SentinelOne Singularity Identity Reviews

Cloud protection is very important to us. We have almost 400 applications and a lot of data, some on-premises and some in the cloud. We need to make sure that all of our data is protected, and SentinelOne Singularity Identity offers the data protection and identity protection that we need.

We are currently evaluating whether to continue with our current solution or switch to SentinelOne. We want to make sure that we are saving costs and resources, and that our data is 100 percent secure. SentinelOne seems to be able to offer us both of these things, so we are leaning towards switching to their solution.

Our top priority is to make sure that our data is safe. If something were to happen, we need to know that we have support from SentinelOne.

SentinelOne Singularity Identity provides a unified view of our security posture through its console. This unified view is important because it will make it easier for our security analysts to manage and own the product. As a result, we will need fewer resources to do a better job.

Managing our environment through the console has a learning curve. The more we use the solution, the more experience we gain. However, it is reassuring to know that SentinelOne is willing to provide support if needed. This is important to us because we want to be able to take over the management of our environment eventually without requiring too many resources. We believe that we are well-positioned to achieve this goal, but it will take time. We do not expect to be able to do it immediately, but we believe that it is possible within a few months to a year.

Although we are still evaluating the solution, we are hopeful that it will protect identities from exploitation. The reviews we have seen suggest that this is the case, and it is very important to us as a corporate law firm. We handle sensitive client data, and if an unauthorized user were to gain access to this data, we could be sued by our clients. We therefore need to protect our identities and our admin accounts, which have superuser access to the system. We are confident that Singularity Identity can do this, and we are currently evaluating its capabilities.

Singularity Identity provides good visibility into our attack surface, which helps us prevent unauthorized access. We do this by getting alerts or notifications about any suspicious activity and then investigating them. Even if we get a lot of false positives, it's worth it because the one time we uncover a real attack will make it all worthwhile. I think this is one of the key features of Singularity Identity, and I'm sure the developers would agree.

Singularity Identity's ability to detect and mitigate threats is one of its key features. I am not sure if it can prevent threats altogether. As a corporate billion-dollar law firm, we are always under attack, and there will always be threats. We receive phishing emails multiple times a month, a week, or even a day. Therefore, it is not about preventing threats, but rather detecting them and allowing us to respond and know how to handle them. I do not think we can prevent threats from happening, but Singularity Identity can give us the ability to prevent them from succeeding.

Although we are still evaluating Singularity Identity, I am confident that it will reduce the MTTD identity-based attacks.

SentinelOne Singularity Identity's support seems to be unmatched, at least according to what I was promised. This is very important to us. SentinelOne Singularity Identity has excellent reviews. We checked out the Gartner reviews of their offerings, and everything seems to be in order.

One of the top functions we're interested in is cloud protection. Whenever we talk about moving something from on-premises to the cloud, that's always the biggest concern of our executives. So, we're always very interested in offering them that kind of cloud security. So far, SentinelOne Singularity Identity seems to be a good option. However, we're still evaluating our options.

SentinelOne Singularity Identity could be more user-friendly. I had some questions that I had to go back to SentinelOne to try to understand. Therefore, for someone who is trying to get by with minimal experience, I believe it is very important to make it as simple as possible for consumers to have the best user experience.

SentinelOne Singularity Identity should be made more affordable so that organizations can better budget for it.

I have been evaluating SentinelOne Singularity Identity for three months.

SentinelOne Singularity Identity has been stable so far.

SentinelOne Singularity Identity is scalable and we have not encountered any issues as of yet.

The technical support has been very helpful and responsive. I had no issues, and I am very happy with the outcome.

Positive

We have not yet completed a full deployment into production, as we are still testing. However, the initial deployment for testing was simple.

We use a consultant called Blue Margin. They helped us with all of our Microsoft deployments and licensing, as well as when we got Power BI. We always run things by them. In this case, I'm not sure yet how much help we'll need when we go to production. So far, we haven't needed much help because it's been straightforward. However, we can engage Blue Margin if needed. The decision of whether or not to engage them typically comes down to whether we have enough resources to handle it ourselves or if we need more help.

The pricing for SentinelOne Singularity Identity is challenging. I understand that they put a lot of time and effort into developing this product, so it can't be too cheap. However, from our perspective, we need to get buy-in from our executives, and that means the price has to be within budget. The lower the price, the more likely it is that the software will be approved.

