cloud security has improved incident response, primarily by enhancing observability. This allows for immediate identification of an IP address's host account and connected resources, which speeds up response time. Understanding the potential damage is also crucial, and this is achieved by knowing all resources accessible to the compromised asset. This comprehensive approach, combining identification and impact assessment, significantly strengthens security response capabilities.
SentinelOne Cloud Security reduces response times by providing context for assets, such as location, access details, and component interactions. This allows for quick identification of the responsible team and facilitates efficient damage assessment and remediation. Automated responses, like automatically fixing public S3 buckets, can be implemented, although caution is needed as some public access may be intentional.
SentinelOne Cloud Security has significantly improved team collaboration by simplifying the process of identifying the owner of a vulnerable or problematic component. Previously, this was a time-consuming task, but now the platform allows for quick identification of the responsible business entity and developer, enabling direct contact with the appropriate DevOps personnel. This streamlined process accelerates both detection and response times, ultimately enhancing overall security.
SentinelOne has released Purple AI, a tool with immense potential. It can analyze sentences and identify specific IP addresses or vulnerable machines, significantly aiding threat detection. This capability allows for rapid computation and complex query execution, delivering crucial answers in minutes and enhancing data analysis for security purposes.
Cloud Security has provided a single view to observe all workloads, prioritization for handling cloud assets, and reduced noise by distinguishing false positives effectively.
Once all components, including the cloud piece and container runtime piece, integrate further and incorporate an AI layer for better comprehension, it will greatly enhance the utility of Singularity Cloud Security.
I have been using SentinelOne's cloud piece for about three to four months.
SentinelOne has provided excellent support, enabling us to implement a robust solution customized to effectively meet our security and compliance needs.
Positive
Prior to implementing SentinelOne, we faced excessive false positives and an overwhelming number of findings, hindering prioritization. However, SentinelOne Cloud's offensive engine provides reassurance by automatically checking exposed assets for new threats, such as zero-day attacks, ensuring immediate awareness of any issues.
SentinelOne allows for customized prioritization, enabling changes based on specific accounts and the addition of further actions to misconfiguration adjustments. The graphing ability of SentinelOne CNAPP facilitates comprehensive chaining for in-depth analysis. The demos on misconfigurations and the prioritization matrix were particularly informative.
SentinelOne provided competitive pricing compared to other vendors, and we are satisfied with the deal.
When evaluating CNAPP vendors, several key considerations emerged. First, it was essential to assess the regulatory frameworks and ensure compliance. Second, the issue of false positives needed to be addressed to maintain efficiency. Finally, the prioritization capabilities, particularly the use of graphs to identify critical assets, were crucial factors in the selection process.
I would rate SentinelOne Cloud Security a nine out of ten. They are bringing all the pieces together, and once the Purple AI can interact with all the different components and correlate across them, I think that's where its real power will come from.
SentinelOne CNAPP was extremely helpful and chosen for three primary reasons: their responsive and efficient team facilitated a rapid deployment; the technology itself proved to be very robust and effective; and the platform's configurability allowed for seamless integration with our specific business needs.
For those evaluating SentinelOne CNAPP, it is advised to engage with their team for potential configuration changes. The tool offers comprehensive insights, providing productive usage from day one for penetration testers and security engineers.
