Last week in beautiful Boca Raton, SentinelOne hosted OneCon, our first-ever customer customer conference, which brought together some of the brightest minds from the cybersecurity community today.
Even in its earliest stages, we envisioned OneCon to be the industry’s most forward-thinking event, aimed at exploring new and innovative ways of thinking about security. For those who weren’t able to join us in person, read on for a round-up of all of the highlights from this year’s gathering.
Tech Highlights From OneCon23
For this event, our focus was on equipping customers with the innovative technology required to tackle both present and future cyber security challenges. In today’s ever-changing threat landscape and uncertain economic environment, enterprises are looking to increase efficiency, focus on what’s important, and accelerate their security operations to stay ahead of attacks.
Live from #OneCon23 and our welcome reception tonight Sponsored by @Mandiant, the event was the perfect start to a week of big ideas, networking, and collaboration. Who else is ready to shape the future of #cybersecurity? Stay tuned for more updates from #OneCon, our… pic.twitter.com/sfPl1Nuir0
— SentinelOne (@SentinelOne) November 8, 2023
In pursuit of pushing the boundaries of innovation, SentinelOne announced a unified set of key releases for the Singularity Platform:
Purple AI (Beta), unifying, accelerating, and simplifying SecOps workflows
Singularity Data Lake with Singularity Graph, enabling security teams by centralizing, transforming, correlating, and visualizing security and log data
Singularity Cloud Workload Security’s Integration with Snyk, delivering code-to-cloud security
Singularity Endpoint’s new unified agent, covering endpoint and identity attack surfaces for continuous, real-time protection
PinnacleOne, supporting today’s C-suite leaders through strategic risk analysis and expert security guidance
Kicking off the event, Ric Smith, Chief Product & Technology Officer at SentinelOne, touched on what the current security landscape requires from modern businesses. “Enterprises don’t just need a robust and capable platform, they also need intelligent automation that simplifies the analyst experience and boosts the productivity of their security teams.” He continued that, “Guided by our belief that the fusion of design-driven product development and AI culminates in an unparalleled security experience, the Singularity Unity Release is meticulously crafted to heighten user experience and fortify security measures.”
OneCon attendees were given a preview of the upcoming Singularity Platform Unity Release: a series of enhancements for a new user experience combining Purple AI and significant upgrades to our Endpoint Security, Cloud Security, and Data Lake offerings. The Unity release was built with the modern-day organization in mind, allowing them to harness the power of best-of-breed solutions all in a single platform and powered by our Singularity Data Lake.
Singularity Platform | SOC Workflow Automation & Complete Enterprise Protection
Faced with overwhelming alert volumes, complex investigations, and increasingly advanced threat actors, organizations need a unified security platform that equips them to comprehensively protect across the enterprise.
SentinelOne’s AI-powered Singularity Platform has led the way with full visibility, enterprise-grade automation, and a 98% satisfaction rate with customers. Our new planned innovations take proactive security one step further with a new optimized experience, SOC command post, and system of record, providing security analysts with an optimized experience to strengthen governance and reduce Mean Time to Detect (MTTD) and Mean Time to Resolve (MTTR) rates.
Purple AI | Empowering Analysts to Detect Earlier, Respond Faster & Stay Ahead of Attacks
SentinelOne is proud to be a pioneer in the application of AI to cybersecurity with the industry’s first AI-powered security platform. At OneCon, we announced our continued leadership with the beta release of Purple AI – our generative AI assistant that unifies, accelerates, and simplifies SecOps to help protect what matters most.
Today’s SecOps teams must contend with long alert queues, thousands of investigation hours, and complex configuration tasks, all compounded by a growing skills gap putting pressure on advanced analysts. This leaves little time for proactive threat hunting and results in analyst burnout and an overtaxed SOC.
Purple AI is a force multiplier that saves time and resources for security teams by scaling autonomous protection across the enterprise. Unify your workflows with a single place to access data across the platform and partner logs, and scale collaboration across teams using notebooks, which can save, tag, and export investigation workflows.
Simplify the complex by using natural language to streamline threat hunting and investigations. Every level of analyst is empowered with instructional hunting prompts AI-powered auto-summaries, suggested queries, and actionable next steps. With Purple AI, accelerate SecOps workflows through auto-investigations to collect evidence from the Singularity Data Lake, generate reports, and help determine a verdict for detected threats.
Underpinning it all, know that your data and privacy are protected. Purple AI models do not train using your data or requests and we never share your processes or insights with other customers. To learn more, sign up for a demo today.
Endpoint Security | Advanced Protection for Identity and Exposure Management
SentinelOne’s platform strategy focuses on enterprise-grade prevention, detection, and response across all attack surfaces from endpoints and devices to servers. The Singularity Platform Unity Release enhances customers’ endpoint security experience through new features like Identity (conditional access and breached password detection) and Attack Surface and Exposure Management (prioritizing and managing vulnerability exposures).
These new features will be seamlessly delivered in a single, rebootless agent.