In a perfect world, the price would be within budget and it would be a great price. However, as long as SentinelOne's pricing is competitive with their top competitors, I think they have a great product that should be approved. I'm currently evaluating how their pricing compares to other products.

Ideally, I would like SentinelOne to lower their prices a little bit. This would make it easier to get buy-in from my executives and would allow us to afford the software. However, I understand that they can't give the software away for free.

I would rate SentinelOne Singularity Identity a nine out of ten.

We are a Microsoft shop. Most of our products are Microsoft, and we have the Microsoft licenses. I believe that SentinelOne Singularity Identity will eventually save us time, effort, cost, and resources. I am working to prove this with my research, and so far, I think the answer is yes. I wanted to share this feedback in case it helps someone else who is in a similar situation. So far, everything is positive. However, the next steps for me are to confirm this, compare SentinelOne Singularity Identity to other products, and then make a recommendation. Hopefully, I will get the buy-in and we can move forward.

Our biggest concerns were protecting our on-premise active directory environment and then our Azure AD environment. In terms of both, we wanted to understand what assets were in those environments and what security risks were associated with each and then how to most effectively remediate them.

I've been with the company only for four months. In the first two weeks of doing an assessment, I noticed a lot of very insecure and suboptimal configurations. We needed a tool that could help point out the weak spots and then remediate them as fast as possible.

The biggest value for us is getting a much better picture of what our risks are. They also have a really feature-rich way to automatically remediate a lot of those risks And if, let's say, the automatic remediation does not work correctly or maybe has internet sequences, then you can automate the rollback of that. For example, if you find ten accounts that have something wrong with them in Active Directory, you can deploy a script that'll fix the configuration of those accounts. However, if something breaks, you could roll it back to that configuration change and then do some more testing or do investigations and then redeploy the fix once you're happy with it. That's the biggest thing for us. We're not spending hours going through manually to find these configuration weaknesses and then have the manual administrator.

The Singularity console provides us with some sort of a unified view. You've got, when you first log in, a dashboard. It's got a default landing page that gives you a very good understanding of what sort of risks you have and where they're located. You can then drill down into various panels to investigate further.

The unified view is extremely important for our organization.

A lot of these things could be solved manually. However, the level of effort required to identify and resolve these things is high; this makes it much faster.

It is extremely easy to manage our environment using the console.

The product’s ability to protect identities from exploitation is good. We're very happy with it at this point. The dashboard gives me, for example, the number of detections. It's got a chart with time-based attacks and helps drill into the top five. It gives us a summary of the health of the environment in terms of high, medium, and low vulnerabilities. Then we can go through those. We can focus on the very high vulnerabilities and go from the highest down to the lowest.

A lot of those features came from an acquisition of a different company. Actual SentinelOne employees are making a lot of changes right now to fully integrate those components into one security solution portfolio. The recommendation would be to make deployment just a little bit easier. Of course, they talked about it on the road map, so it will settle out naturally. They're aware of the issue. They want to make it better; it's just not quite there yet.

I've been using the solution for a few months. We're relatively new customers, although I have used SentinelOne itself before. 

We've had no issues with stability. I'd rate the stability as excellent, ten out of ten. 

We're a small environment. We're two hundred employees, with less than 1,000 devices in our computing environment. For us, we have no scalability issues. I can't speak to how well it would run in a Fortune 500 company.

We've opened a few cases with technical support. 

It was very good. They got back to us very quickly. Usually, after one to two interactions, we had the issue resolved. If we were able to explain it well when opening the ticket, then we would have a response back that resolved it the first time. In some cases, we did provide all the information and they had to come and ask some clarifying questions. 

Positive

We did not run anything prior to using this solution. We had default tools and Microsoft, including things like Microsoft Identity Protection. However, we did not have a third-party product. 

There were only two of us involved in the deployment. 

It was relatively straightforward with the exception of just a few configurations. A lot of this technology came from an acquisition and since they're integrating it into the SentinelOne portfolio, some small things had to be adjusted that were not apparent to us as an end user. It would take a deployment engineer to really get it set up and working.

We implemented the solution with the help of a professional services team. 

We haven't calculated a hard ROI or run some sort of quantitative evaluation. That said, from a qualitative standpoint, we're significantly better off. Even conservatively, looking at my time and our information security analyst's time, we're probably saving maybe 200 hours a year, if not more, in terms of investigating, remediating, et cetera. It gives us more time back.

