SentinelOne Brings the Power of Purple AI to Zscaler, Okta, Palo Alto Networks, Proofpoint, Fortinet and Microsoft Data
SentinelOne (NYSE: S) has expanded its Purple AI security analyst capabilities to integrate with third-party security offerings, including Zscaler, Palo Alto Networks, Okta, Proofpoint, Fortinet, and Microsoft Office 365. This expansion allows customers to conduct cybersecurity investigations and threat hunting across multiple platforms using natural language queries.
The company has also introduced multilingual support for Purple AI, adding languages such as Spanish, French, German, Italian, Dutch, Arabic, Japanese, Korean, Thai, Malay, and Indonesian to its existing English version.
Purple AI leverages the Open Cybersecurity Schema Framework (OCSF) to normalize and query data on ingestion, enabling instant querying of native and third-party data. This integration helps security teams simplify threat hunting and accelerate investigations, reducing response times from hours to minutes.
SentinelOne (NYSE: S) ha ampliato le capacità del suo analista di sicurezza Purple AI per integrarsi con le offerte di sicurezza di terze parti, tra cui Zscaler, Palo Alto Networks, Okta, Proofpoint, Fortinet e Microsoft Office 365. Questa espansione consente ai clienti di condurre indagini sulla cybersicurezza e attività di threat hunting su più piattaforme utilizzando query in linguaggio naturale.
L'azienda ha anche introdotto il supporto multilingue per Purple AI, aggiungendo lingue come spagnolo, francese, tedesco, italiano, olandese, arabo, giapponese, coreano, tailandese, malese e indonesiano alla sua versione inglese esistente.
Purple AI sfrutta il Open Cybersecurity Schema Framework (OCSF) per normalizzare e interrogare i dati al momento dell'ingestione, consentendo interrogazioni instantanee di dati nativi e di terze parti. Questa integrazione aiuta i team di sicurezza a semplificare il threat hunting e ad accelerare le indagini, riducendo i tempi di risposta da ore a minuti.
SentinelOne (NYSE: S) ha expandido sus capacidades del analista de seguridad Purple AI para integrarse con ofertas de seguridad de terceros, incluyendo Zscaler, Palo Alto Networks, Okta, Proofpoint, Fortinet y Microsoft Office 365. Esta expansión permite a los clientes realizar investigaciones de ciberseguridad y búsqueda de amenazas en múltiples plataformas utilizando consultas en lenguaje natural.
La empresa también ha introducido soporte multilingüe para Purple AI, añadiendo idiomas como español, francés, alemán, italiano, neerlandés, árabe, japonés, coreano, tailandés, malayo e indonesio a su versión en inglés existente.
Purple AI aprovecha el Open Cybersecurity Schema Framework (OCSF) para normalizar e interrogar datos en el momento de la ingestión, permitiendo interacciones instantáneas de datos nativos y de terceros. Esta integración ayuda a los equipos de seguridad a simplificar la búsqueda de amenazas y acelerar las investigaciones, reduciendo los tiempos de respuesta de horas a minutos.
SentinelOne (NYSE: S)는 Purple AI 보안 분석가의 기능을 확장하여 Zscaler, Palo Alto Networks, Okta, Proofpoint, Fortinet 및 Microsoft Office 365와 같은 제3자 보안 제공업체와 통합되었습니다. 이 확장은 고객이 자연어 쿼리를 사용하여 여러 플랫폼에서 사이버 보안 조사를 수행하고 위협 사냥을 할 수 있게 합니다.
회사는 Purple AI에 다국어 지원을 도입하여 기존 영어 버전에 스페인어, 프랑스어, 독일어, 이탈리아어, 네덜란드어, 아랍어, 일본어, 한국어, 태국어, 말레이어 및 인도네시아어와 같은 언어를 추가하였습니다.
Purple AI는 Open Cybersecurity Schema Framework (OCSF)를 활용하여 데이터 수집 시 데이터를 정규화하고 쿼리할 수 있게 하여, 네이티브 및 제3자 데이터를 즉시 쿼리할 수 있도록 합니다. 이 통합은 보안 팀이 위협 사냥을 단순화하고 조사를 가속화하여 응답 시간을 몇 시간에서 몇 분으로 단축하도록 돕습니다.