Cloud Security | Delivering Enhanced Protection with CNAPP
As part of the 12-month roll-out, the Singularity Platform will soon feature a comprehensive Cloud-Native Application Protection Platform (CNAPP) designed to safeguard public and private cloud infrastructures. By combining both agent and agentless capabilities, the platform will provide robust run-time protection and real-time defenses against threats, misconfigurations, and exposed secrets.
All of these features are set to integrate seamlessly with Singularity Operations Center and Data Lake, providing customers with deep visibility and operational governance over their entire digital estate.
The SentinelOne & Snyk Integration | Cloud Workload Protection From Build Time to Runtime
The complexity of the modern software supply chain and supporting apps makes prioritizing fixes a challenge for software developers and security teams. To solve this pain point, SentinelOne has joined forces with Snyk, a leading force in developer security to announce a new cloud-native security integration.
The OneCon crowd was first to hear about this latest integration, which works by correlating SentinelOne-identified cloud runtime threat detections together with vulnerabilities found by Snyk in container images. The integration empowers cloud security, application security, and developer teams to more effectively collaborate and address the root cause of rising issues.
While developers are under increasing pressure to build applications faster, they must also work with their security teams to secure both their build and runtime environments. The SentinelOne & Snyk integration supports this process by providing security teams the means to manage application risks in the cloud. This in turn simplifies the prioritization and remediation focus for developers.
The integration is now available to SentinelOne and Snyk customers through the Singularity Marketplace. Learn more about the integration here.
Singularity Data Lake | Cost-Effective, High Performance Security & Log Analytics
Innovative cybersecurity solutions like Singularity Data Lake and Singularity Graph are poised to transform how organizations manage and analyze their security and IT data.
Singularity Data Lake enables organizations to centralize and transform data for cost-effective, high-performance security and log analytics. This consolidated, AI-powered security and log data platform brings together Security Information and Event Management (SIEM), Extended Detection Response (XDR), and Log Analytics solutions. By streamlining cybersecurity and IT operations, it reduces complexity and enhances effectiveness in managing security.
Singularity Data Lake leverages the Open Cybersecurity Schema Framework to normalize all kinds of data, offering a full view of an organization’s security posture. Its cloud-native architecture and marketplace of connectors simplify data importation and promote cost efficiency and scalability, leading to significant cybersecurity cost savings.
Singularity Graph, a feature powered by Singularity Data Lake, eases the work of security analysts. It automatically displays relationships between secured assets and related events, providing a visualization of interconnected assets like hosts, workstations, containers, and identities within an organization’s infrastructure. This visual insight helps analysts understand the potential impact and root cause of an attack, enabling them to plan effective countermeasures.
Singularity Data Lake and Singularity Graph empower organizations to confidently navigate the ever-evolving threat landscape. By providing centralized data management, faster detection, advanced analysis, and enhanced investigation capabilities, these solutions offer more than just another cybersecurity product – they comprise a comprehensive data platform that drives business value and keeps organizations secure in today’s digital landscape.
PinnacleOne Advisory Group | Unparalleled Insights & Transformative Risk Management
In the face of increasingly complex and vulnerable systems, enterprise leaders contend with a changing global business landscape and developing geopolitical risks that, to cybercriminals and nation-state threat actors, creates avenues for attack.
To support C-suite leaders, SentinelOne launched PinnacleOne at OneCon as a strategic risk analysis and advisory group. Through PinnacleOne, customers will have access to an elite team of experts, led by industry experts Chris Krebs and Alex Stamos, who will help today’s executives understand the realities of operating in the modern global business landscape through unparalleled intelligence, insight and transformative risk management strategies
It all comes back down to the idea of fostering open communication and community. PinnacleOne was created as a direct response to those asking for help in solving the big security challenges and making sure their future path is a safe one. SentinelOne gives a warm welcome to Krebs, joining SentinelOne as Chief Intelligence and Public Policy Officer and President of PinnacleOne and Stamos, who will serve as Chief Trust Officer for SentinelOne.
“In launching PinnacleOne, we are providing access to top experts who can help enterprises think bigger and broader than the siloed approaches of today.”, said Tomer Weingarten, CEO, SentinelOne. “Our holistic approach to risk management will empower organizations to adapt and move forward with confidence across all products and environments.”
For more information on the PinnacleOne Advisory Group, read our Press Release here.
Conclusion
Our mission at OneCon23 was to empower customers with the leading-edge technology essential for facing both current and future cybersecurity challenges. In our effort to support enterprise leaders prioritize the most critical aspects of their businesses and expedite their security operations, we created OneCon as a space for cyber defenders to learn, share, and find inspiration in the face of evolving threats.
Reflecting on our very first customer conference, OneCon has left us all with much to think about. For the SentinelOne team, true enterprise-wide security lies in how we shift from safeguarding devices to securing the entire business as a whole. With new and developing cyber threats coming around the corner, we are glad to be in the company of leading cybersecurity experts who are ready to collectively shift with us.
We’d like to thank all of our sponsors, guest speakers, partner presenters, support staff, event organizers, and most of all, our attendees for an amazing OneCon23. From all of us at SentinelOne, we look forward to seeing you at next year’s event!
Contact us to learn more about what we are doing to evolve the cyber defense industry or book a demo to get more in-depth experience with our newest integrations and security offerings.