The pricing for us was very competitive. It was actually probably 30% cheaper than CrowdStrike.

We evaluated a lot of CrowdStrike Solutions. Those are slightly different. They do have some identity protection solutions available. However, we couldn't get all the components to even work on the CrowdStrike side as part of the POC. And then even when we did get it to work they didn't seem to have the same level to completely listen or cover. They had no auto-remediation capabilities. It was just more of a dashboard to show you areas where you had some security risk, and then they would provide some guidance in terms of how to remediate it, however, all that remediation was manual. That was it. 

For someone who's researching Singularity, yet they're running Windows Defender still may need Singularity. Defender doesn’t have the level of capabilities that this does. Based on our testing, it's a great endpoint security solution, and we're actually running it in concert with this one. We have Defender for the endpoint and installed it as well. However, as a detection response solution, Defender is kind of a backup. The information we get on the Defender console is helpful, yet it doesn't give the same level of granularity or the other automated remediation capabilities. Defender is the baseline; I wouldn't throw it out. I would keep it and still put Identity in the environment. You'll get more value out of Identity than you will out of Defender.

I'd rate the solution ten out of ten. 

I'd advise others to not just sit through a demo; run a proof of concept and get it in your environment if you can. That will give you more information and a much better feel for how it is and how it can help you improve your security posture. 

We use SentinelOne Singularity Identity to end AD credential misuse when working from home. We wanted to make sure that our environment was secure and place any defection-based endpoints on lockdown. The solution ensured that we were able to detect AD attacks and steer attackers away. We also wanted to make sure we were hiding our local data.

We're a lot more secure with SentinelOne Singularity Identity. We're more confident that we're going to be on top of any threats, and we'll get alerted right away. Anytime a password expires, my coworker sets up a report. We're really on top of all our user AD accounts.

I was recently able to customize the UI, including the filters, based on my use case. Having high visibility into all of our network concerns and a customizable UI are the most valuable features. The solution only requires one reboot to finish the installation. The solution's real-time protection is also really beneficial for us.

The last time I called to receive support, it wasn't as fast as I wanted. The resolution turnaround from SentinelOne Singularity Identity's support should be improved.

I have been working with SentinelOne Singularity Identity since February 2022.

I found SentinelOne Singularity Identity a lot more friendly in terms of performance. The solution shows no lagging, and it works very well.

SentinelOne Singularity Identity has the ability to work with different operating systems devices.

I rate SentinelOne Singularity Identity's scalability an eight out of ten.

We raised a support case with the solution's technical support team. We called the support team and tried to get help to run a report to see which devices were actually utilizing SentinelOne. We also had another report question about how we could take a look at AD accounts with expired passwords.

The support agent on the other line didn't seem very familiar with the product, and that was pretty much it. When they told us they would get back to us with more information, it took a while. They got back to us three weeks later when we had already figured it out on our own.

Neutral

The solution's initial setup was very straightforward.

I was involved in the solution's deployment in our organization. The rest of our tier two team and I worked with the trainers, implementation coordinators, and agents at SentinelOne. They walked us through the setup, which took around three to four weeks. Since we deployed on the cloud, we didn't need to set up VMs for any SentinelOne servers. We just provided access to our AD and the information they needed, like our server names. We set them up with accounts with which they could get into our AD servers, and that was it.

We have seen a return on investment with SentinelOne Singularity Identity. The comfort level, the reports we get, and our confidence in the security of our AD accounts are definitely worth the investment in the solution.

The solution barely met the budget for this project. SentinelOne could find ways to help healthcare institutes by lowering the solution's cost for hospital implementations. The pricing is a bit high.

We didn't use a different solution before SentinelOne Singularity Identity, we just had an AD. One of the reasons why we chose to go with Singularity Identity is that we moved over our Outlook Mailbox 365 accounts to the cloud. Previously, we had on-site exchange servers with the mailboxes, and we moved all those mailboxes to the cloud.

Since they're all linked with the AD credentials, we needed something a lot more secure. We moved 800 mailboxes to the cloud, and Singularity Identity helped us with that transition. We never had a product like Singularity Identity just to monitor AD.

I would tell users to book a demo first. Then, if they do decide to implement SentinelOne Singularity Identity, they should work with support or even their vendor support for the network firewall.

