The AI-SPM solution expands the Singularity Cloud Security portfolio to provide visibility into the use of AI services, detecting misconfigurations and vulnerabilities in AI applications and identifying potential attack avenues
SentinelOne (NYSE: S), a global leader in AI-powered cybersecurity, introduced new AI Security Posture Management (AI-SPM) capabilities to protect and secure the use of AI services in the workplace. Built on the cybersecurity platform Singularity™ from market-leading SentinelOne, the new solution expands SentinelOne's Singularity Cloud Security portfolio, which boasts the best ratings, to give customers visibility and protection into known and unknown AI cloud services running on their systems. SentinelOne's AI-SPM will enable security teams to discover all AI applications and models in use, identify AI service misconfigurations and vulnerabilities, and gain visibility into potential attack paths related to AI workloads. As a result, businesses can confidently leverage the productivity and competitiveness benefits of AI, while reducing the security, privacy and regulatory compliance risks inherent in cloud-based AI applications and models.
“Early Adopter Access” is available for SentinelOne customers, while general availability is expected in early 2025.
In May 2024, one survey di McKinsey found that 65% of organizations were using generative AI in at least one business division, a nearly double increase from the 33% rate reported in 2023, and that 50% were already using generative AI across multiple domains. To meet demand, all major public cloud providers, including Amazon Web Services, Google Cloud, and Microsoft Azure, have introduced simple ways to build, train, and manage generative AI applications in the cloud.
"The reach and benefits of generative AI are undeniable. However, the very tools and cloud services that simplify and accelerate the adoption of generative AI open up a new attack surface and potential regulatory risk," said Ely Kahn, Vice President of Product Management at SentinelOne. “With the AI-SPM solution, we enable customers to gain the benefits of GenAI and simultaneously provide teams with the visibility, awareness and tools needed to protect sensitive data in these powerful cloud applications.”
The new AI-SPM solution included in SentinelOne's Singularity Cloud Security portfolio is based on the complete CNAPP features of the Singularity platform and provides functionality for:
- Discover and gain visibility into known and unknown AI pipelines and models – SentinelOne AI-SPM discovers all AI services, training, distributed models and pipelines of cloud services such as AWS (Amazon SageMaker and Amazon Bedrock), Google Cloud (Google Vertex AI) and Microsoft Azure (Microsoft Azure OpenAI).
- Find and identify vulnerabilities and misconfigurations in AI infrastructure – SentinelOne AI-SPM provides guidance on possible misconfigurations in AI services to protect against inadvertent exposure that could lead to possible data exfiltration and unauthorized access to AI models and services.
- Visualization and analysis of potential attack paths: SentinelOne's graph explorer displays attack paths related to AI-based workload alerts to graphically show how an attacker might move through the customer environment and potentially move laterally to access resources.
- Manage and reduce compliance risks – Focus on data rules that contribute to enterprise-wide compliance and risk baselines as part of a broader assessment against regulatory standards such as the EU AI Act and the NIST framework for managing AI risks.