SentinelOne (NYSE: S) a étendu les capacités de son analyste de sécurité Purple AI pour s'intégrer aux offres de sécurité tierces, telles que Zscaler, Palo Alto Networks, Okta, Proofpoint, Fortinet et Microsoft Office 365. Cette expansion permet aux clients de mener des enquêtes sur la cybersécurité et de chasser les menaces sur plusieurs plateformes en utilisant des requêtes en langage naturel.
L'entreprise a également introduit un support multilingue pour Purple AI, ajoutant des langues telles que l'espagnol, le français, l'allemand, l'italien, le néerlandais, l'arabe, le japonais, le coréen, le thaï, le malais et l'indonésien à sa version anglaise existante.
Purple AI exploite le Open Cybersecurity Schema Framework (OCSF) pour normaliser et interroger les données lors de leur ingestion, permettant des requêtes instantanées de données natives et tierces. Cette intégration aide les équipes de sécurité à simplifier la recherche de menaces et à accélérer les enquêtes, réduisant les temps de réponse de plusieurs heures à quelques minutes.
SentinelOne (NYSE: S) hat die Funktionen seines Purple AI-Sicherheitsanalysten erweitert, um mit Drittanbietersicherheitslösungen zu integrieren, darunter Zscaler, Palo Alto Networks, Okta, Proofpoint, Fortinet und Microsoft Office 365. Diese Erweiterung ermöglicht es den Kunden, Cyber-Sicherheitsuntersuchungen und Bedrohungssuche über mehrere Plattformen mit natürlichsprachlichen Abfragen durchzuführen.
Das Unternehmen hat auch mehrsprachige Unterstützung für Purple AI eingeführt, indem es Sprachen wie Spanisch, Französisch, Deutsch, Italienisch, Niederländisch, Arabisch, Japanisch, Koreanisch, Thailändisch, Malaiisch und Indonesisch zu seiner bestehenden englischen Version hinzugefügt hat.
Purple AI nutzt das Open Cybersecurity Schema Framework (OCSF), um Daten bei der Erfassung zu normalisieren und abzufragen, wodurch sofortige Abfragen von nativen und Drittanbieterdaten ermöglicht werden. Diese Integration hilft Sicherheitsteams, die Bedrohungssuche zu vereinfachen und die Untersuchungen zu beschleunigen, indem die Reaktionszeiten von Stunden auf Minuten verkürzt werden.
- Purple AI is SentinelOne's fastest-growing product
- Integration with major security platforms expands market reach
- Multilingual support increases global market accessibility
- Reduces security response times from hours to minutes
- None.
Insights
The expansion of Purple AI's capabilities represents a significant technological advancement in cybersecurity automation. Integrating with major security platforms like Zscaler, Okta and Palo Alto Networks creates a unified security analysis ecosystem that addresses the critical challenge of data fragmentation in enterprise security. The multilingual support across 12+ languages substantially expands the global market reach.
The integration with OCSF (Open Cybersecurity Schema Framework) for data normalization is particularly noteworthy - this standardization enables seamless cross-platform threat analysis, potentially reducing investigation times by 60-70% compared to traditional methods. For enterprise customers, this translates to faster threat detection and response, important in an environment where attack windows are increasingly narrow.
The market impact should be substantial, considering SentinelOne's statement about Purple AI being their fastest-growing product. This expansion positions SentinelOne competitively against major players like CrowdStrike and Microsoft in the AI-powered security analytics space.
This integration addresses several critical pain points in modern security operations. The ability to perform natural language queries across multiple security tools tackles the overwhelming challenge of alert fatigue and data silos that plague many security teams. By normalizing data through OCSF, Purple AI can provide contextual insights that would typically require manual correlation across multiple platforms.
The partnership with Zscaler is particularly strategic - combining Zscaler's robust SSE capabilities with SentinelOne's AI-driven analysis creates a powerful zero-trust security framework. The ability to quickly identify malware downloads, DLP violations and suspicious file transfers across the network significantly enhances threat hunting capabilities.
This development could reduce mean time to detect (MTTD) and mean time to respond (MTTR) metrics by eliminating the need for manual data correlation across different security tools. For enterprises struggling with security staff shortages, this level of automation and integration is invaluable.
From a market perspective, this expansion strengthens SentinelOne's competitive position in the $40+ billion cybersecurity market. The integration with major security vendors addresses the enterprise demand for consolidated security solutions, potentially increasing SentinelOne's ability to capture larger enterprise contracts.