We had to set up a lot of exclusions on our firewall and even Windows firewalls on our AD server to ensure we weren't blocking any network traffic when a rule was added or deleted. My advice to users would be to ensure they are careful with the network firewalls when deciding to move forward with implementation.

Singularity's console provides a unified view, which works very well. We're able to monitor all of the different areas in our infrastructure. We even have the ability to run reports where we're in touch with support and our trainers from SentinelOne. They ensure that we know how to use the product and show us how to make our infrastructure more visible.

This unified view is very important for our organization. We widened the net for compromised devices to include managed and unmanaged devices. Even if our server runs a different OS, we can get a lot of actionable information related to that asset. If I have a couple of MacBooks, it doesn't really matter what the OS is. I can store that information in Sentinel. The solution really allows us to have more functionality with an active directory.

SentinelOne Singularity Identity is doing a good job of protecting identities from exploitation. Identity-based threats are one of the biggest weaknesses of malicious attacks. We get a lot of spam emails, and at the end of the day, they're just trying to get AD credentials.

SentinelOne Singularity Identity really helps improve our identity security posture. We're able to provide the team and even the managers and IT director here with real-time alerting and deception capabilities. We really trust SentinelOne Singularity Identity.

We're really happy with Singularity Identity's ability to provide visibility into our attack surface risk. The amount of information the solution allows us to get and the real-time alerts are really helpful.

Singularity Identity helped reduce our mean time to detect identity-based attacks. We have reduced the time we take to jump into servers and then run reports on our own because we've got the dashboard on a monitor in our office. We have real-time alerts right on the monitor. Anytime we see a red alert, we're on top of it. It makes monitoring a lot easier.

I would tell someone researching SentinelOne Singularity Identity that they need to do a demo with SentinelOne. There, they will be able to see the solution's pros and cons. They can see for themselves how it's a much more effective tool than Windows Defender.

If they book a demo, they will be convinced to get hold of a SentinelOne agent to look at some cost agreements and implementation. The bottom line is that SentinelOne Singularity Identity is the best anti-malware. It is a lot better than Microsoft Defender, and they would be convinced after a demo.

Overall, I rate SentinelOne Singularity Identity an eight out of ten.

SentinelOne is the first line of defense for all our endpoints. We have approximately 700 endpoints, and each has a SentinelOne agent controlled by the cloud. We have a first layer of support at the network gateway, but most people aren't covered by our firewall. They are roaming users, so providing these people with protection is our first priority.  

Singularity is a cloud-based solution, so we don't need to spend anything on the infrastructure. We don't have to procure the hardware to host the server application. 

The management is effortless. Anybody can operate it, and it has the ability to delegate day-to-day tasks to the help desk team that they can manage on their own. Once the devices are integrated and Singularity is configured, we hardly have to do anything. The console is nice. I don't have any problem with it.

I have limited knowledge about Singularity's identity protection features because we only started using the solution this year. We plan to integrate a few products with the SentinelOne platform to get more out of it. When we were transitioning from an EDR to an XDR, we raised this question to SentinelOne. In the meeting, they explained how this integration works and what type of security they provide. We have the authority to revoke the integration and the other reporting parts, so everything is clear over there, but we need more time to mature in this particular aspect.

Singularity offers deep and continuous visibility into our attack surface. We are notified via email, and there is always a link to a page that defines the specific threat. From that page, we investigate everything, including the affected files, root cause analysis, etc. The solution's detection and prevention capabilities are excellent, but we still must do more configuration, and there are plenty of false positives. Singularity has helped us reduce our mean time to detect. Compared to Kaspersky, we have 60 to 70 percent fewer attacks and investigations to do. 

I like the detection and protection features. We don't need to do anything, and it will alert us when the mitigation is not successful. We only need to target those endpoints. Otherwise, we don't have to do anything about that.

The policies could be more precise, and Singularity should use more templates like alternative solutions have. Endpoint management is poor. We cannot manage individual endpoints and must rely on policies, exclusions, or block lists to apply settings to a group instead of the individual agent. If I have to make settings for one computer, I need to create a group, apply the configuration, and move the agent there. It's challenging to manage endpoints that way. 

