Threat investigations and responses are radically transformed by AI security analysts with one-click search, recommended queries and automatically generated reports, enabling teams to deliver new levels of defense, savings and efficiencies
One year ago SentinelOne (NYSE: S), announced the first AI-powered generative platform for cybersecurity. Today, the company is once again leading the way and communicating the global availability of Purple AI, an AI-powered security analytics system designed to unlock the power of security teams, saving them time and money by radically simplifying and accelerating threat hunting, investigation, and response.
"Every day, security teams receive an average of more than 1,000 alerts requiring further investigation. Those same teams must then proactively look for threats that escape detection. They are stretched and understaffed and need support to stay on track," said Ric Smith, Chief Product and Technology Officer at SentinelOne. “With Purple AI, SentinelOne offers the industry's most advanced GenAI security technology to help detect threats earlier, respond faster, and prevent attacks efficiently and at scale.”
Leader in the sector
Early adopters of the Purple AI solution report performing investigations 80% faster, and the most innovative enterprises are already leveraging this technology to empower their security teams and stay ahead of threats.
“The security insights provided by Purple AI surpassed anything we had,” said Richard Bailey, SVP IT at PruittHealth Connect. "PurpleAI helps identify weaknesses and vulnerabilities, strengthening our overall security systems. Additionally, it improves accuracy and reduces human error in queries, freeing up time for other tasks."
A power multiplier
More than a security chatbot or search console, Purple AI is an AI-powered security analyst that radically simplifies threat hunting and investigations by translating natural language into structured queries, automatically querying native and partner data, consistently summarizing results and suggesting follow-up queries in natural language, and saving investigations in collaborative notebooks. With Purple AI, security teams can:
- Simplify complex queries and speed investigations with natural language conversations. Purple AI is the only AI security analyst that supports the Open Cybersecurity Schema Framework, so analysts have a single, normalized view of native and partner-provided data.
- Identify and mitigate hidden risks in your environment with Purple AI Threat Hunting's built-in Quick Starts to launch investigations with just one click.
- Reduce average response time and investigation time with suggested search queries and natural language summarized results.
- Collaborate easily with shared, exportable survey notebooks and automatically generated emails.
Concrete results
With Purple AI, security teams save time, increase visibility, and maximize resources, and companies of all sizes and across all industries are harnessing its power to simplify and improve security operations while strengthening defenses.
“Purple AI increases the efficiency of the team that focuses on log management and SIEM contexts,” noted John McLeod, CISO of NOV, a company providing innovative energy solutions. “The technology allows them to quickly query data and use suggested queries and intelligent summaries to get the answers they need in an instant, reducing average response time.”
Ryan Mason, Incident Response Cyber Analyst at NOV, adds: "Purple AI Notebooks help me save time defining and optimizing EDR queries for IR hunting scenarios. Suggestions are clearly summarized in a description and table, crafted queries can be refined, and suggested follow-up requests help find quick answers."
Availability
Purple AI is available worldwide today. For more information on the new technology and how it can transform security operations see www.sentinelone.com
