In our company, we use SentinelOne Vigilance for security purposes. We not only use it to detect viruses but also to monitor any activities on the endpoints so that we can take appropriate measures to mitigate any potential threats.
The best feature of this solution is the third-party management aspect. An external company oversees the tool's management and monitors the data it generates. If the EDR detects suspicious activity, it will react accordingly and take necessary actions, such as blocking a device.
The most valuable feature is that it works and isn't compromised. Other solutions I have used have all been compromised and SentinelOne is the only one that hasn't been compromised as far as I understand.
Senior Security Engineer at a tech services company with 1,001-5,000 employees
Feb 23, 2022
There's no problem with how this product works, but the toughest challenge that customers find is with its deployment and tuning. Getting it tuned properly takes some time. You can deploy it with just about anything, but it's always a challenge.
Solutions Engineer at a tech services company with 1,001-5,000 employees
May 9, 2024
SentinelOne Vigilance's integration capabilities with other products can be considered as an area with certain shortcomings where improvements are required.
Sometimes, SentinelOne Vigilance also detects false positives, which are not true. In such cases, we need to make changes in the policies on the dashboard accordingly.
I suspect that the areas for improvement may not necessarily lie within the tool itself but rather in our organization's lack of knowledge and understanding of cybersecurity. Cybersecurity is a complex area, and our organization has a skill set deficit. Therefore, we rely on our cybersecurity support company to help us manage the tool and handle incidents. Our limited expertise sometimes prevents us from fully utilizing them or identifying potential gaps.