Singularity also lacks web filtering, a feature that came with other solutions we previously used. When we evaluated Singularity, we also did PoCs for EDR solutions by Trend Micro and Kaspersky. All of them had the ability to manage which websites were allowed. We need to do a workaround and use the firewall to block web access, but it doesn't take what we say as a wild card entry, so we have to define every part. That is one major disadvantage, but we have provided this feedback to the Sentinel support team and requested feature updates. 

Another issue is agent updates. Because it is a cloud version, Singularity doesn't have a proper management system for the agents. SentinelOne has a policy to release new versions of the agents at least every three months. However, the management console has no option to automatically update agents to the new version. We must create a policy or define the schedule based on a specific version of the agent to be installed, not the latest. That is one major drawback of using the cloud version.

We have used Singularity for four years. 

SentinelOne requires minimal CPU, and the management portal is never down, except during the maintenance window. They always notify us about scheduled maintenance well in advance, and it is done outside of business hours. 

The platform's stability has been solid, and we don't have issues with the agents crashing. In some instances, we had issues with installing and uninstalling the agents, but support has provided resources in a timely manner. They've given us utilities to clean up the previous installation files or current files. 

I rate SentinelOne Singularity seven out of 10 for scalability. It takes a little time to make your deployment mature. You can scale Singularity, but the process is a little slow. One of the pain points is agent management and the inability to automatically update the agents. Because of this limitation, I must say that it fell short of our expectations. 

I rate SentinelOne support eight out of 10. 

Positive

We previously used Kaspersky, but we wanted to transition to a next-gen EDR solution from SentinelOne. We switched to Singularity because of its management capabilities and EDR system. We like the policy and agent management. Kaspersky has a traditional signature-based detection system, not an AI-based solution like SentinelOne offers. 

The management was difficult with our previous solution. We struggled with managing agents, installation, uninstallation, creating and managing policies, device control, etc. All of those pain points prompted us to switch to a SentinelOne. Our usage has constantly grown in the past four years. We started with 500 agents initially, and now we have more than 700.

When we implemented SentinelOne, the main challenge was rolling out our agents. Since it is a cloud-based version, it was difficult for us to manage centrally because the console doesn't allow us to install the agents remotely. We need to use Active Directory or an endpoint management solution to push the agents. 

However, using the endpoint solution we still had trouble identifying the agents across 25 organizational units in a few directories. We also needed to structure the SentinelOne infrastructure, and we had difficulty with this. On top of that, we couldn't find a suitable vendor in the Oman market, so we had to buy it from another region. 

Our retailer is from Saudi Arabia, and the support from them was lacking because the sales team knew very little about the product. Their service was good, but they were poor in technical terms. We need to get help directly from SentinelOne.

The main return we see is from the protection SentinelOne provides, which is better than any other solution we've used in the past. Though they've been increasing the prices, it still fits our budget, and we haven't needed to invest anything in our infrastructure. 

Singularity is cost-effective. It's slightly cheaper than our previous solution.  However, the licensing policy is unfair. We were using SentinelOne's EDR solution before we renewed our license this year. They added the XDR solution that deploys to the Singularity platform. The platform offers 13 tools, but you don't need to use all of them. For example, if I want to use Mimecast for email security, I can integrate it with this, and all the logs from the third-party tools are fed into SentinelOne. 

At the same time, it isn't transparent because they raise the price every year, saying that they have to invest in research and development. However, we are hardly getting anything from their research and development. On the other end, agents can become outdated if they fail to update for a long time. 

The agent is capable of detecting and preventing threats, but they're not adding features. We are paying for research and development but not getting anything new. Also, they never disclose the price increases in advance. They tell us the prices are changing when it's time for renewal.

We looked at Trend Micro and Microsoft Defender. Before moving to Sentinel, we did a lot of research. Someone suggested Microsoft Defender, but the solution's capabilities are limited, and management is challenging. Microsoft suggests adding more products on top of Microsoft Defender, but then you need to add XDR or endpoint protection. On the other hand, Microsoft has a single platform for its products, so the integration is much better, but SentinelOne comes out ahead in detection and prevention.

I rate SentinelOne Singularity eight out of 10. 

When implementing SentinelOne, you need to plan for the number of endpoints and servers. It's crucial to define the structure and grouping of agents in the SentinelOne management portal and identify which policies are necessary for your requirements. I also recommend going through a proof of concept. 

