AI SecurityBlogSecurity OperationsSecurity
Blog4 minute read

SentinelOne FY27 Sales Kick Off Recap

Fresh off its sales kickoff, SentinelOne is going all in on AI security, unified attack surface protection, and the Autonomous SOC. The mid-market enterprise detection and response (EDR) narrative is outdated. This is about securing AI at scale and reshaping modern security operations.

In this blog

  1. Key takeaways
  2. Conclusion

It feels like I'm on the SentinelOne tour this year. It started at the end of last year when I was graciously invited to their Technical Summit. While there, I earned my Paladin accreditation and had the opportunity to spend time with the product teams, technical sales leaders, and sales engineers who keep S1 moving forward.  Now, as I depart SentinelOne's SKO — with PartnerOne and the Paladin Summit ahead in the coming months — it's been energizing to have a front row seat to the strategic growth unfolding. From key acquisitions to enabling more incident responders than ever before, SentinelOne is clearly focused on securing AI at scale for some of the largest organizations in the world.

 Key takeaways

Let's start by shattering some outdated perceptions of SentinelOne that no longer apply. 

  • SentinelOne should no longer be considered a "Mid-Market Solution".  S1 now has over 40 million agents worldwide, accompanied by some of the biggest logos a cyber company could capture.
  • SentinelOne is no longer just an enterprise detection and response (EDR) company. Within the last year, 50% of SentinelOne's revenue has come from revenue streams that are NOT endpoint security, but instead Cloud, AI Security and SIEM

SentinelOne shared their "Big Bets" for the year. The WWT GS&A Security Operations team is in complete agreement with these, as these are the conversations we are having in the field, time and time again. 

  • Unified Attack Surface Protection
  • AI Security
  • Autonomous SOC

The Unified Attack Surface Protection shouldn't surprise too many folks here. We have been chasing this for a long time. Identity is the new perimeter, CNAPP, new terminology and frameworks such as CTEM are pushing defenders to reevaluate their entire security posture.  SentinelOne is well positioned here, with its unified EDR/Identity agent and Cloud Security portfolio.

The Prompt Security acquisition by SentinelOne has put AI Security at the forefront of their strategy, and the business is rocketing. 

According to SentinelOne, Prompt has seen a more than 400% increase in adoption over the last year.  This isn't a coincidence – securing the employee workforce around AI is paramount, and CISOs and business leaders are learning this quickly.  It is estimated that 1.6% of all AI prompts contain some type of enterprise policy violation.  Now 1.6% doesn't sound too scary right, but we need to keep in mind scale here. 

Take 1000 employees, each of whom uses AI 10 times a day, for a sum of 10,000 possible prompts every single day. 1.6% of 10,000 = 160 estimated policy violations per day. The policy violations range from PII to cleartext credentials and API key exposures.  There is a need.

Finally, Autonomous SOC SentinelOne is attacking this through its Unified Data Lake, combining AI SIEM, Purple AI, Hyperautomation, and Observo.ai to massively expedite the Incident Response lifecycle.  While I personally think the "Single Pane of Glass" is simply a pipe dream for folks in Security Operations, SentinelOne is giving this security veteran a glimmer of hope.

 Conclusion

I leave Vegas excited. Excited for SentinelOne, excited to tinker with Prompt Security and excited to come back and enable the WWT sellers.  I am also still thinking about some of the conversations I have had over the last few days about AI, Autonomous SOC, and how each affects Incident Responders and SecOps folks.  The Incident Response coach in me worries about the AI crutch; will AI diminish the technical chops required to investigate, critically analyze, ask hard questions, or curb responder curiosity?  We are so early in this journey, with numerous benefits, but it is still hard to see how this imminent shift will affect people over the next 18 months.