The multilingual support is a strategic move to penetrate international markets, particularly in Asia and Europe, where language barriers often limit adoption of security tools. This could accelerate SentinelOne's international revenue growth and market share expansion.
The timing is optimal given the increasing enterprise focus on AI-driven security solutions and the growing complexity of cyber threats. With Purple AI's rapid adoption rate, this expansion could drive significant revenue growth through both new customer acquisition and increased usage among existing customers.
Popular generative AI security analyst can now be used to speed cybersecurity investigations and simplify threat hunting across a growing list of native and third-party sources
The company also introduced multilingual support for Purple AI, complementing its popular English-language version with new support for natural language queries and summaries in Spanish, French, German, Italian, Dutch, Arabic, Japanese, Korean, Thai, Malay, Indonesian and more.
“Purple AI has rapidly become SentinelOne’s fastest growing product, and customer uptake and feedback has been incredible. Far beyond just a great natural language querying mechanism, Purple AI is automating investigations, prioritizing threats, and slashing response times from hours to mere minutes,” said Ely Kahn, Vice President, Product Management, Cloud Security, AI/ML and Core Platform, SentinelOne. “By extending Purple AI’s capabilities across both native and third-party data in Singularity, customers can rapidly stop even the most sophisticated attacks in their tracks, while gaining more value from the full security stack and their collective security data.”
Overwhelming alert volumes, multiple data sources, increasingly sophisticated threat actors and expanding attack surfaces result in missed incidents and complex investigations. Disparate data schemas lead to limited visibility and threats falling through the cracks. And increasingly fast breakout times too often put defenders at a disadvantage of stopping lateral movement before the damage is done.
Purple AI simplifies the data problem for security teams to empower simpler and more complete threat hunting, while speeding investigations and response. It's the only GenAI security analyst in the industry that leverages the Open Cybersecurity Schema Framework (OCSF) to query data that has been normalized on ingestion. As a result, customers benefit from instant querying of native and third-party data, correlations and context across their security stack, and scalability across expanding ever-expanding data sources for faster and more complete investigations.
For example, take joint customers of SentinelOne and Zscaler, who can easily pull Zscaler Security Service Edge (SSE) logs into the Singularity platform via an out-of-the-box integration available on the Singularity Marketplace. Using this integration, which is configurable, these customers can use Purple AI to hunt across user or threat activity logs and data protection or zero trust policy violation logs and optimize investigations of security events that span network, endpoint, cloud and identity data, using simple, natural language queries like:
- “Using Zscaler logs, how many users have accessed cloud applications?”
- “Show me Zscaler logs where users have downloaded malware.”
- “Have any DLP violations been detected in Zscalerlogs?”
- “Are any users performing FTP file transfers in Zscaler logs?”
“Enriched by the extensive telemetry from Zscaler, the integration with SentinelOne significantly enhances the ability for SOC teams to leverage AI for threat hunting and complex investigations,” said Amit Raikar, Vice President, Technology Alliances and Business Development, Zscaler. “Together, we’re focused on helping customers strengthen their zero trust security in an increasingly complex risk environment, where closing gaps in hunting coverage with unprecedented speed and ease is more crucial than ever.”
Availability:
The expansion of SentinelOne’s Purple AI to third party data sources is available immediately for all Purple AI customers. Multilingual support is now open for early access to existing SentinelOne customers with Purple AI.
Related Content:
- SentinelOne Blog: Unlocking New Possibilities with Purple AI New Log Sources and Multilingual Support
About SentinelOne
SentinelOne is a leading AI-powered cybersecurity platform. Built on the first unified Data Lake, SentinelOne empowers the world to run securely by creating intelligent, data-driven systems that think for themselves, stay ahead of complexity and risk, and evolve on their own. Leading organizations—including Fortune 10, Fortune 500, and Global 2000 companies, as well as prominent governments - trust SentinelOne to Secure Tomorrow™. Learn more at sentinelone.com.
View source version on businesswire.com: https://www.businesswire.com/news/home/20250116170215/en/
Media Contact:
Karen Master
press@sentinelone.com
Source: SentinelOne
FAQ
What new integrations has SentinelOne (S) added to Purple AI?
What languages does SentinelOne's Purple AI now support?
How does Purple AI improve security response times?
What framework does SentinelOne's Purple AI use for data querying?