One of the main use cases I describe is that we face lateral movement in our customer's server side. The customer is using 50 or more servers for the news channel, Daily Thanthi. Among those, one server does not have the SentinelOne Singularity Identity agent installed, and that server executes the malware file in the network lateral movement, specifically in the east-west traffic. Once we initiate the malware file, the classification detected is ransomware, leading to 1,200 incidents created in the SentinelOne Singularity Identity console page. I have founded the incident and protected the policy based on lateral movement. I have created the policy and mitigated actions in the policy side, which is the scenario I faced live on the customer end.

In terms of features, the most helpful feature is that SentinelOne Singularity Identity is very user-friendly; with one single policy, it can protect multiple servers.

SentinelOne Singularity Identity provides machine learning capabilities for threat detection. Among the use cases, I have found static AI, behavioral AI, and dynamic AI to help with malware detection, so there are three types of AI in the Singularity console agent.

Regarding benefits, I have seen improvements such as rollback options; if any attack occurs, we can roll back files.

Regarding improvements, I believe that API integration in third-party applications could be better. The Singularity tool uses its own credential in the record features.

I have been working with this tool for two years.

My opinion on the technical support team of SentinelOne Singularity Identity is very positive; they are a massive impressive team. When we encounter issues with legacy OS, when we download the agent and it fails to push to the end user, they take responsibility for providing solutions. We've had successful configurations on the end server side following ticket submissions, though my one concern is that they do not pick up calls immediately; typically, they follow up with an email or call within 24 hours.

Positive

The initial setup of SentinelOne Singularity Identity is not difficult at all; it is user-friendly and takes only a couple of hours. We download the agent, initiate the cloud, and since SentinelOne Singularity Identity only provides cloud-based solutions, we access the OEM side where they provide the agent, mapping the IP for download.

We push the agent through the AD server or any other method, and once the agent is configured, it shows up in the cloud console. After activating it, we run full disk scanning and schedule reports every Monday, generating weekly reports on threats and vulnerabilities. If there's an incident, we trigger notifications to the IT manager or vendor.

After checking incident classifications and SHA values, we use VirusTotal to evaluate scores, determining mitigation steps based on the Storyline that details any affected end-user machines, servers, and applications. Everything is outlined in the Storyline, and I will update by email with affected incidents and mitigation steps. Once quarantined in the SentinelOne Singularity Identity agent, if it turns out to be a false positive, we exclude the specific EXE or DLL files; if it's a true positive, we terminate that file.

Regarding competition, I find that CrowdStrike is a similar tool on the market; they offer next-generation SIEM, NGSIEM, and position themselves with robust policy control to inform customers that they provide policies to prevent ransomware in organizations. The SentinelOne Singularity Identity provides a rollback of files once a ransomware attack occurs, ensuring that ransomware does not affect servers and end-user machines while maintaining a robust policy.

In terms of difference between competitors, both SentinelOne Singularity Identity and CrowdStrike have lightweight agents that support legacy OS and will continue to support future single agents for both.

I work with the SentinelOne Singularity Identity products, as one of our customers is using it, and we utilize the TI, threat intelligence, and the record features, so we need to subscribe to the product that records features. Additionally, we are planning the Purple AI with core in the subscription pack on the OEM side.

I have two years of experience working with SentinelOne Singularity Identity. I don't have any integrated file in the Singularity; we only have the EDR. However, if in the future we integrate any customers, we may integrate any FortiGate firewall or any other syslog servers, Splunk, or other tools.

SentinelOne Singularity Identity is a cost-effective tool; we are facing many Indian customers who are concerned about economic costs, and it only provides enterprise and mid-range solutions.

On the topic of pricing, they are on the same level; both provide MSSP, offering monthly-based subscriptions where customers purchase the specific modules they need. The subscription package varies; once we go with EDR, we then need to purchase additional modules based on the customer's pain points; there are around 40 to 60 modules available for customers.

I rate SentinelOne Singularity Identity a nine out of ten.

We wanted to add a detection tool for protecting our assets from any attack so that we could defend our domain. 

The solution provided us with an abundance of transparency, giving us awareness of attacker activity and anything targeting the critical domain server.

The responses were quite quick. The time that was defined in the SLA over the period of time we tested the solution was reasonable.

The solution widens the net for monitoring for possibly compromised devices. It covers all managed and unmanaged devices running within our operating system. 

