SentinelOne is steadily building out its Singularity Platform, adding MDR to the platform starting August 12.
SentinelOne’s Singularity Platform is steadily taking shape. Just last month we wrote about the addition (in Europe) to the platform of CNAPP functionality SentinelOne added to its offerings through the PingSafe acquisition. Previously, the company added Purple AI to the platform and developed a Singularity Data Lake.
It is clear that SentinelOne is not sitting still when it comes to the Singularity Platform. Nor should it be, as the market is moving toward integrated security platforms. From the customers’ perspective, that’s a lot more manageable, and such a platform approach also has fewer holes, at least in theory, than if organizations use a host of separate and disparate components. The other side of the coin is that customers put a lot of their eggs in a single basket this way, and offering such a platform carries a lot of responsibility. Hence the rise of promises/warranties in the market. SentinelOne created the Breach Response Warranty for this purpose, but there are countless more examples from the market when it comes to these types of warranties.
MDR and DFIR as part of Singularity Platform
In addition to new features such as CNAPP and GenAI, Managed Detection and Response (MDR) is a hot topic these days. More and more organizations seem to be getting over the embarrassment of purchasing certain things around their cybersecurity as a managed service. This is yet another result of the increasing complexity of the security landscape and relentless threats from attackers.
Hence, SentinelOne has decided to pull MDR into the Singularity Platform as well. It is offering the new additions in two flavors: Singularity MDR and Singularity MDR + DFIR. With the latter, you take Digital Forensics and Incident Response in addition to MDR. Whereas the former is ‘only’ a managed version of the Singularity Platform’s detection and response capabilities, the latter also offers additional investigative capabilities to gain more insights into specific attacks in order to respond appropriately.
Note that today’s announcement does not mean that SentinelOne did not offer MDR or DFIR services until now. It did have those. So you can better think of Singularity MDR as building on SentinelOne’s Vigilance MDR service, DFIR services and WatchTower threat hunting offering. By combining key components from these into Singularity MDR, it should make MDR and DFIR more accessible to more organizations.
More coverage, maximum ROI
SentinelOne wants Singularity MDR to provide better coverage to customers and let them get the maximum value from their investments. Of course, more say that and we don’t believe it until we have actually seen and heard it from the market. However, adding MDR and DFIR to a central platform is definitely a good step as far as we are concerned. If done right, it will provide greater oversight and insight into customers’ environments. Those are some key prerequisites for their better security.
Singularity MDR is available worldwide starting 12 August.