Who are SentinelOne?
SentinelOne’s mission is to defeat every attack, every second, of every day. Their platform delivers AI-powered prevention, detection, response, and threat hunting across user endpoints.
Through SentinelOne, we’ll be providing endpoint detection and response over antivirus.
How does Endpoint Detection and Response work?
Endpoint detection and response (EDR) is designed to cover the flaws of antivirus.
For those that don’t know, and endpoint is a laptop, workstation, server; essentially any entry-point to your company network.
EDR performs real-time scanning of files and behaviours on an endpoint. It then collects data and analyses this to establish threat patterns.
If it detects suspicious behaviour, it isolates the file until it is validated. EDR also includes automated remediation; undoing any damage caused by malicious files.
For more information on the difference between EDR and antivirus, read our insight.
Top Benefits of Endpoint Detection and Response with SentinelOne:
Faster Detection of More Threats
EDR is continuously scanning changes to your endpoints. This means there’s no waiting for a virus list or a scan to act on threats. EDR will immediately stop malicious behaviour and alert IT teams.
Scans also take less time and use less resource as EDR uses the cloud to offload some processing from the endpoint.
Our Service is Managed
Through SentinelOne, we’ve opted for a managed service. This means that there are real-life humans monitoring and responding to threats.
Timeline of Events
Unlike antivirus, EDR provides a detailed timeline of any incident. You’ll be able to view a history of the attack, including every alert. This helps to find the source of an attack to learn from it.
