Overview For effective security management, you need visibility into your environment. SentinelOne offers powerful tools for auditing, reporting, and notifications that give you real-time insights, historical data, and alerts on critical events. Today, we’ll explore how to set up and customize these tools to maintain security oversight and ensure compliance. Read more…
Overview Today, we’re exploring Advanced Detection Engines and Automation in SentinelOne. With advanced detection capabilities like Static and Behavioral AI, SentinelOne goes beyond traditional endpoint detection. Adding automation to these capabilities can help streamline responses and allow your team to focus on high-priority threats. Let’s break down how to configure Read more…
Overview In this post, we’ll explore Incident Management and Threat Response workflows in SentinelOne. Here’s where the SentinelOne platform truly shines, offering a comprehensive toolset for managing incidents from detection through resolution. We’ll dive into the Incidents Tab, explain critical response actions, and touch on threat analysis tools like VirusTotal Read more…
Overview In this post, we’ll focus on two critical components of SentinelOne: Sentinels and Policy Configuration. Sentinels manage your endpoints, allowing you to take actions like quarantine, remote shell access, and file retrieval. We’ll also cover setting up robust policies, including Detect and Protect modes, so your endpoints remain secure. Read more…
Overview This is the first post of several in the S1 series. I wanted to write these in a way where you can get up to speed in S1 as quickly as possible. In today’s post, we’ll walk through the essentials of getting SentinelOne up and running, customizing the console Read more…