Item: SentinelOne Singularity
Rating: 6
Author: Nathan Venno

Use Cases and Deployment Scope

SentinelOne is used for Endpoint protection within our organization. It has been very effective at mitigating threats for our stores and end users. It is used company-wide and replaced our old endpoint solution. It is very helpful to our security team to insure that we are able to see and assess threats quickly and efficiently.

Pros and Cons

Lightweight.
Cloud-based console.

Deep dive search is hit or miss.
Using Vigilance (vendor provided MSSP) was frustrating as they did not inform us how they reach solutions.

Return on Investment

Easy to install with little effort.
Easy to monitor from console.

Alternatives Considered

Symantec Advanced Threat Protection, Cybereason Endpoint Detection & Response (EDR) and Trend Micro Worry-Free Business Security

SentinelOne is definitely next-gen endpoint protection which makes it better than Symantec or Trend in that category. It prevents attacks and installs, allows you to monitor and update on the fly and works well overall. Also it is not as bulky as other products so you don't get many users complaints due to slowness or scans.

Support Rating

Their support is good and quick to respond. The one issue we faced was when a non-protection issue arose there was a lot of dancing around trying to figure things out. This was frustrating as it took significantly longer to figure out issues. Lots of repetitive log gathers, screen caps, uninstalls that never seemed to resolve issues. Eventually, the product would be updated and the issue seemed to be resolved, but seemed to be the only solution.

Key Insights

Do you think SentinelOne Singularity delivers good value for the price?

Yes

Are you happy with SentinelOne Singularity's feature set?

Yes

Did SentinelOne Singularity live up to sales and marketing promises?

Did implementation of SentinelOne Singularity go as expected?

Yes

Would you buy SentinelOne Singularity again?

Yes

Other Software Used

FireEye Network Security, IBM QRadar, FireMon

Likelihood to Recommend

This is a solid protection product. It keeps the end users safe with little interference during the process. The user experience is pretty transparent. On the admin side it can be more frustrating. We have a 3 month trial of the vendor's Vigilance offering, which was good but very secretive - often solutions were reached that could not be explained to our team. This was annoying as we went off of their service and were not able to replicate their answers. There is also problems with their Deep Visibility offering - when it works, it works well and allows you to track issues, but that is very hit or miss and you can never rely on it to work.

SentinelOne is good next gen, but still has bugs

Overall Satisfaction with SentinelOne