We saw a lot of benefits in terms of actionable data. It provided a lot of visibility when defending our assets.

The Singularity Console provided us with a unified view of threats. It ensured limited access to only trusted and validated applications. It works with zero-trust programs. With zero-trust, the solution's ability to protect identities from exploitation is quite high.

It was easy to manage the environment using the Singularity Console.

The ability to provide visibility into our attack surface risk is quite good. Once you onboard your other resources, it basically handles unauthorized network reconnaissance. This module has a number of features. When it comes to data breaches, if something happens, it basically discovers the hidden elements in the network, and it gives you the results of its findings very fast. You will get a visual experience of the mapping of the networks, how the resources are connecting to any other resource, or if any incoming request is coming from a resource. It basically empowers security.

The solution's ability to detect and prevent threats is very good. It provides a lot of integrations. It also helps organizations to improve their identity security posture.

It's helped us improve our mean time to detect identity-based attacks. It limits the trust. It simply doesn't trust any outside requests. Then, we can control access management. It's reduced the potential for breaches by 90%.

The AI provides a futuristic ML model. That helps a lot when it comes to shifting security approaches and helps better forecast attacks. 

It has a lot of features in place. From my end, it isn't missing anything. 

They could always add a few more modules. 

Pricing could always be lower.

Support could be faster. They need a faster response time. 

We did do a POC for the solution. However, we are not using it at this time. It took us about 1.5 months or so to understand the product. We used it one year ago.

The solution was stable. I'd rate the stability 8.5 out of ten.

The scalability is very good. I'd rate the scalability nine out of ten.

Technical support was good. 

Positive

I previously used Palo Alto. The main difference is in the cost.

We deployed the POC, and within two months, we pretty much understood the product.

The product offers an easy implementation. It's frictionless, and the effort is quite low. The deployment is also flexible, and you can perform integrations easily. We were able to implement the POC in two weeks. We had two people working on the process and four people working with the solution post-implementation. 

We have witnessed an ROI in terms of time saved by 100%.

The pricing is okay when compared to other solutions. It's moderate, and the cost is not overly high or low. 

We were a customer and end-user during the POC. We just wanted to test it to see how it would operate.

If someone is looking at Singularity, and they already have Windows Defender, I'd warn them that Microsoft's cost is quite high. They may have better luck and pricing by shifting to Singularity.

I'd rate the solution nine out of ten.

We use SentinelOne Singularity Identity for monitoring and mitigating threats within our network. Controlling our surface visibility, and monitoring all of our endpoints for software and even hardware vulnerabilities.

Initially, we implemented SentinelOne Singularity Identity to prevent a ransomware attack reinfection, but it has been transformed into our most important, critical, cyberthreat identification, prevention and mitigation solution. 

SentinelOne Singularity Identity has helped make our organization more secure with enhanced built-in monitoring. Not only by AI, trained and developed by SentinelOne, but also by a 24/7 cybersecurity team that are always monitoring for incidents and are available for support when it is needed the most

SentinelOne Singularity Identity provides a unified view which is important to our organization, particular when there's an incident and time is of the essence. 

Managing our environment from the SentinelOne Singularity Identity console is easy from an IT professional standpoint. I would easily rate it a nine out of ten.

I fully researched several companies including SentinelOne before we invested our money into a cybersecurity solution. I discovered that there were many top, well-known companies using SentinelOne to safeguard their identities and assets from exploitation and compromise. 

The visibility of Singularity Identity is great. A full spectrum of information about each endpoint, threat or incident is available usually only one or two clicks away, which helps to quickly and more accurately determine everything needed to identify, mitigate and prevent or eliminate a threat. Singularity Identity also provides all the tools and functionality necessary to override if something is deemed a false positive.  

Perhaps the most valuable resource that SentinelOne Singularity Identity has to offer is the AI-based automated mitigation. let's be honest, even the best team of cybersecurity experts are no match for some of the automated ransomware bots that can spread through an entire network in mere minutes, and that is where the AI assisted mitigation is key to stopping threats dead in their tracks. Situations where a human could potentially take hours to identify the source and take mitigating actions, SentinelOne's Artificial Intelligence handles the identification and mitigation on your behalf in mere seconds, until a human can assess the situation, and make appropriate adjustments as needed, significantly reducing our MTTD. 

I have confidence in Singularity Identity's ability to identify and mitigate threats. This solution, in my opinion, ranks among the finest, most capable products currently available on the market today. 

The AI-based detection, scanning, prevention and mitigation features are the most valuable features. 

The UI could stand to be more user-friendly, specifically for users that are not in IT, or for smaller mom and pop sized companies that may not have a dedicated IT department or budget for a fully managed solution. 

I have been using SentinelOne Singularity Identity for two years. Most of that time was fully managed by a 3rd party SOC/MSP, and now more recently, we have migrated to a self-managed cloud solution. 

I haven't experienced any stability issues, whether through the server, the console, or the clients. I am impressed with the stability of SentinelOne Singularity Identity.

We are currently still utilizing all of our other solutions simultaneously, until their licenses run out which include, Webroot EPP, and Microsoft Defender and Defender for Cloud. SentinelOne works perfectly side-by-side with these others, however, we will soon be removing Webroot as it is a tertiary and an unnecessary redundancy and offers no real advantages or capabilities over what SentinelOne already provides. 

For the deployment, I uploaded the package to our Intune portal and distributed it to all of our endpoints and devices. For devices that were not accessible, we used a flash drive to install it manually. 

Initially, we utilized an MSP. Then, there were two distinct deployments. The first deployment took place two years ago when we experienced a cyber/ransomware attack on our network. Throughout that incident, a third-party company assisted us in restoring and wiping every one of our computers and installing SentinelOne client on them, among other tasks. So at this phase, were were using SentinelOne as a fully managed solution. 

Now, within the last month, we have transitioned to managing our system internally. The subsequent deployment was executed through Intune and manual solutions. The encryption keys were migrated from the previous MSP with the help of the SentinalOne migrations team. 

The return on investment is evident through the value provided by SentinelOne Singularity Identity and its protective features. While the cost is in the higher tier of solutions of similar products, ask yourself, can you really put a price on your ability to sleep at night? 

The price of SentinelOne Singularity Identity is relatively high, but it offers numerous features and capabilities that make it well worth the investment. Not to mention peace of mind. 

We absolutely evaluated other solutions. This is an important decision for the security of our network and IT infrastructure. 

I would rate SentinelOne Singularity Identity a 9 /10.

SentinelOne Singularity Identity can easily work alongside other security products, in my experience, including Microsoft Defender.

for anyne considering this as a solution, I would suggest conducting your own further research on alternative products to firmly establish whether or not SentinelOne Singularity Identity is indeed the appropriate product. In my view, the licensing model is geared more towards medium operations like ours, which have around two hundred endpoints, on up to large scale enterprise-sized companies. The licensing structured minimum of 200 endpoints may be a bit much for a small company with just a few endpoints. But, I in summary, I am happy with the choice to buy this product, and as our company grows SentinelOne will allow for that growth. 

We use SentinelOne Singularity Identity as our endpoint antivirus solution.

SentinelOne Singularity Identity has enabled us to safeguard all of our endpoints, as opposed to our previous solution, which only protected a portion of our endpoints and operating systems.

We are happy with the unified view that SentinelOne Singularity Identity provides. The Unified view is important to our organization.

Once we have overcome the learning curve, managing our environment from the console becomes straightforward, and transitioning between menus is not complicated.

SentinelOne Singularity Identity has assisted in decreasing our Mean Time to Detect. Microsoft Sentinel is ingesting data from SentinelOne to alert us about specific threats. Whereas in the past it used to take us a couple of days to detect these threats, we are now receiving proactive threat alerts promptly, thanks to the ingestion of logs into our SIEMs.

SentinelOne Singularity Identity has assisted in decreasing our Mean Time to Respond.

The threat detection capability is the most valuable feature.

Our engineers are dealing with issues to add exclusions to the antivirus for custom applications.

I have been using SentinelOne Singularity Identity for eight months.

The solution is extremely stable.

The solution is highly scalable.

The technical support is good.

Positive

We replaced ESET with SentinelOne Singularity Identity due to its compatibility with various versions of Mac and Windows and its ability to detect and respond to risks more efficiently.

The price is affordable.

We evaluated Darktrace and Defender.

I would rate SentinelOne Singularity Identity a nine out of ten.

We have an E5 license and Defender works well with Microsoft SIMs but SentinelOne is superior in detecting threats, especially zero-day threats.

Organizations should ensure they have staff that can support the solution before implementing it.